$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa File: A80498FABAAB11EEBA024655C4F9AE02.roa (raw, json) Hash identifier: HqCrtMcIJwqtuGWO+2QOboYuAT+JyzTQSyS9UYZUVgM= Subject key identifier: B7:44:81:19:A1:E0:64:BC:3F:0F:72:BD:5D:1C:1F:42:88:9B:7B:84 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 01DF Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:20:29 +0000 ROA not before: Mon 03 Mar 2025 06:30:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150790 IP address blocks: 103.99.134.0/23 maxlen: 23 103.99.134.0/24 maxlen: 24 103.99.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Mar 3 06:30:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a412ec-d8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:96:a7:c6:a9:05:80:ee:ae:ce:e7:c1:eb:bc: fc:e0:50:db:cb:4c:82:96:a0:a8:6a:fa:d8:48:36: d9:ed:78:86:2d:c7:4a:bf:00:72:39:f9:a2:a8:e0: b1:00:8a:0c:df:9c:2f:9f:c5:b6:e2:45:39:30:84: c5:89:53:c3:6e:32:1b:ec:22:d5:ae:98:4a:81:dc: 77:c0:0f:b4:1f:30:9a:ef:d8:e7:62:4a:71:e1:85: 47:ca:25:cd:88:76:3d:44:4a:fb:73:fe:4d:05:74: af:4e:96:e2:50:11:39:4e:f6:05:55:b5:dd:75:a9: 75:cd:f4:a8:17:2b:15:5f:ba:43:17:ef:d5:65:9f: 13:c6:51:8e:c6:86:b5:9c:73:b4:f5:1d:cb:12:b6: 37:59:49:48:9d:ce:78:a4:76:f1:a2:88:2e:4b:93: 9b:8f:be:72:28:85:b1:d0:33:67:26:8d:f3:92:3e: ec:df:13:47:54:4c:8e:e8:ce:28:04:16:07:70:42: be:9f:94:ed:28:e3:0a:67:6d:08:21:90:27:a2:27: 42:4e:69:2a:b7:88:2b:44:b4:fd:4a:7e:65:66:2f: 8d:1f:cb:89:84:a2:0e:42:4c:81:c2:ab:e4:b1:9c: a1:02:d6:c9:b0:1b:bc:70:ef:7e:f8:45:e7:b5:51: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:44:81:19:A1:E0:64:BC:3F:0F:72:BD:5D:1C:1F:42:88:9B:7B:84 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/A80498FABAAB11EEBA024655C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.134.0/23 Signature Algorithm: sha256WithRSAEncryption 86:e6:f1:7b:a3:29:40:d4:df:5f:91:74:20:52:29:95:29:9d: 57:db:a1:84:fe:49:f6:a0:b0:65:a1:d7:0b:53:aa:d8:11:3a: e8:a4:86:08:0e:d3:29:b8:c2:d0:8b:9a:a4:a6:98:a2:42:77: 97:61:8b:7d:9b:16:e7:af:31:ee:22:70:c8:d7:83:cd:b7:17: 75:41:55:a4:f1:72:d2:21:4d:01:45:a2:63:d3:8a:c9:00:bf: 47:70:6e:ec:ea:ef:d6:0d:a6:85:5a:cf:10:a0:25:40:1c:63: c8:e9:89:5f:7a:b1:d8:bd:23:8c:14:a0:cb:4e:a3:aa:cb:74: 45:e0:e7:17:e6:33:3b:9f:f1:c5:3d:eb:f7:28:4d:90:f8:cd: 06:4b:74:12:fb:81:9c:10:5e:05:bf:cb:28:a5:c0:1d:56:0b: 22:e8:01:fa:9a:b8:91:48:c4:d7:88:81:c8:83:a2:7b:ef:d5: 8e:bf:49:76:62:7a:30:3e:01:cf:89:1f:41:d0:fe:f1:2d:88: d5:f1:68:d4:d8:f6:ea:14:43:86:1e:ed:af:82:45:1d:44:25: e8:b1:62:1d:14:e7:c0:3b:98:0d:1d:a1:34:11:c1:34:25:1d: dc:c6:a6:f1:47:cb:2a:fa:10:29:f2:0d:7f:31:54:f6:6a:bd: 99:e5:37:17 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjUwMzAzMDYzMDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTJlYy1kOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JanxqkFgO6uzufB67z84FDby0yClqCoavrYSDbZ7XiGLcdKvwByOfmiqOCx AIoM35wvn8W24kU5MITFiVPDbjIb7CLVrphKgdx3wA+0HzCa79jnYkpx4YVHyiXN iHY9REr7c/5NBXSvTpbiUBE5TvYFVbXddal1zfSoFysVX7pDF+/VZZ8TxlGOxoa1 nHO09R3LErY3WUlInc54pHbxooguS5Obj75yKIWx0DNnJo3zkj7s3xNHVEyO6M4o BBYHcEK+n5TtKOMKZ20IIZAnoidCTmkqt4grRLT9Sn5lZi+NH8uJhKIOQkyBwqvk sZyhAtbJsBu8cO9++EXntVG23QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLdEgRmh 4GS8Pw9yvV0cH0KIm3uEMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4RkEvNDAwM0Y5MzA1NEEzMTFFRUI3NUY0Njg2QzRGOUFFMDIvQTgwNDk4RkFC QUFCMTFFRUJBMDI0NjU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2OGMA0GCSqGSIb3DQEBCwUAA4IBAQCG5vF7oylA1N9fkXQgUimV KZ1X26GE/kn2oLBlodcLU6rYETropIYIDtMpuMLQi5qkppiiQneXYYt9mxbnrzHu InDI14PNtxd1QVWk8XLSIU0BRaJj04rJAL9HcG7s6u/WDaaFWs8QoCVAHGPI6Ylf erHYvSOMFKDLTqOqy3RF4OcX5jM7n/HFPev3KE2Q+M0GS3QS+4GcEF4Fv8sopcAd Vgsi6AH6mriRSMTXiIHIg6J779WOv0l2YnowPgHPiR9B0P7xLYjV8WjU2PbqFEOG Hu2vgkUdRCXosWIdFOfAO5gNHaE0EcE0JR3cxqbxR8sq+hAp8g1/MVT2ar2Z5TcX -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:29 2026 by rpki-client