$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/5C8929C8839011EAB5B82263C4F9AE02.roa File: 5C8929C8839011EAB5B82263C4F9AE02.roa (raw, json) Hash identifier: gzbpBLHjuyIbIn1f9T7JlFlrPpRUrvtd4lxp7A9hka0= Subject key identifier: 3C:02:B1:54:74:E1:87:C6:93:78:39:15:42:97:30:4E:51:E4:EE:AB Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 0A4E Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/5C8929C8839011EAB5B82263C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:47:52 +0000 ROA not before: Thu 26 Feb 2026 20:16:25 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 18106 IP address blocks: 103.208.176.0/22 maxlen: 22 103.208.176.0/24 maxlen: 24 103.208.177.0/24 maxlen: 24 103.208.178.0/24 maxlen: 24 103.208.179.0/24 maxlen: 24 137.59.184.0/22 maxlen: 22 137.59.184.0/24 maxlen: 24 137.59.185.0/24 maxlen: 24 137.59.186.0/24 maxlen: 24 137.59.187.0/24 maxlen: 24 2404:4280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Feb 26 20:16:25 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a45198-420d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2b:b0:67:f1:40:71:b7:b9:8e:9b:0c:fc:3d: 18:8c:b0:67:02:f3:e2:43:cb:40:27:ac:7c:58:89: 10:eb:56:94:f8:c5:41:0e:a5:42:85:5f:c4:53:fa: 84:cc:d9:11:9b:9d:9d:c2:49:36:ac:7e:cd:34:a2: 95:b6:41:09:3a:f1:01:0c:0d:b5:67:8f:a9:8a:f8: ba:ec:49:70:d6:35:3c:25:e2:32:fd:15:fd:20:6f: a9:d0:31:d8:ec:6d:f7:da:ba:88:23:be:da:ac:c3: 9c:7b:c5:75:b3:13:c9:d9:7c:9e:10:95:99:96:37: ed:ba:22:ea:d3:85:10:28:a6:3f:fe:55:4d:33:2d: 4d:58:9f:fb:8a:e1:23:68:8d:34:94:cc:f9:e4:30: 0c:04:10:8e:93:fc:45:00:f6:7b:c6:83:c6:00:3a: a5:f4:b5:91:a1:ca:7e:d2:12:82:a2:41:3e:b8:78: 57:35:cd:6e:0c:61:99:96:08:3b:92:a3:8d:fe:fc: b7:f2:4b:66:08:5e:28:70:2f:7a:c4:89:f6:ae:fe: 3e:df:bd:58:ad:07:24:0d:53:d9:5d:c9:3e:b8:4b: c0:e7:38:5a:3a:33:37:d6:d2:d9:3d:f1:1c:cc:39: a8:ca:91:7b:4a:d2:d6:5d:11:5a:ef:df:3e:45:78: 19:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:02:B1:54:74:E1:87:C6:93:78:39:15:42:97:30:4E:51:E4:EE:AB X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/5C8929C8839011EAB5B82263C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.208.176.0/22 137.59.184.0/22 IPv6: 2404:4280::/32 Signature Algorithm: sha256WithRSAEncryption 46:17:be:a4:e8:21:32:88:f7:ea:c3:a5:29:9b:f5:b7:95:8c: a1:6b:79:e1:bc:d7:37:d6:b0:77:ac:93:61:19:30:7f:c1:c9: 59:d0:fe:00:7a:84:a1:1f:e4:93:19:58:08:97:15:3a:98:21: 20:88:75:1a:68:ba:65:da:9b:06:3a:19:fc:3c:4d:f7:05:90: 37:61:0c:5f:c9:6d:3e:59:cf:86:bf:9b:16:7a:fa:e7:06:f9: 24:1c:b0:46:ec:97:28:e1:2c:f5:e4:db:a1:fa:da:89:fe:6c: d0:d2:6c:d3:7f:95:f9:31:bf:5f:b4:09:d9:41:8d:05:61:af: 9b:83:27:15:9b:78:24:ea:d1:05:94:dd:b6:c2:0e:4a:eb:07: 5b:9a:d1:50:bc:06:56:09:6a:4b:49:32:9a:8a:33:a4:a6:1d: 50:64:d2:f5:05:64:c8:e6:69:24:bc:4a:e7:83:c7:b7:82:7b: 56:95:97:4e:92:dc:27:02:ec:9e:5b:7e:85:f7:9c:42:26:e8: f0:e4:52:e9:e5:f7:da:07:27:64:38:e4:cb:17:53:d3:2a:bf: dc:c8:c3:2a:16:cf:1b:2d:f5:74:09:c2:a0:db:d1:ab:52:9f: 39:8e:53:77:bf:5a:6c:fb:be:3b:44:65:94:e9:ac:1c:db:6f: 4f:ed:32:5b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjYwMjI2MjAxNjI1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTE5OC00MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyuwZ/FAcbe5jpsM/D0YjLBnAvPiQ8tAJ6x8WIkQ61aU+MVBDqVChV/EU/qE zNkRm52dwkk2rH7NNKKVtkEJOvEBDA21Z4+pivi67Elw1jU8JeIy/RX9IG+p0DHY 7G332rqII77arMOce8V1sxPJ2XyeEJWZljftuiLq04UQKKY//lVNMy1NWJ/7iuEj aI00lMz55DAMBBCOk/xFAPZ7xoPGADql9LWRocp+0hKCokE+uHhXNc1uDGGZlgg7 kqON/vy38ktmCF4ocC96xIn2rv4+371YrQckDVPZXck+uEvA5zhaOjM31tLZPfEc zDmoypF7StLWXRFa798+RXgZFwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDwCsVR0 4YfGk3g5FUKXME5R5O6rMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg0ODgvNUQyNjgzNEE4MzhGMTFFQUI3MDMxODYyQzRGOUFFMDIvNUM4OTI5Qzg4 MzkwMTFFQUI1QjgyMjYzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9CwAwQCiTu4MA0EAgACMAcDBQAkBEKAMA0GCSqGSIb3DQEBCwUA A4IBAQBGF76k6CEyiPfqw6Upm/W3lYyha3nhvNc31rB3rJNhGTB/wclZ0P4AeoSh H+STGVgIlxU6mCEgiHUaaLpl2psGOhn8PE33BZA3YQxfyW0+Wc+Gv5sWevrnBvkk HLBG7Jco4Sz15Nuh+tqJ/mzQ0mzTf5X5Mb9ftAnZQY0FYa+bgycVm3gk6tEFlN22 wg5K6wdbmtFQvAZWCWpLSTKaijOkph1QZNL1BWTI5mkkvErng8e3gntWlZdOktwn AuyeW36F95xCJujw5FLp5ffaBydkOOTLF1PTKr/cyMMqFs8bLfV0CcKg29GrUp85 jlN3v1ps+747RGWU6awc229P7TJb -----END CERTIFICATE-----Generated at Mon Mar 2 09:32:20 2026 by rpki-client