$ rpki-client -vvf rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa File: A89C497E6D1911ED9C34360FC4F9AE02.roa (raw, json) Hash identifier: CRP3INsEDm74mZa1Y5mqfFwP1JHkB8SjLGV5RncOOxk= Subject key identifier: 43:37:AD:1F:ED:F1:86:FE:10:43:57:9F:7B:45:09:3F:5F:59:BC:ED Certificate issuer: /CN=A913F478/serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Certificate serial: 027C Authority key identifier: 56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:17:26 +0000 ROA not before: Mon 02 Feb 2026 05:59:58 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150447 IP address blocks: 103.17.148.0/23 maxlen: 23 103.17.148.0/24 maxlen: 24 103.17.149.0/24 maxlen: 24 125.253.128.0/24 maxlen: 24 125.253.129.0/24 maxlen: 24 125.253.130.0/24 maxlen: 24 125.253.131.0/24 maxlen: 24 2001:df1:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F478, serialNumber=568F765CCAB42C5230798E68FBC37C8AA49F5F44 Validity Not Before: Feb 2 05:59:58 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45885-221e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:be:d0:86:f1:2f:7c:20:b9:d8:2b:e9:7c: a6:a6:4b:cf:54:0c:bf:59:3e:da:96:a5:fb:d4:7c: c5:ac:09:79:d6:19:a2:e2:1d:18:ab:ec:77:16:59: d9:f4:92:73:36:7a:f2:11:09:04:d1:59:92:dc:44: 8c:a0:b6:0b:80:f4:0f:10:f7:55:ed:67:56:46:6a: ed:a9:de:1e:d6:d9:62:ab:c3:ac:1b:12:14:c2:08: d1:c4:da:b2:19:95:e0:ff:7c:35:30:1d:ba:25:c7: e3:2a:a5:67:5e:07:e9:3e:36:3b:4d:fe:38:43:b0: e9:7e:28:86:bf:10:0d:d8:8e:5c:a1:1e:97:d2:3a: 5a:c4:a3:9c:91:94:f7:76:dd:ae:a0:5a:35:d8:01: 74:61:2b:79:1e:30:f3:55:b6:2e:d5:ed:62:be:6f: e5:fe:7b:a4:c8:6c:9c:47:e1:cf:aa:82:9a:3f:1c: 03:ec:46:1a:a4:5e:33:a2:21:72:ea:a8:70:08:52: ef:3f:95:8a:a3:43:6c:d9:30:81:ca:78:db:db:17: 89:b0:4e:ec:52:52:45:cf:0e:82:6a:bb:13:a9:31: 62:18:d0:ec:f1:58:99:6d:52:8c:51:39:18:3a:41: 4f:55:24:da:c2:ab:d1:b9:aa:59:66:78:0e:de:b2: d3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:37:AD:1F:ED:F1:86:FE:10:43:57:9F:7B:45:09:3F:5F:59:BC:ED X509v3 Authority Key Identifier: keyid:56:8F:76:5C:CA:B4:2C:52:30:79:8E:68:FB:C3:7C:8A:A4:9F:5F:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/Vo92XMq0LFIweY5o-8N8iqSfX0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo92XMq0LFIweY5o-8N8iqSfX0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F478/499A915E6D1611EDBE12050CC4F9AE02/A89C497E6D1911ED9C34360FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.148.0/23 125.253.128.0/22 IPv6: 