$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EF33F6CCD16911F08AEFD95BC4F9AE02.roa File: EF33F6CCD16911F08AEFD95BC4F9AE02.roa (raw, json) Hash identifier: Q/WW69HDFqBmPazKy9CWTwg7ADAfQr3xucgCfcoGH6o= Subject key identifier: 75:84:DF:E4:58:B0:34:94:F6:A7:64:AD:D5:A3:BC:C2:04:DD:D0:71 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 04A5 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EF33F6CCD16911F08AEFD95BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:37:01 +0000 ROA not before: Thu 04 Dec 2025 23:35:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136526 IP address blocks: 103.99.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Dec 4 23:35:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4793d-37d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d9:58:97:1f:3b:fa:3b:99:5e:bb:3c:5a:d3: 3d:fa:48:e7:68:89:ed:52:ce:6c:83:cb:b7:cd:f5: f9:8d:f8:65:a5:ec:35:2d:7f:a7:25:0c:05:42:e6: 4c:64:4d:bc:2e:ea:04:38:8b:6a:1f:cd:ac:2f:f7: 75:8d:a2:8e:0a:cb:fd:ed:27:96:c2:7c:57:56:7c: 54:5f:bb:5c:ff:0d:0c:de:79:1e:ad:6c:50:3d:27: 18:52:7c:91:38:b1:24:6b:f1:9c:cf:38:74:23:79: d4:3c:88:6a:3e:ac:f4:61:0a:f2:86:19:9e:02:e5: ca:76:68:c8:73:78:38:a9:10:30:2e:f4:98:fc:bc: de:3c:d3:ab:c4:aa:ec:5e:ec:b9:59:84:5c:0c:f6: 7a:e7:b4:09:6f:35:2b:ef:e6:b4:c1:61:9d:f1:2b: 8a:c6:95:3b:ae:ee:08:99:19:65:3c:d7:17:0b:e4: 4a:18:e5:22:6a:cb:7a:bc:ef:36:8b:12:2f:1c:f4: fc:5f:70:e2:0a:3d:e3:de:f3:22:12:ce:38:c9:3f: 46:3e:6c:29:99:bc:13:63:85:44:ac:d2:c2:c7:de: 52:a5:f5:7e:a8:5b:fe:86:f6:1c:b4:dc:83:35:f6: f8:02:da:40:55:dc:51:f7:30:ae:f8:0e:5b:8d:57: d2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:84:DF:E4:58:B0:34:94:F6:A7:64:AD:D5:A3:BC:C2:04:DD:D0:71 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/EF33F6CCD16911F08AEFD95BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.208.0/23 Signature Algorithm: sha256WithRSAEncryption b4:a1:c0:cb:72:e7:9c:b6:e7:96:5a:c2:df:b8:c9:f5:51:81: 91:6c:f4:e7:2c:68:69:11:16:29:08:11:9f:3e:99:11:2e:7e: 5d:86:4c:5a:c9:bc:db:7a:d1:07:7a:50:26:52:b1:d2:ed:a6: a1:4d:d2:f3:e1:a7:22:1a:1f:65:fe:82:ef:df:17:a4:64:c9: d6:0b:43:43:2d:d9:c7:5b:d0:6a:44:2a:ca:7d:cb:43:a7:4d: 91:0d:3f:bf:a2:c4:8e:46:72:66:e3:ec:15:b5:80:1d:bc:2d: 00:5d:82:3f:4f:ca:d0:51:3d:1d:ce:ee:14:6c:b5:5d:b7:e8: bc:64:c4:5a:ce:5c:eb:fd:a8:6d:40:d9:7f:7a:d2:76:78:17: f1:4a:f5:4f:9b:98:55:bf:09:6f:65:d8:dd:2a:2a:5c:a8:2a: eb:6c:37:47:0a:c7:54:14:a6:d2:d1:ae:31:45:79:6f:93:80: 96:20:46:24:83:bb:3f:fe:34:f8:a4:b3:61:38:78:e2:16:8d: 53:4b:3c:16:d1:e0:e2:7e:fa:6e:bc:cd:af:cf:76:d2:cd:7d: 8b:07:da:49:aa:a4:d2:d5:14:07:a9:81:cc:c9:68:df:d9:4d: 1b:52:de:5c:50:7f:39:e1:3d:a4:96:d9:52:3f:ef:7f:c5:ca: b5:b2:1a:41 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMjA0MjMzNTM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzkzZC0zN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dlYlx87+juZXrs8WtM9+kjnaIntUs5sg8u3zfX5jfhlpew1LX+nJQwFQuZM ZE28LuoEOItqH82sL/d1jaKOCsv97SeWwnxXVnxUX7tc/w0M3nkerWxQPScYUnyR OLEka/Gczzh0I3nUPIhqPqz0YQryhhmeAuXKdmjIc3g4qRAwLvSY/LzePNOrxKrs Xuy5WYRcDPZ657QJbzUr7+a0wWGd8SuKxpU7ru4ImRllPNcXC+RKGOUiast6vO82 ixIvHPT8X3DiCj3j3vMiEs44yT9GPmwpmbwTY4VErNLCx95SpfV+qFv+hvYctNyD Nfb4AtpAVdxR9zCu+A5bjVfS8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHWE3+RY sDSU9qdkrdWjvMIE3dBxMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvRUYzM0Y2Q0NE MTY5MTFGMDhBRUZEOTVCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2PQMA0GCSqGSIb3DQEBCwUAA4IBAQC0ocDLcuectueWWsLfuMn1 UYGRbPTnLGhpERYpCBGfPpkRLn5dhkxaybzbetEHelAmUrHS7aahTdLz4aciGh9l /oLv3xekZMnWC0NDLdnHW9BqRCrKfctDp02RDT+/osSORnJm4+wVtYAdvC0AXYI/ T8rQUT0dzu4UbLVdt+i8ZMRazlzr/ahtQNl/etJ2eBfxSvVPm5hVvwlvZdjdKipc qCrrbDdHCsdUFKbS0a4xRXlvk4CWIEYkg7s//jT4pLNhOHjiFo1TSzwW0eDifvpu vM2vz3bSzX2LB9pJqqTS1RQHqYHMyWjf2U0bUt5cUH854T2kltlSP+9/xcq1shpB -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:19 2026 by rpki-client