$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa File: 86F9BD94674311EA8AB4D96BC4F9AE02.roa (raw, json) Hash identifier: Md4VxFtS/WhfxAMcg9H7fxz+3+Xrq8E1asklNoArYag= Subject key identifier: 0A:33:96:3C:36:B1:7B:3C:F7:F6:BD:3E:34:7A:7D:74:54:6D:6E:59 Certificate issuer: /CN=A914BAE3/serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Certificate serial: 0AE6 Authority key identifier: 8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:47:07 +0000 ROA not before: Wed 04 Jun 2025 20:04:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135336 IP address blocks: 103.114.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAE3, serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Validity Not Before: Jun 4 20:04:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4273b-bf51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:19:79:60:3a:cb:f6:d0:59:6f:ea:d8:4e:00: 72:5b:e3:e3:2e:69:64:24:fb:94:23:f2:a9:22:29: dc:49:6c:fc:72:c8:7d:d8:f8:8e:f6:5b:c0:21:e6: 10:7f:c2:77:d5:55:09:7f:43:18:5d:c2:eb:98:d3: 31:18:dd:a3:ec:91:b0:24:c6:3b:63:04:ed:d0:03: 33:71:16:54:d1:c2:e7:b1:64:17:4d:fb:d8:2d:e1: ce:2f:f1:f7:c5:1d:6c:cb:52:7e:c8:84:09:85:c5: 9e:1e:dc:84:26:02:fe:c2:53:c8:b2:0b:8b:f9:3b: 49:b5:0f:5f:e9:75:72:70:10:df:5a:7b:10:d8:7e: e8:99:36:5e:49:cd:86:a4:fe:dd:36:cc:d8:86:d3: 01:2c:3c:e4:a6:45:c2:49:e2:47:c7:98:d0:3f:f3: a1:c9:8a:3a:9a:56:d3:6a:13:2f:70:78:0c:33:74: 1b:89:d2:8a:39:12:a8:31:0e:e2:59:cb:d8:cf:83: 26:ec:12:03:82:b4:13:67:a0:a8:eb:99:b1:27:2c: c1:2a:14:d6:3e:d4:34:9f:2d:b7:a4:db:57:4a:c2: 8e:4e:16:ac:a7:da:40:cd:04:54:14:26:1e:6a:6d: 50:a6:5a:88:c6:4e:22:33:37:3f:00:79:a2:66:36: a6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:33:96:3C:36:B1:7B:3C:F7:F6:BD:3E:34:7A:7D:74:54:6D:6E:59 X509v3 Authority Key Identifier: keyid:8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.114.145.0/24 Signature Algorithm: sha256WithRSAEncryption 42:f8:ee:cf:95:76:fa:64:70:6e:cc:08:cb:e8:d6:11:09:ba: c8:a5:f5:fe:7f:f0:34:7b:16:53:1b:3f:fd:91:49:79:ce:28: 60:fc:53:6a:ca:4c:3e:25:84:a1:02:e1:9f:b1:32:ab:dd:e1: 32:f8:de:1f:a3:4a:af:a7:71:47:8c:d9:12:86:ef:fd:b2:bf: 92:6e:f0:11:52:93:1b:47:1d:c3:68:6d:c9:34:03:62:cb:fe: 0c:a5:4f:ab:90:bc:94:08:22:b9:e2:e7:a2:c2:d0:bd:53:ec: 3b:56:46:ed:68:f4:66:a5:11:28:51:3b:27:58:6d:e5:12:6d: 1b:50:94:97:ed:db:b6:c7:c8:a6:7f:af:95:f8:5b:56:c6:6a: 04:b4:92:32:34:47:dc:e2:92:5e:d2:f3:a9:7e:04:2f:9c:1e: d5:80:09:81:f9:9f:91:dc:95:cd:07:6c:f5:84:04:bf:58:93: f5:57:49:32:0f:d8:4f:51:24:bb:b9:99:78:e5:61:ed:08:21: fc:e9:5a:30:d8:5f:7b:b4:50:05:be:c6:fe:c6:72:bb:e8:fe: 5d:ac:19:e5:b4:c1:f4:5d:f9:4d:c0:36:c0:42:da:5f:54:d0: cc:a7:df:25:0a:99:42:ad:49:0f:0f:1e:6f:0f:44:5b:d6:6b: d1:48:23:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJBRTMxMTAvBgNVBAUTKDhGMkJFRkQ1NTgxMzA4MjRFMDFFQkExNUFGODlFRDVE REM5RUI2MUEwHhcNMjUwNjA0MjAwNDQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjczYi1iZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hl5YDrL9tBZb+rYTgByW+PjLmlkJPuUI/KpIincSWz8csh92PiO9lvAIeYQ f8J31VUJf0MYXcLrmNMxGN2j7JGwJMY7YwTt0AMzcRZU0cLnsWQXTfvYLeHOL/H3 xR1sy1J+yIQJhcWeHtyEJgL+wlPIsguL+TtJtQ9f6XVycBDfWnsQ2H7omTZeSc2G pP7dNszYhtMBLDzkpkXCSeJHx5jQP/OhyYo6mlbTahMvcHgMM3QbidKKORKoMQ7i WcvYz4Mm7BIDgrQTZ6Co65mxJyzBKhTWPtQ0ny23pNtXSsKOThasp9pAzQRUFCYe am1QplqIxk4iMzc/AHmiZjamaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAozljw2 sXs89/a9PjR6fXRUbW5ZMB8GA1UdIwQYMBaAFI8r79VYEwgk4B66Fa+J7V3cnrYa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkFFMy8yQUVCMDczRTY3 NDIxMUVBQjAxRUFDNjlDNEY5QUUwMi9qeXZ2MVZnVENDVGdIcm9WcjRudFhkeWV0 aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dnYxVmdUQ0NUZ0hyb1ZyNG50WGR5ZXRoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJBRTMvMkFFQjA3M0U2NzQyMTFFQUIwMUVBQzY5QzRGOUFFMDIvODZGOUJEOTQ2 NzQzMTFFQThBQjREOTZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ3KRMA0GCSqGSIb3DQEBCwUAA4IBAQBC+O7PlXb6ZHBuzAjL6NYR CbrIpfX+f/A0exZTGz/9kUl5zihg/FNqykw+JYShAuGfsTKr3eEy+N4fo0qvp3FH jNkShu/9sr+SbvARUpMbRx3DaG3JNANiy/4MpU+rkLyUCCK54ueiwtC9U+w7Vkbt aPRmpREoUTsnWG3lEm0bUJSX7du2x8imf6+V+FtWxmoEtJIyNEfc4pJe0vOpfgQv nB7VgAmB+Z+R3JXNB2z1hAS/WJP1V0kyD9hPUSS7uZl45WHtCCH86Vow2F97tFAF vsb+xnK76P5drBnltMH0XflNwDbAQtpfVNDMp98lCplCrUkPDx5vD0Rb1mvRSCP+ -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:08 2026 by rpki-client