$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa File: E0AAFE389A2411EBA8913944C4F9AE02.roa (raw, json) Hash identifier: NOaVU4q5vDhTCfS8D0magdRbNPsrNEg2xYPHqGcyq74= Subject key identifier: A7:59:8A:5C:04:B3:6E:F8:B1:CA:20:98:50:2F:A5:36:93:B4:58:B9 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 0780 Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:15 +0000 ROA not before: Tue 22 Jul 2025 23:04:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131317 IP address blocks: 103.8.44.0/24 maxlen: 24 103.8.45.0/24 maxlen: 24 103.8.46.0/24 maxlen: 24 2403:8600:ea88::/48 maxlen: 48 2403:8600:ea89::/48 maxlen: 48 2403:8600:ea8a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D, serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Jul 22 23:04:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4826f-812d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:21:3d:e6:13:ce:fb:44:76:0c:c1:f7:e0:a0: a1:56:c5:61:37:ea:e9:74:fa:a0:0a:bb:66:17:da: e2:85:e1:f0:78:e0:51:9c:cb:70:7c:3e:7b:97:13: 35:15:ed:6d:8f:23:b0:10:98:2a:09:29:84:ce:1c: 15:7f:cc:74:eb:93:38:33:92:51:10:6d:9f:83:f8: 30:4e:1b:9c:53:ac:46:16:0d:2c:9c:f5:8b:f7:a9: 75:d7:9c:ef:d9:89:33:00:c1:ad:9d:75:a3:36:83: 2d:fa:ec:6e:b6:1b:71:92:09:bb:e4:fd:d5:9a:10: e2:db:3e:c9:85:c9:d7:29:cf:b6:09:66:fb:d1:81: 63:ef:f8:1f:da:a4:7b:9f:57:19:c6:6a:a6:13:63: 99:8f:e6:0a:b3:b2:e8:86:bd:b2:60:e9:f8:f5:07: d7:15:0c:44:ea:d2:cc:1c:7e:c7:ce:2b:3f:7d:9f: 2e:1f:81:42:2a:b3:cc:b7:4f:32:3c:37:8c:a2:20: 08:e1:15:b2:f5:e8:5a:d6:a8:ae:18:ef:46:3c:25: 38:99:84:80:1d:e5:4c:f1:2d:9a:42:d5:b4:a6:11: 1f:6d:57:ea:fd:d7:fc:58:bb:00:97:8d:f1:9e:c3: 5f:8e:00:39:83:f8:11:75:79:a4:a8:c3:50:19:00: c9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:59:8A:5C:04:B3:6E:F8:B1:CA:20:98:50:2F:A5:36:93:B4:58:B9 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/E0AAFE389A2411EBA8913944C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.44.0-103.8.46.255 IPv6: 2403:8600:ea88::-2403:8600:ea8a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 26:ca:07:37:4d:f9:34:5f:e9:35:56:c0:bb:1b:fa:5a:12:ad: c3:c6:78:bf:53:0e:1f:17:16:b5:b9:ad:51:8c:98:8d:6c:16: 47:eb:17:c7:e8:e2:1c:21:6d:5d:c4:00:5e:52:77:2d:b8:a9: 14:9a:bb:9e:9d:22:62:c2:de:ba:e8:95:15:0f:24:92:fa:07: 81:26:29:bd:50:5d:4d:d6:16:db:11:a5:0e:ef:08:f6:da:7d: 8d:07:66:9e:3e:61:49:2b:1a:c1:58:d3:17:a3:0c:ec:36:5e: 86:e7:7e:68:2a:30:b8:e6:34:ac:bb:6c:b1:84:d9:81:1b:77: 39:47:1d:0c:83:1a:4e:03:fc:76:59:2e:4e:ab:0e:93:30:71: 7a:bc:12:b1:99:3b:89:31:10:74:90:30:fb:c7:83:91:7c:fc: 10:60:81:0c:5a:3a:8d:0b:45:35:e2:4f:d3:c1:d9:8e:53:b0: 78:6f:19:55:5f:a8:d0:f6:ee:e4:b1:2a:d0:76:d5:82:36:69: 42:17:5c:75:db:e8:88:9a:10:94:b1:a3:89:b6:ba:01:ab:15: 32:6a:51:21:59:c9:6f:c3:82:9e:e3:55:5b:ee:7d:b6:50:3e: 0e:6d:32:38:ab:6a:28:20:66:2d:da:03:2f:6a:8f:a7:6c:8e: 32:10:53:98 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjUwNzIyMjMwNDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI2Zi04MTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSE95hPO+0R2DMH34KChVsVhN+rpdPqgCrtmF9riheHweOBRnMtwfD57lxM1 Fe1tjyOwEJgqCSmEzhwVf8x065M4M5JREG2fg/gwThucU6xGFg0snPWL96l115zv 2YkzAMGtnXWjNoMt+uxuthtxkgm75P3VmhDi2z7JhcnXKc+2CWb70YFj7/gf2qR7 n1cZxmqmE2OZj+YKs7Lohr2yYOn49QfXFQxE6tLMHH7Hzis/fZ8uH4FCKrPMt08y PDeMoiAI4RWy9eha1qiuGO9GPCU4mYSAHeVM8S2aQtW0phEfbVfq/df8WLsAl43x nsNfjgA5g/gRdXmkqMNQGQDJ+QIDAQABo4IChDCCAoAwHQYDVR0OBBYEFKdZilwE s274scogmFAvpTaTtFi5MB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvRTBBQUZFMzg5 QTI0MTFFQkE4OTEzOTQ0QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAU BAIAATAOMAwDBAJnCCwDBABnCC4wGgQCAAIwFDASAwcDJAOGAOqIAwcAJAOGAOqK MA0GCSqGSIb3DQEBCwUAA4IBAQAmygc3Tfk0X+k1VsC7G/paEq3Dxni/Uw4fFxa1 ua1RjJiNbBZH6xfH6OIcIW1dxABeUnctuKkUmruenSJiwt666JUVDySS+geBJim9 UF1N1hbbEaUO7wj22n2NB2aePmFJKxrBWNMXowzsNl6G535oKjC45jSsu2yxhNmB G3c5Rx0MgxpOA/x2WS5Oqw6TMHF6vBKxmTuJMRB0kDD7x4ORfPwQYIEMWjqNC0U1 4k/TwdmOU7B4bxlVX6jQ9u7ksSrQdtWCNmlCF1x12+iImhCUsaOJtroBqxUyalEh Wclvw4Ke41Vb7n22UD4ObTI4q2ooIGYt2gMvao+nbI4yEFOY -----END CERTIFICATE-----Generated at Tue Mar 3 01:15:09 2026 by rpki-client