$ rpki-client -vvf rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa File: 1687F94A2A1B11EB97B90C81C4F9AE02.roa (raw, json) Hash identifier: hzIcy8I1JkaK//klociYt47MfsLKBHf/SAbuct6YGf8= Subject key identifier: BB:9B:8E:DE:0F:01:70:EB:3F:0D:01:B4:6C:3D:3B:F5:4C:70:BC:FB Certificate issuer: /CN=A916D750/serialNumber=F189CDF0FB9F9C691291A1466819D13C4E8C9600 Certificate serial: 07D4 Authority key identifier: F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:40:04 +0000 ROA not before: Wed 26 Feb 2025 22:50:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4618 IP address blocks: 103.138.176.0/24 maxlen: 24 103.138.177.0/24 maxlen: 24 103.138.178.0/24 maxlen: 24 103.138.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2004 (0x7d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D750, serialNumber=F189CDF0FB9F9C691291A1466819D13C4E8C9600 Validity Not Before: Feb 26 22:50:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fb64-8fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dc:39:85:11:01:10:96:ee:52:aa:77:43:d4: 9f:a5:8f:23:a5:d5:0a:9f:c9:4a:5a:06:2b:93:65: 2a:79:be:97:02:cd:36:6a:8f:a3:61:e4:57:56:3c: 1f:6c:85:a2:9c:db:5b:65:21:84:24:a8:b1:7d:36: 27:e2:76:d0:9e:f5:03:20:1a:37:09:b5:97:24:15: e5:c9:38:16:e2:e0:97:cc:47:b3:72:4e:b8:d5:fb: e6:12:ea:03:47:42:af:53:68:a9:b7:cd:ac:62:58: 3f:05:4a:09:b4:20:82:28:74:e9:fa:b5:30:4c:97: 78:9c:3e:f7:38:d5:94:36:54:18:ef:a5:2b:5e:0b: 44:47:d4:ea:71:39:33:fe:12:f6:f5:b0:e7:b4:8f: 6c:ee:92:8c:a8:b0:23:87:08:c0:80:e8:b9:20:a4: f1:49:8f:fa:f1:8f:ac:db:9d:96:8c:95:62:ad:f3: 72:91:85:51:7c:ee:b8:a0:c8:6d:eb:7d:0f:85:65: 2b:30:81:8e:57:de:67:19:f4:88:c5:20:e4:34:fe: b5:ab:76:6b:5b:62:08:d2:31:83:67:7a:80:14:17: 39:7b:6b:d1:94:52:e5:94:0c:44:18:65:70:18:c1: f8:ab:15:a5:cb:83:b1:e6:40:5c:c8:07:b8:de:1c: 30:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:9B:8E:DE:0F:01:70:EB:3F:0D:01:B4:6C:3D:3B:F5:4C:70:BC:FB X509v3 Authority Key Identifier: keyid:F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.176.0/22 Signature Algorithm: sha256WithRSAEncryption 47:0c:e0:65:c1:1b:c5:8c:b8:a3:d4:19:fa:84:97:32:f1:8c: 0c:54:24:dd:7e:36:a6:d3:20:a1:57:2e:01:70:ab:ca:4e:6d: 3a:b7:27:b7:e1:1c:05:1a:1d:53:5b:01:aa:1e:30:d3:34:34: d7:e3:be:d8:d9:77:7f:ae:cd:5a:77:a3:6e:62:83:49:5c:ea: 7e:1a:35:44:b2:bc:eb:52:a0:62:44:ad:58:8d:28:59:be:96: 79:be:db:21:11:51:ee:55:35:ab:12:b2:aa:36:a0:15:d8:7e: 64:a9:50:5d:7a:d6:bf:10:da:42:5b:3a:51:2c:4a:08:7a:a0: 92:39:ce:b1:b5:04:f3:7f:9a:04:2a:8f:56:b7:b0:3a:47:ce: 6c:a6:77:40:91:ad:57:48:9f:bf:e2:0a:34:da:93:c1:47:f5: 3e:a1:6b:67:66:58:77:d3:5e:c5:81:bd:8a:9a:37:08:39:85: 82:2f:e4:91:8f:a2:9f:1b:77:3f:5b:58:ab:76:ca:d8:f9:ba: 97:16:04:78:82:3f:f9:53:c2:20:d6:ad:ad:69:1f:c8:e0:b7: b0:57:a8:f1:b0:11:b0:6b:68:e1:35:55:a3:4f:5e:56:5f:7c: 31:b5:aa:d4:a7:c2:61:60:40:87:43:e9:ae:66:2a:d2:9b:de: 76:26:79:b7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ3NTAxMTAvBgNVBAUTKEYxODlDREYwRkI5RjlDNjkxMjkxQTE0NjY4MTlEMTND NEU4Qzk2MDAwHhcNMjUwMjI2MjI1MDUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmI2NC04ZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdw5hREBEJbuUqp3Q9SfpY8jpdUKn8lKWgYrk2Uqeb6XAs02ao+jYeRXVjwf bIWinNtbZSGEJKixfTYn4nbQnvUDIBo3CbWXJBXlyTgW4uCXzEezck641fvmEuoD R0KvU2ipt82sYlg/BUoJtCCCKHTp+rUwTJd4nD73ONWUNlQY76UrXgtER9TqcTkz /hL29bDntI9s7pKMqLAjhwjAgOi5IKTxSY/68Y+s252WjJVirfNykYVRfO64oMht 630PhWUrMIGOV95nGfSIxSDkNP61q3ZrW2II0jGDZ3qAFBc5e2vRlFLllAxEGGVw GMH4qxWly4Ox5kBcyAe43hwwRQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLubjt4P AXDrPw0BtGw9O/VMcLz7MB8GA1UdIwQYMBaAFPGJzfD7n5xpEpGhRmgZ0TxOjJYA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDc1MC8wRkE3QzZCNjJB MTkxMUVCOUNBRjI2N0VDNEY5QUUwMi84WW5OOFB1Zm5Ha1NrYUZHYUJuUlBFNk1s Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZbk44UHVmbkdrU2thRkdhQm5SUEU2TWxnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ3NTAvMEZBN0M2QjYyQTE5MTFFQjlDQUYyNjdFQzRGOUFFMDIvMTY4N0Y5NEEy QTFCMTFFQjk3QjkwQzgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4qwMA0GCSqGSIb3DQEBCwUAA4IBAQBHDOBlwRvFjLij1Bn6hJcy 8YwMVCTdfjam0yChVy4BcKvKTm06tye34RwFGh1TWwGqHjDTNDTX477Y2Xd/rs1a d6NuYoNJXOp+GjVEsrzrUqBiRK1YjShZvpZ5vtshEVHuVTWrErKqNqAV2H5kqVBd eta/ENpCWzpRLEoIeqCSOc6xtQTzf5oEKo9Wt7A6R85spndAka1XSJ+/4go02pPB R/U+oWtnZlh3017Fgb2KmjcIOYWCL+SRj6KfG3c/W1irdsrY+bqXFgR4gj/5U8Ig 1q2taR/I4LewV6jxsBGwa2jhNVWjT15WX3wxtarUp8JhYECHQ+muZirSm952Jnm3 -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:22 2026 by rpki-client