$ rpki-client -vvf rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa File: BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa (raw, json) Hash identifier: 3aFodImKWMo+HHP106nEDJyeLQ2LYiLD1hjDTf3lt2Q= Subject key identifier: 65:3B:16:17:BF:B6:78:0C:E1:57:95:0F:D4:23:82:8F:FC:59:45:69 Certificate issuer: /CN=A917B647/serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Certificate serial: 0667 Authority key identifier: 98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa Signing time: Mon 08 Jun 2026 23:26:50 +0000 ROA not before: Mon 08 Jun 2026 23:26:50 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 23947 IP address blocks: 103.116.124.0/24 maxlen: 24 103.116.125.0/24 maxlen: 24 103.116.126.0/24 maxlen: 24 103.116.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B647, serialNumber=98A5A95592C04EBED38716BC1DCE3517B7B12D08 Validity Not Before: Jun 8 23:26:50 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a274fba-635e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:bb:88:f3:a0:05:ff:6e:c3:e5:fd:14:bd: 60:72:ff:3e:c1:61:f6:ef:ef:41:86:bd:5b:95:2f: 5e:f7:13:b6:c7:47:51:95:91:bc:a5:22:11:b5:95: a2:79:66:9b:1b:7e:32:04:86:2f:a7:42:8b:21:94: 08:8c:ac:2e:43:f1:89:85:d9:22:0f:56:88:6f:ee: cc:1a:bd:45:27:7a:f6:44:39:6b:ba:0e:f2:ab:08: a5:e7:eb:b7:58:aa:4d:8f:38:e1:66:a3:49:ce:9c: b6:81:76:1d:59:76:0b:e7:88:a5:3e:58:c6:b1:0f: 79:7e:89:f7:ab:1e:90:69:c9:f8:22:c7:65:d5:1f: c8:47:b5:99:72:8f:ab:74:80:6f:d1:ff:a5:5f:20: bc:cb:08:d0:c6:db:2d:6a:f3:54:5b:cb:f7:29:4c: 42:5c:c6:6b:d4:5d:17:7b:56:17:78:cc:0c:cf:4c: 08:2f:0f:b5:f3:fe:30:c8:4c:e3:33:35:20:56:83: 1f:d7:78:6c:68:b4:83:31:68:7a:f9:24:b4:1f:dd: 0b:fa:a9:91:5f:1a:1c:2d:02:8b:34:e5:64:b1:64: 75:e2:fb:85:6c:0b:54:19:5a:29:34:a3:d3:9a:a9: 09:85:cb:4a:d6:9b:9c:98:2f:b9:b7:28:01:62:33: 0e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3B:16:17:BF:B6:78:0C:E1:57:95:0F:D4:23:82:8F:FC:59:45:69 X509v3 Authority Key Identifier: keyid:98:A5:A9:55:92:C0:4E:BE:D3:87:16:BC:1D:CE:35:17:B7:B1:2D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/mKWpVZLATr7Thxa8Hc41F7exLQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mKWpVZLATr7Thxa8Hc41F7exLQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B647/0157BADED24911EBA04B4C3BC4F9AE02/BF8F70C67B8211ED9C4EDD3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.124.0/22 Signature Algorithm: sha256WithRSAEncryption b7:78:47:47:78:7e:a8:a9:0f:52:19:bd:40:07:9f:f0:95:7e: 99:d1:d6:47:3d:ce:65:bc:20:9b:4b:9d:80:d3:39:59:48:5c: 1f:2c:24:dd:9f:5c:52:85:e8:e2:07:7b:83:28:cc:6f:73:44: 64:21:ee:61:73:e9:70:4d:27:15:0d:bf:32:b6:55:e8:be:85: 45:d2:ed:bb:48:38:6a:fa:ea:fa:7e:e6:4d:64:a7:f1:99:5d: b5:af:f5:f6:ee:91:a6:76:0a:8e:f1:31:7b:c3:62:f5:e0:a3: e0:4c:1c:e2:26:88:cd:72:c1:55:cb:7c:bb:4a:c7:5b:24:84: e4:b6:18:dc:f4:55:78:8b:9e:0e:d0:6b:3f:ea:39:f9:63:ba: 78:54:23:8b:3f:58:cb:8c:68:bb:2f:7a:6b:79:2f:9b:fe:92: 9d:d1:f7:db:38:5f:ac:eb:12:b8:ff:d2:18:22:dd:7c:36:dc: 53:6e:6d:61:71:70:4d:64:c9:30:ae:37:46:e3:dc:4f:ba:0a: 50:93:7c:96:4a:0f:db:b3:69:ee:de:9f:a9:57:16:07:c7:59: 1d:9b:20:6b:ff:dd:11:9f:28:88:3a:97:d9:a5:46:fe:42:87: 94:1c:4f:7b:9e:23:0e:19:63:35:16:a8:b9:07:83:43:fa:29: 8c:43:4e:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2NDcxMTAvBgNVBAUTKDk4QTVBOTU1OTJDMDRFQkVEMzg3MTZCQzFEQ0UzNTE3 QjdCMTJEMDgwHhcNMjYwNjA4MjMyNjUwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI3NGZiYS02MzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H27iPOgBf9uw+X9FL1gcv8+wWH27+9Bhr1blS9e9xO2x0dRlZG8pSIRtZWi eWabG34yBIYvp0KLIZQIjKwuQ/GJhdkiD1aIb+7MGr1FJ3r2RDlrug7yqwil5+u3 WKpNjzjhZqNJzpy2gXYdWXYL54ilPljGsQ95fon3qx6Qacn4Isdl1R/IR7WZco+r dIBv0f+lXyC8ywjQxtstavNUW8v3KUxCXMZr1F0Xe1YXeMwMz0wILw+18/4wyEzj MzUgVoMf13hsaLSDMWh6+SS0H90L+qmRXxocLQKLNOVksWR14vuFbAtUGVopNKPT mqkJhctK1pucmC+5tygBYjMO8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGU7Fhe/ tngM4VeVD9Qjgo/8WUVpMB8GA1UdIwQYMBaAFJilqVWSwE6+04cWvB3ONRe3sS0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjY0Ny8wMTU3QkFERUQy NDkxMUVCQTA0QjRDM0JDNEY5QUUwMi9tS1dwVlpMQVRyN1RoeGE4SGM0MUY3ZXhM UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21LV3BWWkxBVHI3VGh4YThIYzQxRjdleExRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I2NDcvMDE1N0JBREVEMjQ5MTFFQkEwNEI0QzNCQzRGOUFFMDIvQkY4RjcwQzY3 QjgyMTFFRDlDNEVERDNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3R8MA0GCSqGSIb3DQEBCwUAA4IBAQC3eEdHeH6oqQ9SGb1AB5/w lX6Z0dZHPc5lvCCbS52A0zlZSFwfLCTdn1xShejiB3uDKMxvc0RkIe5hc+lwTScV Db8ytlXovoVF0u27SDhq+ur6fuZNZKfxmV21r/X27pGmdgqO8TF7w2L14KPgTBzi JojNcsFVy3y7SsdbJITkthjc9FV4i54O0Gs/6jn5Y7p4VCOLP1jLjGi7L3preS+b /pKd0ffbOF+s6xK4/9IYIt18NtxTbm1hcXBNZMkwrjdG49xPugpQk3yWSg/bs2nu 3p+pVxYHx1kdmyBr/90RnyiIOpfZpUb+QoeUHE97niMOGWM1Fqi5B4ND+imMQ05d -----END CERTIFICATE-----Generated at Sat Jun 13 19:21:40 2026 by rpki-client