$ rpki-client -vvf rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/E89C37B0BC3011EA840E2A56C4F9AE02.roa File: E89C37B0BC3011EA840E2A56C4F9AE02.roa (raw, json) Hash identifier: P0LfgNEy7CqKh9pIHhj4qcJ24rvxzx8Qqj45ZPVVKg0= Subject key identifier: BB:43:A7:99:63:E9:47:51:7F:3D:E2:9D:A6:95:E6:93:22:D8:D1:BE Certificate issuer: /CN=A9144FDD/serialNumber=F16E080AEF193F5D59EA2A19ED5A6D75282A0C84 Certificate serial: 093B Authority key identifier: F1:6E:08:0A:EF:19:3F:5D:59:EA:2A:19:ED:5A:6D:75:28:2A:0C:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/E89C37B0BC3011EA840E2A56C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:02:32 +0000 ROA not before: Mon 02 Feb 2026 20:17:11 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9919 IP address blocks: 103.224.57.0/24 maxlen: 24 103.224.58.0/24 maxlen: 24 202.58.28.0/24 maxlen: 24 202.58.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.crl rsync://rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144FDD, serialNumber=F16E080AEF193F5D59EA2A19ED5A6D75282A0C84 Validity Not Before: Feb 2 20:17:11 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a46318-fe1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:2b:c5:ef:51:1e:99:d2:2c:c1:1b:9d:50: 49:2f:4e:df:62:27:58:ef:ab:2f:3f:96:27:fe:68: e7:90:6d:72:ed:9e:47:26:46:42:0e:78:54:a6:94: c4:6b:71:27:1b:4f:26:21:a0:26:57:12:ab:3e:45: 3f:1a:28:1a:49:54:a0:e1:86:4a:6e:8d:8c:af:ae: d8:2b:0f:b4:d4:01:66:63:2a:cf:26:4c:a7:a5:3c: 29:5c:92:9d:88:ef:98:7c:ad:99:83:67:9d:1a:27: d2:cd:e9:65:b5:39:8f:69:91:99:43:a6:c2:e0:05: 33:2d:b7:29:19:45:fc:15:aa:72:35:ef:04:af:71: 57:e0:28:20:0e:ad:8c:c0:25:49:9a:d2:25:05:ef: e8:af:f1:86:20:db:7e:40:2c:a9:d5:b6:fc:a6:27: 1b:c7:2e:e4:21:77:69:58:d0:15:88:5c:5e:d4:10: 57:28:f4:fe:9f:06:a8:db:42:e5:91:12:1d:60:b4: 7e:34:9a:88:a2:21:87:71:45:51:11:fc:59:d0:c7: 99:5f:b9:4d:1b:90:09:f9:81:00:08:30:f7:01:69: 96:77:58:a8:e0:f7:4e:9c:f8:5f:df:c9:59:9d:bc: 54:4e:be:26:fc:95:aa:1c:bd:bc:25:35:ca:91:2b: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:43:A7:99:63:E9:47:51:7F:3D:E2:9D:A6:95:E6:93:22:D8:D1:BE X509v3 Authority Key Identifier: keyid:F1:6E:08:0A:EF:19:3F:5D:59:EA:2A:19:ED:5A:6D:75:28:2A:0C:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8W4ICu8ZP11Z6ioZ7VptdSgqDIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144FDD/28FB2484BC3011EABBE0EC55C4F9AE02/E89C37B0BC3011EA840E2A56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.57.0-103.224.58.255 202.58.28.0/23 