$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/8867D06A4D8211EF8C95A448C4F9AE02.roa File: 8867D06A4D8211EF8C95A448C4F9AE02.roa (raw, json) Hash identifier: NtP1TSQFc4+H3iLDCcwfxfBmUZmSonhe1ezKoE5YhGg= Subject key identifier: 92:EA:6E:6A:E6:59:A1:B1:0C:42:D0:4F:52:AF:D5:9B:3C:63:8E:48 Certificate issuer: /CN=A916BC97/serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Certificate serial: 0944 Authority key identifier: 81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/8867D06A4D8211EF8C95A448C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:03:10 +0000 ROA not before: Sun 02 Nov 2025 20:39:52 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 15830 IP address blocks: 103.5.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC97, serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Validity Not Before: Nov 2 20:39:52 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4714e-1f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:55:8b:8a:44:db:a2:50:3a:4b:f3:3c:56:7c: 17:03:ef:cb:77:79:63:88:11:93:15:03:e0:e4:a7: f7:d2:66:8d:16:01:89:84:b7:07:59:c4:a4:21:0c: f2:79:11:94:a4:7d:ba:1f:28:3f:b0:bc:d5:f7:51: 9b:04:6f:e1:64:12:87:27:d2:96:4a:41:ca:d9:56: 2c:52:b6:9a:98:3b:89:ad:ac:bb:57:1d:76:af:13: 2f:2c:24:a2:a5:c5:d8:07:22:dc:54:1b:69:3d:23: e5:c2:b8:e9:c2:7a:c1:c1:1b:c2:ef:5a:76:70:25: 61:41:3a:9d:50:03:7f:9c:7c:6c:80:68:02:b4:45: ab:b0:1d:70:8a:a7:96:a9:19:5d:67:10:00:5f:8b: 00:c8:9c:00:25:27:d7:a0:f1:77:df:77:50:03:f8: 83:2e:fc:cc:62:8f:c4:8a:c1:96:49:c0:9d:7f:3a: 88:42:b7:08:80:01:76:46:70:9e:45:11:eb:c2:8c: f5:30:e6:22:c9:87:c3:62:1b:be:92:43:4a:5a:d6: 63:00:aa:96:fa:5e:c6:0c:00:1a:a9:7b:04:d1:68: 4c:0d:53:59:da:d9:12:71:e4:cb:35:e5:d9:0b:9b: 87:1c:07:fc:1b:19:f6:4c:08:7d:56:6f:96:ca:53: ef:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:EA:6E:6A:E6:59:A1:B1:0C:42:D0:4F:52:AF:D5:9B:3C:63:8E:48 X509v3 Authority Key Identifier: keyid:81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/8867D06A4D8211EF8C95A448C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.251.0/24 Signature Algorithm: sha256WithRSAEncryption a4:ca:9f:9b:ba:25:74:b6:bd:1c:87:a5:ec:54:4b:58:a4:08: e6:ea:c2:d4:3a:2b:d7:f0:be:57:25:0b:26:ad:1d:d2:b1:f1: 06:5d:e1:ca:14:41:9f:04:ca:d5:1e:de:d8:cd:82:38:3d:38: fa:1b:23:c3:ae:a1:34:08:fd:52:9e:57:ea:41:19:4d:c0:f2: a6:27:12:e5:f1:e9:e5:d6:15:ed:16:6e:80:66:00:fa:f1:8b: 83:6a:7e:0e:e4:56:6a:2e:fc:f9:1e:b6:74:5e:18:38:37:02: e8:3b:d1:95:d1:23:57:81:90:a2:fe:f6:9d:c6:cf:a4:81:e1: 2c:91:0a:a1:1b:de:d6:a8:cd:7d:46:94:08:1f:89:bd:44:54: e2:b5:bc:36:54:c9:db:26:e2:cc:cf:50:3d:e9:d9:12:ff:8b: 48:d4:6a:a1:ea:70:19:b5:11:6e:85:70:e4:d8:d3:c1:1f:7e: f9:e4:d5:9e:33:3c:fc:16:69:05:e7:38:3a:30:26:70:31:48: 6c:7c:6c:54:8d:7f:12:1d:d6:14:70:c8:62:16:5b:0d:46:25: ff:53:45:bd:c5:64:7a:aa:c7:ab:e1:df:8e:fa:84:0b:41:12: 0d:a0:f0:d6:8b:61:89:ec:a9:47:a7:d5:1e:1a:78:04:e6:ee: f4:30:65:47 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDOTcxMTAvBgNVBAUTKDgxOEI4MTIyOTU0NkY2NEE5ODBDM0Q4NkVDNTJGMzEx OTRGMkZEOEUwHhcNMjUxMTAyMjAzOTUyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzE0ZS0xZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1WLikTbolA6S/M8VnwXA+/Ld3ljiBGTFQPg5Kf30maNFgGJhLcHWcSkIQzy eRGUpH26Hyg/sLzV91GbBG/hZBKHJ9KWSkHK2VYsUraamDuJray7Vx12rxMvLCSi pcXYByLcVBtpPSPlwrjpwnrBwRvC71p2cCVhQTqdUAN/nHxsgGgCtEWrsB1wiqeW qRldZxAAX4sAyJwAJSfXoPF333dQA/iDLvzMYo/EisGWScCdfzqIQrcIgAF2RnCe RRHrwoz1MOYiyYfDYhu+kkNKWtZjAKqW+l7GDAAaqXsE0WhMDVNZ2tkSceTLNeXZ C5uHHAf8Gxn2TAh9Vm+WylPvqQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJLqbmrm WaGxDELQT1Kv1Zs8Y45IMB8GA1UdIwQYMBaAFIGLgSKVRvZKmAw9huxS8xGU8v2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM5Ny9BMEIxRTQ0Q0JD RTcxMUVBOUVERjNFNkRDNEY5QUUwMi9nWXVCSXBWRzlrcVlERDJHN0ZMekVaVHlf WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZdUJJcFZHOWtxWUREMkc3Rkx6RVpUeV9ZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDOTcvQTBCMUU0NENCQ0U3MTFFQTlFREYzRTZEQzRGOUFFMDIvODg2N0QwNkE0 RDgyMTFFRjhDOTVBNDQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwX7MA0GCSqGSIb3DQEBCwUAA4IBAQCkyp+buiV0tr0ch6XsVEtY pAjm6sLUOivX8L5XJQsmrR3SsfEGXeHKFEGfBMrVHt7YzYI4PTj6GyPDrqE0CP1S nlfqQRlNwPKmJxLl8enl1hXtFm6AZgD68YuDan4O5FZqLvz5HrZ0Xhg4NwLoO9GV 0SNXgZCi/vadxs+kgeEskQqhG97WqM19RpQIH4m9RFTitbw2VMnbJuLMz1A96dkS /4tI1Gqh6nAZtRFuhXDk2NPBH3755NWeMzz8FmkF5zg6MCZwMUhsfGxUjX8SHdYU cMhiFlsNRiX/U0W9xWR6qser4d+O+oQLQRINoPDWi2GJ7KlHp9UeGngE5u70MGVH -----END CERTIFICATE-----Generated at Mon Mar 2 04:44:25 2026 by rpki-client