$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/CFF490F63B3211EAA19CAB2DC4F9AE02.roa File: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (raw, json) Hash identifier: 44ZNomVUKhNrCvYmD9LvtSWCJcYF4pVIBILUsyf7SwA= Subject key identifier: 3B:CD:9C:4F:72:19:8C:11:FF:13:97:57:24:F7:E4:E9:B2:2E:A2:44 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0BC4 Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/CFF490F63B3211EAA19CAB2DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:26:06 +0000 ROA not before: Tue 24 Jun 2025 19:14:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138999 IP address blocks: 103.138.84.0/24 maxlen: 24 103.138.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: Jun 24 19:14:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4062e-2188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e5:51:cf:d2:82:15:1b:68:35:69:fe:bf:4f: f6:8e:f7:c7:ee:86:93:b2:88:28:01:af:6a:01:c8: d4:cc:31:5f:99:52:ed:db:72:3b:bf:b7:56:32:5a: b8:30:57:9a:34:de:b0:0b:31:87:87:ba:9c:89:da: ab:5d:6c:74:05:93:05:2d:43:15:a2:09:f6:82:1d: b1:eb:3e:87:98:0e:95:7d:d8:71:17:df:1a:48:10: 46:0c:b1:a5:9d:e2:16:78:42:17:76:ea:97:c7:03: ca:24:9f:4a:38:ba:a5:bf:17:d3:e5:32:60:51:82: 54:cc:a2:52:ff:6e:5a:34:d1:34:b8:97:1d:3e:e3: 30:c9:00:89:c0:8c:bf:e1:88:cd:ae:f0:20:a0:c2: a4:97:62:9c:c1:d9:9d:5a:ab:9a:86:b5:8b:b2:e4: b9:ab:56:88:ed:0b:78:02:b1:52:d4:40:9d:a5:55: 1b:70:29:fc:6d:2c:b1:ab:3d:b7:f4:a1:d3:bc:74: b0:ae:a6:c3:5d:ca:5b:46:c6:26:22:c6:ba:24:df: 41:ba:0a:9c:d8:8d:f3:5d:0c:97:92:3e:a9:0b:17: e2:9a:eb:80:b6:9e:07:02:dd:fe:05:e1:e1:b6:2e: b5:86:3b:9a:0a:e9:57:cd:a5:c8:a0:3b:77:88:8f: ec:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CD:9C:4F:72:19:8C:11:FF:13:97:57:24:F7:E4:E9:B2:2E:A2:44 X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/CFF490F63B3211EAA19CAB2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.84.0/23 Signature Algorithm: sha256WithRSAEncryption a6:a9:0c:77:48:d4:95:6c:68:ea:b7:5e:ac:88:1d:e5:30:c5: 90:ee:ab:74:c7:0c:f2:d0:36:84:2a:2d:7c:cf:41:66:ce:8d: ca:a4:06:59:0f:34:19:23:71:f3:84:bc:87:68:3c:97:09:c5: 7e:69:f8:d5:e5:a9:18:a9:41:4b:cb:90:bb:d2:0e:e7:cd:ee: 2e:5f:10:7f:30:72:64:ed:4c:0b:6b:e3:64:3d:53:39:09:25: da:37:78:5f:ef:9b:4c:49:89:d4:30:c9:70:64:30:99:ca:fe: be:30:0f:fc:3d:5a:be:40:f1:f6:82:51:f5:fd:2c:dd:ba:58: 48:a6:8f:88:b5:01:55:e4:53:13:8a:4d:28:ae:ea:2c:89:b8: e7:f5:21:3c:69:81:1e:82:a4:e2:bc:2f:46:dd:d9:7a:a3:0a: c1:6d:4e:c0:9d:1a:4e:cd:c7:2b:f4:36:a0:36:d4:f6:3a:f7: 01:ea:38:b8:db:2b:56:13:b7:da:79:b7:8c:39:ab:53:4f:77: 00:a5:7c:65:df:fa:5f:06:41:6f:34:fa:15:20:85:fa:75:98: 0d:46:dd:33:18:35:d1:79:91:fe:fd:b6:48:19:c9:a1:ba:82: 4a:a9:ad:de:85:4c:2f:fd:ff:77:2c:ee:e0:86:59:de:41:73: 00:5c:62:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjUwNjI0MTkxNDE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDYyZS0yMTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uVRz9KCFRtoNWn+v0/2jvfH7oaTsogoAa9qAcjUzDFfmVLt23I7v7dWMlq4 MFeaNN6wCzGHh7qcidqrXWx0BZMFLUMVogn2gh2x6z6HmA6VfdhxF98aSBBGDLGl neIWeEIXduqXxwPKJJ9KOLqlvxfT5TJgUYJUzKJS/25aNNE0uJcdPuMwyQCJwIy/ 4YjNrvAgoMKkl2KcwdmdWquahrWLsuS5q1aI7Qt4ArFS1ECdpVUbcCn8bSyxqz23 9KHTvHSwrqbDXcpbRsYmIsa6JN9Bugqc2I3zXQyXkj6pCxfimuuAtp4HAt3+BeHh ti61hjuaCulXzaXIoDt3iI/spQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDvNnE9y GYwR/xOXVyT35OmyLqJEMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJFMkYvRkVCMTIyNTgzQjMwMTFFQUE5QjdBMDI3QzRGOUFFMDIvQ0ZGNDkwRjYz QjMyMTFFQUExOUNBQjJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4pUMA0GCSqGSIb3DQEBCwUAA4IBAQCmqQx3SNSVbGjqt16siB3l MMWQ7qt0xwzy0DaEKi18z0Fmzo3KpAZZDzQZI3HzhLyHaDyXCcV+afjV5akYqUFL y5C70g7nze4uXxB/MHJk7UwLa+NkPVM5CSXaN3hf75tMSYnUMMlwZDCZyv6+MA/8 PVq+QPH2glH1/SzdulhIpo+ItQFV5FMTik0oruosibjn9SE8aYEegqTivC9G3dl6 owrBbU7AnRpOzccr9DagNtT2OvcB6ji42ytWE7faebeMOatTT3cApXxl3/pfBkFv NPoVIIX6dZgNRt0zGDXReZH+/bZIGcmhuoJKqa3ehUwv/f93LO7ghlneQXMAXGJd -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:48 2026 by rpki-client