$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa File: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (raw, json) Hash identifier: 1651DDZqfZG0+Q1CtVyAE69Gh2+OtTkbKUiK/1/L4rc= Subject key identifier: 67:8A:87:D0:34:BF:28:26:9E:AE:68:87:C5:B9:B3:81:C9:22:70:61 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03D7 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:20:16 +0000 ROA not before: Sat 17 May 2025 01:37:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58580 IP address blocks: 103.186.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 17 01:37:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e8af-b013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:29:5d:95:25:1e:bb:6f:d4:11:aa:65:9d:fb: 5d:de:a9:55:7d:c9:27:16:06:69:48:d2:de:ce:c6: 87:f7:97:58:b4:50:5a:f5:20:e9:b6:88:cf:07:2d: 58:ce:5a:de:8a:5e:50:5d:3d:0f:5f:5b:a8:6f:cc: 3d:8f:46:2c:d1:e1:19:c9:a4:5a:cb:d3:c7:a5:db: 55:50:a8:2e:d5:1f:2a:ff:11:c7:49:d2:c4:4a:c9: 7c:27:0c:27:76:10:81:57:48:3e:86:06:f6:42:0b: d5:84:da:57:f4:9b:65:42:93:95:cb:20:40:3b:2c: 51:84:49:9a:86:e1:a6:ff:5f:ca:11:98:14:84:35: 11:a4:aa:2c:19:08:86:0f:75:e5:5c:ed:dc:c8:e5: 94:1d:97:b2:71:41:c4:75:c4:67:2f:35:77:bf:ef: 5c:c0:5f:a2:e6:b5:90:9c:fc:da:14:35:3a:bb:d6: 2b:67:60:f6:a6:9b:f9:02:38:3f:a9:78:e7:96:50: 1c:26:41:3a:85:3f:5c:77:ce:b7:fa:90:25:ef:ce: 7e:a3:33:1a:fe:7a:08:8f:cb:57:11:ff:84:b6:fb: c2:cc:f7:88:63:93:10:df:ee:fe:ac:4b:06:ce:93: 90:85:e0:4f:81:77:3c:65:5d:d2:2b:b1:6a:fe:98: 45:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8A:87:D0:34:BF:28:26:9E:AE:68:87:C5:B9:B3:81:C9:22:70:61 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.82.0/23 Signature Algorithm: sha256WithRSAEncryption 16:ba:da:99:cc:11:3a:1d:a7:21:cd:95:da:be:ef:d0:5e:43: de:a1:17:22:75:73:bb:e5:6e:95:1f:fb:08:86:69:e0:68:07: 7e:ea:ba:ff:f7:0b:51:5a:99:3b:ca:fc:b8:0d:36:c8:23:b1: d7:72:41:6d:1b:60:7f:fb:b2:15:55:69:b3:56:ec:5a:72:97: f0:b3:7d:28:03:d0:f3:ef:21:8f:6a:e3:1b:af:a7:f0:21:28: 00:65:44:fd:a7:89:2f:a3:a1:cd:81:2a:f7:0f:3f:ce:15:36: 82:6f:d4:d6:c2:ff:f9:35:ab:1d:a2:be:a5:54:b0:08:2d:d9: 26:63:25:b1:2e:e7:5f:e9:5e:09:18:3c:1f:5f:be:b3:33:da: 90:d8:ae:9d:71:bb:b3:98:27:a3:2b:2c:db:50:a3:0f:a2:5f: c5:a1:24:0c:78:a1:dc:e1:4b:9a:1c:ff:ad:8b:bb:34:1f:b2: 6a:b5:b2:2d:41:3b:73:bc:00:cb:df:16:58:eb:98:4b:58:a6: d6:04:af:f9:04:a0:69:88:e8:2e:6e:c5:83:da:5f:ac:63:90: 4d:c9:92:d5:a5:05:a1:a3:5f:d8:da:88:d6:e8:b0:8a:bd:bc: 6a:fd:eb:28:6f:74:87:60:d4:62:a3:86:08:0c:3a:36:19:81: 0a:ee:89:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNTE3MDEzNzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZThhZi1iMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyldlSUeu2/UEaplnftd3qlVfcknFgZpSNLezsaH95dYtFBa9SDptojPBy1Y zlreil5QXT0PX1uob8w9j0Ys0eEZyaRay9PHpdtVUKgu1R8q/xHHSdLESsl8Jwwn dhCBV0g+hgb2QgvVhNpX9JtlQpOVyyBAOyxRhEmahuGm/1/KEZgUhDURpKosGQiG D3XlXO3cyOWUHZeycUHEdcRnLzV3v+9cwF+i5rWQnPzaFDU6u9YrZ2D2ppv5Ajg/ qXjnllAcJkE6hT9cd863+pAl785+ozMa/noIj8tXEf+EtvvCzPeIY5MQ3+7+rEsG zpOQheBPgXc8ZV3SK7Fq/phFxwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGeKh9A0 vygmnq5oh8W5s4HJInBhMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcxMUMvQThBQzcyNTBCQkE3MTFFQzhGQ0Q0NDIyQzRGOUFFMDIvMUFGNDJFNzZC QkFDMTFFQzhBMDdGRTcyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7pSMA0GCSqGSIb3DQEBCwUAA4IBAQAWutqZzBE6HachzZXavu/Q XkPeoRcidXO75W6VH/sIhmngaAd+6rr/9wtRWpk7yvy4DTbII7HXckFtG2B/+7IV VWmzVuxacpfws30oA9Dz7yGPauMbr6fwISgAZUT9p4kvo6HNgSr3Dz/OFTaCb9TW wv/5Nasdor6lVLAILdkmYyWxLudf6V4JGDwfX76zM9qQ2K6dcbuzmCejKyzbUKMP ol/FoSQMeKHc4UuaHP+ti7s0H7JqtbItQTtzvADL3xZY65hLWKbWBK/5BKBpiOgu bsWD2l+sY5BNyZLVpQWho1/Y2ojW6LCKvbxq/esob3SHYNRio4YIDDo2GYEK7olE -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:42 2026 by rpki-client