$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/21ECD84A856011EC924B3E58C4F9AE02.roa File: 21ECD84A856011EC924B3E58C4F9AE02.roa (raw, json) Hash identifier: sfu8WqaE1CEl+AbmVvNupiQWqawsQGl2Luz8JyWSfko= Subject key identifier: B1:CB:E5:3D:C6:21:6F:C3:A3:ED:1D:FB:23:C8:9E:3D:D3:08:C7:6E Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 04BC Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/21ECD84A856011EC924B3E58C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:09:41 +0000 ROA not before: Sat 05 Apr 2025 01:05:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38008 IP address blocks: 103.181.44.0/23 maxlen: 24 2400:58a0::/32 maxlen: 32 2400:58a0:100::/44 maxlen: 48 2400:58a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 5 01:05:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a464c4-90f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c7:12:dc:60:4e:11:b4:1e:6d:9f:bb:da:1e: 1b:24:2c:ba:1b:d5:c6:fc:00:f4:bc:ac:d3:30:fa: 65:67:87:59:27:fb:56:26:cd:7f:4c:78:1a:e8:78: 8b:d1:97:f2:44:68:fd:06:3c:74:a5:b5:7d:eb:38: 70:9e:88:b0:90:4a:98:a5:e6:e7:f8:5f:51:0e:92: 24:45:f7:8d:83:b3:92:19:cb:be:46:df:49:7d:61: ff:42:eb:55:4d:3b:6b:b7:fa:5b:d3:35:fb:c2:0d: a3:a6:4d:b4:6b:3e:a5:b4:1d:3c:64:b9:aa:ce:d8: 48:40:46:77:cb:f3:22:6b:c1:a1:ce:62:4f:5d:05: e0:f0:91:83:e6:50:bf:89:0d:63:f4:d8:a2:8c:1c: 6e:7a:5a:ca:a4:4b:df:1a:5b:15:b9:fe:b6:d2:b2: 94:e7:d9:34:0e:03:bd:64:b1:df:e0:2a:40:7a:4b: ea:94:f7:b5:f1:9e:04:ff:3f:6b:0d:b2:4e:64:e1: 2d:15:ba:66:66:bc:3f:64:31:ec:a8:5b:61:87:d1: fa:bf:6c:80:19:13:23:2f:f4:cc:43:e7:8a:c2:69: 52:83:79:c9:a7:1e:66:3c:60:7b:8e:5c:19:69:e7: 84:0a:02:1e:32:ae:87:20:1d:4a:67:e2:83:2f:9f: 86:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:CB:E5:3D:C6:21:6F:C3:A3:ED:1D:FB:23:C8:9E:3D:D3:08:C7:6E X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/21ECD84A856011EC924B3E58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.44.0/23 IPv6: 2400:58a0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:9b:8a:c5:ec:72:be:b3:71:3a:26:26:0e:37:68:58:32:e5: 17:4a:cd:df:96:94:5e:49:49:e2:d4:a7:e6:bd:6e:0c:bd:df: 6e:b3:e2:47:63:95:8f:3b:93:d1:35:3d:9e:d6:e2:3b:bd:32: 90:ea:cf:5c:42:75:81:25:b9:7c:72:c7:de:ea:dc:98:a1:7d: da:6e:e7:be:1b:5a:25:39:56:23:98:09:22:ec:e0:e7:33:d5: 2c:78:ab:e1:0e:3e:3a:5b:0b:4a:fa:02:57:e0:1a:27:8c:8f: f5:c1:95:74:f5:46:73:97:e7:1c:ab:b8:34:be:72:a3:87:0a: 9e:00:0c:cc:95:ea:72:04:fb:37:da:23:d9:7d:21:22:f7:c1: 09:d4:ae:e4:24:c8:12:59:ef:a8:8c:84:1f:5e:b6:0a:30:58: fc:51:5d:97:e5:70:bc:13:a3:72:54:e8:7c:05:ae:80:d7:61: 0e:d5:7a:90:6b:f5:54:c4:0b:ac:86:15:46:3f:cd:a8:a2:de: bd:e8:bb:bb:72:56:3b:36:76:69:6f:4e:c5:93:8c:db:25:d3: 19:f6:f1:0a:cf:95:a8:14:a1:e2:52:0d:86:c8:e7:97:91:78: ff:e6:cf:cf:8b:da:fb:de:ba:cd:51:17:bb:d5:16:57:6f:6f: 13:e6:56:be -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRjNC05MGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58cS3GBOEbQebZ+72h4bJCy6G9XG/AD0vKzTMPplZ4dZJ/tWJs1/THga6HiL 0ZfyRGj9Bjx0pbV96zhwnoiwkEqYpebn+F9RDpIkRfeNg7OSGcu+Rt9JfWH/QutV TTtrt/pb0zX7wg2jpk20az6ltB08ZLmqzthIQEZ3y/Mia8GhzmJPXQXg8JGD5lC/ iQ1j9NiijBxuelrKpEvfGlsVuf620rKU59k0DgO9ZLHf4CpAekvqlPe18Z4E/z9r DbJOZOEtFbpmZrw/ZDHsqFthh9H6v2yAGRMjL/TMQ+eKwmlSg3nJpx5mPGB7jlwZ aeeECgIeMq6HIB1KZ+KDL5+GVwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLHL5T3G IW/Do+0d+yPInj3TCMduMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvMjFFQ0Q4NEE4 NTYwMTFFQzkyNEIzRTU4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7UsMA0EAgACMAcDBQAkAFigMA0GCSqGSIb3DQEBCwUAA4IBAQB+ m4rF7HK+s3E6JiYON2hYMuUXSs3flpReSUni1KfmvW4Mvd9us+JHY5WPO5PRNT2e 1uI7vTKQ6s9cQnWBJbl8csfe6tyYoX3abue+G1olOVYjmAki7ODnM9UseKvhDj46 WwtK+gJX4BonjI/1wZV09UZzl+ccq7g0vnKjhwqeAAzMlepyBPs32iPZfSEi98EJ 1K7kJMgSWe+ojIQfXrYKMFj8UV2X5XC8E6NyVOh8Ba6A12EO1XqQa/VUxAushhVG P82oot696Lu7clY7NnZpb07Fk4zbJdMZ9vEKz5WoFKHiUg2GyOeXkXj/5s/Pi9r7 3rrNURe71RZXb28T5la+ -----END CERTIFICATE-----Generated at Mon Mar 2 04:14:43 2026 by rpki-client