$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa File: 8F34BFAADF7E11EF9F3F8268C4F9AE02.roa (raw, json) Hash identifier: ZuyaQpFp/V+hBL5UrfxdOsLRByLchVZlz2pVyYrr5DA= Subject key identifier: 0E:DE:3F:07:1A:76:5A:8C:D2:D4:8E:33:61:B9:1B:04:31:EA:3A:0F Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A60 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:22:23 +0000 ROA not before: Fri 16 Jan 2026 16:13:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36352 IP address blocks: 103.120.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14944 (0x3a60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:30 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4ae0f-c749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:37:ca:cd:02:ef:31:12:05:15:ac:7f:14: c1:91:06:c6:a7:07:ff:a8:0a:d9:ca:52:a4:58:41: bb:dd:a9:92:06:26:c1:8a:ee:a6:0d:4c:cf:8f:9f: 1e:10:b3:a2:dd:7f:e8:1c:09:72:74:05:91:cb:c1: 04:82:d0:c7:88:60:89:cb:7b:dd:9e:6d:6e:0c:c7: 32:90:1d:f0:93:76:d2:cd:cf:01:e5:e8:d2:3f:0c: 2f:0d:63:4f:9f:40:a2:ee:f3:63:92:06:c8:1e:a0: 87:5e:d4:b5:70:26:e9:2b:dd:e1:a5:b7:51:3d:d2: d4:ac:d0:3f:57:9f:c9:20:1f:92:5c:c5:58:a1:bf: a6:8d:8d:ab:2d:c0:ad:29:4a:62:8a:d6:cf:e7:a3: 85:4e:1d:9f:05:86:f5:62:6e:aa:5d:dc:20:06:16: a8:e9:f1:37:e7:e3:f1:dc:53:79:39:81:f3:0f:db: fb:90:6f:76:f0:d0:73:02:d3:93:8e:30:49:5b:18: d9:14:02:b9:35:05:9b:b7:20:f1:25:20:ee:24:35: 0e:47:dc:50:92:ed:e1:dd:53:3d:43:3a:4d:2b:9a: 4f:59:f1:5b:e5:9e:e7:b1:b9:b1:4b:26:b8:f9:12: 88:a8:c0:53:ec:9d:79:98:e1:f6:8e:7c:45:95:47: 33:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DE:3F:07:1A:76:5A:8C:D2:D4:8E:33:61:B9:1B:04:31:EA:3A:0F X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.204.0/24 Signature Algorithm: sha256WithRSAEncryption 41:f9:aa:74:8b:d6:d2:10:ef:28:97:74:17:70:44:88:20:b0: a2:3c:b7:3e:c6:08:fe:f4:87:5d:9d:41:de:76:a4:c3:ee:09: 77:58:e8:6a:27:64:58:b1:7e:f3:c0:df:11:9d:e0:db:d8:ba: 8e:dd:4d:e3:36:9d:0f:8d:ba:ee:20:1a:0c:10:b2:fd:d6:45: af:6d:68:cf:65:01:c1:51:20:40:fc:ff:16:1b:91:9b:a1:df: 91:ea:4c:dc:bf:67:1f:4b:85:31:63:f5:74:75:30:98:ab:91: 46:15:1b:1b:41:d5:ed:80:30:2a:99:be:c4:40:72:94:fc:93: fb:42:5d:8b:eb:36:b1:bc:a6:dd:2e:b6:dd:4a:ab:f4:9c:37: 7a:63:a5:66:2e:44:c9:eb:2f:7f:cb:a8:44:a3:6f:34:55:ff: 22:ff:6d:69:c9:1e:82:5a:d6:ed:7b:96:2f:dc:79:94:53:dc: 75:ff:ab:1d:56:d1:df:e0:88:c3:36:12:a0:56:07:42:10:b8: 0a:07:0c:42:f0:6d:9a:b1:2b:52:b1:35:01:f9:52:98:e7:4f: 14:84:6e:ef:5a:1b:b7:54:66:a9:f7:b7:d4:28:6f:bb:ed:ea: d7:e1:e7:bb:1c:b0:8e:1a:ea:23:5d:09:b2:e0:b4:79:63:60: 1b:58:cc:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICOmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWUwZi1jNzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcg3ys0C7zESBRWsfxTBkQbGpwf/qArZylKkWEG73amSBibBiu6mDUzPj58e ELOi3X/oHAlydAWRy8EEgtDHiGCJy3vdnm1uDMcykB3wk3bSzc8B5ejSPwwvDWNP n0Ci7vNjkgbIHqCHXtS1cCbpK93hpbdRPdLUrNA/V5/JIB+SXMVYob+mjY2rLcCt KUpiitbP56OFTh2fBYb1Ym6qXdwgBhao6fE35+Px3FN5OYHzD9v7kG928NBzAtOT jjBJWxjZFAK5NQWbtyDxJSDuJDUOR9xQku3h3VM9QzpNK5pPWfFb5Z7nsbmxSya4 +RKIqMBT7J15mOH2jnxFlUcz0QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA7ePwca dlqM0tSOM2G5GwQx6joPMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvOEYzNEJGQUFE RjdFMTFFRjlGM0Y4MjY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ3jMMA0GCSqGSIb3DQEBCwUAA4IBAQBB+ap0i9bSEO8ol3QXcESI ILCiPLc+xgj+9IddnUHedqTD7gl3WOhqJ2RYsX7zwN8RneDb2LqO3U3jNp0Pjbru IBoMELL91kWvbWjPZQHBUSBA/P8WG5Gbod+R6kzcv2cfS4UxY/V0dTCYq5FGFRsb QdXtgDAqmb7EQHKU/JP7Ql2L6zaxvKbdLrbdSqv0nDd6Y6VmLkTJ6y9/y6hEo280 Vf8i/21pyR6CWtbte5Yv3HmUU9x1/6sdVtHf4IjDNhKgVgdCELgKBwxC8G2asStS sTUB+VKY508UhG7vWhu3VGap97fUKG+77erX4ee7HLCOGuojXQmy4LR5Y2AbWMx8 -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:28 2026 by rpki-client