$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/204CB89672C011EC809A5933C4F9AE02.roa File: 204CB89672C011EC809A5933C4F9AE02.roa (raw, json) Hash identifier: P6yrox/YyLpm+oDoNWNTBLiNb1B32zelHzp9aiWiXkk= Subject key identifier: D9:05:8B:C6:EF:BF:07:C7:8D:8F:C4:16:54:F9:B4:BB:DF:9D:F3:A4 Certificate issuer: /CN=A912AC33/serialNumber=C95CE9D1B6B31081C025D46A3A167FCFDFA72634 Certificate serial: 04A9 Authority key identifier: C9:5C:E9:D1:B6:B3:10:81:C0:25:D4:6A:3A:16:7F:CF:DF:A7:26:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/204CB89672C011EC809A5933C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:48:49 +0000 ROA not before: Sun 21 Sep 2025 00:47:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133114 IP address blocks: 103.47.154.0/24 maxlen: 24 103.47.155.0/24 maxlen: 24 103.241.150.0/24 maxlen: 24 103.241.151.0/24 maxlen: 24 2401:e280:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.crl rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC33, serialNumber=C95CE9D1B6B31081C025D46A3A167FCFDFA72634 Validity Not Before: Sep 21 00:47:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45fe1-5a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:94:9d:af:a1:81:63:b4:5d:0d:40:91:22:e1: b6:12:c8:68:7c:7b:bf:bb:bd:f7:88:b1:4b:7b:86: 93:c5:99:17:c1:9c:73:53:dd:11:db:6c:e5:b8:c6: 1f:16:de:ab:ee:46:26:87:cf:39:d8:69:f9:e8:21: 76:d2:75:91:53:1f:59:7b:ea:98:03:21:5f:ec:29: 94:42:42:93:5c:49:88:3e:c4:45:7d:9c:3a:bb:a2: dc:ef:83:ed:97:5a:25:35:3b:f7:70:ba:18:79:29: 40:48:e3:37:8d:83:53:04:d0:ee:26:fb:a2:64:b5: 8b:ce:30:a6:92:12:d8:11:87:09:3d:68:48:70:4a: b7:de:e0:97:ab:f3:0e:ee:f8:26:ba:6f:da:a5:91: c0:02:43:91:f3:81:4a:d7:e6:b8:72:6a:79:58:7e: 1f:3f:0f:e8:00:95:73:8f:7a:18:4a:70:da:c5:d7: 3d:a7:79:3d:b6:f8:64:47:1f:16:e9:6a:59:12:1b: 5d:fd:2b:e5:e0:52:b3:b3:79:6e:c8:cf:c2:74:8c: 10:92:d9:29:f5:36:1a:4b:58:6c:5c:17:fc:be:21: 83:15:01:32:d2:0b:1b:9b:fb:9d:ff:fa:5b:a3:4f: 39:ac:cd:8f:3d:68:a4:e4:bd:df:28:a3:ed:64:8e: 90:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:05:8B:C6:EF:BF:07:C7:8D:8F:C4:16:54:F9:B4:BB:DF:9D:F3:A4 X509v3 Authority Key Identifier: keyid:C9:5C:E9:D1:B6:B3:10:81:C0:25:D4:6A:3A:16:7F:CF:DF:A7:26:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/204CB89672C011EC809A5933C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.47.154.0/23 103.241.150.0/23 IPv6: 2401:e280:1000::/36 Signature Algorithm: sha256WithRSAEncryption 