$ rpki-client -vvf rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9CA1FC26FA7A11F0A1FE82F24D6F56BC.roa File: 9CA1FC26FA7A11F0A1FE82F24D6F56BC.roa (raw, json) Hash identifier: D7TWn4uVI/L44bR9jZY7LmPRQC44gxFuipaLGEVANoA= Subject key identifier: EC:58:5F:52:63:8C:F6:51:A6:E6:94:C2:BB:05:73:5B:A4:04:89:C5 Certificate issuer: /CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Certificate serial: 04EA Authority key identifier: EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9CA1FC26FA7A11F0A1FE82F24D6F56BC.roa Signing time: Sun 01 Mar 2026 17:55:59 +0000 ROA not before: Mon 26 Jan 2026 05:48:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135413 IP address blocks: 103.173.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FE87, serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Validity Not Before: Jan 26 05:48:17 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47daf-c184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bb:f6:2e:9f:25:0a:d9:6a:14:19:33:04:fa: 9a:23:9b:5a:c7:70:47:47:84:0e:6a:61:d7:6e:52: 1c:49:71:c2:3f:55:75:02:29:93:80:81:9f:1d:94: a2:9e:24:26:41:94:ef:af:5e:4f:f2:f4:bd:aa:1c: 02:d4:31:4c:2a:4a:f8:b8:d5:7f:24:8e:ed:29:52: e5:fa:b7:1b:50:d0:59:8b:bc:da:e0:2d:b9:17:a2: 09:31:9a:08:4d:ff:f3:3d:ec:75:85:0e:59:24:a9: f9:b1:d2:69:1a:ab:c2:b4:05:7e:8d:b9:8e:c7:0c: da:ff:64:6b:70:7d:07:3a:38:40:00:8a:f7:9b:c3: 5f:6b:96:68:21:15:c8:6c:eb:bb:e4:b7:e7:58:f5: a9:7f:cb:60:f5:af:4e:fa:fb:5d:4e:73:5b:29:ff: 3c:27:92:e9:55:11:12:da:4d:ac:37:27:ec:9e:29: 85:47:19:63:d7:91:0c:c9:cf:ba:79:9c:0d:fa:94: b9:f6:fb:6d:68:38:ca:8f:ed:b4:59:51:78:ae:3b: 39:c6:4e:6c:0e:ad:37:2f:de:60:ec:10:a4:79:98: 57:78:5e:8e:b9:94:01:b0:a9:87:cf:59:3b:20:f9: 0e:a3:98:f1:fb:3b:50:2b:2c:bb:8a:53:f8:66:6c: 59:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:58:5F:52:63:8C:F6:51:A6:E6:94:C2:BB:05:73:5B:A4:04:89:C5 X509v3 Authority Key Identifier: keyid:EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9CA1FC26FA7A11F0A1FE82F24D6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.173.107.0/24 Signature Algorithm: sha256WithRSAEncryption 96:f2:22:a7:2b:a6:75:94:06:ee:4b:ee:a5:6d:06:6d:01:8a: 20:c3:b8:d4:e7:82:98:5f:0f:55:bb:73:d7:5a:21:46:6e:dd: b9:76:2d:43:8f:62:ce:cc:39:56:da:79:97:fe:d9:d5:54:ca: 5c:0b:13:35:9f:13:4d:96:79:ad:d0:17:7e:f5:9d:c6:88:a0: da:6e:46:0c:5e:4f:3c:90:6c:89:c0:7a:bc:68:cb:2e:22:aa: 2c:d1:49:6c:e6:55:60:76:ae:4f:ea:4a:d8:04:7f:95:f5:88: 68:96:91:e6:8b:4b:b4:a1:c2:36:01:df:88:e1:f7:76:aa:4a: 0e:35:50:25:11:ac:1c:ba:ea:9f:ea:49:61:d0:89:14:88:ff: 9b:48:f3:e9:bd:d8:a5:83:9e:cc:ab:21:9a:f7:07:e6:17:9d: b7:e9:dc:74:93:c4:fc:86:09:c7:33:d6:eb:19:be:e1:38:2d: b1:ab:5f:08:08:92:5a:d2:3c:f4:d3:b8:81:df:30:7c:a6:ce: 4b:6d:ff:a7:26:98:51:0a:53:64:c2:98:0a:d5:d3:cc:00:c1: 42:4d:98:db:76:41:8a:36:7f:6a:40:d1:41:11:40:9e:80:91: 09:78:4c:90:67:cf:2e:9a:fb:a9:0e:d1:d5:d1:5b:11:e0:8c: 2c:47:73:97 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFODcxMTAvBgNVBAUTKEVCQkI3NTYyQzZBNDlGQjdFREU1NzQxMkJDMUZGQUQ0 OEUxQUZCNDkwHhcNMjYwMTI2MDU0ODE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2RhZi1jMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLv2Lp8lCtlqFBkzBPqaI5tax3BHR4QOamHXblIcSXHCP1V1AimTgIGfHZSi niQmQZTvr15P8vS9qhwC1DFMKkr4uNV/JI7tKVLl+rcbUNBZi7za4C25F6IJMZoI Tf/zPex1hQ5ZJKn5sdJpGqvCtAV+jbmOxwza/2RrcH0HOjhAAIr3m8Nfa5ZoIRXI bOu75LfnWPWpf8tg9a9O+vtdTnNbKf88J5LpVRES2k2sNyfsnimFRxlj15EMyc+6 eZwN+pS59vttaDjKj+20WVF4rjs5xk5sDq03L95g7BCkeZhXeF6OuZQBsKmHz1k7 IPkOo5jx+ztQKyy7ilP4ZmxZEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOxYX1Jj jPZRpuaUwrsFc1ukBInFMB8GA1UdIwQYMBaAFOu7dWLGpJ+37eV0Erwf+tSOGvtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkU4Ny80RTE0MDFFNjVD QjYxMUVDQTc3MTE4MEVDNEY5QUUwMi82N3QxWXNha243ZnQ1WFFTdkJfNjFJNGEt MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dDFZc2FrbjdmdDVYUVN2Ql82MUk0YS0way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZFODcvNEUxNDAxRTY1Q0I2MTFFQ0E3NzExODBFQzRGOUFFMDIvOUNBMUZDMjZG QTdBMTFGMEExRkU4MkYyNEQ2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ61rMA0GCSqGSIb3DQEBCwUAA4IBAQCW8iKnK6Z1lAbuS+6lbQZt AYogw7jU54KYXw9Vu3PXWiFGbt25di1Dj2LOzDlW2nmX/tnVVMpcCxM1nxNNlnmt 0Bd+9Z3GiKDabkYMXk88kGyJwHq8aMsuIqos0Uls5lVgdq5P6krYBH+V9YholpHm i0u0ocI2Ad+I4fd2qkoONVAlEawcuuqf6klh0IkUiP+bSPPpvdilg57MqyGa9wfm F5236dx0k8T8hgnHM9brGb7hOC2xq18ICJJa0jz007iB3zB8ps5Lbf+nJphRClNk wpgK1dPMAMFCTZjbdkGKNn9qQNFBEUCegJEJeEyQZ88umvupDtHV0VsR4IwsR3OX -----END CERTIFICATE-----Generated at Mon Mar 2 07:35:44 2026 by rpki-client