Signature Algorithm: sha256WithRSAEncryption 91:67:98:22:4e:45:58:b7:76:74:ce:1b:cd:54:e6:3b:0e:27: 4f:6a:d8:07:af:4b:61:bf:24:0b:34:1a:e2:aa:1b:d0:d5:6f: 36:36:7a:36:04:5a:8e:fc:cc:56:c9:c1:08:47:9f:f7:4f:e2: 0f:37:21:3d:c6:08:2a:2c:0c:63:47:5c:5f:ff:1f:24:b6:0f: bd:42:bb:94:0c:51:01:e5:bd:c1:58:29:80:bd:7b:65:9a:3a: de:65:e7:78:90:41:50:f2:21:4e:07:8e:f0:4f:aa:a1:79:a7: 91:ab:37:5b:3c:72:e8:12:36:1c:9f:93:b5:fb:9f:e0:35:45: 4b:89:47:be:ac:c0:57:f9:00:d8:f6:f4:67:a4:21:b5:1d:48: b8:32:bd:33:18:df:f7:07:6a:b1:64:5f:c5:4a:ff:df:f1:f4: 6f:ae:93:ab:97:b1:7d:53:95:d1:92:9f:fd:d2:9e:58:54:bd: 08:83:dc:75:79:8e:48:91:a0:65:eb:32:6b:55:a7:23:04:04: 12:c5:60:b8:ae:79:d3:fa:56:d6:e7:a5:1a:f7:56:57:d1:6d: 92:c7:01:18:f2:36:0c:d8:6a:c6:98:96:bf:9a:ea:5e:d2:45: ac:a3:a2:38:1f:7b:de:08:87:8a:35:2a:38:05:24:29:11:36: 59:d7:f8:c9 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGREQxMTAvBgNVBAUTKEYxNkUwODBBRUYxOTNGNUQ1OUVBMkExOUVENUE2RDc1 MjgyQTBDODQwHhcNMjYwMjAyMjAxNzExWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjMxOC1mZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4grxe9RHpnSLMEbnVBJL07fYidY76svP5Yn/mjnkG1y7Z5HJkZCDnhUppTE a3EnG08mIaAmVxKrPkU/GigaSVSg4YZKbo2Mr67YKw+01AFmYyrPJkynpTwpXJKd iO+YfK2Zg2edGifSzelltTmPaZGZQ6bC4AUzLbcpGUX8FapyNe8Er3FX4CggDq2M wCVJmtIlBe/or/GGINt+QCyp1bb8picbxy7kIXdpWNAViFxe1BBXKPT+nwao20Ll kRIdYLR+NJqIoiGHcUVREfxZ0MeZX7lNG5AJ+YEACDD3AWmWd1io4PdOnPhf38lZ nbxUTr4m/JWqHL28JTXKkSt6dwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFLtDp5lj 6UdRfz3inaaV5pMi2NG+MB8GA1UdIwQYMBaAFPFuCArvGT9dWeoqGe1abXUoKgyE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEZERC8yOEZCMjQ4NEJD MzAxMUVBQkJFMEVDNTVDNEY5QUUwMi84VzRJQ3U4WlAxMVo2aW9aN1ZwdGRTZ3FE SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhXNElDdThaUDExWjZpb1o3VnB0ZFNncURJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGREQvMjhGQjI0ODRCQzMwMTFFQUJCRTBFQzU1QzRGOUFFMDIvRTg5QzM3QjBC QzMwMTFFQTg0MEUyQTU2QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBABn4DkDBABn4DoDBAHKOhwwDQYJKoZIhvcNAQELBQADggEBAJFn mCJORVi3dnTOG81U5jsOJ09q2AevS2G/JAs0GuKqG9DVbzY2ejYEWo78zFbJwQhH n/dP4g83IT3GCCosDGNHXF//HyS2D71Cu5QMUQHlvcFYKYC9e2WaOt5l53iQQVDy IU4HjvBPqqF5p5GrN1s8cugSNhyfk7X7n+A1RUuJR76swFf5ANj29GekIbUdSLgy vTMY3/cHarFkX8VK/9/x9G+uk6uXsX1TldGSn/3SnlhUvQiD3HV5jkiRoGXrMmtV pyMEBBLFYLiuedP6VtbnpRr3VlfRbZLHARjyNgzYasaYlr+a6l7SRayjojgfe94I h4o1KjgFJCkRNlnX+Mk= -----END CERTIFICATE-----Generated at Mon Mar 2 07:14:33 2026 by rpki-client