$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa File: 85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa (raw, json) Hash identifier: Stcn3mdWWBdBM5QJPVwTTFhptg4PHZu0MhsI2qGviJE= Subject key identifier: BC:F1:05:D0:18:4A:74:C0:47:FF:C8:D0:83:DD:66:0D:58:C5:95:80 Certificate issuer: /CN=A9163998/serialNumber=4A993FF84F602903A317E288BD19B9DA2093558A Certificate serial: 033C Authority key identifier: 4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:05:40 +0000 ROA not before: Thu 19 Jun 2025 01:57:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138341 IP address blocks: 103.115.76.0/22 maxlen: 22 103.115.76.0/24 maxlen: 24 103.115.77.0/24 maxlen: 24 103.115.78.0/24 maxlen: 24 202.181.88.0/21 maxlen: 24 2402:e340::/32 maxlen: 32 2402:e340::/48 maxlen: 48 2402:e340::/64 maxlen: 64 2402:e340:0:1::/64 maxlen: 64 2402:e340:1::/48 maxlen: 48 2402:e340:2::/48 maxlen: 48 2402:e340:3::/48 maxlen: 48 2402:e340:4::/48 maxlen: 48 2402:e340:5::/48 maxlen: 48 2402:e340:6::/48 maxlen: 48 2402:e340:7::/48 maxlen: 48 2402:e340:f::/48 maxlen: 48 2402:e340:10::/48 maxlen: 48 2402:e340:11::/48 maxlen: 48 2402:e340:12::/48 maxlen: 48 2402:e340:3004::/48 maxlen: 48 2402:e340:6004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.crl rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=4A993FF84F602903A317E288BD19B9DA2093558A Validity Not Before: Jun 19 01:57:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42b94-2003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8b:71:8b:7b:85:26:43:4a:15:ea:f9:a7:90: 7c:05:39:42:0a:cc:bc:f9:0e:e0:91:8f:c9:54:e3: 91:7a:26:c1:3d:6a:b5:ac:6c:b0:21:5b:e8:aa:ec: dd:0d:67:ae:f9:f4:5f:a5:7c:b0:20:4b:1b:ed:ba: b0:25:98:9a:8a:db:65:b2:24:88:6a:4b:56:50:22: c0:4a:ef:d1:63:a0:6a:0f:7b:a9:4f:03:d7:e1:3a: 9a:02:6b:04:9d:d7:62:d4:c0:9b:44:26:01:ec:49: 7c:45:b2:85:b3:cc:b8:45:29:17:10:54:a0:e7:ba: 60:10:13:ee:ec:32:c4:d8:e4:4a:42:66:3c:63:ee: 71:17:4e:f5:db:45:9a:1d:78:70:e6:87:c7:e2:38: 56:01:ea:ce:6b:48:52:a6:9c:8c:b8:88:be:4a:28: ab:a4:6b:ec:5f:79:a0:b6:97:7a:fb:10:31:41:c6: 24:b0:08:5c:e5:94:ac:43:e0:a2:3e:b8:bf:70:a0: 3c:d2:c3:10:8d:ff:b7:a6:61:b6:de:94:2d:37:73: 9c:cb:3d:e5:d8:b8:5f:d3:41:16:30:b9:db:c0:97: 31:27:23:7f:b4:1f:bb:f4:dc:8c:6a:9f:14:10:74: b9:2e:9f:0a:0d:65:c2:47:a2:bc:bc:6c:32:0f:5d: 81:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F1:05:D0:18:4A:74:C0:47:FF:C8:D0:83:DD:66:0D:58:C5:95:80 X509v3 Authority Key Identifier: keyid:4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.115.76.0/22 