$ rpki-client -vvf rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/433FBBECF1A511E6BE0A844EC4F9AE02.roa File: 433FBBECF1A511E6BE0A844EC4F9AE02.roa (raw, json) Hash identifier: WL85dPtJ+Rmno9CWdZLXpdoXzpJ7FKS7hpAe8UEzwn0= Subject key identifier: 92:B2:BD:20:04:BA:02:7C:A0:C9:F5:37:36:8A:3F:A3:A4:B3:48:D8 Certificate issuer: /CN=A914749C/serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Certificate serial: 1CA5 Authority key identifier: 8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/433FBBECF1A511E6BE0A844EC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:41:31 +0000 ROA not before: Wed 08 Oct 2025 16:14:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135516 IP address blocks: 103.5.212.0/23 maxlen: 23 103.192.175.0/24 maxlen: 24 103.214.207.0/24 maxlen: 24 192.140.226.0/23 maxlen: 23 192.140.226.0/24 maxlen: 24 192.140.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7333 (0x1ca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914749C, serialNumber=8CB2BBD64B6A774E16C10FDCA650A7ADC5B38D78 Validity Not Before: Oct 8 16:14:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4420b-44ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:3a:b5:53:2f:a5:48:d2:9c:9c:53:e6:16:e3: a1:bc:fe:30:d5:95:67:49:e5:ea:55:d7:af:93:c1: 37:7b:74:5b:64:f6:85:e8:2b:fe:48:cd:f5:ea:10: c2:52:5c:7e:39:36:17:6e:02:87:bd:c5:1b:31:3b: 5a:4e:65:e3:ab:e4:5c:04:cf:e1:77:54:41:4b:75: e5:58:6c:48:6a:fb:f8:89:d8:d7:6f:8c:74:27:6b: 90:7d:aa:a9:63:96:bb:92:8a:a6:fa:93:7e:40:24: 57:b6:78:46:26:9a:6c:1c:6a:3c:4c:92:e2:4b:3d: c9:69:91:86:82:1a:2f:b3:07:bf:eb:1c:09:fe:5e: 46:29:e5:d0:6c:5e:9a:1f:f2:7c:89:ad:09:20:05: 8c:e6:77:16:f5:e0:06:57:30:22:52:15:57:7f:2b: 7c:c7:be:a7:b0:d5:5b:7a:21:53:e4:1c:ea:4b:b1: 25:ff:91:81:fe:91:ef:fb:2e:e8:ab:51:67:44:b9: 69:59:d7:26:aa:f0:85:91:1a:f1:9c:e4:a0:53:57: 71:f8:ef:91:b6:01:25:fe:76:16:09:63:4a:6d:bd: 10:82:1c:4c:ee:58:29:29:50:c2:91:4c:1a:23:54: f3:81:29:92:46:0b:d7:24:42:c3:4f:70:d5:17:58: b4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B2:BD:20:04:BA:02:7C:A0:C9:F5:37:36:8A:3F:A3:A4:B3:48:D8 X509v3 Authority Key Identifier: keyid:8C:B2:BB:D6:4B:6A:77:4E:16:C1:0F:DC:A6:50:A7:AD:C5:B3:8D:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/jLK71ktqd04WwQ_cplCnrcWzjXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jLK71ktqd04WwQ_cplCnrcWzjXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914749C/8D78E57EF1A211E69421B545C4F9AE02/433FBBECF1A511E6BE0A844EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.212.0/23 103.192.175.0/24 