$ rpki-client -vvf rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa File: B9629D3258D611ED86C99945C4F9AE02.roa (raw, json) Hash identifier: DL6GA/K6cpxzI2cqMbQjFszw1dEV15dZjZ9FhFB5IeI= Subject key identifier: 8E:9D:6A:C7:71:C8:9E:73:F1:CD:FD:C0:B3:CD:E3:D6:10:AA:A5:87 Certificate issuer: /CN=A917DDD6/serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Certificate serial: 13B8 Authority key identifier: B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:35:51 +0000 ROA not before: Tue 30 Dec 2025 17:14:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136001 IP address blocks: 103.79.124.0/22 maxlen: 24 202.179.132.0/22 maxlen: 24 2401:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:21:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5048 (0x13b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DDD6, serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Validity Not Before: Dec 30 17:14:20 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44ec7-8e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e9:6c:c1:e6:b5:46:4c:43:12:84:10:ef:73: 4e:64:72:0a:d0:b4:ca:e4:f2:9d:a5:dd:46:f3:cf: 1e:87:12:82:f2:8b:18:ca:89:6f:ea:0f:6b:5a:7e: a5:ce:2c:05:06:6e:8c:c7:91:96:1d:9a:ba:c4:7c: 61:c6:64:43:69:54:04:b8:d7:8b:82:2e:c4:02:4a: 3f:8c:83:85:b6:0c:c4:33:e9:8d:a3:31:06:cc:8f: 04:5a:75:2e:69:09:12:b4:2b:eb:23:b2:00:d8:f4: 7a:f0:e6:a3:53:a2:86:68:9f:e4:6f:ed:97:1f:2a: ab:5b:14:d6:3b:dd:eb:d4:ea:c7:84:48:24:01:cb: f0:f6:2d:b9:b8:aa:2c:03:d0:fa:19:a1:7b:b3:8a: 2a:31:79:20:2a:89:93:d1:f2:f7:38:68:75:09:7d: ba:59:a8:37:6c:23:a5:6f:96:01:c3:d2:ac:d6:2b: 3b:b2:70:30:b4:1d:ca:e9:6a:46:8c:65:5a:37:db: 23:bf:a2:a6:8d:0b:85:9e:1a:f7:99:cf:08:da:af: ee:5e:71:43:6c:71:e0:9a:9a:38:e0:2f:28:d8:07: 9c:80:97:35:b8:3a:ba:eb:af:3e:b0:04:b2:73:26: 6a:53:9b:f0:92:5d:85:1b:2a:7c:c4:84:4f:24:29: f9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9D:6A:C7:71:C8:9E:73:F1:CD:FD:C0:B3:CD:E3:D6:10:AA:A5:87 X509v3 Authority Key Identifier: keyid:B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.124.0/22 202.179.132.0/22 IPv6: 2401:1840::/32 Signature Algorithm: sha256WithRSAEncryption 5d:76:6c:d2:11:b7:9a:d7:43:7b:59:4a:ae:6a:d2:73:d3:da: ac:69:b7:06:56:35:50:a9:af:1c:c8:7f:06:73:98:44:c1:df: 90:e4:6d:ae:7f:91:5a:3f:74:31:13:b5:cb:40:91:74:1c:d5: 47:5a:8a:9c:bb:2a:81:75:93:89:ff:31:96:21:a9:51:27:28: 96:4f:5e:be:71:46:42:c1:70:ba:92:c7:f2:36:50:02:a8:69: b5:a9:46:4a:4b:38:9f:15:c7:27:d7:96:ff:9c:ff:da:ce:f7: ad:1f:84:fa:ff:c1:d0:15:fe:34:f3:f2:a7:a0:31:d4:bd:a2: e5:31:3e:cf:b0:a7:41:9e:29:50:9f:d6:13:69:4a:a8:c8:8d: e5:c2:45:c3:c1:5d:1d:e8:b9:68:47:ab:3c:3f:81:c7:04:0c: 3c:05:62:c4:31:45:26:22:b6:cc:d8:12:f6:81:b5:ff:bd:fa: d2:bc:8a:1e:a2:bc:db:13:ff:c6:3b:67:ca:55:ec:24:a5:03: 99:6d:43:63:b3:28:3a:98:49:37:f5:e7:ab:b4:dc:14:f7:dd: da:c8:f6:a0:4d:89:f2:33:c3:86:51:0b:d7:87:25:68:62:e8: 47:29:35:1d:f2:e6:3c:6a:4c:b0:b0:a0:52:cf:1b:05:74:dd: 68:46:aa:e7 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICE7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RERDYxMTAvBgNVBAUTKEIwNTU3MTczQTAwOEQ2Rjc4QzZFNUU2QjQwRjhEQzA3 OUE4REY2NUYwHhcNMjUxMjMwMTcxNDIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGVjNy04ZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+lswea1RkxDEoQQ73NOZHIK0LTK5PKdpd1G888ehxKC8osYyolv6g9rWn6l ziwFBm6Mx5GWHZq6xHxhxmRDaVQEuNeLgi7EAko/jIOFtgzEM+mNozEGzI8EWnUu aQkStCvrI7IA2PR68OajU6KGaJ/kb+2XHyqrWxTWO93r1OrHhEgkAcvw9i25uKos A9D6GaF7s4oqMXkgKomT0fL3OGh1CX26Wag3bCOlb5YBw9Ks1is7snAwtB3K6WpG jGVaN9sjv6KmjQuFnhr3mc8I2q/uXnFDbHHgmpo44C8o2AecgJc1uDq6668+sASy cyZqU5vwkl2FGyp8xIRPJCn57QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFI6dasdx yJ5z8c39wLPN49YQqqWHMB8GA1UdIwQYMBaAFLBVcXOgCNb3jG5ea0D43AeajfZf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RERENi9FNTM0N0IxQ0FE MjAxMUU4QkE5RDk1MUFDNEY5QUUwMi9zRlZ4YzZBSTF2ZU1ibDVyUVBqY0I1cU45 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NGVnhjNkFJMXZlTWJsNXJRUGpjQjVxTjlsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RERDYvRTUzNDdCMUNBRDIwMTFFOEJBOUQ5NTFBQzRGOUFFMDIvQjk2MjlEMzI1 OEQ2MTFFRDg2Qzk5OTQ1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ098AwQCyrOEMA0EAgACMAcDBQAkARhAMA0GCSqGSIb3DQEBCwUA A4IBAQBddmzSEbea10N7WUquatJz09qsabcGVjVQqa8cyH8Gc5hEwd+Q5G2uf5Fa P3QxE7XLQJF0HNVHWoqcuyqBdZOJ/zGWIalRJyiWT16+cUZCwXC6ksfyNlACqGm1 qUZKSzifFccn15b/nP/azvetH4T6/8HQFf408/KnoDHUvaLlMT7PsKdBnilQn9YT aUqoyI3lwkXDwV0d6LloR6s8P4HHBAw8BWLEMUUmIrbM2BL2gbX/vfrSvIoeorzb E//GO2fKVewkpQOZbUNjsyg6mEk39eertNwU993ayPagTYnyM8OGUQvXhyVoYuhH KTUd8uY8akywsKBSzxsFdN1oRqrn -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:04 2026 by rpki-client