$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa File: 807CB298903A11EBA9783756C4F9AE02.roa (raw, json) Hash identifier: kPCD0Fz7/O4ntMHiCFvRFjcWPT4ww4VjwAtUClsCkrU= Subject key identifier: 49:B4:18:27:B6:86:BB:13:89:FF:06:3E:E2:5C:2A:64:EF:3B:67:FF Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 06D3 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:33:55 +0000 ROA not before: Thu 04 Dec 2025 21:34:32 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132102 IP address blocks: 103.28.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Dec 4 21:34:32 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43233-19f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:16:d8:e2:a7:49:2c:ff:ce:9c:30:d8:8e:b0: b2:a2:45:07:2d:44:02:4e:2a:ba:b5:75:e1:00:af: e9:94:ce:48:29:f3:6b:da:ee:ed:08:c1:8a:95:8d: 3b:24:58:3f:f7:7a:09:20:fe:39:ee:43:c3:1a:be: 51:fc:98:9c:78:bf:32:e3:3c:ab:6b:14:cd:5f:59: 39:41:44:2a:4f:b2:25:03:21:85:ee:b2:96:86:ba: 89:b0:0f:c9:31:31:b6:34:ef:e5:c1:28:55:f1:f1: 41:1e:9d:c8:7c:ef:af:de:4d:e1:df:cb:e6:0b:42: 21:f3:12:c2:23:8c:be:21:8f:00:46:31:19:44:5b: 0d:8c:dd:2d:9b:56:89:54:d1:52:4c:d6:a2:6e:17: 62:8b:c2:00:b8:22:a0:89:56:a7:e9:81:f4:95:36: 18:d4:60:f0:e8:7b:45:7e:1e:2f:a6:b7:6e:3b:80: cc:ee:ab:44:01:93:86:25:52:d7:c5:2a:02:27:54: cc:af:87:f0:ff:f3:f1:26:86:e4:5c:6c:d8:fb:55: d8:42:3f:86:f8:43:7b:b6:1b:a9:c9:e7:13:05:8a: 1b:7e:b6:32:c1:f1:d2:46:d1:98:62:e3:a1:d6:9f: d7:67:4c:2e:32:2b:11:2c:2b:6a:73:6d:2e:76:07: 66:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B4:18:27:B6:86:BB:13:89:FF:06:3E:E2:5C:2A:64:EF:3B:67:FF X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.20.0/24 Signature Algorithm: sha256WithRSAEncryption 32:92:2c:50:34:52:93:0d:fc:6f:43:ea:d1:90:13:d7:46:25: 7b:b3:4a:93:cf:bc:1c:1f:f9:98:3a:bb:2e:bc:c4:82:4a:c4: 1c:38:23:88:8e:94:5c:cc:92:4c:78:98:57:de:fc:b6:76:bf: 1e:50:25:54:d3:6e:0e:e7:95:93:71:9f:d6:fe:24:80:eb:90: 00:19:61:ea:5f:3e:27:41:e1:17:be:f7:27:79:c1:3c:19:ce: ae:bf:ae:5b:2f:c3:55:39:b6:73:06:3b:da:84:e3:dd:25:05: 09:db:a7:c2:d2:94:d1:82:fd:98:6b:aa:10:5a:76:39:c0:7d: fa:8f:e2:9e:19:d0:c1:0b:61:4a:52:e0:40:ec:e8:11:8e:53: f5:f0:ef:ae:99:e6:c4:36:bb:be:f0:38:55:d0:16:70:de:9a: c1:08:4b:86:0f:c2:d4:34:33:2e:e7:ef:26:18:d3:7f:d4:5b: 5f:b2:42:3e:a5:6f:f3:e1:7e:0d:83:ae:d4:39:7b:5d:74:dd: b6:a4:2b:b7:aa:e7:d8:3d:5f:0a:c2:60:fb:2a:10:79:8c:0d: 3e:1f:8f:f3:6c:3f:e5:bf:92:8d:d7:4b:a2:75:76:bf:0d:df: 26:da:95:59:d5:56:a0:f0:a9:bf:3d:f0:dd:66:a2:7a:1f:45: d3:0b:8d:3b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUxMjA0MjEzNDMyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzIzMy0xOWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhbY4qdJLP/OnDDYjrCyokUHLUQCTiq6tXXhAK/plM5IKfNr2u7tCMGKlY07 JFg/93oJIP457kPDGr5R/JiceL8y4zyraxTNX1k5QUQqT7IlAyGF7rKWhrqJsA/J MTG2NO/lwShV8fFBHp3IfO+v3k3h38vmC0Ih8xLCI4y+IY8ARjEZRFsNjN0tm1aJ VNFSTNaibhdii8IAuCKgiVan6YH0lTYY1GDw6HtFfh4vprduO4DM7qtEAZOGJVLX xSoCJ1TMr4fw//PxJobkXGzY+1XYQj+G+EN7thupyecTBYobfrYywfHSRtGYYuOh 1p/XZ0wuMisRLCtqc20udgdm9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEm0GCe2 hrsTif8GPuJcKmTvO2f/MB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCNjYvRTVDNEQzMjY5MDM4MTFFQkE0REM1QTU0QzRGOUFFMDIvODA3Q0IyOTg5 MDNBMTFFQkE5NzgzNzU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxwUMA0GCSqGSIb3DQEBCwUAA4IBAQAykixQNFKTDfxvQ+rRkBPX RiV7s0qTz7wcH/mYOrsuvMSCSsQcOCOIjpRczJJMeJhX3vy2dr8eUCVU024O55WT cZ/W/iSA65AAGWHqXz4nQeEXvvcnecE8Gc6uv65bL8NVObZzBjvahOPdJQUJ26fC 0pTRgv2Ya6oQWnY5wH36j+KeGdDBC2FKUuBA7OgRjlP18O+umebENru+8DhV0BZw 3prBCEuGD8LUNDMu5+8mGNN/1FtfskI+pW/z4X4Ng67UOXtddN22pCu3qufYPV8K wmD7KhB5jA0+H4/zbD/lv5KN10uidXa/Dd8m2pVZ1Vag8Km/PfDdZqJ6H0XTC407 -----END CERTIFICATE-----Generated at Mon Mar 2 13:48:32 2026 by rpki-client