$ rpki-client -vvf rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa File: 8B2E3BA270BD11ED970C535FC4F9AE02.roa (raw, json) Hash identifier: pZDso9pRkBCdjYnQayG6F+mIDGdpaJlOt1WudQ6yZcY= Subject key identifier: 56:EE:0F:07:6B:9A:61:53:B3:28:0F:4A:9D:03:75:FE:1F:3E:4E:72 Certificate issuer: /CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Certificate serial: 1406 Authority key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:15:47 +0000 ROA not before: Wed 16 Jul 2025 17:25:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135604 IP address blocks: 103.68.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5126 (0x1406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F22A, serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Validity Not Before: Jul 16 17:25:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42df3-66ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bb:8c:fd:4a:e5:c0:50:33:ca:1d:cd:03:99: fe:98:05:ff:96:6e:d7:af:92:62:7e:0d:5c:31:bb: ae:51:90:11:96:f1:fa:8e:14:44:74:f2:1b:e8:44: 2c:c2:95:95:40:ac:9a:6c:77:89:5f:63:5f:33:83: 53:a3:8d:16:39:1f:6a:15:14:b8:95:69:96:36:ce: 7b:b8:37:ec:34:bf:49:f0:3c:b5:e9:d3:b4:d4:4a: 94:ef:e4:e5:c2:da:99:bb:cf:a4:32:8e:e6:b7:a6: d8:c4:98:94:29:a8:8e:2d:2b:68:0a:d3:df:5d:48: 0f:2b:dc:d4:6f:49:0a:a9:c2:90:46:82:e0:9f:f9: f1:67:a4:73:f1:43:4a:87:00:b9:9a:f6:2f:9a:8e: ff:12:3b:6d:7b:88:27:09:96:6d:40:fd:f7:da:d0: a8:b1:20:e0:e2:98:5f:30:56:7c:71:19:03:fb:50: 1d:ae:b3:ca:49:c4:26:f9:49:39:e9:f7:ec:65:2a: 8c:b7:fe:b0:82:a2:b7:e7:84:e0:b8:ec:72:6f:52: 70:2f:95:05:18:bc:a6:0e:6e:64:e5:6d:7a:61:01: 39:fb:48:9f:72:36:96:3e:f0:3e:f4:c9:85:cb:dd: 27:bd:0f:6e:fb:29:ce:c2:e2:3b:cd:08:78:85:59: f7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:EE:0F:07:6B:9A:61:53:B3:28:0F:4A:9D:03:75:FE:1F:3E:4E:72 X509v3 Authority Key Identifier: keyid:56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.4.0/22 Signature Algorithm: sha256WithRSAEncryption 94:66:b3:0a:c0:13:39:b6:25:3e:69:07:b3:4d:61:17:3c:8c: 45:ef:93:64:91:2b:51:4d:60:04:91:50:d8:f0:49:ca:24:79: 98:ad:18:ca:c7:c0:09:b1:6d:7b:e4:40:cd:d5:62:b9:12:9c: cb:7c:2f:22:dd:28:c8:28:63:03:ea:00:87:90:9e:ea:4b:cb: 44:2e:07:1c:11:11:9a:70:53:6e:fd:cf:1a:dd:a0:eb:95:ce: 92:d9:79:37:4e:19:ac:e9:df:58:41:e1:9b:9a:ba:ce:32:86: 2d:db:f4:b0:97:fb:92:fa:97:c7:f1:b4:88:58:3a:08:1f:ef: d5:65:01:98:3c:78:a4:b3:96:e7:ab:f2:6d:69:24:9e:a8:94: a4:d6:6b:ce:b8:52:56:7a:e1:26:0b:65:5c:21:70:de:96:85: 9a:97:f9:28:32:c7:63:44:1c:00:90:81:f0:60:a8:63:13:af: de:f3:14:10:4f:b9:b8:22:2d:a2:55:c4:4e:2d:82:5e:7d:65: bb:3a:4e:43:81:d4:8d:78:29:55:8d:14:04:e9:74:69:0e:56: cb:54:50:60:3d:bb:09:75:71:4f:53:95:d4:c0:c6:01:9b:c9: 18:61:9d:79:ab:aa:50:31:10:fc:5c:b9:fe:98:02:fe:0b:25: a9:28:32:47 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyMkExMTAvBgNVBAUTKDU2QUYxQ0QwQjRFMDdEMDAwQzY0QUIwMTZDMzNGNzg2 QTBERDkwRkEwHhcNMjUwNzE2MTcyNTUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmRmMy02NmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoruM/UrlwFAzyh3NA5n+mAX/lm7Xr5Jifg1cMbuuUZARlvH6jhREdPIb6EQs wpWVQKyabHeJX2NfM4NTo40WOR9qFRS4lWmWNs57uDfsNL9J8Dy16dO01EqU7+Tl wtqZu8+kMo7mt6bYxJiUKaiOLStoCtPfXUgPK9zUb0kKqcKQRoLgn/nxZ6Rz8UNK hwC5mvYvmo7/Ejtte4gnCZZtQP332tCosSDg4phfMFZ8cRkD+1AdrrPKScQm+Uk5 6ffsZSqMt/6wgqK354TguOxyb1JwL5UFGLymDm5k5W16YQE5+0ifcjaWPvA+9MmF y90nvQ9u+ynOwuI7zQh4hVn3CQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFbuDwdr mmFTsygPSp0Ddf4fPk5yMB8GA1UdIwQYMBaAFFavHNC04H0ADGSrAWwz94ag3ZD6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjIyQS83RUVDMUU0QzlD RDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZRQU1aS3NCYkRQM2hxRGRr UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxOGMwTFRnZlFBTVpLc0JiRFAzaHFEZGtQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYyMkEvN0VFQzFFNEM5Q0QwMTFFOEIxNjEyQjdEQzRGOUFFMDIvOEIyRTNCQTI3 MEJEMTFFRDk3MEM1MzVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ0QEMA0GCSqGSIb3DQEBCwUAA4IBAQCUZrMKwBM5tiU+aQezTWEX PIxF75NkkStRTWAEkVDY8EnKJHmYrRjKx8AJsW175EDN1WK5EpzLfC8i3SjIKGMD 6gCHkJ7qS8tELgccERGacFNu/c8a3aDrlc6S2Xk3Thms6d9YQeGbmrrOMoYt2/Sw l/uS+pfH8bSIWDoIH+/VZQGYPHiks5bnq/JtaSSeqJSk1mvOuFJWeuEmC2VcIXDe loWal/koMsdjRBwAkIHwYKhjE6/e8xQQT7m4Ii2iVcROLYJefWW7Ok5DgdSNeClV jRQE6XRpDlbLVFBgPbsJdXFPU5XUwMYBm8kYYZ15q6pQMRD8XLn+mAL+CyWpKDJH -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:45 2026 by rpki-client