$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa File: DFDEC4D007A411EFAB20A473C4F9AE02.roa (raw, json) Hash identifier: Fo6G42v/BxJaM+8hXE5j5ItHaeTwpSb0xNKMz1Q9O28= Subject key identifier: 81:DD:4B:BD:B5:D4:FE:1C:26:4F:F8:20:FD:B4:21:D7:35:C3:D3:71 Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 015F Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:56:26 +0000 ROA not before: Sat 31 May 2025 06:06:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152710 IP address blocks: 103.49.124.0/24 maxlen: 24 103.49.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8, serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: May 31 06:06:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5970a-7459 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e5:c1:ce:5e:11:5e:a0:9b:42:00:aa:b3:e5: 22:8e:fa:db:16:3a:68:f2:f8:b0:69:ca:d0:8c:6d: f8:f9:17:d6:be:a5:01:1d:e5:78:29:7e:84:aa:8b: df:f3:94:d7:cd:45:32:a1:19:66:fc:45:42:b5:f8: 4d:05:6e:02:28:7f:4b:22:cc:19:6f:42:4f:c7:69: 83:c0:13:f7:e9:5d:cc:e2:00:a4:13:1a:a2:b8:32: 3d:08:e0:a3:88:1a:28:b9:1c:10:a2:d5:8d:40:eb: 67:5c:81:96:9c:21:55:43:ad:bd:f6:2b:22:21:56: c6:28:2b:83:00:36:b1:50:c9:ff:e1:f2:d1:ce:00: f7:68:06:65:ac:71:bb:48:e6:d7:6a:f9:85:9d:bd: fc:92:65:e5:07:57:8f:eb:2d:62:ae:48:5b:31:21: 82:03:3c:22:4e:51:01:b4:b5:63:7b:2e:37:b9:97: b3:72:06:db:02:6d:96:63:7d:dd:7d:4b:fc:79:5a: 99:5c:ad:d9:8d:ec:26:78:4b:9e:aa:31:15:78:2c: 26:cc:2e:7c:e9:88:58:88:d2:e8:82:0c:97:10:10: 54:11:b3:b4:76:d9:06:10:23:a3:fe:37:de:02:94: c1:62:ff:76:9a:17:de:ab:13:d1:08:a0:c6:8f:69: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DD:4B:BD:B5:D4:FE:1C:26:4F:F8:20:FD:B4:21:D7:35:C3:D3:71 X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.124.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:77:80:fe:a6:84:ea:50:0f:8f:da:0b:d2:ab:58:e1:5d:89: f7:f8:ba:88:42:f1:ad:24:be:d7:9c:fd:84:b0:48:27:ac:63: 28:04:c1:6f:b6:1e:09:7b:f3:0c:19:74:0f:2d:9f:28:ec:e8: 7c:01:70:67:ff:53:bc:f6:77:4b:a8:18:c0:45:75:f8:0a:04: 86:1f:33:66:28:66:46:b1:fe:27:e8:6b:2c:c8:32:a5:83:41: 85:60:79:cd:01:f0:52:92:02:9d:46:c7:82:09:fb:86:14:17: 7c:3c:3e:59:fe:d2:54:6b:2d:d8:1c:02:0e:ac:20:73:50:a9: a9:d7:cf:d6:f3:3f:92:36:0a:5a:ec:85:64:52:a2:e2:c3:b4: 64:c0:d8:ad:c0:88:d9:d6:f0:35:61:a7:09:8a:e4:4c:67:2e: 02:57:a2:df:fd:33:25:c2:d8:b7:ce:05:73:25:47:01:a1:3c: 73:51:7a:8f:7d:e5:95:63:37:1e:47:84:87:25:79:19:fd:ca: 4b:53:a5:b9:2c:7c:2c:3c:9f:af:8d:cb:a8:65:e3:eb:e6:b4: ce:c2:b2:86:ad:b7:5b:cc:bc:23:98:b3:b3:4c:ab:34:f6:c8: e3:e2:6c:b7:fc:ca:71:39:95:6b:b4:2e:a4:a6:00:fc:c5:00: cd:17:45:33 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5QjgxMTAvBgNVBAUTKDU2NzgyNjE2Mjc1NEI0NjBDQjU4NjZEQUMzMTQ4ODBD NzAzNTQ2MUQwHhcNMjUwNTMxMDYwNjE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTcwYS03NDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOXBzl4RXqCbQgCqs+UijvrbFjpo8viwacrQjG34+RfWvqUBHeV4KX6Eqovf 85TXzUUyoRlm/EVCtfhNBW4CKH9LIswZb0JPx2mDwBP36V3M4gCkExqiuDI9COCj iBoouRwQotWNQOtnXIGWnCFVQ6299isiIVbGKCuDADaxUMn/4fLRzgD3aAZlrHG7 SObXavmFnb38kmXlB1eP6y1irkhbMSGCAzwiTlEBtLVjey43uZezcgbbAm2WY33d fUv8eVqZXK3ZjewmeEueqjEVeCwmzC586YhYiNLoggyXEBBUEbO0dtkGECOj/jfe ApTBYv92mhfeqxPRCKDGj2naHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIHdS721 1P4cJk/4IP20Idc1w9NxMB8GA1UdIwQYMBaAFFZ4JhYnVLRgy1hm2sMUiAxwNUYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlCOC9DOEIxRDQ0RTA3 QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRHRExXR2Jhd3hTSURIQTFS aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q5QjgvQzhCMUQ0NEUwN0ExMTFFRjg0RjNEMjZBQzRGOUFFMDIvREZERUM0RDAw N0E0MTFFRkFCMjBBNDczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZzF8MA0GCSqGSIb3DQEBCwUAA4IBAQB8d4D+poTqUA+P2gvSq1jh XYn3+LqIQvGtJL7XnP2EsEgnrGMoBMFvth4Je/MMGXQPLZ8o7Oh8AXBn/1O89ndL qBjARXX4CgSGHzNmKGZGsf4n6GssyDKlg0GFYHnNAfBSkgKdRseCCfuGFBd8PD5Z /tJUay3YHAIOrCBzUKmp18/W8z+SNgpa7IVkUqLiw7RkwNitwIjZ1vA1YacJiuRM Zy4CV6Lf/TMlwti3zgVzJUcBoTxzUXqPfeWVYzceR4SHJXkZ/cpLU6W5LHwsPJ+v jcuoZePr5rTOwrKGrbdbzLwjmLOzTKs09sjj4my3/MpxOZVrtC6kpgD8xQDNF0Uz -----END CERTIFICATE-----Generated at Mon Mar 2 16:25:11 2026 by rpki-client