103.214.207.0/24 192.140.226.0/23 Signature Algorithm: sha256WithRSAEncryption b8:00:53:df:1e:47:12:ea:b1:8c:96:07:d0:79:a0:88:e5:4d: ed:ed:2c:96:b7:47:8e:44:8c:7b:60:f6:d9:88:0b:2b:e0:fb: d6:72:8d:1a:d5:b4:1b:f6:4c:4d:3f:b0:99:c4:fd:22:61:51: dd:c0:2d:cd:6f:a2:53:c5:70:cd:05:d0:79:5c:a8:2a:38:8b: 30:90:b5:a3:b6:cf:c6:f8:c9:5e:78:c1:7d:b5:84:d9:7d:b4: d5:a6:f8:92:2d:c5:8e:de:0c:54:fb:47:19:fd:57:c6:d7:fc: 24:86:ac:3d:81:7b:58:52:89:da:ad:67:fe:0e:92:48:6c:c1: 6b:ef:92:71:65:46:3c:88:5a:51:8d:a0:9e:41:79:3d:93:ff: 13:fb:48:8b:70:48:89:7e:e4:0c:77:94:8d:22:93:63:83:22: aa:41:67:54:0a:ec:2c:93:4d:c8:9e:f0:a8:76:86:e9:9b:ff: c9:25:98:21:e7:fb:85:15:cf:d5:fd:fb:4b:ed:96:1d:99:e2: 89:05:9c:d2:29:d8:42:3a:6e:4e:ee:53:aa:f5:d9:08:44:e4: ed:4e:8f:7c:f9:0f:d9:8c:2a:e3:6d:71:15:73:21:b7:f7:0f: 4d:72:1a:6e:d4:ec:85:2d:dc:6f:fb:96:69:87:8f:b9:65:a0: bc:2b:b5:c8 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICHKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0OUMxMTAvBgNVBAUTKDhDQjJCQkQ2NEI2QTc3NEUxNkMxMEZEQ0E2NTBBN0FE QzVCMzhENzgwHhcNMjUxMDA4MTYxNDQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDIwYi00NGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhTq1Uy+lSNKcnFPmFuOhvP4w1ZVnSeXqVdevk8E3e3RbZPaF6Cv+SM316hDC Ulx+OTYXbgKHvcUbMTtaTmXjq+RcBM/hd1RBS3XlWGxIavv4idjXb4x0J2uQfaqp Y5a7koqm+pN+QCRXtnhGJppsHGo8TJLiSz3JaZGGghovswe/6xwJ/l5GKeXQbF6a H/J8ia0JIAWM5ncW9eAGVzAiUhVXfyt8x76nsNVbeiFT5BzqS7El/5GB/pHv+y7o q1FnRLlpWdcmqvCFkRrxnOSgU1dx+O+RtgEl/nYWCWNKbb0QghxM7lgpKVDCkUwa I1TzgSmSRgvXJELDT3DVF1i0iwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFJKyvSAE ugJ8oMn1NzaKP6Oks0jYMB8GA1UdIwQYMBaAFIyyu9ZLandOFsEP3KZQp63Fs414 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ5Qy84RDc4RTU3RUYx QTIxMUU2OTQyMUI1NDVDNEY5QUUwMi9qTEs3MWt0cWQwNFd3UV9jcGxDbnJjV3pq WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pMSzcxa3RxZDA0V3dRX2NwbENucmNXempYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0OUMvOEQ3OEU1N0VGMUEyMTFFNjk0MjFCNTQ1QzRGOUFFMDIvNDMzRkJCRUNG MUE1MTFFNkJFMEE4NDRFQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZwXUAwQAZ8CvAwQAZ9bPAwQBwIziMA0GCSqGSIb3DQEBCwUAA4IB AQC4AFPfHkcS6rGMlgfQeaCI5U3t7SyWt0eORIx7YPbZiAsr4PvWco0a1bQb9kxN P7CZxP0iYVHdwC3Nb6JTxXDNBdB5XKgqOIswkLWjts/G+MleeMF9tYTZfbTVpviS LcWO3gxU+0cZ/VfG1/wkhqw9gXtYUonarWf+DpJIbMFr75JxZUY8iFpRjaCeQXk9 k/8T+0iLcEiJfuQMd5SNIpNjgyKqQWdUCuwsk03InvCodobpm//JJZgh5/uFFc/V /ftL7ZYdmeKJBZzSKdhCOm5O7lOq9dkIROTtTo98+Q/ZjCrjbXEVcyG39w9Nchpu 1OyFLdxv+5Zph4+5ZaC8K7XI -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:11 2026 by rpki-client