$ rpki-client -vvf rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/24F33D7877AF11EB8E972C66C4F9AE02.roa File: 24F33D7877AF11EB8E972C66C4F9AE02.roa (raw, json) Hash identifier: kjgnZeVn+N324KHyf3fGO9g9YrF9YolyFM7PZ06SKLc= Subject key identifier: CA:00:22:7F:DE:FF:68:9D:5D:31:15:CC:4E:66:78:02:71:D2:ED:91 Certificate issuer: /CN=A914022F/serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Certificate serial: 0720 Authority key identifier: 21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/24F33D7877AF11EB8E972C66C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:42:42 +0000 ROA not before: Wed 18 Jun 2025 22:30:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140912 IP address blocks: 103.153.88.0/23 maxlen: 23 103.153.88.0/24 maxlen: 24 103.153.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914022F, serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Validity Not Before: Jun 18 22:30:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fc01-856d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:ce:af:29:a9:4b:c7:a6:b8:0a:46:0f:11: b4:da:a0:9b:f3:0b:6f:f6:5e:3c:49:ff:53:6b:e4: 09:f1:f9:5f:ad:f3:06:2e:ac:ef:e4:40:3f:9f:be: 15:7b:77:9b:e6:77:5d:f3:84:e9:2d:16:66:10:35: 16:30:ea:c9:fc:a8:1a:64:28:ed:f3:09:df:7f:79: c2:02:75:bb:8f:90:25:64:d9:d4:09:fd:e1:b5:91: 32:10:d4:e1:28:ea:a9:da:fa:1f:9a:f7:b4:c1:f3: 9c:c1:09:e5:5d:4d:34:55:56:c1:b8:14:c1:49:3d: 2a:fe:4a:8a:1e:b8:48:59:25:15:b3:f6:d5:c0:f6: 91:c0:af:58:3d:8d:0d:46:eb:5e:26:3a:5c:17:54: ef:67:5b:fd:ed:a9:d4:82:12:b7:89:e1:0f:73:aa: 72:97:3a:ca:59:45:37:63:e2:29:9a:fd:75:df:a0: 3b:74:5d:69:5f:40:56:f3:47:84:ec:f3:71:3e:ee: 23:fd:4e:37:6a:6a:ad:bc:e5:2b:ea:18:b6:2e:e0: 19:06:ec:39:8f:be:6c:6a:35:e2:5c:a4:c4:62:7f: 35:e4:11:41:8c:e3:3a:2b:76:8b:a7:86:d3:19:a0: 4b:f5:86:4e:34:06:d2:88:b0:4c:04:70:bb:cb:d3: 87:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:00:22:7F:DE:FF:68:9D:5D:31:15:CC:4E:66:78:02:71:D2:ED:91 X509v3 Authority Key Identifier: keyid:21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/24F33D7877AF11EB8E972C66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.153.88.0/23 Signature Algorithm: sha256WithRSAEncryption 35:25:20:03:84:fd:e6:6f:2c:bd:12:57:9b:5d:5d:3c:1a:53: 95:3c:8f:9c:07:30:68:40:d1:cf:cc:03:c0:fd:33:67:63:6d: 2e:45:b0:0e:ea:0f:22:20:cf:da:b5:9e:55:f2:32:b9:94:f5: 26:de:69:b9:b4:c3:3a:55:8b:c1:3a:a5:13:b8:c7:17:e8:d0: 12:a2:54:21:40:c6:de:fb:2d:93:25:f6:b6:22:75:da:4a:86: aa:df:10:e9:1f:4e:a2:2a:03:37:b6:23:68:11:10:7d:ab:73: 91:2a:58:0f:9c:cd:15:97:0c:e3:c9:65:1b:a7:ef:8e:26:df: 50:b6:97:64:95:6e:ed:74:1b:cd:fe:30:5f:54:da:2f:3c:12: 38:3a:1f:4e:e1:70:ab:5d:3a:46:d0:d9:3d:b9:2c:12:46:82: 54:e5:be:ba:01:7e:bb:85:5b:0e:e5:d9:e0:36:ba:8d:b0:52: 67:03:e7:4b:2a:dc:d5:c3:2a:06:b9:47:27:9d:e8:ea:b2:10: fc:6f:ab:46:43:13:90:f2:47:41:ac:03:27:c8:f6:1b:0e:5c: f6:4e:01:6b:56:01:c4:7d:45:19:8b:90:89:df:fb:44:82:cd: fa:ce:5b:89:bf:44:94:3b:2e:fc:83:c9:46:f3:4b:8c:f5:02: 8b:7b:82:c4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyMkYxMTAvBgNVBAUTKDIxNEIyRkNGNDJCQjJCOTg5MDU4NDVENzMzRDk0NUQ5 NUMyRENBMTIwHhcNMjUwNjE4MjIzMDQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmMwMS04NTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApS7OrympS8emuApGDxG02qCb8wtv9l48Sf9Ta+QJ8flfrfMGLqzv5EA/n74V e3eb5ndd84TpLRZmEDUWMOrJ/KgaZCjt8wnff3nCAnW7j5AlZNnUCf3htZEyENTh KOqp2vofmve0wfOcwQnlXU00VVbBuBTBST0q/kqKHrhIWSUVs/bVwPaRwK9YPY0N RuteJjpcF1TvZ1v97anUghK3ieEPc6pylzrKWUU3Y+Ipmv1136A7dF1pX0BW80eE 7PNxPu4j/U43amqtvOUr6hi2LuAZBuw5j75sajXiXKTEYn815BFBjOM6K3aLp4bT GaBL9YZONAbSiLBMBHC7y9OHcQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMoAIn/e /2idXTEVzE5meAJx0u2RMB8GA1UdIwQYMBaAFCFLL89CuyuYkFhF1zPZRdlcLcoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDIyRi83QzY0NDQyNjc3 NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1aVFXRVhYTTlsRjJWd3R5 aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVc3Z6MEs3SzVpUVdFWFhNOWxGMlZ3dHloSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyMkYvN0M2NDQ0MjY3NzY0MTFFQkIxQzRGNTQ1QzRGOUFFMDIvMjRGMzNENzg3 N0FGMTFFQjhFOTcyQzY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5lYMA0GCSqGSIb3DQEBCwUAA4IBAQA1JSADhP3mbyy9ElebXV08 GlOVPI+cBzBoQNHPzAPA/TNnY20uRbAO6g8iIM/atZ5V8jK5lPUm3mm5tMM6VYvB OqUTuMcX6NASolQhQMbe+y2TJfa2InXaSoaq3xDpH06iKgM3tiNoERB9q3ORKlgP nM0VlwzjyWUbp++OJt9QtpdklW7tdBvN/jBfVNovPBI4Oh9O4XCrXTpG0Nk9uSwS RoJU5b66AX67hVsO5dngNrqNsFJnA+dLKtzVwyoGuUcnnejqshD8b6tGQxOQ8kdB rAMnyPYbDlz2TgFrVgHEfUUZi5CJ3/tEgs36zluJv0SUOy78g8lG80uM9QKLe4LE -----END CERTIFICATE-----Generated at Mon Mar 2 02:17:32 2026 by rpki-client