$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa File: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (raw, json) Hash identifier: guSkTmy7FKfWkl3HEYDSdBxGCgfTJVTz0fMgkLGtNzk= Subject key identifier: A2:B2:32:AF:CB:38:31:5E:C8:BE:7D:26:F8:2B:12:6C:08:45:BF:69 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0BC8 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:58:36 +0000 ROA not before: Fri 02 May 2025 20:00:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78, serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:00:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4460c-42de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:f8:57:04:5b:7f:0f:93:a1:7f:7e:0d:0d: 8e:73:6f:6b:f3:6c:27:eb:c0:ed:ce:00:f6:ff:e7: 1d:0d:b5:50:c7:69:e4:24:e7:d7:d5:1c:0e:c8:95: ba:e8:18:a7:8f:b4:a1:22:a7:db:79:0e:32:71:9d: 74:2e:7b:15:85:e0:c5:89:5c:94:79:e5:37:f6:4f: 04:bc:53:67:d8:46:2f:f7:18:07:46:e5:81:7a:bf: be:3a:eb:fd:a4:a3:87:d7:63:0b:35:80:70:5b:c5: a8:7b:3b:cc:51:66:a5:19:b9:b5:ec:f0:53:ca:27: e2:4e:73:52:de:14:09:c2:51:b1:3c:39:a4:1f:af: e9:ef:9d:e4:d6:79:f9:21:a8:25:9e:70:db:8e:ff: c6:0e:24:a4:db:c2:03:59:05:8c:7a:dd:76:74:14: 6f:f4:48:dd:a6:1f:47:72:e3:70:e9:87:e6:68:bb: eb:a0:ec:f7:cb:ff:2f:b8:0c:21:79:9d:7c:c3:49: 93:92:4f:41:11:f6:91:38:9e:ab:0d:fe:55:b5:df: 53:02:14:de:5d:0f:f5:bb:9f:d3:e4:38:09:3b:6f: f5:7a:15:ec:17:bd:00:87:3b:32:4a:40:d0:97:eb: 75:a7:9b:7c:87:ff:2f:e9:77:2f:84:96:c1:89:3e: a1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B2:32:AF:CB:38:31:5E:C8:BE:7D:26:F8:2B:12:6C:08:45:BF:69 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption 59:4e:3f:1f:7a:60:4a:77:dd:8b:c0:94:03:c5:a3:68:8e:82: 58:d5:ed:d9:2e:98:99:50:f1:13:f6:87:60:a3:d1:65:fb:ba: 04:98:9d:f8:fb:3e:a8:5d:b8:68:aa:76:f3:f1:6f:a1:a0:0a: a6:90:31:03:d1:1b:c8:61:d0:2a:c5:bb:9e:8a:5a:aa:9a:89: 5d:2f:b2:35:bd:52:56:df:bf:ad:b1:dc:bb:2b:2b:3d:e9:9d: 6c:b7:f4:fd:42:78:54:59:00:0b:ce:50:69:ed:77:55:76:34: 70:a8:d7:69:64:05:b7:a3:55:f3:11:25:fd:9f:43:2e:86:5e: 81:d8:62:67:2c:09:b8:e9:27:21:bf:dd:8f:cc:67:57:35:f6: 2c:81:e0:e4:2b:8f:c5:94:b6:8b:16:c1:6a:b9:6d:56:7e:26: 43:b3:c2:a0:60:73:8c:a4:73:34:fe:77:ad:41:b4:67:50:28: c1:7d:cd:4e:5e:6d:2a:b1:78:a4:43:1b:12:6f:ac:9a:01:33: 10:44:9e:eb:39:a2:6c:c8:d6:5c:a0:7f:81:ea:fc:f6:47:11: 19:9f:97:27:78:0e:a1:48:82:ee:57:89:5c:6a:0a:56:0d:13: 6f:7a:dc:da:32:92:a9:02:d9:66:71:c0:07:d6:c9:3a:38:8f: 0e:8b:a9:6e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjUwNTAyMjAwMDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDYwYy00MmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkb4VwRbfw+ToX9+DQ2Oc29r82wn68DtzgD2/+cdDbVQx2nkJOfX1RwOyJW6 6Binj7ShIqfbeQ4ycZ10LnsVheDFiVyUeeU39k8EvFNn2EYv9xgHRuWBer++Ouv9 pKOH12MLNYBwW8WoezvMUWalGbm17PBTyifiTnNS3hQJwlGxPDmkH6/p753k1nn5 IaglnnDbjv/GDiSk28IDWQWMet12dBRv9Ejdph9HcuNw6YfmaLvroOz3y/8vuAwh eZ18w0mTkk9BEfaROJ6rDf5Vtd9TAhTeXQ/1u5/T5DgJO2/1ehXsF70AhzsySkDQ l+t1p5t8h/8v6XcvhJbBiT6hQQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKKyMq/L ODFeyL59JvgrEmwIRb9pMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvOUYwRDY1NzRC RkYwMTFFQUEzOEQzQjY0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/iAMA8EAgACMAkDBwQkA19AygAwDQYJKoZIhvcNAQELBQADggEB AFlOPx96YEp33YvAlAPFo2iOgljV7dkumJlQ8RP2h2Cj0WX7ugSYnfj7PqhduGiq dvPxb6GgCqaQMQPRG8hh0CrFu56KWqqaiV0vsjW9Ulbfv62x3LsrKz3pnWy39P1C eFRZAAvOUGntd1V2NHCo12lkBbejVfMRJf2fQy6GXoHYYmcsCbjpJyG/3Y/MZ1c1 9iyB4OQrj8WUtosWwWq5bVZ+JkOzwqBgc4ykczT+d61BtGdQKMF9zU5ebSqxeKRD GxJvrJoBMxBEnus5omzI1lygf4Hq/PZHERmflyd4DqFIgu5XiVxqClYNE2963Noy kqkC2WZxwAfWyTo4jw6LqW4= -----END CERTIFICATE-----Generated at Mon Mar 2 17:43:39 2026 by rpki-client