$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/B4A76FC8B5EC11EF9287020CC4F9AE02.roa File: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (raw, json) Hash identifier: QXT3cVNbWun3VB2ihMPWHvsqvergvyd+yJnrduGZFxk= Subject key identifier: 11:74:E8:22:B9:6A:A5:BD:D7:0B:19:88:49:61:0C:B7:DD:38:49:5B Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: EA Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/B4A76FC8B5EC11EF9287020CC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:56:14 +0000 ROA not before: Sat 05 Apr 2025 07:12:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132839 IP address blocks: 103.211.124.0/22 maxlen: 24 160.238.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Apr 5 07:12:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e30d-1b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:84:c1:ac:b9:17:aa:55:4f:19:1a:a3:22: 61:b2:76:e6:61:66:1c:76:f6:e4:b1:89:46:72:8d: a2:b4:08:bc:5f:c3:59:eb:20:55:4c:8c:b7:8a:00: cd:0b:36:ca:9e:37:87:24:8b:e5:f2:54:e3:6a:da: 2d:2a:fb:53:0e:dc:72:a1:00:f1:3c:a4:ef:9c:1c: 71:0d:56:01:49:d4:72:d1:72:47:e2:08:a7:37:62: 5d:94:32:56:ae:a2:4f:8d:0b:12:70:14:ee:4a:4a: 11:12:d3:e3:10:10:99:7a:ae:7e:ef:58:e1:29:fc: a2:4c:1a:e0:0c:d3:47:21:91:ec:0f:ce:0f:cc:49: 8a:15:d5:1f:53:c6:06:3c:65:80:2a:9a:47:e0:c5: 67:a2:8d:f0:98:bb:e2:99:40:01:7e:10:7e:5b:f3: 58:6e:ec:b0:78:6c:65:51:09:4c:52:bb:d8:1f:fa: 41:7d:31:1d:6c:a9:3b:ce:5d:24:9f:a9:3b:7f:9d: 43:cd:d9:94:c5:8e:dd:1d:9e:4a:3d:4a:1c:75:8f: 7d:6b:33:63:80:a5:a6:7e:f3:bd:0a:b3:74:7b:55: 61:10:c4:21:a1:05:da:4d:44:58:36:7e:52:8d:80: a2:fa:71:12:04:12:67:cf:94:88:36:bc:54:a5:c3: c6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:74:E8:22:B9:6A:A5:BD:D7:0B:19:88:49:61:0C:B7:DD:38:49:5B X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/B4A76FC8B5EC11EF9287020CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.211.124.0/22 160.238.84.0/22 Signature Algorithm: sha256WithRSAEncryption 43:24:d0:6c:4e:c0:ea:02:f5:e5:b6:d1:7c:ca:b4:e5:a6:7b: fd:ec:3e:6c:82:e8:61:6b:ad:db:4d:71:d8:88:8b:ba:a6:5d: c7:4d:fb:65:d2:4f:02:ef:27:bc:f1:cb:21:31:2d:c6:24:c4: 38:02:4a:fe:21:e1:30:e8:6e:c5:32:b5:fc:f5:36:c3:f3:88: b6:93:e0:9f:a9:4a:0a:49:a9:e9:5c:7a:17:54:fc:53:7b:ae: ff:44:e1:d6:ee:3f:fc:43:70:03:09:79:bf:85:44:37:65:45: 5d:b3:24:53:d5:e9:fe:5e:c2:43:a1:16:cb:d8:b1:08:c4:b0: e7:64:01:43:99:2c:79:1d:6b:55:1f:c6:9f:e4:a2:97:71:1c: e3:69:78:27:61:df:21:db:db:2d:13:6a:66:13:33:8d:b9:da: 24:f5:64:4f:4f:03:9d:5f:5f:c5:3f:25:ff:e5:7a:c2:e4:7b: 41:c5:ae:51:36:18:b7:b6:e3:14:e2:c0:d4:84:47:30:32:d3: be:e2:32:ea:77:83:f3:05:35:f2:cb:d7:45:16:e0:19:1f:bd: 82:b3:c8:b0:f9:fc:5e:2c:63:09:8c:59:d6:c4:10:7a:1e:7d: 9c:f9:98:b7:25:3d:5c:3f:f1:19:55:e8:a6:66:5c:49:89:c5: a3:42:c9:38 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EwQzAxMTAvBgNVBAUTKEEyNjYxNjdBMDRGQUZFRTVBRTFBNTBFMDQ1NzBBRDVG RDQ0RUQ2OTIwHhcNMjUwNDA1MDcxMjIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTMwZC0xYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeOEway5F6pVTxkaoyJhsnbmYWYcdvbksYlGco2itAi8X8NZ6yBVTIy3igDN CzbKnjeHJIvl8lTjatotKvtTDtxyoQDxPKTvnBxxDVYBSdRy0XJH4ginN2JdlDJW rqJPjQsScBTuSkoREtPjEBCZeq5+71jhKfyiTBrgDNNHIZHsD84PzEmKFdUfU8YG PGWAKppH4MVnoo3wmLvimUABfhB+W/NYbuyweGxlUQlMUrvYH/pBfTEdbKk7zl0k n6k7f51DzdmUxY7dHZ5KPUocdY99azNjgKWmfvO9CrN0e1VhEMQhoQXaTURYNn5S jYCi+nESBBJnz5SINrxUpcPG0wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBF06CK5 aqW91wsZiElhDLfdOElbMB8GA1UdIwQYMBaAFKJmFnoE+v7lrhpQ4EVwrV/UTtaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTBDMC80QTJFREM4MEI1 RUMxMUVGQjAyRUMxMEFDNEY5QUUwMi9vbVlXZWdUNl91V3VHbERnUlhDdFg5Uk8x cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0EwQzAvNEEyRURDODBCNUVDMTFFRkIwMkVDMTBBQzRGOUFFMDIvQjRBNzZGQzhC NUVDMTFFRjkyODcwMjBDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9N8AwQCoO5UMA0GCSqGSIb3DQEBCwUAA4IBAQBDJNBsTsDqAvXl ttF8yrTlpnv97D5sguhha63bTXHYiIu6pl3HTftl0k8C7ye88cshMS3GJMQ4Akr+ IeEw6G7FMrX89TbD84i2k+CfqUoKSanpXHoXVPxTe67/ROHW7j/8Q3ADCXm/hUQ3 ZUVdsyRT1en+XsJDoRbL2LEIxLDnZAFDmSx5HWtVH8af5KKXcRzjaXgnYd8h29st E2pmEzONudok9WRPTwOdX1/FPyX/5XrC5HtBxa5RNhi3tuMU4sDUhEcwMtO+4jLq d4PzBTXyy9dFFuAZH72Cs8iw+fxeLGMJjFnWxBB6Hn2c+Zi3JT1cP/EZVeimZlxJ icWjQsk4 -----END CERTIFICATE-----Generated at Mon Mar 2 00:22:09 2026 by rpki-client