2001:df1:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:31:8b:71:50:b2:e1:7e:89:3a:74:f8:16:cf:40:44:89:eb: 02:2a:51:cb:1e:2e:ab:a2:d3:6d:4a:bd:ec:5a:8c:e7:7d:24: 4b:ab:48:24:9b:a5:11:32:f7:c1:ab:83:9d:94:af:02:0b:6e: 48:0b:59:a3:6f:49:41:e6:f9:f7:47:98:03:a3:d8:26:26:1a: af:48:96:37:be:4c:57:43:ba:39:a0:be:aa:5c:9c:14:43:d1: 8d:ec:df:7b:20:57:e0:13:9f:b0:44:7b:53:1c:c7:ff:fd:15: cd:70:aa:5e:39:95:ba:c0:e8:32:55:20:10:ab:63:36:53:fd: f4:5a:0f:b2:a9:4b:66:3e:cc:37:eb:a2:6d:00:4e:a1:04:d4: 9f:fc:a8:b3:bc:01:dd:40:fc:70:aa:b9:05:d4:a6:e0:df:88: 53:38:eb:ee:b6:0b:ef:ef:96:14:0c:ee:c4:8a:3b:48:18:d2: 42:b2:8e:1d:0d:6b:4e:41:bc:39:42:3e:ac:73:32:af:3e:23: 30:fa:88:ec:73:03:7f:5b:5b:97:5c:27:15:15:a2:3e:83:fc: 05:4d:9b:7f:44:12:4d:5c:17:28:55:d1:4f:79:8a:a7:c8:45: bb:35:fe:2e:08:1b:f5:4a:e0:06:29:79:1d:a4:6a:85:e1:6d: 1e:0e:6d:ed -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y0NzgxMTAvBgNVBAUTKDU2OEY3NjVDQ0FCNDJDNTIzMDc5OEU2OEZCQzM3QzhB QTQ5RjVGNDQwHhcNMjYwMjAyMDU1OTU4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTg4NS0yMjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0m+0IbxL3wgudgr6XympkvPVAy/WT7alqX71HzFrAl51hmi4h0Yq+x3FlnZ 9JJzNnryEQkE0VmS3ESMoLYLgPQPEPdV7WdWRmrtqd4e1tliq8OsGxIUwgjRxNqy GZXg/3w1MB26JcfjKqVnXgfpPjY7Tf44Q7DpfiiGvxAN2I5coR6X0jpaxKOckZT3 dt2uoFo12AF0YSt5HjDzVbYu1e1ivm/l/nukyGycR+HPqoKaPxwD7EYapF4zoiFy 6qhwCFLvP5WKo0Ns2TCBynjb2xeJsE7sUlJFzw6CarsTqTFiGNDs8ViZbVKMUTkY OkFPVSTawqvRuapZZngO3rLT0wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFEM3rR/t 8Yb+EENXn3tFCT9fWbztMB8GA1UdIwQYMBaAFFaPdlzKtCxSMHmOaPvDfIqkn19E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjQ3OC80OTlBOTE1RTZE MTYxMUVEQkUxMjA1MENDNEY5QUUwMi9WbzkyWE1xMExGSXdlWTVvLThOOGlxU2ZY MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvOTJYTXEwTEZJd2VZNW8tOE44aXFTZlgwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y0NzgvNDk5QTkxNUU2RDE2MTFFREJFMTIwNTBDQzRGOUFFMDIvQTg5QzQ5N0U2 RDE5MTFFRDlDMzQzNjBGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQBZxGUAwQCff2AMA8EAgACMAkDBwAgAQ3xW8AwDQYJKoZIhvcNAQEL BQADggEBAH0xi3FQsuF+iTp0+BbPQESJ6wIqUcseLqui021KvexajOd9JEurSCSb pREy98Grg52UrwILbkgLWaNvSUHm+fdHmAOj2CYmGq9Ilje+TFdDujmgvqpcnBRD 0Y3s33sgV+ATn7BEe1Mcx//9Fc1wql45lbrA6DJVIBCrYzZT/fRaD7KpS2Y+zDfr om0ATqEE1J/8qLO8Ad1A/HCquQXUpuDfiFM46+62C+/vlhQM7sSKO0gY0kKyjh0N a05BvDlCPqxzMq8+IzD6iOxzA39bW5dcJxUVoj6D/AVNm39EEk1cFyhV0U95iqfI Rbs1/i4IG/VK4AYpeR2kaoXhbR4Obe0= -----END CERTIFICATE-----Generated at Mon Mar 2 08:08:05 2026 by rpki-client