$ rpki-client -vvf rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa File: EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa (raw, json) Hash identifier: cS9P0z7dDiA5PKWA9E8ZS1PiuXhbrp90oxZjGnxOroU= Subject key identifier: 38:DB:E6:CD:DE:3A:35:54:72:37:87:44:57:26:26:14:A0:F4:18:81 Certificate issuer: /CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Certificate serial: 0827 Authority key identifier: 0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:44:21 +0000 ROA not before: Wed 04 Feb 2026 19:21:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141346 IP address blocks: 103.157.94.0/23 maxlen: 23 103.157.94.0/24 maxlen: 24 103.157.95.0/24 maxlen: 24 2406:9d40::/32 maxlen: 32 2406:9d40::/40 maxlen: 40 2406:9d40::/48 maxlen: 48 2406:9d40:100::/40 maxlen: 40 2406:9d40:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B51E, serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Validity Not Before: Feb 4 19:21:27 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45ed5-d0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:24:2c:ca:a0:21:f5:33:21:4f:fe:61:f9: 71:43:04:47:40:53:3c:b8:e7:d2:dc:01:f1:f8:61: 0d:0c:f9:5f:b9:78:69:fa:34:3c:a9:95:95:12:3d: b2:60:37:29:81:f5:e1:ff:8e:ed:db:9d:7f:7c:cf: 2c:99:26:44:6e:a8:25:7d:0b:82:f7:54:04:93:6a: 62:8d:9f:57:23:a2:3c:16:2b:23:f5:36:0b:27:f0: 69:96:d3:fe:e4:56:44:8f:8b:44:cc:de:f9:fa:9b: b2:35:44:33:c4:6e:66:ee:db:60:1a:c3:0d:c4:7c: 6d:be:cd:24:b2:b2:5a:72:3c:5c:5a:6a:a3:89:e5: 7f:91:f2:06:bb:32:3f:f0:8e:41:b3:96:9b:dd:5f: cc:a4:24:24:fa:d8:07:5a:cd:f9:96:66:09:20:f2: d0:6f:1b:46:7b:65:dd:8e:32:81:99:05:fe:44:19: 77:7c:6d:97:96:50:e3:5f:06:50:2a:bf:da:87:26: 56:9e:bc:c2:42:37:40:3a:3d:7c:42:69:de:23:10: b3:79:4a:f0:82:d9:45:56:c5:f1:34:64:59:97:33: 04:c1:81:98:8b:b7:67:51:be:ab:47:8a:41:19:77: 0c:d2:f4:10:2f:e9:94:55:53:a3:dc:f8:3f:f3:18: 40:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DB:E6:CD:DE:3A:35:54:72:37:87:44:57:26:26:14:A0:F4:18:81 X509v3 Authority Key Identifier: keyid:0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.157.94.0/23 IPv6: 2406:9d40::/32 Signature Algorithm: sha256WithRSAEncryption c3:b5:fb:1c:b8:20:7e:13:4f:7e:66:05:8a:8c:ef:3f:96:46: 93:16:6d:a8:b5:d1:9e:fa:a2:58:30:f0:3a:eb:e4:98:73:da: b1:2f:e1:c7:86:ef:da:49:c1:ab:c1:46:27:5a:71:23:87:ad: cd:e9:ce:5c:8a:9f:f1:37:86:a9:2f:ed:f8:2d:32:92:05:1d: d3:46:d3:e4:8c:68:3b:d4:e5:a1:b3:c7:c3:6d:23:60:a2:d4: 74:89:bc:ce:93:be:e9:ce:f4:4f:9c:3f:26:bf:bb:7e:34:91: 71:51:86:a5:28:f1:97:06:b8:8d:71:9a:cf:48:6c:51:67:66: 36:bd:db:6a:bb:ee:90:f4:ff:57:ba:3c:04:dc:80:3c:f8:fa: c4:f5:f3:cf:ed:fe:1f:0c:c8:4e:fe:b5:98:d7:25:59:62:3f: c7:e4:3a:84:b4:cd:c6:7b:b4:c3:95:02:d1:59:9a:0a:10:8c: bf:d7:f6:bf:39:f1:f3:86:21:2f:18:a9:6c:6e:2e:a6:ad:2e: f0:91:1a:9d:49:cd:b9:fb:7e:99:6f:3d:dc:0d:49:06:65:42: dc:eb:0c:1f:6b:a0:99:34:94:fe:b7:1b:92:8c:c4:83:b9:b4: d9:cb:0c:48:78:54:49:6b:19:fc:5e:66:3c:60:f6:55:34:7f: d7:4a:3e:cd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MUUxMTAvBgNVBAUTKDBDNDdFREUzMDQ4RTM1QTZFNkU4Q0IwQ0U0NEZDODQz NzI3MUVCM0QwHhcNMjYwMjA0MTkyMTI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWVkNS1kMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3YkLMqgIfUzIU/+YflxQwRHQFM8uOfS3AHx+GENDPlfuXhp+jQ8qZWVEj2y YDcpgfXh/47t251/fM8smSZEbqglfQuC91QEk2pijZ9XI6I8Fisj9TYLJ/BpltP+ 5FZEj4tEzN75+puyNUQzxG5m7ttgGsMNxHxtvs0ksrJacjxcWmqjieV/kfIGuzI/ 8I5Bs5ab3V/MpCQk+tgHWs35lmYJIPLQbxtGe2XdjjKBmQX+RBl3fG2XllDjXwZQ Kr/ahyZWnrzCQjdAOj18QmneIxCzeUrwgtlFVsXxNGRZlzMEwYGYi7dnUb6rR4pB GXcM0vQQL+mUVVOj3Pg/8xhAnwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDjb5s3e OjVUcjeHRFcmJhSg9BiBMB8GA1UdIwQYMBaAFAxH7eMEjjWm5ujLDORPyENyces9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUxRS81OUNERDU0QTBG RTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05hYm02TXNNNUVfSVEzSng2 ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFZnQ0d1NPTmFibTZNc001RV9JUTNKeDZ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MUUvNTlDREQ1NEEwRkU5MTFFQjlGMzBDNzI1QzRGOUFFMDIvRUZBMTdGMjYw RkVBMTFFQjhGQThDQjJBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ51eMA0EAgACMAcDBQAkBp1AMA0GCSqGSIb3DQEBCwUAA4IBAQDD tfscuCB+E09+ZgWKjO8/lkaTFm2otdGe+qJYMPA66+SYc9qxL+HHhu/aScGrwUYn WnEjh63N6c5cip/xN4apL+34LTKSBR3TRtPkjGg71OWhs8fDbSNgotR0ibzOk77p zvRPnD8mv7t+NJFxUYalKPGXBriNcZrPSGxRZ2Y2vdtqu+6Q9P9XujwE3IA8+PrE 9fPP7f4fDMhO/rWY1yVZYj/H5DqEtM3Ge7TDlQLRWZoKEIy/1/a/OfHzhiEvGKls bi6mrS7wkRqdSc25+36Zbz3cDUkGZULc6wwfa6CZNJT+txuSjMSDubTZywxIeFRJ axn8XmY8YPZVNH/XSj7N -----END CERTIFICATE-----Generated at Mon Mar 2 08:02:45 2026 by rpki-client