$ rpki-client -vvf rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa File: 8789C45E384311EAAA40EE51C4F9AE02.roa (raw, json) Hash identifier: c7U9E4x7HWCTnVuZ6VGp81T+MLLhMyYu6vQNMBF1IL4= Subject key identifier: 73:D9:28:E0:C4:C3:B5:27:95:FD:18:3A:02:B5:E6:98:A6:F0:0C:0C Certificate issuer: /CN=A9154534/serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Certificate serial: 0BD6 Authority key identifier: 55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:43:45 +0000 ROA not before: Thu 12 Jun 2025 19:34:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137510 IP address blocks: 103.220.4.0/22 maxlen: 24 2405:7f80::/32 maxlen: 32 2405:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154534, serialNumber=55C46855CC91AC54AC075C297B7531FA88A735D9 Validity Not Before: Jun 12 19:34:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42670-f80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:68:ed:60:96:1c:bc:5a:66:17:66:40:78: fc:8d:cf:64:aa:e3:7a:c0:ae:88:93:cc:e5:98:f7: 82:b2:b1:75:7e:1c:59:8f:58:d3:99:e2:0f:2b:1f: 80:ed:c2:14:82:01:61:28:84:08:e4:39:54:55:ac: 19:1f:9f:59:69:4c:c9:f4:74:f2:1d:ba:e8:11:cb: 9b:2e:47:d6:e9:a8:9e:5a:76:f8:8e:3e:ef:1f:70: 16:48:d2:40:2e:0e:b8:88:98:a1:ba:2a:7c:21:14: 2e:1c:ab:24:43:39:7a:02:fb:75:15:1b:30:ad:70: ae:d7:b7:9a:a5:6f:c5:1e:e2:10:b2:0b:ac:e2:ef: 50:8f:76:d5:69:63:3f:ef:96:4b:11:5c:cd:ec:5e: 7d:bc:36:44:3a:4b:06:d8:c4:7c:1b:42:fa:7f:0b: 47:6f:46:eb:58:1b:f7:41:55:d2:d1:ca:0a:be:63: ad:1f:58:e8:9e:ca:8f:3f:0b:8f:54:e4:25:46:6a: ab:14:0a:71:8b:3f:77:ed:0c:bf:f7:19:c4:69:a9: 77:8a:e2:28:a5:49:b7:53:55:12:ee:a2:10:71:13: c7:0b:24:b6:b7:4e:0b:04:2d:ab:40:ac:5a:72:93: 0d:69:a5:b8:2a:a0:a2:c8:5a:52:a0:2d:18:d9:7a: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D9:28:E0:C4:C3:B5:27:95:FD:18:3A:02:B5:E6:98:A6:F0:0C:0C X509v3 Authority Key Identifier: keyid:55:C4:68:55:CC:91:AC:54:AC:07:5C:29:7B:75:31:FA:88:A7:35:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/VcRoVcyRrFSsB1wpe3Ux-oinNdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VcRoVcyRrFSsB1wpe3Ux-oinNdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154534/BD26909E384111EA9FED5D4FC4F9AE02/8789C45E384311EAAA40EE51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.220.4.0/22 IPv6: 2405:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 4c:58:d0:e9:14:c9:79:84:0c:22:e1:1e:2a:c6:f9:31:c3:4d: b2:28:67:a0:f3:b1:d9:71:0b:83:b0:d8:25:47:62:04:0e:71: 1a:18:85:0c:ce:76:d0:4a:7a:ee:bc:ba:f6:a3:dd:ba:b5:78: 1e:e8:b5:8d:4b:47:37:1d:b1:60:85:86:b7:37:53:14:c9:11: ec:11:68:b5:b4:8e:d7:15:3e:34:05:a6:f1:b9:c9:be:ef:85: fb:20:01:c8:6e:b9:c6:bf:d1:cf:ee:93:39:f4:19:ea:2e:eb: a9:c4:70:29:1a:0b:92:b4:56:b0:55:ea:b0:a5:43:98:cb:25: d9:ef:ba:12:59:09:e0:9b:b4:4a:30:03:90:21:1b:60:c9:1a: c1:c6:3d:e4:4a:3c:81:e4:43:28:3c:cf:ad:6d:de:2a:53:96: d9:fc:ac:f2:0a:df:e9:34:65:2a:33:f9:bd:63:cc:bf:9a:36: b3:93:d3:78:d8:b9:60:c2:d8:5e:20:82:f4:04:c1:72:f4:ae: b7:b6:98:91:ed:a3:80:6d:ad:10:01:f6:31:44:dd:d1:cc:f3: 39:be:5a:3a:2c:d6:a9:d4:c5:2a:34:6b:c9:b1:9d:92:9c:34: f9:aa:dc:fc:6e:9a:32:16:1b:ae:df:e7:36:aa:b5:c7:d3:ed: 35:93:4f:c2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MzQxMTAvBgNVBAUTKDU1QzQ2ODU1Q0M5MUFDNTRBQzA3NUMyOTdCNzUzMUZB ODhBNzM1RDkwHhcNMjUwNjEyMTkzNDI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY3MC1mODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMdo7WCWHLxaZhdmQHj8jc9kquN6wK6Ik8zlmPeCsrF1fhxZj1jTmeIPKx+A 7cIUggFhKIQI5DlUVawZH59ZaUzJ9HTyHbroEcubLkfW6aieWnb4jj7vH3AWSNJA Lg64iJihuip8IRQuHKskQzl6Avt1FRswrXCu17eapW/FHuIQsgus4u9Qj3bVaWM/ 75ZLEVzN7F59vDZEOksG2MR8G0L6fwtHb0brWBv3QVXS0coKvmOtH1jonsqPPwuP VOQlRmqrFApxiz937Qy/9xnEaal3iuIopUm3U1US7qIQcRPHCyS2t04LBC2rQKxa cpMNaaW4KqCiyFpSoC0Y2XovYQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHPZKODE w7Unlf0YOgK15pim8AwMMB8GA1UdIwQYMBaAFFXEaFXMkaxUrAdcKXt1MfqIpzXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUzNC9CRDI2OTA5RTM4 NDExMUVBOUZFRDVENEZDNEY5QUUwMi9WY1JvVmN5UnJGU3NCMXdwZTNVeC1vaW5O ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZjUm9WY3lSckZTc0Ixd3BlM1V4LW9pbk5kay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ1MzQvQkQyNjkwOUUzODQxMTFFQTlGRUQ1RDRGQzRGOUFFMDIvODc4OUM0NUUz ODQzMTFFQUFBNDBFRTUxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ9wEMA0EAgACMAcDBQAkBX+AMA0GCSqGSIb3DQEBCwUAA4IBAQBM WNDpFMl5hAwi4R4qxvkxw02yKGeg87HZcQuDsNglR2IEDnEaGIUMznbQSnruvLr2 o926tXge6LWNS0c3HbFghYa3N1MUyRHsEWi1tI7XFT40Babxucm+74X7IAHIbrnG v9HP7pM59BnqLuupxHApGguStFawVeqwpUOYyyXZ77oSWQngm7RKMAOQIRtgyRrB xj3kSjyB5EMoPM+tbd4qU5bZ/KzyCt/pNGUqM/m9Y8y/mjazk9N42LlgwtheIIL0 BMFy9K63tpiR7aOAba0QAfYxRN3RzPM5vlo6LNap1MUqNGvJsZ2SnDT5qtz8bpoy Fhuu3+c2qrXH0+01k0/C -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:31 2026 by rpki-client