$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa File: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (raw, json) Hash identifier: JIARhEibOKG+hTmPalueLjtwAHjRt0AI7B/r+GOVfk8= Subject key identifier: E9:9E:A9:29:99:A0:FB:03:4E:AA:D2:0B:F9:C7:93:55:DD:FA:FC:23 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 08E0 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa Signing time: Sat 28 Mar 2026 20:27:03 +0000 ROA not before: Sat 28 Mar 2026 20:27:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 24038 IP address blocks: 103.231.54.0/24 maxlen: 24 202.68.208.0/24 maxlen: 24 202.68.210.0/24 maxlen: 24 202.68.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Mar 28 20:27:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c83997-17be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:3b:83:8d:9e:44:73:ac:64:90:6b:97:8d: bb:dd:e8:df:16:33:31:cc:b8:e4:8d:03:96:76:9a: b4:2d:55:ae:cb:75:08:bb:0a:d4:e6:6d:f5:b6:6e: aa:48:4f:23:35:62:b2:e0:7e:58:94:aa:cd:d9:03: 35:7d:72:11:aa:be:e0:84:80:92:54:1e:60:7d:10: be:f9:8d:af:72:2e:39:77:32:54:69:e1:e4:0f:0f: 87:b9:a2:de:f6:0d:77:ce:49:71:e0:2e:08:ac:d3: 91:51:d2:39:e9:85:26:49:e5:ea:49:0c:5f:77:56: b1:91:9a:cc:29:25:82:2f:2f:c2:86:37:33:73:0b: 76:01:88:b4:ce:9f:18:c7:c2:22:84:90:4f:6c:db: 6e:ac:35:63:b9:47:78:99:ae:fc:2f:35:c9:6b:36: 0b:ae:2b:04:de:72:9e:4e:6e:a0:3f:db:1a:98:aa: 99:1c:58:0b:40:be:33:25:f6:b3:ab:a6:c9:98:12: 7d:d6:b0:07:40:e2:a7:2a:df:f0:d0:93:31:35:2f: 61:bd:1a:4a:e5:1c:10:a9:66:13:3d:dd:ad:7c:7f: 3f:07:90:e0:af:e5:6a:a4:f1:21:b4:2d:2f:6c:e9: 3c:65:9d:b7:72:19:60:9a:ba:9a:16:bd:cd:ba:b6: a8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9E:A9:29:99:A0:FB:03:4E:AA:D2:0B:F9:C7:93:55:DD:FA:FC:23 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.54.0/24 202.68.208.0/24 202.68.210.0/24 202.68.221.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:ff:20:90:71:10:0d:9e:34:97:be:d1:4e:8d:90:ec:65:cd: 10:96:3d:0c:48:9f:f1:57:67:98:18:c7:ac:04:85:80:90:3a: c4:96:a6:2c:3d:a8:0b:90:bd:d8:cc:c9:37:34:4e:62:6d:5e: a4:6d:6c:97:a5:34:50:a5:05:a4:81:67:51:06:84:a7:3b:89: 5b:e7:c4:2b:c8:b3:6d:08:19:bd:6b:1f:0f:c2:64:bb:13:be: bc:81:78:4d:ed:0f:e7:df:df:c7:ae:a6:b3:ce:61:be:b8:2b: 9a:12:c8:a4:ed:f2:db:e6:0e:bb:f1:e5:5f:49:6a:c2:70:d9: 01:fb:a0:53:09:7b:49:70:5f:ed:60:dc:fc:82:9b:35:07:5d: af:da:21:29:50:a3:9a:3e:f7:a3:06:0d:bb:0e:a1:c1:a8:85: b5:0b:11:23:ec:67:28:d5:57:48:d4:e6:3b:39:13:8c:df:e2: 60:61:d3:dd:d2:a8:07:31:2b:35:7d:56:f7:e8:16:76:96:23: 53:7f:96:00:0c:8e:3d:d6:dc:00:42:f6:6a:c3:b3:49:32:6a: 6e:fb:5d:59:24:a0:64:1f:67:ba:5d:0c:95:de:10:14:91:26: 14:22:aa:86:54:02:aa:64:39:ee:63:5c:d2:ce:ba:1d:b6:df: 96:ed:ec:6f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjYwMzI4MjAyNzAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4Mzk5Ny0xN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ07g42eRHOsZJBrl4273ejfFjMxzLjkjQOWdpq0LVWuy3UIuwrU5m31tm6q SE8jNWKy4H5YlKrN2QM1fXIRqr7ghICSVB5gfRC++Y2vci45dzJUaeHkDw+HuaLe 9g13zklx4C4IrNORUdI56YUmSeXqSQxfd1axkZrMKSWCLy/Chjczcwt2AYi0zp8Y x8IihJBPbNturDVjuUd4ma78LzXJazYLrisE3nKeTm6gP9samKqZHFgLQL4zJfaz q6bJmBJ91rAHQOKnKt/w0JMxNS9hvRpK5RwQqWYTPd2tfH8/B5Dgr+VqpPEhtC0v bOk8ZZ23chlgmrqaFr3NuraoJQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFOmeqSmZ oPsDTqrSC/nHk1Xd+vwjMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzRTgvM0YxRjBEREFEMjg3MTFFQTlFNzNFNjQ2QzRGOUFFMDIvNzFEQkEyRTZE Mjg4MTFFQUI3RDc5QTQ3QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAZ+c2AwQAykTQAwQAykTSAwQAykTdMA0GCSqGSIb3DQEBCwUAA4IB AQCO/yCQcRANnjSXvtFOjZDsZc0Qlj0MSJ/xV2eYGMesBIWAkDrElqYsPagLkL3Y zMk3NE5ibV6kbWyXpTRQpQWkgWdRBoSnO4lb58QryLNtCBm9ax8PwmS7E768gXhN 7Q/n39/HrqazzmG+uCuaEsik7fLb5g678eVfSWrCcNkB+6BTCXtJcF/tYNz8gps1 B12v2iEpUKOaPvejBg27DqHBqIW1CxEj7Gco1VdI1OY7OROM3+JgYdPd0qgHMSs1 fVb36BZ2liNTf5YADI491twAQvZqw7NJMmpu+11ZJKBkH2e6XQyV3hAUkSYUIqqG VAKqZDnuY1zSzrodtt+W7exv -----END CERTIFICATE-----Generated at Sat Apr 18 04:17:29 2026 by rpki-client