$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa File: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (raw, json) Hash identifier: TFtBaz3XXYr53c4KFkqYw9OsCBY/VjjGiRVEIJaG+ss= Subject key identifier: 77:8B:10:5C:C8:8C:7C:89:5F:BA:49:47:3F:1B:00:D1:EA:1C:D6:97 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0779 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:54:42 +0000 ROA not before: Tue 02 Sep 2025 22:42:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7545 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Sep 2 22:42:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45331-5a91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:bd:57:c6:c6:97:c4:c8:7c:be:11:35:02: 23:8a:4e:4b:fd:2f:75:c6:a9:bd:10:d8:7f:2e:9e: a4:85:87:6e:52:89:55:bd:dc:67:86:96:ad:e6:31: 5b:3b:b7:76:8a:7c:19:36:74:af:ab:18:c3:d6:92: 16:d1:62:d5:2d:92:f9:e9:48:eb:26:8a:94:16:ae: fb:93:22:dd:8b:2b:64:c1:c3:6f:8c:4b:d0:29:f3: bf:2a:07:cd:d1:44:01:95:3b:01:f8:21:4c:82:8b: 04:4d:b9:2a:54:40:4d:28:ac:f8:02:13:64:20:fb: 46:ad:19:01:fe:bb:8b:7e:6c:63:24:2d:45:e1:d0: 49:b7:a8:ae:3b:d7:7c:5a:19:aa:98:39:38:26:6d: 28:9e:19:ce:4c:32:34:d6:96:0f:a5:8f:59:0e:a4: 5d:5a:0a:ad:ff:da:8a:d9:da:5d:49:39:f3:78:67: ea:33:97:db:00:c2:d8:db:29:66:4a:d8:ce:c1:20: 1e:9c:10:01:27:bd:9e:f5:54:2c:27:a2:f3:eb:a0: 5e:08:27:c3:e9:37:7a:bc:92:0c:5c:b2:bf:ed:42: 90:20:16:4a:7b:17:cb:88:5b:37:fc:46:ea:73:4c: 5c:2e:69:54:ad:8f:ed:1f:c0:0a:0f:97:92:9b:e6: 83:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8B:10:5C:C8:8C:7C:89:5F:BA:49:47:3F:1B:00:D1:EA:1C:D6:97 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption 17:9e:43:be:ee:c5:a1:83:11:f3:bb:db:f2:05:ef:e1:6a:b1: c5:bc:59:8f:58:30:76:a5:38:f1:9c:f9:b8:02:30:b7:d1:c8: 62:4a:6d:8b:56:1a:bb:dc:b1:35:1a:ef:c5:64:9f:ff:89:98: 8f:3b:32:c0:d8:94:82:5b:94:8c:53:28:78:de:11:e8:28:e3: 1f:7e:86:a7:ff:b9:b3:d5:b6:d9:c5:1d:ff:d4:48:33:50:4a: a9:be:05:bb:43:ed:a6:32:f3:9a:82:11:44:35:c5:b8:64:95: a5:b3:a3:20:c6:b5:cd:6f:cf:53:13:64:92:ff:67:2c:25:7d: cc:72:e1:80:88:95:31:ba:5e:12:51:1f:62:b3:4a:02:2c:de: 88:3b:ce:92:f9:23:d9:d2:5a:6a:dc:5f:d8:37:53:95:aa:b1: b7:c2:5b:9f:08:65:b8:f0:b6:68:e8:e7:d5:b5:e6:88:3a:ec: 13:91:38:40:24:f9:be:92:d9:47:04:ca:1a:0c:be:0a:e8:03: 85:b1:f4:87:ce:cd:7d:17:97:29:d8:db:65:d9:76:5f:92:74: 2f:a4:8f:82:59:05:11:47:e1:09:e7:6e:a8:e2:9a:28:26:50: 22:1d:af:34:52:de:a6:4b:d8:9f:d1:47:47:65:19:58:67:78: e6:36:e7:85 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjUwOTAyMjI0MjQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTMzMS01YTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHy9V8bGl8TIfL4RNQIjik5L/S91xqm9ENh/Lp6khYduUolVvdxnhpat5jFb O7d2inwZNnSvqxjD1pIW0WLVLZL56UjrJoqUFq77kyLdiytkwcNvjEvQKfO/KgfN 0UQBlTsB+CFMgosETbkqVEBNKKz4AhNkIPtGrRkB/ruLfmxjJC1F4dBJt6iuO9d8 WhmqmDk4Jm0onhnOTDI01pYPpY9ZDqRdWgqt/9qK2dpdSTnzeGfqM5fbAMLY2ylm StjOwSAenBABJ72e9VQsJ6Lz66BeCCfD6Td6vJIMXLK/7UKQIBZKexfLiFs3/Ebq c0xcLmlUrY/tH8AKD5eSm+aDzQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHeLEFzI jHyJX7pJRz8bANHqHNaXMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvRUQ3QzU0MTZD RDM3MTFFREI2QTBGMzdCQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ2NlAwQAZ/IxMA8EAgACMAkDBwAgAQ3z0AAwDQYJKoZIhvcNAQEL BQADggEBABeeQ77uxaGDEfO72/IF7+FqscW8WY9YMHalOPGc+bgCMLfRyGJKbYtW GrvcsTUa78Vkn/+JmI87MsDYlIJblIxTKHjeEego4x9+hqf/ubPVttnFHf/USDNQ Sqm+BbtD7aYy85qCEUQ1xbhklaWzoyDGtc1vz1MTZJL/Zywlfcxy4YCIlTG6XhJR H2KzSgIs3og7zpL5I9nSWmrcX9g3U5WqsbfCW58IZbjwtmjo59W15og67BOROEAk +b6S2UcEyhoMvgroA4Wx9IfOzX0XlynY22XZdl+SdC+kj4JZBRFH4Qnnbqjimigm UCIdrzRS3qZL2J/RR0dlGVhneOY254U= -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:54 2026 by rpki-client