$ rpki-client -vvf rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa File: D257C8F88FAB11F0A7F64E1AC4F9AE02.roa (raw, json) Hash identifier: G9rHcPIfPgJicicRoBaQDI5mj2H6x4dCQr+TJm0s7O8= Subject key identifier: B8:77:C1:D7:99:A6:21:E8:91:08:F2:53:7E:47:2D:5D:5C:30:FC:53 Certificate issuer: /CN=A912994F/serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Certificate serial: 3572 Authority key identifier: 4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:59:57 +0000 ROA not before: Tue 16 Sep 2025 12:53:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24382 IP address blocks: 103.9.104.0/24 maxlen: 24 103.44.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13682 (0x3572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912994F, serialNumber=4BED58BC4544E7E3B5E9789C67C63BEC91C27CDD Validity Not Before: Sep 16 12:53:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47e9d-d60e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:07:cd:fd:d2:9e:b4:e8:f8:eb:de:e0:4b:24: e8:8b:38:28:00:fd:1f:b2:9b:21:d6:0c:01:9e:c1: 75:3e:dd:56:e6:71:37:e2:f7:5b:a7:5b:8b:2b:d4: 97:e5:ff:5c:a6:5c:7b:cd:38:a0:52:7a:36:94:b8: 79:11:58:63:1c:f5:70:b9:cc:e8:80:dc:f8:74:29: 49:a5:59:c9:2f:eb:53:84:b3:c4:85:1a:ec:80:67: a0:eb:0d:eb:fe:7a:4f:56:a5:54:08:be:34:19:44: 0a:b7:16:0d:84:e1:fa:1b:15:be:73:8d:04:e2:95: 61:f8:1b:ed:99:d6:2a:ba:af:ae:78:82:b0:24:75: c1:c7:f1:89:5c:a9:5f:26:35:e3:75:58:ac:c6:a6: 45:d3:bf:a6:09:ba:ea:4e:ab:cb:8c:b7:f4:7a:94: b0:93:90:5e:2f:90:09:92:2f:55:e4:f9:35:3d:ba: 72:f2:7b:6d:9a:81:af:c6:61:ce:f6:24:62:ba:d8: 4e:4e:9d:4d:83:77:14:8a:3d:e0:00:b5:98:2b:8e: f0:b2:e4:c1:1c:b7:7a:31:d5:25:cf:a0:3b:13:b2: 86:bb:10:69:7e:87:e4:f2:f5:e7:9c:0b:08:d7:1c: d9:2d:0a:30:e0:6d:11:5e:80:72:33:8b:27:fb:55: 1d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:77:C1:D7:99:A6:21:E8:91:08:F2:53:7E:47:2D:5D:5C:30:FC:53 X509v3 Authority Key Identifier: keyid:4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/D257C8F88FAB11F0A7F64E1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.104.0/24 103.44.150.0/24 Signature Algorithm: sha256WithRSAEncryption a2:b4:f4:5a:3c:b2:75:de:99:52:22:3b:ae:26:d6:78:57:48: c1:8c:bd:1c:8b:b6:68:2b:a1:db:1a:c1:d7:27:48:05:c1:e3: 4f:5d:16:d5:96:ad:a0:87:c1:d5:88:00:f1:23:cc:47:ac:11: 89:02:a0:c6:52:7f:9b:79:ce:af:59:2a:1d:7e:05:a7:ee:0a: 9f:02:0f:39:f9:41:f9:ae:5e:21:16:b5:77:63:cc:e7:b8:e5: ef:71:e6:83:d9:3b:1c:1e:0d:61:af:7f:a6:35:09:e8:44:3a: 94:e7:57:23:9e:23:0e:28:45:a4:57:d9:f6:c8:b2:48:92:ac: 17:88:76:8f:fe:81:d4:38:cd:60:1d:90:82:9f:ea:02:7d:20: fd:dc:bb:e3:62:f4:0d:e5:84:3a:81:44:50:a0:37:cd:6f:e6: 63:3b:e1:0d:43:1a:71:9a:87:02:13:ce:24:fb:f4:f5:e3:27: 03:43:ae:de:97:79:ac:8f:f0:83:8e:c4:9b:b8:d0:0f:96:c5: b7:d3:cb:80:18:17:f7:09:59:0f:14:27:8f:0e:a3:8b:69:90: 57:8a:fd:88:63:64:d7:49:05:aa:d7:78:f7:bc:08:ec:8f:3e: 7c:68:3f:6d:48:06:10:6c:d5:1f:43:f4:b5:2c:a9:3b:8c:07: f5:a2:e0:4e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NEYxMTAvBgNVBAUTKDRCRUQ1OEJDNDU0NEU3RTNCNUU5Nzg5QzY3QzYzQkVD OTFDMjdDREQwHhcNMjUwOTE2MTI1MzUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2U5ZC1kNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgfN/dKetOj4697gSyToizgoAP0fspsh1gwBnsF1Pt1W5nE34vdbp1uLK9SX 5f9cplx7zTigUno2lLh5EVhjHPVwuczogNz4dClJpVnJL+tThLPEhRrsgGeg6w3r /npPVqVUCL40GUQKtxYNhOH6GxW+c40E4pVh+BvtmdYquq+ueIKwJHXBx/GJXKlf JjXjdVisxqZF07+mCbrqTqvLjLf0epSwk5BeL5AJki9V5Pk1Pbpy8nttmoGvxmHO 9iRiuthOTp1Ng3cUij3gALWYK47wsuTBHLd6MdUlz6A7E7KGuxBpfofk8vXnnAsI 1xzZLQow4G0RXoByM4sn+1UdEQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLh3wdeZ piHokQjyU35HLV1cMPxTMB8GA1UdIwQYMBaAFEvtWLxFROfjtel4nGfGO+yRwnzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk0Ri9BMDI5QTUyNjFE QUExMUUyOUJGQzY3QTYwOEIwMkNEMi9TLTFZdkVWRTUtTzE2WGljWjhZNzdKSENm TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MtMVl2RVZFNS1PMTZYaWNaOFk3N0pIQ2ZOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NEYvQTAyOUE1MjYxREFBMTFFMjlCRkM2N0E2MDhCMDJDRDIvRDI1N0M4Rjg4 RkFCMTFGMEE3RjY0RTFBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZwloAwQAZyyWMA0GCSqGSIb3DQEBCwUAA4IBAQCitPRaPLJ13plS IjuuJtZ4V0jBjL0ci7ZoK6HbGsHXJ0gFweNPXRbVlq2gh8HViADxI8xHrBGJAqDG Un+bec6vWSodfgWn7gqfAg85+UH5rl4hFrV3Y8znuOXvceaD2TscHg1hr3+mNQno RDqU51cjniMOKEWkV9n2yLJIkqwXiHaP/oHUOM1gHZCCn+oCfSD93LvjYvQN5YQ6 gURQoDfNb+ZjO+ENQxpxmocCE84k+/T14ycDQ67el3msj/CDjsSbuNAPlsW308uA GBf3CVkPFCePDqOLaZBXiv2IY2TXSQWq13j3vAjsjz58aD9tSAYQbNUfQ/S1LKk7 jAf1ouBO -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:15 2026 by rpki-client