$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa File: 894FFF40556111EDB7E45424C4F9AE02.roa (raw, json) Hash identifier: 2G7gFlwR8PIkICBXgCXuNRekc12kQ44lhkEmAObcZzQ= Subject key identifier: E0:7C:A1:C7:1A:40:73:AC:BB:23:95:3F:F4:41:D6:DE:FE:51:F3:D9 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 0A53 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:48:54 +0000 ROA not before: Fri 02 May 2025 20:30:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136499 IP address blocks: 103.88.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2643 (0xa53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: May 2 20:30:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a427a6-ec8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:04:c7:c1:e1:4e:db:e4:7a:09:52:58:a4: 65:9e:73:bb:e1:e0:70:2b:0d:36:93:83:0e:9b:ea: b2:24:8e:5c:3d:43:db:0e:87:bc:8c:48:3f:ef:54: fe:fe:dd:5d:14:26:4c:9a:6d:f3:b3:61:ab:e4:4a: c3:b2:d6:f4:1b:1e:18:71:75:9d:13:97:2f:1b:27: 63:e0:a7:53:b4:8b:c9:ee:cf:46:66:ba:c2:9a:20: 8b:5b:48:03:b4:fe:bc:d8:d9:6b:d2:09:bf:28:38: f3:76:df:62:a3:04:8d:37:cd:72:b2:e0:c6:f3:68: 42:27:82:5c:20:e1:e0:eb:e2:b2:0e:2d:5f:24:66: ad:f7:c8:97:74:1c:29:69:b0:dc:85:a3:3d:ba:d0: 14:63:58:0c:b3:48:23:f2:f0:29:68:0e:e5:86:a0: 62:a8:43:94:09:30:5d:2b:7c:80:c0:34:ab:d7:cb: 76:18:d7:c3:22:76:4c:c2:ab:cd:7d:99:24:71:e0: a5:af:1a:76:e1:ff:ed:c6:94:0b:75:44:52:79:88: c2:9c:ee:84:7b:c4:d4:1f:4e:3d:e8:95:3f:99:af: bc:7c:04:3e:6e:9f:6d:69:56:50:f6:f1:6d:b2:91: ec:cd:c9:f4:8f:0c:3f:ac:75:51:10:46:c6:da:cc: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:7C:A1:C7:1A:40:73:AC:BB:23:95:3F:F4:41:D6:DE:FE:51:F3:D9 X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.147.0/24 Signature Algorithm: sha256WithRSAEncryption 74:3c:c6:83:15:ff:eb:47:dc:8d:50:ff:07:70:d3:99:03:ed: 7a:f4:f8:d2:97:f8:5a:fe:35:c4:c4:fa:7e:da:74:65:14:f8: c6:85:94:c3:20:5b:a0:e0:2e:49:f2:48:cf:40:16:10:d9:d7: 5f:7a:bf:89:ca:13:ae:e5:23:8b:0a:1c:de:35:2c:ab:d6:b5: 91:a1:78:a9:2c:03:7d:2a:0a:26:c3:8b:17:7e:6b:31:e7:e4: db:56:8c:3d:66:d3:7f:dc:5d:6b:a6:f5:13:4d:27:d6:9d:89: 1d:6c:d6:f0:3f:83:b3:f4:1a:65:48:a0:02:b4:06:42:47:15: 00:95:fe:d1:a1:a1:04:4c:ae:63:05:79:3e:8a:85:a7:0b:31: 5b:a9:9d:95:00:40:6d:c4:02:73:bf:5c:2a:7c:95:e5:05:d1: 63:2b:83:69:95:70:cc:48:80:af:10:57:8a:5b:c3:93:f7:d5: b2:ff:1e:db:3f:30:b6:dc:9f:15:17:0f:cc:49:b2:da:89:ee: b2:59:5d:1c:72:af:8d:af:dd:96:a3:3a:0e:b6:af:71:a6:9e: 90:f4:fc:02:1d:02:43:21:74:9c:8b:7c:06:d4:68:c3:e7:7b: ae:3c:88:1b:2c:6e:6e:a4:e9:cb:89:79:f8:79:95:2a:9b:99: 72:f7:58:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjUwNTAyMjAzMDIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjdhNi1lYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrYEx8HhTtvkeglSWKRlnnO74eBwKw02k4MOm+qyJI5cPUPbDoe8jEg/71T+ /t1dFCZMmm3zs2Gr5ErDstb0Gx4YcXWdE5cvGydj4KdTtIvJ7s9GZrrCmiCLW0gD tP682Nlr0gm/KDjzdt9iowSNN81ysuDG82hCJ4JcIOHg6+KyDi1fJGat98iXdBwp abDchaM9utAUY1gMs0gj8vApaA7lhqBiqEOUCTBdK3yAwDSr18t2GNfDInZMwqvN fZkkceClrxp24f/txpQLdURSeYjCnO6Ee8TUH0496JU/ma+8fAQ+bp9taVZQ9vFt spHszcn0jww/rHVREEbG2szzXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOB8occa QHOsuyOVP/RB1t7+UfPZMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4NzkvQUFGQ0VGMEE4MzQ5MTFFQTg5REU2OTdCQzRGOUFFMDIvODk0RkZGNDA1 NTYxMTFFREI3RTQ1NDI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1iTMA0GCSqGSIb3DQEBCwUAA4IBAQB0PMaDFf/rR9yNUP8HcNOZ A+169PjSl/ha/jXExPp+2nRlFPjGhZTDIFug4C5J8kjPQBYQ2ddfer+JyhOu5SOL ChzeNSyr1rWRoXipLAN9Kgomw4sXfmsx5+TbVow9ZtN/3F1rpvUTTSfWnYkdbNbw P4Oz9BplSKACtAZCRxUAlf7RoaEETK5jBXk+ioWnCzFbqZ2VAEBtxAJzv1wqfJXl BdFjK4NplXDMSICvEFeKW8OT99Wy/x7bPzC23J8VFw/MSbLaie6yWV0ccq+Nr92W ozoOtq9xpp6Q9PwCHQJDIXSci3wG1GjD53uuPIgbLG5upOnLiXn4eZUqm5ly91hj -----END CERTIFICATE-----Generated at Mon Mar 2 06:41:08 2026 by rpki-client