$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa File: 4EE9B36406C711EA84978821C4F9AE02.roa (raw, json) Hash identifier: v4JJqmVnA1Gl+V2/Swavhny8pf1dKrgrSE3o8it+IXY= Subject key identifier: 17:3C:BB:25:49:D4:5E:F6:7A:21:F4:87:CC:AB:CC:7C:56:C5:98:EA Certificate issuer: /CN=A914CB9F/serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Certificate serial: 0CD8 Authority key identifier: 5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:28:51 +0000 ROA not before: Sun 22 Feb 2026 18:15:40 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139757 IP address blocks: 103.144.198.0/23 maxlen: 23 103.144.198.0/24 maxlen: 24 103.144.199.0/24 maxlen: 24 2001:df1:d980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 18:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB9F, serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Validity Not Before: Feb 22 18:15:40 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46943-f8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:67:ff:2b:a8:dd:30:23:ae:3b:95:69:a6:f5: 17:79:28:fd:e6:e6:ba:6b:01:a7:c8:0c:b9:b1:8c: 76:92:f8:17:e9:f4:ab:fa:ad:18:d8:89:a0:f4:72: 32:bf:5c:94:29:f7:e5:d9:3c:29:53:7b:95:e7:6e: 09:5b:21:a8:50:fe:c3:ec:5d:a7:c4:eb:24:a9:0c: 6b:49:b8:83:66:00:20:7e:e4:d5:54:6c:2e:d0:46: 3d:30:2a:93:12:fe:2e:4a:10:4d:73:03:10:14:d9: 6e:6c:cb:42:95:b7:06:ca:8b:73:ca:c9:9f:90:2b: 19:dc:4b:30:67:69:a1:5c:a3:2c:5f:f3:73:6a:1a: 5d:96:dd:60:c3:b3:29:3f:10:ea:eb:1c:53:f8:c2: d1:84:56:a6:ea:7c:2a:ec:b1:6d:06:f0:6c:08:a1: 33:03:50:c3:46:3b:1c:2d:d3:55:bb:f9:af:19:bd: c2:ad:da:2e:04:77:23:f6:76:8d:bf:4a:a6:e7:94: 5d:a1:4f:03:70:cb:20:07:4b:1a:b7:3f:fa:17:47: d5:46:d7:84:e2:c4:4f:3a:8d:17:93:4d:ec:86:66: aa:b6:e3:93:ea:7b:34:87:46:ed:71:7c:3d:8b:66: ad:59:96:dc:e1:d6:50:36:91:6d:18:e9:4c:a6:72: 5d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3C:BB:25:49:D4:5E:F6:7A:21:F4:87:CC:AB:CC:7C:56:C5:98:EA X509v3 Authority Key Identifier: keyid:5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.198.0/23 IPv6: 2001:df1:d980::/48 Signature Algorithm: sha256WithRSAEncryption a7:f5:98:02:08:ab:da:37:cd:57:4d:dc:d1:18:bc:60:7e:3a: c0:27:9f:b6:e0:2a:cd:9f:a8:88:68:36:6c:f4:6d:f1:0f:94: c0:1d:d9:4d:fc:2d:09:6b:93:8a:d5:9c:5b:c5:bb:5b:77:e7: f4:a6:24:62:56:1f:b8:25:f1:4a:3e:0c:f5:04:68:25:a5:d3: 12:85:dc:ae:73:dd:c0:92:fe:95:c8:7c:a4:b8:f9:f0:b7:a8: 1d:42:2f:ae:c3:ba:5e:3a:bf:71:9b:29:6d:9c:91:4b:e6:12: d5:5e:49:e1:80:12:6a:6e:6f:cd:6f:ed:7e:95:87:ef:27:96: 99:98:b9:db:8a:2e:b3:d0:6f:a3:cd:fa:2e:99:77:1a:65:7d: 51:cb:eb:00:af:57:20:69:b5:98:bd:11:52:d5:10:b0:65:06: 05:04:34:57:1c:10:c9:00:26:d9:15:73:97:e1:ca:03:5e:6e: b6:ef:15:b0:4d:9f:d0:5d:5a:e9:b2:8c:23:97:2a:cb:d8:33: 9a:03:d5:91:b5:34:3a:1b:36:36:26:a4:e7:91:8b:64:1b:64: bf:dd:7a:43:2c:88:0d:bb:32:69:60:62:f6:9e:30:1b:6a:a3: a6:b6:2c:03:9c:ef:5e:30:01:d5:83:72:93:44:77:29:c8:bf: 9b:e6:47:0c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCOUYxMTAvBgNVBAUTKDVENjJERjE5MjFERTFCNTk4QkFGQjg1N0Q0OUQyMzZE MkUxNUYyQjYwHhcNMjYwMjIyMTgxNTQwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk0My1mOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGf/K6jdMCOuO5VppvUXeSj95ua6awGnyAy5sYx2kvgX6fSr+q0Y2Img9HIy v1yUKffl2TwpU3uV524JWyGoUP7D7F2nxOskqQxrSbiDZgAgfuTVVGwu0EY9MCqT Ev4uShBNcwMQFNlubMtClbcGyotzysmfkCsZ3EswZ2mhXKMsX/Nzahpdlt1gw7Mp PxDq6xxT+MLRhFam6nwq7LFtBvBsCKEzA1DDRjscLdNVu/mvGb3CrdouBHcj9naN v0qm55RdoU8DcMsgB0satz/6F0fVRteE4sRPOo0Xk03shmaqtuOT6ns0h0btcXw9 i2atWZbc4dZQNpFtGOlMpnJdVwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBc8uyVJ 1F72eiH0h8yrzHxWxZjqMB8GA1UdIwQYMBaAFF1i3xkh3htZi6+4V9SdI20uFfK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0I5Ri8xMTU3MzlGQTA2 QzYxMUVBQUQyRDYwMUNDNEY5QUUwMi9YV0xmR1NIZUcxbUxyN2hYMUowamJTNFY4 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hXTGZHU0hlRzFtTHI3aFgxSjBqYlM0VjhyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCOUYvMTE1NzM5RkEwNkM2MTFFQUFEMkQ2MDFDQzRGOUFFMDIvNEVFOUIzNjQw NkM3MTFFQTg0OTc4ODIxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5DGMA8EAgACMAkDBwAgAQ3x2YAwDQYJKoZIhvcNAQELBQADggEB AKf1mAIIq9o3zVdN3NEYvGB+OsAnn7bgKs2fqIhoNmz0bfEPlMAd2U38LQlrk4rV nFvFu1t35/SmJGJWH7gl8Uo+DPUEaCWl0xKF3K5z3cCS/pXIfKS4+fC3qB1CL67D ul46v3GbKW2ckUvmEtVeSeGAEmpub81v7X6Vh+8nlpmYuduKLrPQb6PN+i6Zdxpl fVHL6wCvVyBptZi9EVLVELBlBgUENFccEMkAJtkVc5fhygNebrbvFbBNn9BdWumy jCOXKsvYM5oD1ZG1NDobNjYmpOeRi2QbZL/dekMsiA27MmlgYvaeMBtqo6a2LAOc 714wAdWDcpNEdynIv5vmRww= -----END CERTIFICATE-----Generated at Tue Mar 3 00:41:03 2026 by rpki-client