$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa File: DE0A75A605EB11EA94CD7287C4F9AE02.roa (raw, json) Hash identifier: FaFqBcKylUM1Ik2J0LQMDMkip4pQ4QSSImVSUK0dY18= Subject key identifier: 1C:9B:63:44:B4:39:60:D9:C0:8E:CF:1F:F6:EE:97:AB:58:07:44:91 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1158 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:02:45 +0000 ROA not before: Sun 30 Nov 2025 16:45:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134812 IP address blocks: 103.16.24.0/23 maxlen: 24 103.137.80.0/23 maxlen: 23 103.137.80.0/24 maxlen: 24 103.137.81.0/24 maxlen: 24 2001:df5:7e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4440 (0x1158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Nov 30 16:45:38 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48d55-ac8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:15:9b:15:be:f4:b3:b7:8c:c5:d2:a2:ec: 8b:3e:80:b1:83:8f:26:a9:da:65:b6:7a:e3:92:7b: 61:70:4e:a4:94:3f:b0:68:92:db:5f:6a:a9:b7:5b: 5e:98:ce:d0:74:00:34:08:98:22:18:11:43:62:52: 48:e0:f6:23:42:ff:6a:7e:74:c2:a1:39:c6:e1:42: 45:b0:43:6a:4d:1b:b5:15:4e:cb:a9:d1:95:f0:b5: cb:b6:45:5f:34:68:7a:5a:a0:86:3b:3e:d6:e1:59: 12:2b:b9:72:23:f2:f7:88:2e:36:4a:d7:47:77:a5: bb:8e:85:29:ae:21:ac:ad:c7:85:49:c2:b3:c8:0d: eb:bc:04:68:13:7d:d4:cb:b6:c0:f3:46:81:f1:7b: c5:61:e5:03:cc:9e:4f:ac:57:f3:10:a0:a9:91:18: 82:d1:8a:32:cc:db:53:44:1f:70:50:1c:49:19:31: 11:fb:b8:14:c0:72:fe:3c:d0:fc:ea:75:34:99:b9: 59:6c:49:23:6c:28:34:d2:e0:e5:75:79:f2:2c:21: 2a:f9:f0:87:65:b9:10:f4:f7:bc:8f:49:80:09:77: 94:8a:b3:72:75:a0:37:d1:2d:41:e2:90:ee:df:a1: 4f:12:87:dc:01:37:42:4e:6b:d8:45:f7:b4:c0:9c: 6d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9B:63:44:B4:39:60:D9:C0:8E:CF:1F:F6:EE:97:AB:58:07:44:91 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.16.24.0/23 103.137.80.0/23 IPv6: 2001:df5:7e00::/48 Signature Algorithm: sha256WithRSAEncryption 07:89:71:90:38:9d:b3:14:5a:bc:f1:34:61:02:62:f7:5e:25: 78:75:a7:ed:9f:b8:5d:41:15:fb:c9:e3:26:4f:2b:cf:77:c7: d9:1b:0c:d2:ae:b9:ed:12:cb:e5:91:d2:4b:5d:d7:3e:0a:70: 3f:44:eb:34:12:71:4f:d9:5d:0b:81:68:34:23:65:10:7c:b2: da:44:08:49:56:95:96:5f:6d:f2:7b:fc:5a:0f:d0:0c:12:6c: 7a:61:d2:76:fb:ad:61:df:92:d6:fa:80:65:a5:e1:5e:28:7b: 4a:bf:68:26:c4:31:aa:f8:f7:19:9f:19:dc:16:81:57:31:65: 17:3a:5d:3f:0f:72:42:c0:73:c2:88:82:97:5d:e3:b3:17:50: ee:72:ff:50:68:8c:bb:9e:9b:af:7a:e9:67:d4:b0:12:51:7f: 4f:a3:6e:48:f4:20:ee:b4:be:e4:1a:66:9a:45:a7:b5:58:21: fc:0e:63:11:4f:38:c4:7a:04:81:28:c0:0a:52:3d:60:91:15: 05:28:bd:fc:81:0e:58:fa:f0:32:07:5f:15:73:f5:cb:fc:0b: f3:84:b6:b2:4a:af:10:a0:a5:04:cc:b0:6a:9b:c2:0e:f3:7c: 07:b5:cf:c0:4c:f9:f8:0e:38:60:b5:b3:6f:26:ff:f5:db:a2: cd:24:eb:6c -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICEVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUxMTMwMTY0NTM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQ1NS1hYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryIVmxW+9LO3jMXSouyLPoCxg48mqdpltnrjknthcE6klD+waJLbX2qpt1te mM7QdAA0CJgiGBFDYlJI4PYjQv9qfnTCoTnG4UJFsENqTRu1FU7LqdGV8LXLtkVf NGh6WqCGOz7W4VkSK7lyI/L3iC42StdHd6W7joUpriGsrceFScKzyA3rvARoE33U y7bA80aB8XvFYeUDzJ5PrFfzEKCpkRiC0YoyzNtTRB9wUBxJGTER+7gUwHL+PND8 6nU0mblZbEkjbCg00uDldXnyLCEq+fCHZbkQ9Pe8j0mACXeUirNydaA30S1B4pDu 36FPEofcATdCTmvYRfe0wJxtuQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFBybY0S0 OWDZwI7PH/bul6tYB0SRMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjAyMkYvOUVDN0FGQjRBQTdEMTFFODg2MTQ0NTI0QzRGOUFFMDIvREUwQTc1QTYw NUVCMTFFQTk0Q0Q3Mjg3QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQBZxAYAwQBZ4lQMA8EAgACMAkDBwAgAQ31fgAwDQYJKoZIhvcNAQEL BQADggEBAAeJcZA4nbMUWrzxNGECYvdeJXh1p+2fuF1BFfvJ4yZPK893x9kbDNKu ue0Sy+WR0ktd1z4KcD9E6zQScU/ZXQuBaDQjZRB8stpECElWlZZfbfJ7/FoP0AwS bHph0nb7rWHfktb6gGWl4V4oe0q/aCbEMar49xmfGdwWgVcxZRc6XT8PckLAc8KI gpdd47MXUO5y/1BojLuem6966WfUsBJRf0+jbkj0IO60vuQaZppFp7VYIfwOYxFP OMR6BIEowApSPWCRFQUovfyBDlj68DIHXxVz9cv8C/OEtrJKrxCgpQTMsGqbwg7z fAe1z8BM+fgOOGC1s28m//Xbos0k62w= -----END CERTIFICATE-----Generated at Mon Mar 2 06:22:35 2026 by rpki-client