7f:21:ad:8c:23:a0:3d:eb:8c:5c:c0:c9:05:77:35:e3:3b:58: 52:d0:4c:9c:8e:f9:ee:cb:2c:d4:2c:53:06:57:df:bd:1b:41: 67:98:be:7b:28:5a:81:e8:44:6a:02:73:cd:03:2d:8c:64:d6: 76:16:14:f5:08:e8:7c:a0:12:f1:86:38:c9:08:aa:8a:ad:3b: aa:78:3b:45:8e:14:70:da:e5:98:f6:20:46:a1:01:7e:fe:fc: 74:cd:e9:e9:a5:da:78:f4:e0:3b:d7:e2:13:25:3f:bf:89:10: 8d:e5:9d:67:7c:c2:a5:85:f0:7e:6a:8e:e5:ed:d0:34:4d:39: 7a:f7:b2:53:69:20:60:64:f9:64:81:82:b9:68:8b:c7:bf:57: 68:3f:2b:ee:55:a0:63:f3:a1:86:51:ab:30:60:fd:ec:37:e3: 1b:cb:d9:c4:ef:c0:6c:56:72:29:7b:9e:e5:3f:9b:2a:66:8a: 49:d7:11:2b:03:eb:65:70:34:d2:af:ac:8a:4b:c1:ec:70:ae: da:96:09:d1:fa:8d:b3:94:63:c9:c9:38:5e:28:ae:2e:95:e1: 24:6c:6a:ee:fa:44:17:53:e3:b8:c2:00:b7:3f:41:01:3e:d5: b4:56:cd:82:74:7d:ab:3b:01:1f:10:88:4b:d4:0c:95:21:06: 4a:e0:73:72 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDMzMxMTAvBgNVBAUTKEM5NUNFOUQxQjZCMzEwODFDMDI1RDQ2QTNBMTY3RkNG REZBNzI2MzQwHhcNMjUwOTIxMDA0NzIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWZlMS01YTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pSdr6GBY7RdDUCRIuG2EshofHu/u733iLFLe4aTxZkXwZxzU90R22zluMYf Ft6r7kYmh8852Gn56CF20nWRUx9Ze+qYAyFf7CmUQkKTXEmIPsRFfZw6u6Lc74Pt l1olNTv3cLoYeSlASOM3jYNTBNDuJvuiZLWLzjCmkhLYEYcJPWhIcEq33uCXq/MO 7vgmum/apZHAAkOR84FK1+a4cmp5WH4fPw/oAJVzj3oYSnDaxdc9p3k9tvhkRx8W 6WpZEhtd/Svl4FKzs3luyM/CdIwQktkp9TYaS1hsXBf8viGDFQEy0gsbm/ud//pb o085rM2PPWik5L3fKKPtZI6Q0QIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFNkFi8bv vwfHjY/EFlT5tLvfnfOkMB8GA1UdIwQYMBaAFMlc6dG2sxCBwCXUajoWf8/fpyY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUMzMy8wNEIzMzQ4ODcy QkMxMUVDODYxMTZENUVDNEY5QUUwMi95VnpwMGJhekVJSEFKZFJxT2haX3o5LW5K alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lWenAwYmF6RUlIQUpkUnFPaFpfejktbkpqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDMzMvMDRCMzM0ODg3MkJDMTFFQzg2MTE2RDVFQzRGOUFFMDIvMjA0Q0I4OTY3 MkMwMTFFQzgwOUE1OTMzQzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAS BAIAATAMAwQBZy+aAwQBZ/GWMA4EAgACMAgDBgQkAeKAEDANBgkqhkiG9w0BAQsF AAOCAQEAfyGtjCOgPeuMXMDJBXc14ztYUtBMnI757sss1CxTBlffvRtBZ5i+eyha gehEagJzzQMtjGTWdhYU9QjofKAS8YY4yQiqiq07qng7RY4UcNrlmPYgRqEBfv78 dM3p6aXaePTgO9fiEyU/v4kQjeWdZ3zCpYXwfmqO5e3QNE05eveyU2kgYGT5ZIGC uWiLx79XaD8r7lWgY/OhhlGrMGD97DfjG8vZxO/AbFZyKXue5T+bKmaKSdcRKwPr ZXA00q+sikvB7HCu2pYJ0fqNs5Rjyck4XiiuLpXhJGxq7vpEF1PjuMIAtz9BAT7V tFbNgnR9qzsBHxCIS9QMlSEGSuBzcg== -----END CERTIFICATE-----Generated at Tue Mar 3 00:40:20 2026 by rpki-client