$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa File: E4C0040A8C8C11EBB81BA228C4F9AE02.roa (raw, json) Hash identifier: I8K7MJw63gWbuICaSqqCP81nmQ90FNHQNe0VwOF+1Iw= Subject key identifier: 8D:F9:B4:E5:4B:5F:EC:A6:03:B9:FA:6A:F1:BA:9F:52:CA:3F:B4:16 Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 074F Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:55:23 +0000 ROA not before: Tue 02 Sep 2025 22:42:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 1273 IP address blocks: 103.23.192.0/22 maxlen: 22 202.89.16.0/21 maxlen: 21 202.89.16.0/22 maxlen: 22 203.169.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D, serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 2 22:42:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4535b-d4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:78:20:b0:b8:d4:1f:ef:12:82:50:15:0c:54: 6b:bf:28:1e:a4:46:12:37:96:54:17:76:07:94:61: 7e:55:45:bf:53:29:b2:29:c4:5a:c0:0f:d9:32:29: f9:a5:65:80:b6:4d:03:11:73:31:d4:a9:e0:c8:3b: f4:81:c9:0c:90:22:6d:91:b1:98:ea:29:7f:1a:e6: 1e:1e:74:25:18:4b:49:c7:23:7c:00:a1:fd:a5:e3: 62:ce:d0:9a:d9:98:2f:af:ed:2d:34:ed:02:a5:df: 86:e3:61:a4:46:39:05:cf:31:b0:df:57:01:02:88: ca:5e:63:7e:76:bb:b4:73:1b:94:fd:6b:b2:16:78: 47:22:99:af:23:d7:eb:00:62:fb:c3:3e:0f:6a:45: f4:d8:b5:98:13:45:46:79:16:64:cc:ba:7f:9d:0c: 22:12:26:df:08:a6:db:67:39:1d:6e:58:9e:8e:c6: 47:54:e6:bd:26:f8:c3:ab:50:37:a1:c4:c3:c3:28: 9f:5b:85:6b:00:6a:90:e8:04:3e:a8:da:ba:1e:6f: a0:29:e4:31:bb:d1:80:c5:f3:5f:75:10:f6:54:d0: 8c:2b:c8:50:91:6d:ed:fc:5a:7d:5f:3e:04:a2:3e: b1:ef:10:b1:29:6f:f5:fe:f7:71:30:e1:d6:8d:00: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F9:B4:E5:4B:5F:EC:A6:03:B9:FA:6A:F1:BA:9F:52:CA:3F:B4:16 X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.192.0/22 202.89.16.0/21 203.169.56.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:19:87:52:c3:73:f1:8c:b8:d5:84:a9:92:24:57:db:67:7c: c7:b5:3f:9e:54:ca:b3:7c:d8:0d:2c:2c:d0:9a:0f:cf:10:1e: 56:2d:cd:60:72:c4:c0:e9:90:3e:61:e3:24:60:e6:75:48:c4: 90:01:c7:c1:7a:f0:a0:dc:8b:fc:3a:e1:0b:2a:0c:6b:a2:95: 55:64:dd:3a:12:ca:0f:3d:7d:09:79:13:37:cb:cd:aa:80:76: e0:02:2e:bf:6f:30:ae:f8:db:04:6e:2c:37:a9:d6:98:cc:35: 9c:a4:bf:23:81:50:22:03:68:b0:41:ee:b9:7c:cb:1b:40:95: 93:e1:ec:ca:12:e3:02:fb:15:5f:16:30:bf:7a:46:b6:9d:a3: 66:eb:b5:21:99:fa:5a:c9:8f:b4:de:26:82:f5:1e:4b:a9:7e: ec:a9:ae:a5:5e:2a:21:94:cf:71:61:e2:a5:ee:c5:4d:45:aa: eb:5c:27:97:41:63:10:0a:a9:54:f0:29:5a:cb:ae:c3:e6:30: b6:ed:01:70:9c:cb:c3:ea:14:d2:96:c8:ec:01:ca:ae:4d:e5: 17:3e:6a:20:70:6e:0d:ad:89:24:e7:42:0d:b9:91:f6:43:5c: 19:cf:3d:8c:32:b4:78:53:af:7a:7b:8f:97:a2:aa:3e:b8:16: 3b:3c:e7:a0 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjUwOTAyMjI0MjU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTM1Yi1kNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkXggsLjUH+8SglAVDFRrvygepEYSN5ZUF3YHlGF+VUW/UymyKcRawA/ZMin5 pWWAtk0DEXMx1KngyDv0gckMkCJtkbGY6il/GuYeHnQlGEtJxyN8AKH9peNiztCa 2Zgvr+0tNO0Cpd+G42GkRjkFzzGw31cBAojKXmN+dru0cxuU/WuyFnhHIpmvI9fr AGL7wz4PakX02LWYE0VGeRZkzLp/nQwiEibfCKbbZzkdbliejsZHVOa9JvjDq1A3 ocTDwyifW4VrAGqQ6AQ+qNq6Hm+gKeQxu9GAxfNfdRD2VNCMK8hQkW3t/Fp9Xz4E oj6x7xCxKW/1/vdxMOHWjQAo/QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFI35tOVL X+ymA7n6avG6n1LKP7QWMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvRTRDMDA0MEE4 QzhDMTFFQkI4MUJBMjI4QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZxfAAwQDylkQAwQBy6k4MA0GCSqGSIb3DQEBCwUAA4IBAQBNGYdS w3PxjLjVhKmSJFfbZ3zHtT+eVMqzfNgNLCzQmg/PEB5WLc1gcsTA6ZA+YeMkYOZ1 SMSQAcfBevCg3Iv8OuELKgxropVVZN06EsoPPX0JeRM3y82qgHbgAi6/bzCu+NsE biw3qdaYzDWcpL8jgVAiA2iwQe65fMsbQJWT4ezKEuMC+xVfFjC/eka2naNm67Uh mfpayY+03iaC9R5LqX7sqa6lXiohlM9xYeKl7sVNRarrXCeXQWMQCqlU8Clay67D 5jC27QFwnMvD6hTSlsjsAcquTeUXPmogcG4NrYkk50INuZH2Q1wZzz2MMrR4U696 e4+Xoqo+uBY7POeg -----END CERTIFICATE-----Generated at Mon Mar 2 07:46:07 2026 by rpki-client