$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa File: D994A1B2500C11EE83562B60C4F9AE02.roa (raw, json) Hash identifier: RQ/EfLMrrJ/X3PS3AL1VNJyNJGsjiJ0HkUJPHHuU2ZI= Subject key identifier: AE:97:54:A7:C8:42:F7:7C:14:66:72:57:F8:A6:1A:D5:DB:E6:86:90 Certificate issuer: /CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Certificate serial: 01F6 Authority key identifier: 1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:02:26 +0000 ROA not before: Sun 03 Aug 2025 04:41:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 932 IP address blocks: 103.247.28.0/23 maxlen: 24 2401:1fe0::/48 maxlen: 48 2401:1fe0:1::/48 maxlen: 48 2401:1fe0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA31, serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Validity Not Before: Aug 3 04:41:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a438e1-7aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:83:8f:cc:39:19:33:3c:79:68:75:7f:1b:fc: 2b:d0:c4:d6:15:c6:39:2d:57:1e:12:24:0c:61:8c: 45:41:13:49:20:be:7c:a3:3f:27:ff:32:fa:42:69: 2e:61:88:77:e4:16:29:96:89:29:bb:5e:ca:bc:f7: e8:81:20:8f:91:ac:2a:b0:0b:76:bb:2f:b4:39:d6: 68:1a:6a:ec:45:14:c0:8a:96:be:c8:21:08:a4:bc: 3c:99:28:2f:ba:21:eb:ba:e9:73:4c:26:a0:1e:ad: a4:d2:26:89:e3:9c:29:8a:63:4e:f7:4c:69:4e:52: 0c:ea:e7:08:37:70:7b:56:c8:e4:37:0e:a5:ce:10: 7c:16:a4:55:44:3f:f2:b2:d0:ff:3a:68:7d:a1:a0: 01:23:b0:1c:5d:1e:28:fb:82:1a:14:0e:65:d2:ed: 82:ee:88:29:8c:35:12:d2:e1:e0:c6:7d:9e:73:a4: 9d:03:97:6f:c7:67:15:70:ac:81:e8:15:61:a3:f8: c2:0c:03:a4:0d:5b:8f:d6:09:7e:a9:8d:23:93:8c: 1b:fd:1f:95:82:21:c2:03:bb:c8:56:43:cb:c2:ae: 06:9d:9d:7d:22:21:98:c0:b3:53:9c:4d:f2:82:10: c2:bf:e2:0b:ba:e6:7e:cc:ed:ba:b8:16:98:11:18: b6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:97:54:A7:C8:42:F7:7C:14:66:72:57:F8:A6:1A:D5:DB:E6:86:90 X509v3 Authority Key Identifier: keyid:1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.28.0/23 IPv6: 2401:1fe0::-2401:1fe0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3e:cb:14:45:14:61:00:a8:fd:7f:55:79:72:30:a7:5e:91:f9: 7d:6b:d2:c0:6d:67:55:64:fe:0b:06:e8:3f:48:c5:68:68:b4: a7:c0:8c:13:86:dd:d3:4d:12:1c:7f:3c:a2:44:d1:a6:43:86: 30:86:4b:b7:b4:d4:55:2d:61:46:85:79:bc:22:c9:f8:7e:a0: df:74:3c:5b:63:9d:20:96:49:f5:56:ba:db:ba:8a:bb:36:e5: 76:e4:94:a8:b8:be:44:6e:bd:b2:50:be:de:ee:cb:48:80:62: 8c:18:fd:41:4e:7f:e2:4f:52:fb:36:56:87:34:87:7c:aa:af: 6d:ca:77:b8:45:05:cc:96:b4:4d:1a:10:cd:c0:82:bf:4d:cf: 74:81:f5:81:5e:41:89:52:36:89:5e:64:92:0b:b3:8f:0a:89: d5:be:f4:22:bd:42:4d:b5:36:87:2d:3e:de:26:c0:a6:3c:27: 87:8f:e3:38:56:8c:a4:0c:4d:a8:1d:df:8d:72:ad:68:37:be: 1a:21:9a:cb:ae:fe:8b:a9:aa:44:d1:34:e4:aa:52:94:b3:49: 89:0b:c4:f9:c3:8e:72:6d:ab:61:5b:48:0a:dd:72:35:af:ad: da:bc:77:b1:27:48:89:4e:83:68:58:0e:b7:25:75:0b:a2:89: 95:f0:fc:1f -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBMzExMTAvBgNVBAUTKDFFRjMwQzRDNTYwNEE1NkVDQjNFQUVFN0YyQ0E5N0VC NzgxMDUwNzAwHhcNMjUwODAzMDQ0MTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzhlMS03YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoOPzDkZMzx5aHV/G/wr0MTWFcY5LVceEiQMYYxFQRNJIL58oz8n/zL6Qmku YYh35BYplokpu17KvPfogSCPkawqsAt2uy+0OdZoGmrsRRTAipa+yCEIpLw8mSgv uiHruulzTCagHq2k0iaJ45wpimNO90xpTlIM6ucIN3B7VsjkNw6lzhB8FqRVRD/y stD/Omh9oaABI7AcXR4o+4IaFA5l0u2C7ogpjDUS0uHgxn2ec6SdA5dvx2cVcKyB 6BVho/jCDAOkDVuP1gl+qY0jk4wb/R+VgiHCA7vIVkPLwq4GnZ19IiGYwLNTnE3y ghDCv+ILuuZ+zO26uBaYERi2YQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFK6XVKfI Qvd8FGZyV/imGtXb5oaQMB8GA1UdIwQYMBaAFB7zDExWBKVuyz6u5/LKl+t4EFBw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0EzMS8wOTBGMTRGQTUw MEMxMUVFODJCMjY4NjNDNEY5QUUwMi9Idk1NVEZZRXBXN0xQcTduOHNxWDYzZ1FV SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2TU1URllFcFc3TFBxN244c3FYNjNnUVVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBMzEvMDkwRjE0RkE1MDBDMTFFRTgyQjI2ODYzQzRGOUFFMDIvRDk5NEExQjI1 MDBDMTFFRTgzNTYyQjYwQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ/ccMBgEAgACMBIwEAMFBSQBH+ADBwAkAR/gAAIwDQYJKoZIhvcN AQELBQADggEBAD7LFEUUYQCo/X9VeXIwp16R+X1r0sBtZ1Vk/gsG6D9IxWhotKfA jBOG3dNNEhx/PKJE0aZDhjCGS7e01FUtYUaFebwiyfh+oN90PFtjnSCWSfVWutu6 irs25XbklKi4vkRuvbJQvt7uy0iAYowY/UFOf+JPUvs2Voc0h3yqr23Kd7hFBcyW tE0aEM3Agr9Nz3SB9YFeQYlSNoleZJILs48KidW+9CK9Qk21NoctPt4mwKY8J4eP 4zhWjKQMTagd341yrWg3vhohmsuu/oupqkTRNOSqUpSzSYkLxPnDjnJtq2FbSArd cjWvrdq8d7EnSIlOg2hYDrcldQuiiZXw/B8= -----END CERTIFICATE-----Generated at Mon Mar 2 10:24:20 2026 by rpki-client