$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa File: 8F9CB4448F3511ECB2182782C4F9AE02.roa (raw, json) Hash identifier: PEgw27of0MFqunEKz93iWKmEM4bPPmkxIAHYsCgJElI= Subject key identifier: 04:1F:2C:09:D3:B0:DA:01:E5:B0:32:CB:F7:0E:04:33:36:A8:F1:03 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 04D6 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:31:36 +0000 ROA not before: Fri 03 Apr 2026 00:31:36 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 18250 IP address blocks: 103.181.44.0/23 maxlen: 24 2400:58a0:d000::/36 maxlen: 48 2400:58a0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 3 00:31:36 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf0a68-fb86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:72:f9:0d:ae:2a:a9:a4:f7:69:74:cd:07: ae:01:0f:e6:17:f6:4d:26:b6:45:be:ea:fd:e1:8e: 47:80:72:cd:76:3c:00:ae:2b:5a:f3:d3:9d:ae:5a: f4:ca:cb:25:64:9f:0e:3e:e0:67:0f:bb:d8:76:da: 0e:15:22:f6:1c:85:bc:3a:2c:56:2c:b7:66:92:55: 7d:41:c9:58:71:4d:32:57:43:d9:c3:6b:35:ac:f0: a0:9c:ce:bc:84:a4:cc:d2:17:80:1b:be:87:23:46: 04:48:65:02:df:9a:e5:65:59:8a:4a:53:e6:e5:a3: 1d:c5:bd:74:34:5a:6b:c1:7c:75:ba:7c:6a:32:a6: 9c:67:a6:a7:97:a3:0d:c4:d3:b5:a2:8e:bd:33:51: 84:fd:15:74:c3:96:c8:bf:07:03:90:fd:83:64:90: 33:44:21:95:f9:7e:06:fa:88:a9:0e:09:e7:91:c8: 68:31:62:6d:47:d4:e2:b8:fd:b9:ff:a3:8a:86:27: ce:13:45:4c:a1:b4:19:df:66:c8:72:01:42:87:d9: 15:3a:94:56:59:b2:71:cc:5d:d3:2e:ab:77:ba:e3: 78:15:8f:b0:86:44:2f:04:44:6c:49:04:88:21:ca: 79:0d:b5:e6:27:0e:0c:58:c1:1d:a3:24:c8:bd:95: a5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1F:2C:09:D3:B0:DA:01:E5:B0:32:CB:F7:0E:04:33:36:A8:F1:03 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.181.44.0/23 IPv6: 2400:58a0:d000::-2400:58a0:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3a:d5:ac:92:99:57:d0:35:b1:c8:1e:cc:a9:b1:cd:26:04:54: 8d:ca:a1:c7:67:d4:76:a8:8a:bb:d9:df:fe:22:e3:fe:2f:7d: e7:fb:49:c7:aa:94:1b:43:b6:79:f7:05:91:1c:14:f3:d2:f0: b4:c5:1d:23:59:1b:c8:27:6e:17:28:2a:88:0a:58:ba:ad:04: 23:cc:69:54:be:e3:2e:f7:79:c7:0a:aa:05:5d:35:ff:d6:d0: 5b:b0:00:b9:cf:9b:0e:93:35:9c:c0:dd:31:57:51:cc:c8:80: 18:10:a9:5e:05:59:57:a9:93:53:4b:d9:6e:7e:0b:14:c2:12: 00:ae:0a:1e:71:15:fd:f9:32:8a:2c:fb:80:13:a6:a2:09:1c: 92:ef:c7:6c:42:1d:4f:bc:7c:96:3a:8d:31:4d:3b:69:00:c0: c1:31:3f:91:48:f4:d9:2d:d9:85:e4:2f:2f:60:74:19:23:71: a3:c2:a2:c2:bb:41:64:fd:9a:d6:bd:91:b0:9d:69:1e:4d:7d: 07:8d:6e:6f:0a:e2:07:5a:74:75:7a:ce:38:95:da:5c:f8:b1: df:9e:f0:ec:4c:28:1f:fc:83:70:63:7e:5e:79:9e:25:c6:46: c9:6f:ac:a2:64:cf:d3:50:db:c5:32:0d:63:59:0f:53:21:7d: c4:64:55:83 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjYwNDAzMDAzMTM2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGE2OC1mYjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqRy+Q2uKqmk92l0zQeuAQ/mF/ZNJrZFvur94Y5HgHLNdjwArita89Odrlr0 ysslZJ8OPuBnD7vYdtoOFSL2HIW8OixWLLdmklV9QclYcU0yV0PZw2s1rPCgnM68 hKTM0heAG76HI0YESGUC35rlZVmKSlPm5aMdxb10NFprwXx1unxqMqacZ6anl6MN xNO1oo69M1GE/RV0w5bIvwcDkP2DZJAzRCGV+X4G+oipDgnnkchoMWJtR9TiuP25 /6OKhifOE0VMobQZ32bIcgFCh9kVOpRWWbJxzF3TLqt3uuN4FY+whkQvBERsSQSI Icp5DbXmJw4MWMEdoyTIvZWllQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFAQfLAnT sNoB5bAyy/cOBDM2qPEDMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvOEY5Q0I0NDQ4 RjM1MTFFQ0IyMTgyNzgyQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ7UsMBgEAgACMBIwEAMGBCQAWKDQAwYEJABYoOAwDQYJKoZIhvcN AQELBQADggEBADrVrJKZV9A1scgezKmxzSYEVI3Kocdn1HaoirvZ3/4i4/4vfef7 SceqlBtDtnn3BZEcFPPS8LTFHSNZG8gnbhcoKogKWLqtBCPMaVS+4y73eccKqgVd Nf/W0FuwALnPmw6TNZzA3TFXUczIgBgQqV4FWVepk1NL2W5+CxTCEgCuCh5xFf35 Moos+4ATpqIJHJLvx2xCHU+8fJY6jTFNO2kAwMExP5FI9Nkt2YXkLy9gdBkjcaPC osK7QWT9mta9kbCdaR5NfQeNbm8K4gdadHV6zjiV2lz4sd+e8OxMKB/8g3Bjfl55 niXGRslvrKJkz9NQ28UyDWNZD1MhfcRkVYM= -----END CERTIFICATE-----Generated at Fri Apr 17 09:58:29 2026 by rpki-client