$ rpki-client -vvf rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa File: AF88A400F15711EC846A5F29C4F9AE02.roa (raw, json) Hash identifier: uVRWHiD2MouPOSwq4Y2dfjUUKLy9xIkDXXRBp7/1Riw= Subject key identifier: 62:59:AD:A1:2E:AE:74:69:7D:12:B4:B9:B2:97:2B:46:E6:94:43:F0 Certificate issuer: /CN=A917BD68/serialNumber=456320FE970F5CA4BFD7756FC3E27E06B308BE75 Certificate serial: 0356 Authority key identifier: 45:63:20:FE:97:0F:5C:A4:BF:D7:75:6F:C3:E2:7E:06:B3:08:BE:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:01:36 +0000 ROA not before: Thu 31 Jul 2025 02:08:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149980 IP address blocks: 103.189.242.0/23 maxlen: 23 103.189.242.0/24 maxlen: 24 103.189.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.crl rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BD68, serialNumber=456320FE970F5CA4BFD7756FC3E27E06B308BE75 Validity Not Before: Jul 31 02:08:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40070-4122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3c:97:b9:26:86:73:6b:20:16:d3:62:28:57: 79:d1:1d:aa:6d:93:69:0b:13:df:6f:c3:54:7c:4c: c0:7a:c8:bf:88:62:00:ed:5d:07:42:76:fe:9e:8b: 13:62:4b:43:15:0a:19:db:81:9a:6f:51:c7:5d:6b: 9f:2b:7f:1a:f8:3a:47:6c:28:56:d6:20:34:87:7b: 20:fc:07:45:0c:a9:2d:1c:42:80:58:53:8b:01:05: 08:cb:2f:59:7c:65:97:95:75:b2:de:3b:36:67:fc: cb:24:2a:63:95:f9:ef:d3:0a:fc:23:d2:7d:f5:72: 51:37:d1:9c:7c:0f:2c:82:e3:1f:b1:a2:e5:78:0a: a3:a4:51:f3:ff:6e:aa:f3:d6:f8:60:78:2b:fa:45: d9:7e:4f:b2:bd:88:1a:ce:07:af:9f:31:81:08:46: 02:16:b9:e7:4d:dc:2a:ed:a3:0f:b1:98:ba:ff:76: 95:9d:d9:8d:b1:9a:af:c3:e7:5e:b6:11:b1:a0:fb: 5a:7b:af:80:45:38:6f:06:af:a8:6b:23:31:fa:f8: 62:e9:33:42:3d:1f:d1:a7:b9:fe:ff:45:8e:cb:8c: 40:0a:e9:96:c6:26:26:6b:0f:74:57:e7:dd:17:9f: a0:6c:14:cd:a8:bb:02:c2:66:41:ed:e5:d0:49:c5: 54:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:59:AD:A1:2E:AE:74:69:7D:12:B4:B9:B2:97:2B:46:E6:94:43:F0 X509v3 Authority Key Identifier: keyid:45:63:20:FE:97:0F:5C:A4:BF:D7:75:6F:C3:E2:7E:06:B3:08:BE:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/RWMg_pcPXKS_13Vvw-J-BrMIvnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWMg_pcPXKS_13Vvw-J-BrMIvnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BD68/04D74B50F15311ECB07C9F26C4F9AE02/AF88A400F15711EC846A5F29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.242.0/23 Signature Algorithm: