$ rpki-client -vvf rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa File: 8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa (raw, json) Hash identifier: xp5zsEzN7zQEFnga7J3pKyc5OlYecxV9fEuTdBE9xxU= Subject key identifier: 34:17:D5:E5:0E:70:88:74:6C:ED:50:13:69:DB:C5:DD:FD:D8:7C:3B Certificate issuer: /CN=A9130803/serialNumber=507A0EAF4751ACB52C2C7FBF981D11BCE8358BA1 Certificate serial: 0C82 Authority key identifier: 50:7A:0E:AF:47:51:AC:B5:2C:2C:7F:BF:98:1D:11:BC:E8:35:8B:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:29:27 +0000 ROA not before: Sat 20 Dec 2025 18:15:59 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139825 IP address blocks: 103.145.210.0/23 maxlen: 23 103.145.210.0/24 maxlen: 24 103.145.211.0/24 maxlen: 24 2001:df2:2880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.crl rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130803, serialNumber=507A0EAF4751ACB52C2C7FBF981D11BCE8358BA1 Validity Not Before: Dec 20 18:15:59 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46967-e987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:bf:16:18:7a:51:b1:9a:0a:fc:30:b7:ab: 74:e9:75:fa:be:d6:93:70:c0:bd:17:c1:98:ab:60: d9:78:5e:83:50:70:a6:39:23:87:b5:19:e0:bc:83: a0:47:b7:1c:38:06:37:35:83:af:5d:6f:82:cd:c1: 55:f4:a3:ad:b1:52:eb:e1:cf:32:c1:fb:f9:ee:d8: bc:bd:8a:c3:a6:43:74:fa:f1:66:c9:a9:60:b3:78: d6:f2:76:57:50:0f:d6:b7:37:b9:e4:b3:03:89:37: 7a:09:79:39:a6:96:94:1d:2b:1d:50:39:93:6a:13: 04:24:43:7c:fc:a0:ec:49:78:35:5a:9c:85:fd:16: 44:f9:0d:2a:ea:a3:5c:47:5d:f9:27:70:91:a5:72: 31:15:8d:69:b3:a7:ce:d2:17:dc:cc:97:5c:0d:29: b0:b4:f1:3f:c8:63:25:50:a6:a0:12:6a:6f:ac:54: c3:6b:1d:45:38:f6:3a:4a:c3:8a:c5:18:25:11:e1: b3:07:3d:d3:7b:93:ca:24:e1:41:12:a2:1d:4d:6a: e7:47:a2:20:aa:3d:e5:eb:fb:b5:52:40:1e:11:e4: 7c:12:c9:c1:1d:ad:83:50:99:c0:3e:2c:f8:90:56: f0:2a:12:ab:a3:7c:95:51:5a:2d:f4:35:14:19:70: fc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:17:D5:E5:0E:70:88:74:6C:ED:50:13:69:DB:C5:DD:FD:D8:7C:3B X509v3 Authority Key Identifier: keyid:50:7A:0E:AF:47:51:AC:B5:2C:2C:7F:BF:98:1D:11:BC:E8:35:8B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.145.210.0/23 IPv6: 2001:df2:2880::/48 Signature Algorithm: sha256WithRSAEncryption 59:38:3d:93:53:67:8b:1c:78:77:56:35:68:84:8f:7c:21:d0: 42:0b:20:fb:a1:11:77:f7:ff:11:ec:9b:61:cb:5e:37:39:54: dc:84:aa:f3:89:09:9e:2e:2e:90:7d:44:d2:72:4b:0b:58:1a: 9f:21:67:9c:21:b5:2e:dd:07:9e:a5:ea:fd:aa:58:89:85:f6: 94:e8:e4:e0:e8:f0:6f:c3:bc:9a:3a:93:cb:64:2c:6f:b4:2b: 94:18:89:62:2d:30:c9:80:64:c0:d8:b8:20:80:12:1d:ab:1c: 74:07:38:40:33:56:a3:0c:58:56:d3:fe:6d:d5:d0:12:4b:6e: 4e:ad:25:88:3a:cc:23:53:ca:0c:de:02:d2:6c:ea:d8:a3:68: 7c:09:59:6d:00:2c:b6:1a:ed:c6:2d:e1:f0:de:34:4a:d0:aa: 9b:a2:8a:05:5b:49:f6:a2:cd:7e:66:f4:e3:64:4e:85:72:0c: 84:16:04:d9:e8:7e:df:52:8b:74:8b:dd:0e:6c:00:f0:40:78: 8b:41:15:2b:38:bd:7e:be:7e:1f:ec:54:ba:12:aa:94:d4:bf: 5c:30:80:bd:42:4e:1a:a5:71:c8:b7:4b:d1:7d:6a:41:a9:be: 34:3a:4c:3e:98:b1:10:96:77:04:d8:c1:0f:7a:0a:a8:4b:87: 6a:6f:6b:90 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MDMxMTAvBgNVBAUTKDUwN0EwRUFGNDc1MUFDQjUyQzJDN0ZCRjk4MUQxMUJD RTgzNThCQTEwHhcNMjUxMjIwMTgxNTU5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk2Ny1lOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9S/Fhh6UbGaCvwwt6t06XX6vtaTcMC9F8GYq2DZeF6DUHCmOSOHtRngvIOg R7ccOAY3NYOvXW+CzcFV9KOtsVLr4c8ywfv57ti8vYrDpkN0+vFmyalgs3jW8nZX UA/Wtze55LMDiTd6CXk5ppaUHSsdUDmTahMEJEN8/KDsSXg1WpyF/RZE+Q0q6qNc R135J3CRpXIxFY1ps6fO0hfczJdcDSmwtPE/yGMlUKagEmpvrFTDax1FOPY6SsOK xRglEeGzBz3Te5PKJOFBEqIdTWrnR6Igqj3l6/u1UkAeEeR8EsnBHa2DUJnAPiz4 kFbwKhKro3yVUVot9DUUGXD8CQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDQX1eUO cIh0bO1QE2nbxd392Hw7MB8GA1UdIwQYMBaAFFB6Dq9HUay1LCx/v5gdEbzoNYuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgwMy9EODZBQkYwMDE3 NUUxMUVBQThBMzMyNjBDNEY5QUUwMi9VSG9PcjBkUnJMVXNMSC1fbUIwUnZPZzFp NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIb09yMGRSckxVc0xILV9tQjBSdk9nMWk2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA4MDMvRDg2QUJGMDAxNzVFMTFFQUE4QTMzMjYwQzRGOUFFMDIvOERDNEZFNEMx NzVGMTFFQUIzREIxRjYxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5HSMA8EAgACMAkDBwAgAQ3yKIAwDQYJKoZIhvcNAQELBQADggEB AFk4PZNTZ4sceHdWNWiEj3wh0EILIPuhEXf3/xHsm2HLXjc5VNyEqvOJCZ4uLpB9 RNJySwtYGp8hZ5whtS7dB56l6v2qWImF9pTo5ODo8G/DvJo6k8tkLG+0K5QYiWIt MMmAZMDYuCCAEh2rHHQHOEAzVqMMWFbT/m3V0BJLbk6tJYg6zCNTygzeAtJs6tij aHwJWW0ALLYa7cYt4fDeNErQqpuiigVbSfaizX5m9ONkToVyDIQWBNnoft9Si3SL 3Q5sAPBAeItBFSs4vX6+fh/sVLoSqpTUv1wwgL1CThqlcci3S9F9akGpvjQ6TD6Y sRCWdwTYwQ96CqhLh2pva5A= -----END CERTIFICATE-----Generated at Mon Mar 2 08:13:10 2026 by rpki-client