202.181.88.0/21 IPv6: 2402:e340::/32 Signature Algorithm: sha256WithRSAEncryption 76:00:51:92:dc:58:4b:03:b4:db:cd:68:3f:d1:cc:d4:4f:dc: 00:ff:b8:fa:7e:16:9d:69:73:a8:3c:95:21:eb:9a:c2:0f:d4: 4f:14:e4:78:21:57:ed:2e:14:0a:bc:ed:fb:83:52:a8:60:6a: e6:69:a6:31:c8:32:e1:55:86:ca:08:8c:21:3d:3e:ab:40:91: 4f:b6:9d:ee:69:3b:da:a4:30:40:41:19:d8:38:a2:48:e0:25: 52:35:2d:6a:f8:0b:42:fd:59:06:9d:ec:3f:ed:12:c8:c7:a5: 79:42:89:55:81:26:98:3f:e7:92:d7:c8:e3:72:d8:81:da:a1: 6c:9c:14:e2:6d:e0:44:ce:76:1f:97:a0:49:46:09:17:90:00: 63:1f:66:04:13:7e:27:86:e9:11:8b:7b:7f:a3:1b:e4:1b:a3: 6a:ef:df:d2:77:8e:b0:21:07:91:21:9d:6a:ba:e2:31:3f:f3: f9:ad:35:9b:6e:f2:32:b7:e3:cf:2d:16:de:71:69:3a:86:0d: 44:db:c4:82:c0:4a:2d:c7:14:26:80:48:21:7e:6d:70:46:b0: 6c:fa:1d:f1:47:61:5d:eb:1c:94:d9:8a:c4:59:34:0e:ea:e6: 98:e8:99:21:50:8b:28:3e:78:a9:1b:62:d1:8e:59:a0:30:2a: bf:34:d3:30 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDRBOTkzRkY4NEY2MDI5MDNBMzE3RTI4OEJEMTlCOURB MjA5MzU1OEEwHhcNMjUwNjE5MDE1NzQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmI5NC0yMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4txi3uFJkNKFer5p5B8BTlCCsy8+Q7gkY/JVOOReibBPWq1rGywIVvoquzd DWeu+fRfpXywIEsb7bqwJZiaittlsiSIaktWUCLASu/RY6BqD3upTwPX4TqaAmsE nddi1MCbRCYB7El8RbKFs8y4RSkXEFSg57pgEBPu7DLE2ORKQmY8Y+5xF07120Wa HXhw5ofH4jhWAerOa0hSppyMuIi+SiirpGvsX3mgtpd6+xAxQcYksAhc5ZSsQ+Ci Pri/cKA80sMQjf+3pmG23pQtN3Ocyz3l2Lhf00EWMLnbwJcxJyN/tB+79NyMap8U EHS5Lp8KDWXCR6K8vGwyD12ByQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFLzxBdAY SnTAR//I0IPdZg1YxZWAMB8GA1UdIwQYMBaAFEqZP/hPYCkDoxfiiL0Zudogk1WK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zQTQxN0Q3NDA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9TcGtfLUU5Z0tRT2pGLUtJdlJtNTJpQ1RW WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Nwa18tRTlnS1FPakYtS0l2Um01MmlDVFZZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM5OTgvM0E0MTdENzQwOERDMTFFREJFREU2MTJCQzRGOUFFMDIvODVDMkZEQUEw OEUwMTFFRDlDM0RDQjdBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ3NMAwQDyrVYMA0EAgACMAcDBQAkAuNAMA0GCSqGSIb3DQEBCwUA A4IBAQB2AFGS3FhLA7TbzWg/0czUT9wA/7j6fhadaXOoPJUh65rCD9RPFOR4IVft LhQKvO37g1KoYGrmaaYxyDLhVYbKCIwhPT6rQJFPtp3uaTvapDBAQRnYOKJI4CVS NS1q+AtC/VkGnew/7RLIx6V5QolVgSaYP+eS18jjctiB2qFsnBTibeBEznYfl6BJ RgkXkABjH2YEE34nhukRi3t/oxvkG6Nq79/Sd46wIQeRIZ1quuIxP/P5rTWbbvIy t+PPLRbecWk6hg1E28SCwEotxxQmgEghfm1wRrBs+h3xR2Fd6xyU2YrEWTQO6uaY 6JkhUIsoPnipG2LRjlmgMCq/NNMw -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:01 2026 by rpki-client