$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa File: 8E54F1C6D47711EEBC3E5019C4F9AE02.roa (raw, json) Hash identifier: JBVdMn9V63ntfKzu1SgO4Amcoz4X4cr4DQDKXv5eI+0= Subject key identifier: CD:90:08:3E:4E:48:8B:04:E1:48:76:1E:AB:4D:EE:BA:E1:96:32:6F Certificate issuer: /CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Certificate serial: 022F Authority key identifier: AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:15:57 +0000 ROA not before: Fri 25 Apr 2025 02:59:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134371 IP address blocks: 103.243.238.0/24 maxlen: 24 203.31.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5F6, serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Validity Not Before: Apr 25 02:59:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f5bd-79cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:85:2d:08:b2:34:60:fa:b5:a6:74:5c:5d:50: a0:a9:1b:8b:e0:02:ca:15:60:a4:81:96:da:f3:6c: 98:2b:e2:c6:a5:83:90:02:0f:e6:32:35:4c:19:fb: 2c:56:40:39:65:f6:71:06:b9:52:44:41:db:68:2f: cf:b9:de:ff:af:f6:44:ba:ae:29:97:3a:4e:f3:03: 2d:70:b1:29:aa:c6:5d:fc:9a:b4:d7:ce:45:66:92: a4:93:6e:5a:30:16:78:0e:25:36:17:66:fa:82:69: 07:89:cf:c8:e4:95:a3:1e:19:f8:1a:9e:26:4c:27: 31:0a:e6:df:55:c9:45:cd:00:e2:8f:c6:a7:e2:30: a9:02:de:ce:c8:9d:5d:db:04:af:b5:e3:29:60:fc: 28:de:b1:0c:87:11:52:50:d5:5a:90:a6:35:ad:b0: 34:d4:c9:13:90:5b:df:7a:1e:9e:69:34:d3:d8:53: 8d:2b:cd:cc:28:fc:5a:1d:9e:60:af:43:8b:6e:d3: 07:fc:a3:db:07:47:95:e7:eb:fc:83:e1:22:87:20: d9:94:eb:81:2c:cf:ec:04:37:1b:1e:fb:1b:62:7e: 86:5d:bf:f8:68:c9:65:a8:c3:73:34:b9:cf:b9:cf: 61:07:a3:27:f9:7f:fc:03:ed:f4:49:e4:c7:32:42: 9c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:90:08:3E:4E:48:8B:04:E1:48:76:1E:AB:4D:EE:BA:E1:96:32:6F X509v3 Authority Key Identifier: keyid:AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/8E54F1C6D47711EEBC3E5019C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.243.238.0/24 203.31.169.0/24 Signature Algorithm: sha256WithRSAEncryption 12:8b:89:a0:17:79:28:fa:d5:a9:08:01:5e:92:34:a8:66:5c: d5:c7:96:8c:d6:f3:18:92:03:a2:0f:6a:f0:19:79:84:4e:77: e7:b0:65:4a:af:50:5a:a2:cc:a9:5f:0b:77:c4:92:61:1b:f4: f6:b6:c9:72:27:6a:11:03:b1:c0:b5:9a:2e:77:73:9c:46:b0: 3a:31:25:2b:51:7c:82:49:dc:05:44:e5:44:d0:71:4b:2b:85: cc:93:7e:dd:e8:e0:d3:f6:dd:e9:c1:1e:fa:45:81:9b:02:bc: 26:da:fc:5a:9f:71:8e:18:56:62:75:4a:14:c0:c5:62:9d:0a: d9:10:05:1e:c1:a0:cf:a7:f7:4f:70:d5:26:99:5b:b5:15:aa: 30:ad:9c:ec:3d:e7:8f:25:0c:b7:98:67:6a:3b:36:87:a0:6d: 9b:80:ad:a4:1a:9a:62:05:a2:d7:78:18:9c:a9:d3:74:25:af: f7:ec:e7:bf:36:ac:37:3e:47:33:76:f8:6f:e0:d3:d7:10:0d: f5:7c:82:8d:0b:30:f9:bf:45:49:a8:08:13:3b:ec:3c:c1:54: cd:eb:2a:b4:1a:93:77:16:95:70:45:db:f9:be:eb:86:6a:98: 78:d0:2d:77:84:ab:ea:89:4f:32:27:16:51:ea:62:27:2c:de: 66:67:9f:82 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1RjYxMTAvBgNVBAUTKEFGRjg1RjdFRjNEQTU4ODc0MzhERDIwNjFGMkU5RUUw QjJERDBBN0YwHhcNMjUwNDI1MDI1OTM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjViZC03OWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkYUtCLI0YPq1pnRcXVCgqRuL4ALKFWCkgZba82yYK+LGpYOQAg/mMjVMGfss VkA5ZfZxBrlSREHbaC/Pud7/r/ZEuq4plzpO8wMtcLEpqsZd/Jq0185FZpKkk25a MBZ4DiU2F2b6gmkHic/I5JWjHhn4Gp4mTCcxCubfVclFzQDij8an4jCpAt7OyJ1d 2wSvteMpYPwo3rEMhxFSUNVakKY1rbA01MkTkFvfeh6eaTTT2FONK83MKPxaHZ5g r0OLbtMH/KPbB0eV5+v8g+EihyDZlOuBLM/sBDcbHvsbYn6GXb/4aMllqMNzNLnP uc9hB6Mn+X/8A+30SeTHMkKcPQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFM2QCD5O SIsE4Uh2HqtN7rrhljJvMB8GA1UdIwQYMBaAFK/4X37z2liHQ43SBh8unuCy3Qp/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVGNi9CQ0E2NkI3RURB OEUxMUVEODM1QzM5MjVDNEY5QUUwMi9yX2hmZnZQYVdJZERqZElHSHk2ZTRMTGRD bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaGZmdlBhV0lkRGpkSUdIeTZlNExMZENuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1RjYvQkNBNjZCN0VEQThFMTFFRDgzNUMzOTI1QzRGOUFFMDIvOEU1NEYxQzZE NDc3MTFFRUJDM0U1MDE5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ/PuAwQAyx+pMA0GCSqGSIb3DQEBCwUAA4IBAQASi4mgF3ko+tWp CAFekjSoZlzVx5aM1vMYkgOiD2rwGXmETnfnsGVKr1BaosypXwt3xJJhG/T2tsly J2oRA7HAtZoud3OcRrA6MSUrUXyCSdwFROVE0HFLK4XMk37d6ODT9t3pwR76RYGb Arwm2vxan3GOGFZidUoUwMVinQrZEAUewaDPp/dPcNUmmVu1FaowrZzsPeePJQy3 mGdqOzaHoG2bgK2kGppiBaLXeBicqdN0Ja/37Oe/Nqw3Pkczdvhv4NPXEA31fIKN CzD5v0VJqAgTO+w8wVTN6yq0GpN3FpVwRdv5vuuGaph40C13hKvqiU8yJxZR6mIn LN5mZ5+C -----END CERTIFICATE-----Generated at Mon Mar 2 04:44:33 2026 by rpki-client