$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa File: 8F9CB4448F3511ECB2182782C4F9AE02.roa (raw, json) Hash identifier: gw3ZKWMVOPBmgzPuWccsR8SXG2XzgGuDa8yNe9l7t9M= Subject key identifier: BB:F2:E7:CB:C9:64:3F:38:8B:89:6B:75:69:1D:B8:7E:D7:CD:47:12 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 04BA Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:09:39 +0000 ROA not before: Sat 05 Apr 2025 01:05:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18250 IP address blocks: 103.181.44.0/23 maxlen: 24 2400:58a0:d000::/36 maxlen: 48 2400:58a0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 5 01:05:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a464c3-953c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:91:67:19:da:d4:97:12:76:30:53:ea:81:72: 24:13:05:c0:79:65:f3:59:ca:78:55:e8:47:e3:06: d6:1d:dd:58:07:15:d4:47:ab:f5:4b:b3:78:4e:e7: 89:fb:ce:f0:0f:59:62:63:c1:d5:cc:c6:70:46:58: e3:fc:1c:f3:b8:a0:13:1c:08:6e:c5:3c:af:3c:b2: d3:0d:6c:5e:00:7d:8e:54:a3:15:02:ef:5c:cc:c2: 3a:1d:58:9d:37:b0:f1:d2:ce:05:6b:50:ad:10:5b: 4d:ad:3f:f9:aa:70:5e:99:d6:40:aa:eb:71:da:94: 96:c3:27:c8:5e:7d:f3:cb:c6:34:f9:43:ca:c5:2f: 12:9c:9d:02:9d:49:73:22:a6:5f:01:98:74:33:63: 58:1c:af:3d:0b:52:db:12:96:91:85:ee:db:19:28: 6c:a9:1f:9d:2e:3f:46:a9:be:ff:e9:f8:1b:73:01: 9e:21:f0:12:51:64:c5:e8:74:4f:b3:8f:e1:57:a3: 31:f5:4e:b6:88:80:67:69:ca:0a:b0:cb:90:a2:11: 1f:d6:7d:94:ed:b2:4f:a2:c5:63:b4:bf:cf:98:0a: 9d:db:cb:76:3c:a5:f8:ce:bb:02:6b:5c:22:1d:b4: af:60:a1:d4:76:12:ca:1c:b4:61:67:0c:da:7e:26: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F2:E7:CB:C9:64:3F:38:8B:89:6B:75:69:1D:B8:7E:D7:CD:47:12 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.44.0/23 IPv6: 2400:58a0:d000::-2400:58a0:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3d:18:3e:9e:8e:b3:f5:84:b2:06:dd:ca:04:70:ba:42:e1:fc: 11:df:70:51:b2:5b:22:5c:7e:45:62:48:83:d1:50:c8:7b:ef: 3d:b2:0c:0d:45:83:e4:80:5f:9c:81:6b:7d:13:27:6a:30:e3: 91:b9:5b:14:be:05:a8:49:62:90:2c:52:74:9d:55:a5:7a:3d: c3:8c:4b:57:62:04:d6:0d:b0:56:65:56:26:0a:6d:de:09:26: 22:f0:af:a9:c7:17:a4:61:79:87:58:a4:09:e1:72:42:aa:14: ee:5c:f8:b6:24:36:e6:40:de:01:d7:15:9e:f9:97:70:9f:6b: dd:2c:ef:e6:0e:21:6d:86:ef:0b:27:bf:b1:15:8d:2a:ef:51: 4d:5a:f8:e6:4e:35:9c:c7:4a:79:f6:e8:c6:f4:ca:40:e5:84: 92:05:34:36:91:89:19:ac:2d:55:ec:36:83:f3:87:4a:62:f1: f7:8a:bb:f9:1e:59:1c:21:83:21:57:bf:9e:15:e5:26:cf:d2: ec:11:69:60:c5:5d:ac:a7:46:45:88:c0:be:60:65:34:8f:f6: 24:02:68:dc:db:39:01:1c:0c:a7:b4:4e:66:d8:ab:11:a0:f6: 18:01:4a:f2:89:22:ac:65:0b:f5:79:50:94:74:7e:bb:88:2d: 74:1c:7c:5a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRjMy05NTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5FnGdrUlxJ2MFPqgXIkEwXAeWXzWcp4VehH4wbWHd1YBxXUR6v1S7N4TueJ +87wD1liY8HVzMZwRljj/BzzuKATHAhuxTyvPLLTDWxeAH2OVKMVAu9czMI6HVid N7Dx0s4Fa1CtEFtNrT/5qnBemdZAqutx2pSWwyfIXn3zy8Y0+UPKxS8SnJ0CnUlz IqZfAZh0M2NYHK89C1LbEpaRhe7bGShsqR+dLj9Gqb7/6fgbcwGeIfASUWTF6HRP s4/hV6Mx9U62iIBnacoKsMuQohEf1n2U7bJPosVjtL/PmAqd28t2PKX4zrsCa1wi HbSvYKHUdhLKHLRhZwzafiZgxQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFLvy58vJ ZD84i4lrdWkduH7XzUcSMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvOEY5Q0I0NDQ4 RjM1MTFFQ0IyMTgyNzgyQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ7UsMBgEAgACMBIwEAMGBCQAWKDQAwYEJABYoOAwDQYJKoZIhvcN AQELBQADggEBAD0YPp6Os/WEsgbdygRwukLh/BHfcFGyWyJcfkViSIPRUMh77z2y DA1Fg+SAX5yBa30TJ2ow45G5WxS+BahJYpAsUnSdVaV6PcOMS1diBNYNsFZlViYK bd4JJiLwr6nHF6RheYdYpAnhckKqFO5c+LYkNuZA3gHXFZ75l3Cfa90s7+YOIW2G 7wsnv7EVjSrvUU1a+OZONZzHSnn26Mb0ykDlhJIFNDaRiRmsLVXsNoPzh0pi8feK u/keWRwhgyFXv54V5SbP0uwRaWDFXaynRkWIwL5gZTSP9iQCaNzbOQEcDKe0TmbY qxGg9hgBSvKJIqxlC/V5UJR0fruILXQcfFo= -----END CERTIFICATE-----Generated at Mon Mar 2 04:14:19 2026 by rpki-client