$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa File: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (raw, json) Hash identifier: 0NaFUot0pXR7DvCrYe8iswpOneCs4skyX98hr8n2MVo= Subject key identifier: 31:62:00:CB:23:35:78:84:EF:30:D6:BD:89:46:73:1F:8B:9C:FB:28 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 0630 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:58:52 +0000 ROA not before: Tue 10 Jun 2025 23:32:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 23947 IP address blocks: 103.116.124.0/24 maxlen: 24 103.116.125.0/24 maxlen: 24 103.116.126.0/24 maxlen: 24 103.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 10 23:32:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a429fc-7093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d5:a0:9d:4f:0e:d2:32:c5:ff:16:fc:05:5c: 98:91:86:42:96:79:03:68:3f:52:14:3a:9f:bb:6d: af:6b:c4:9b:1b:90:59:a7:a9:04:67:02:e3:34:0e: 4e:78:00:32:42:80:db:f9:bc:bc:81:d8:8e:a7:c6: 85:2b:06:d3:d4:06:af:92:19:4d:bd:4c:f6:14:20: 88:f0:08:0d:ec:d1:c8:22:4d:6a:0f:e9:43:15:45: 6a:3a:6c:d7:90:e2:37:b2:05:bb:72:51:af:03:9e: 45:a3:25:0e:b7:38:bd:3a:cd:8c:35:3e:d6:46:2e: 80:10:43:67:2c:ad:6a:6f:28:62:95:f9:02:23:f6: 08:2f:97:cb:a1:c6:49:88:cf:bd:6c:bb:71:75:22: cb:bd:32:9e:97:32:52:5d:8c:60:8e:30:97:05:d8: 60:c1:eb:8b:11:4e:59:0b:68:96:4a:a9:4e:d3:15: 7b:ce:13:4a:20:c5:b8:9a:c8:5d:4d:8b:cc:8b:a6: 63:ec:bf:ef:4a:c2:65:4a:4e:6a:53:69:56:6f:68: 44:02:8f:b1:35:08:5f:91:88:6c:aa:e6:b0:fb:50: 95:76:bb:80:73:d4:8f:87:c4:59:22:b9:49:f8:51: 16:03:72:ef:7b:f3:61:b1:e8:5e:9b:b7:43:d2:05: 75:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:62:00:CB:23:35:78:84:EF:30:D6:BD:89:46:73:1F:8B:9C:FB:28 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.124.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:e3:90:5b:f1:c6:36:19:82:ca:e9:81:1e:ab:87:be:c8:bd: cf:2d:04:96:fd:6f:c3:14:eb:55:77:48:e6:55:57:d1:3a:d8: 52:8d:8b:8c:5c:d8:0a:4c:d1:e8:5b:6e:e0:ce:58:71:0d:ef: 29:37:3a:c3:d3:9d:15:00:32:10:dc:4f:44:ad:da:66:f7:70: d7:25:9c:ac:dd:42:7a:64:71:1a:02:2a:f1:7c:72:3d:8f:b3: 87:f3:77:51:1d:67:f6:f2:b5:5e:a4:a5:36:b1:c0:7e:af:69: 95:f4:02:c1:77:23:eb:cc:1c:4b:cf:2c:96:09:73:66:59:99: f6:d9:15:ce:98:0b:25:30:3d:af:20:e2:91:55:4b:ab:2c:a6: 67:6e:ed:d8:ff:3c:ac:a1:4b:6f:87:5a:6d:d2:d0:72:a6:6a: 49:f5:75:38:6e:e1:86:0f:b8:06:51:2c:2e:1d:a2:b5:a4:f0: ac:d5:8f:55:f7:d3:70:d4:fc:d4:13:91:08:03:d0:f1:bc:54: 20:5e:c6:0e:7b:f0:6d:52:63:f4:fb:63:ed:b2:37:be:de:46: fe:d8:18:0b:fd:9f:f9:90:6b:14:ba:64:dd:d4:a8:a8:0a:f4: 5b:b0:d3:1c:20:99:c7:a3:6d:85:fa:0d:0e:19:c3:84:a5:9a: b8:35:70:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjUwNjEwMjMzMjU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjlmYy03MDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29WgnU8O0jLF/xb8BVyYkYZClnkDaD9SFDqfu22va8SbG5BZp6kEZwLjNA5O eAAyQoDb+by8gdiOp8aFKwbT1AavkhlNvUz2FCCI8AgN7NHIIk1qD+lDFUVqOmzX kOI3sgW7clGvA55FoyUOtzi9Os2MNT7WRi6AEENnLK1qbyhilfkCI/YIL5fLocZJ iM+9bLtxdSLLvTKelzJSXYxgjjCXBdhgweuLEU5ZC2iWSqlO0xV7zhNKIMW4mshd TYvMi6Zj7L/vSsJlSk5qU2lWb2hEAo+xNQhfkYhsquaw+1CVdruAc9SPh8RZIrlJ +FEWA3Lve/Nhsehem7dD0gV1aQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDFiAMsj NXiE7zDWvYlGcx+LnPsoMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I2NDcvMDE1N0JBREVEMjQ5MTFFQkEwNEI0QzNCQzRGOUFFMDIvQkY4RjcwQzY3 QjgyMTFFRDlDNEVERDNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3R8MA0GCSqGSIb3DQEBCwUAA4IBAQCM45Bb8cY2GYLK6YEeq4e+ yL3PLQSW/W/DFOtVd0jmVVfROthSjYuMXNgKTNHoW27gzlhxDe8pNzrD050VADIQ 3E9Erdpm93DXJZys3UJ6ZHEaAirxfHI9j7OH83dRHWf28rVepKU2scB+r2mV9ALB dyPrzBxLzyyWCXNmWZn22RXOmAslMD2vIOKRVUurLKZnbu3Y/zysoUtvh1pt0tBy pmpJ9XU4buGGD7gGUSwuHaK1pPCs1Y9V99Nw1PzUE5EIA9DxvFQgXsYOe/BtUmP0 +2Ptsje+3kb+2BgL/Z/5kGsUumTd1KioCvRbsNMcIJnHo22F+g0OGcOEpZq4NXBd -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:58 2026 by rpki-client