$ rpki-client -vvf rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa File: 86CCDF8EC91411F085F4A61BC4F9AE02.roa (raw, json) Hash identifier: 78e6dSdExXaAKBzwmHjzD00gobnkz3dKF66D62nRc9E= Subject key identifier: FC:FA:35:91:9C:AF:D0:6A:43:C9:FB:6D:13:11:28:8B:50:48:67:BB Certificate issuer: /CN=A913D2D8/serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Certificate serial: 34 Authority key identifier: A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa Signing time: Sun 01 Mar 2026 05:58:37 +0000 ROA not before: Mon 24 Nov 2025 09:04:05 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4594 IP address blocks: 103.224.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D2D8, serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Validity Not Before: Nov 24 09:04:05 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3d58d-c497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:68:37:ea:f1:83:65:2c:a7:30:d4:b9:a5:60: b2:5e:37:cb:f9:d6:e5:f7:49:d1:99:0f:4d:2b:59: 1c:98:a6:0f:cb:b6:db:61:0e:9d:17:37:dc:c2:96: 90:12:34:a8:f1:c2:49:e3:c8:d7:f2:19:47:ff:59: 35:fb:db:10:a5:ad:b3:e8:8c:b1:ca:db:11:15:f4: bf:c4:b8:0d:15:78:a2:04:1e:89:d6:a9:53:8b:95: b7:5c:88:c4:77:cb:b3:57:fc:33:ff:ac:e6:b7:9f: 8a:05:5b:fe:84:69:a6:f0:81:a5:e1:0b:d0:79:6b: ac:a1:22:79:ba:5a:8f:ba:fa:cb:1d:c8:ae:62:3d: 59:9e:5a:44:50:e5:37:07:10:ea:eb:88:49:59:18: 86:3b:f1:9f:3d:44:73:b0:ea:6f:de:37:6d:91:f5: d0:50:34:2d:44:10:34:77:e4:66:d4:7b:66:1e:bc: 58:a0:1b:9f:1e:f2:09:79:e7:bc:c0:c0:01:0a:e1: d5:49:c1:c8:4e:15:23:e0:4e:e4:5b:45:83:b4:9c: 81:00:85:2c:e0:30:8e:ef:38:98:63:03:0f:60:05: 96:04:fa:43:dc:b6:9a:9b:6c:e7:32:6e:76:47:71: 7a:d3:2f:47:95:4d:b2:68:b0:c1:6c:15:23:01:4a: ae:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FA:35:91:9C:AF:D0:6A:43:C9:FB:6D:13:11:28:8B:50:48:67:BB X509v3 Authority Key Identifier: keyid:A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.20.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:1f:37:22:39:34:ae:9c:10:af:fa:26:0d:a7:ba:23:a5:00: 4a:20:7d:7e:1c:5d:a2:42:c2:68:ac:20:cc:ee:df:d0:a3:5e: c9:50:be:6e:83:8d:e3:6c:66:cd:64:8a:31:b0:5a:1a:14:be: 9b:f8:5f:f6:5c:41:a5:32:a2:86:8c:ac:f8:83:49:2e:82:4b: ee:ff:bb:ea:56:84:05:9d:02:a1:2f:0b:a0:d2:8d:a3:14:7e: fa:0b:52:07:2c:c6:b8:3d:2c:74:b2:6b:77:6c:36:57:99:af: 49:46:c6:f5:35:11:65:1d:ab:59:c6:54:4c:df:8c:42:b8:d6: e2:6c:4f:67:92:58:09:6e:19:7f:49:8e:d7:c2:3f:98:b4:db: 0e:81:15:10:2c:78:03:71:88:d7:cd:c1:11:a5:bb:c9:67:16: 34:e6:a9:0b:c8:48:64:45:39:8c:1d:77:10:e3:ba:d7:1f:2f: 9f:60:9a:f7:71:29:1e:ae:d7:ab:26:ee:d0:31:79:4f:36:69: 38:ba:ae:fe:1c:8b:ca:d9:40:f8:60:c1:9c:74:fe:a6:19:bb: ce:d3:09:b7:22:59:cf:00:e4:2f:d3:7a:c7:f5:fa:d8:32:b4: 95:98:f0:e7:38:e9:e4:bf:52:95:e5:60:92:54:1f:91:2f:22: 11:8a:ca:38 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDJEODExMC8GA1UEBRMoQTJEMEU3REY4OEFCNjlEQjZFMDU5QTMwNjRFNEREQzFF NkZDOUQxOTAeFw0yNTExMjQwOTA0MDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNThkLWM0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChaDfq8YNlLKcw1LmlYLJeN8v51uX3SdGZD00rWRyYpg/LttthDp0XN9zClpAS NKjxwknjyNfyGUf/WTX72xClrbPojLHK2xEV9L/EuA0VeKIEHonWqVOLlbdciMR3 y7NX/DP/rOa3n4oFW/6EaabwgaXhC9B5a6yhInm6Wo+6+ssdyK5iPVmeWkRQ5TcH EOrriElZGIY78Z89RHOw6m/eN22R9dBQNC1EEDR35GbUe2YevFigG58e8gl557zA wAEK4dVJwchOFSPgTuRbRYO0nIEAhSzgMI7vOJhjAw9gBZYE+kPctpqbbOcybnZH cXrTL0eVTbJosMFsFSMBSq4NAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/Po1kZyv 0GpDyfttExEoi1BIZ7swHwYDVR0jBBgwFoAUotDn34iradtuBZowZOTdweb8nRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMkQ4Lzk0OTZENzRFQzkx MTExRjBCMDAxQ0U4M0M0RjlBRTAyL290RG4zNGlyYWR0dUJab3daT1Rkd2ViOG5S ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3REbjM0aXJhZHR1Qlpvd1pPVGR3ZWI4blJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDJEOC85NDk2RDc0RUM5MTExMUYwQjAwMUNFODNDNEY5QUUwMi84NkNDREY4RUM5 MTQxMUYwODVGNEE2MUJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABn4BQwDQYJKoZIhvcNAQELBQADggEBAB4fNyI5NK6cEK/6Jg2nuiOl AEogfX4cXaJCwmisIMzu39CjXslQvm6DjeNsZs1kijGwWhoUvpv4X/ZcQaUyooaM rPiDSS6CS+7/u+pWhAWdAqEvC6DSjaMUfvoLUgcsxrg9LHSya3dsNleZr0lGxvU1 EWUdq1nGVEzfjEK41uJsT2eSWAluGX9JjtfCP5i02w6BFRAseANxiNfNwRGlu8ln FjTmqQvISGRFOYwddxDjutcfL59gmvdxKR6u16sm7tAxeU82aTi6rv4ci8rZQPhg wZx0/qYZu87TCbciWc8A5C/Tesf1+tgytJWY8Oc46eS/UpXlYJJUH5EvIhGKyjg= -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:02 2026 by rpki-client