$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa File: B339551A8F5911F0AFB88342C4F9AE02.roa (raw, json) Hash identifier: eXQMNO4T9SC2XkbTYizwJc2SFGid2A3mIxorvKFCeno= Subject key identifier: 7B:C8:ED:C5:19:D8:2A:16:92:B5:BC:00:03:B1:CC:B4:8A:7A:96:F5 Certificate issuer: /CN=A917C0CC/serialNumber=0DCAFAC145B22F1560780166CD1F151504EEF8A1 Certificate serial: 9F Authority key identifier: 0D:CA:FA:C1:45:B2:2F:15:60:78:01:66:CD:1F:15:15:04:EE:F8:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa Signing time: Fri 05 Jun 2026 08:39:48 +0000 ROA not before: Fri 05 Jun 2026 08:39:48 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 16509 IP address blocks: 103.237.104.0/24 maxlen: 24 103.237.105.0/24 maxlen: 24 103.237.106.0/24 maxlen: 24 103.237.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.crl rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 07:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0CC, serialNumber=0DCAFAC145B22F1560780166CD1F151504EEF8A1 Validity Not Before: Jun 5 08:39:48 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a228b54-ca6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:28:7d:b1:41:fa:69:2e:04:09:40:ef:65:0d: 51:f2:9c:d6:fa:9c:db:55:c3:01:01:04:77:d7:9a: 7d:1f:68:4b:92:d2:41:57:0a:ca:f4:fe:f1:ea:1d: 63:dd:c5:75:d3:8b:44:ac:db:00:89:75:4f:3a:5b: 3f:65:b5:0b:97:da:57:a0:8a:1f:dc:f3:2c:25:a6: eb:a9:47:76:2f:a8:55:dd:30:5e:6b:40:a9:38:f2: 94:34:d5:63:62:fd:a2:67:c5:35:6d:a1:ae:61:fd: 3b:08:73:0c:37:7b:ed:bc:6f:77:7e:12:5c:c2:ad: 6b:16:85:d1:ba:24:90:0f:5d:2b:14:78:f0:b7:da: 7f:c3:45:e0:69:28:c7:33:47:83:bd:fd:99:64:60: 8b:a5:94:cf:48:48:f5:fd:54:6d:c6:fe:3d:64:a7: a8:41:19:19:b5:8d:51:a4:46:a4:3d:3b:8b:08:72: d6:d6:6e:0c:c8:56:2b:4f:50:2e:54:e8:92:18:e3: 39:66:5b:be:35:a1:81:f9:24:21:c3:41:6f:cf:9b: 36:2f:ef:10:81:33:4e:da:91:c8:89:ec:5d:21:e4: bb:4c:3e:17:0e:df:b3:20:19:2d:2c:5c:f8:dc:ab: d9:76:90:16:54:16:ac:ec:7e:53:8e:b8:a0:4a:ae: 76:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C8:ED:C5:19:D8:2A:16:92:B5:BC:00:03:B1:CC:B4:8A:7A:96:F5 X509v3 Authority Key Identifier: keyid:0D:CA:FA:C1:45:B2:2F:15:60:78:01:66:CD:1F:15:15:04:EE:F8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.237.104.0/22 Signature Algorithm: sha256WithRSAEncryption aa:b4:70:21:19:c0:40:de:c5:67:3a:c0:f0:c8:6e:32:ec:85: e9:e5:da:65:58:7f:63:a1:cb:52:97:00:66:30:bb:73:a8:c1: 73:f0:63:fc:92:ef:30:63:af:2a:6b:d5:e3:ce:72:68:55:d4: 31:6d:bc:f6:98:7b:11:20:8b:45:d2:58:a5:43:11:8a:7e:29: 65:dd:70:05:37:39:5e:85:04:28:ae:1f:76:ad:ff:62:df:87: d5:59:57:ca:56:d9:b9:63:dd:f2:49:2e:2b:fc:5f:73:22:8d: 45:b6:17:c8:f1:a6:4b:1b:79:ae:75:88:b5:59:6f:ee:38:56: ea:8a:7b:36:4f:dc:cd:bf:9d:e3:6a:2e:55:b3:9d:72:0e:e1: f1:07:97:7f:32:ff:77:10:8b:87:92:ed:43:d6:83:55:0a:4b: e8:f5:96:f0:2c:93:3a:d4:3c:53:60:6d:47:39:cb:3e:01:7d: e4:25:f8:19:24:95:3d:a3:47:61:96:44:27:19:58:53:55:9d: 31:51:97:3c:05:85:08:53:44:02:12:aa:32:09:33:c4:8f:9a: 0e:94:c4:45:a1:01:5d:32:4e:95:51:f7:6c:55:67:93:c0:97: b1:f7:4c:09:8e:44:a1:12:ea:c0:85:1c:e8:a6:d0:6d:1e:24: 02:a5:91:5e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwQ0MxMTAvBgNVBAUTKDBEQ0FGQUMxNDVCMjJGMTU2MDc4MDE2NkNEMUYxNTE1 MDRFRUY4QTEwHhcNMjYwNjA1MDgzOTQ4WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyOGI1NC1jYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryh9sUH6aS4ECUDvZQ1R8pzW+pzbVcMBAQR315p9H2hLktJBVwrK9P7x6h1j 3cV104tErNsAiXVPOls/ZbULl9pXoIof3PMsJabrqUd2L6hV3TBea0CpOPKUNNVj Yv2iZ8U1baGuYf07CHMMN3vtvG93fhJcwq1rFoXRuiSQD10rFHjwt9p/w0XgaSjH M0eDvf2ZZGCLpZTPSEj1/VRtxv49ZKeoQRkZtY1RpEakPTuLCHLW1m4MyFYrT1Au VOiSGOM5Zlu+NaGB+SQhw0Fvz5s2L+8QgTNO2pHIiexdIeS7TD4XDt+zIBktLFz4 3KvZdpAWVBas7H5TjrigSq52KQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHvI7cUZ 2CoWkrW8AAOxzLSKepb1MB8GA1UdIwQYMBaAFA3K+sFFsi8VYHgBZs0fFRUE7vih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBDQy84RkNDQzdGODhG NTcxMUYwOUM1MUVDM0JDNEY5QUUwMi9EY3I2d1VXeUx4VmdlQUZtelI4VkZRVHUt S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjcjZ3VVd5THhWZ2VBRm16UjhWRlFUdS1LRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MwQ0MvOEZDQ0M3Rjg4RjU3MTFGMDlDNTFFQzNCQzRGOUFFMDIvQjMzOTU1MUE4 RjU5MTFGMEFGQjg4MzQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+1oMA0GCSqGSIb3DQEBCwUAA4IBAQCqtHAhGcBA3sVnOsDwyG4y 7IXp5dplWH9joctSlwBmMLtzqMFz8GP8ku8wY68qa9XjznJoVdQxbbz2mHsRIItF 0lilQxGKfill3XAFNzlehQQorh92rf9i34fVWVfKVtm5Y93ySS4r/F9zIo1FthfI 8aZLG3mudYi1WW/uOFbqins2T9zNv53jai5Vs51yDuHxB5d/Mv93EIuHku1D1oNV Ckvo9ZbwLJM61DxTYG1HOcs+AX3kJfgZJJU9o0dhlkQnGVhTVZ0xUZc8BYUIU0QC EqoyCTPEj5oOlMRFoQFdMk6VUfdsVWeTwJex90wJjkShEurAhRzoptBtHiQCpZFe -----END CERTIFICATE-----Generated at Sat Jun 13 14:47:29 2026 by rpki-client