sha256WithRSAEncryption 95:37:e0:51:b0:06:26:b7:f4:55:24:5c:52:b1:12:3e:15:25: 64:01:3c:f3:87:47:c6:9d:c4:e9:11:a7:0c:9a:e3:fb:3a:3b: d7:8a:3d:16:48:82:29:c2:9b:e2:81:c9:e3:2a:78:88:a1:80: 9f:12:65:23:ff:5c:38:ad:03:d9:67:48:ac:27:d0:cc:84:ff: a8:86:5d:fe:da:4e:3b:0f:84:1f:04:df:62:a9:83:30:55:22: fb:bc:72:88:5b:d3:d8:75:27:49:78:4d:86:40:ff:b3:ee:4b: 31:15:92:e7:5d:21:e7:ac:7b:eb:ae:86:15:2c:52:33:34:02: b8:0d:67:f5:ce:e0:7f:8d:83:aa:7e:96:02:e7:43:c1:85:e5: d9:a3:34:ec:f0:df:0d:2a:1a:1a:f4:e3:11:f6:c4:d0:d1:0e: 08:be:10:ec:ff:a1:e2:70:11:62:c9:4b:f6:d2:5d:78:d3:36: 4c:0f:1d:0a:16:6d:8f:dd:8f:24:c3:9d:d6:ce:ae:41:ec:4e: 08:17:8b:4a:6c:51:2b:d8:81:0f:c1:dd:ae:11:9d:51:f4:75: a1:3b:34:1d:7d:46:77:35:69:1e:2e:e2:19:43:ec:84:9b:77: 56:0e:b0:60:aa:8f:17:1e:87:e2:64:9a:41:e7:96:a4:09:da: c7:fb:bf:ad -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JENjgxMTAvBgNVBAUTKDQ1NjMyMEZFOTcwRjVDQTRCRkQ3NzU2RkMzRTI3RTA2 QjMwOEJFNzUwHhcNMjUwNzMxMDIwODIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDA3MC00MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jyXuSaGc2sgFtNiKFd50R2qbZNpCxPfb8NUfEzAesi/iGIA7V0HQnb+nosT YktDFQoZ24Gab1HHXWufK38a+DpHbChW1iA0h3sg/AdFDKktHEKAWFOLAQUIyy9Z fGWXlXWy3js2Z/zLJCpjlfnv0wr8I9J99XJRN9GcfA8sguMfsaLleAqjpFHz/26q 89b4YHgr+kXZfk+yvYgazgevnzGBCEYCFrnnTdwq7aMPsZi6/3aVndmNsZqvw+de thGxoPtae6+ARThvBq+oayMx+vhi6TNCPR/Rp7n+/0WOy4xACumWxiYmaw90V+fd F5+gbBTNqLsCwmZB7eXQScVUEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGJZraEu rnRpfRK0ubKXK0bmlEPwMB8GA1UdIwQYMBaAFEVjIP6XD1ykv9d1b8PifgazCL51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkQ2OC8wNEQ3NEI1MEYx NTMxMUVDQjA3QzlGMjZDNEY5QUUwMi9SV01nX3BjUFhLU18xM1Z2dy1KLUJyTUl2 blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXTWdfcGNQWEtTXzEzVnZ3LUotQnJNSXZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JENjgvMDRENzRCNTBGMTUzMTFFQ0IwN0M5RjI2QzRGOUFFMDIvQUY4OEE0MDBG MTU3MTFFQzg0NkE1RjI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ73yMA0GCSqGSIb3DQEBCwUAA4IBAQCVN+BRsAYmt/RVJFxSsRI+ FSVkATzzh0fGncTpEacMmuP7OjvXij0WSIIpwpvigcnjKniIoYCfEmUj/1w4rQPZ Z0isJ9DMhP+ohl3+2k47D4QfBN9iqYMwVSL7vHKIW9PYdSdJeE2GQP+z7ksxFZLn XSHnrHvrroYVLFIzNAK4DWf1zuB/jYOqfpYC50PBheXZozTs8N8NKhoa9OMR9sTQ 0Q4IvhDs/6HicBFiyUv20l140zZMDx0KFm2P3Y8kw53Wzq5B7E4IF4tKbFEr2IEP wd2uEZ1R9HWhOzQdfUZ3NWkeLuIZQ+yEm3dWDrBgqo8XHofiZJpB55akCdrH+7+t -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:33 2026 by rpki-client