$ rpki-client -vvf rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa File: 8121DCA49DF611F0B7D5393FC4F9AE02.roa (raw, json) Hash identifier: OAaGxOEj+HkGkCRcYE/e+DYsPmEKThEStnL8sV8Vrlg= Subject key identifier: 25:BB:72:08:DA:3F:7B:B0:54:48:B5:B4:41:BC:1D:6C:94:FC:8C:A2 Certificate issuer: /CN=A918DAF5/serialNumber=8FA864FEA9AF1CC05A89CB10EA2E3731706DF3F5 Certificate serial: 54 Authority key identifier: 8F:A8:64:FE:A9:AF:1C:C0:5A:89:CB:10:EA:2E:37:31:70:6D:F3:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:18:26 +0000 ROA not before: Tue 30 Sep 2025 12:10:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137561 IP address blocks: 103.189.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.crl rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DAF5, serialNumber=8FA864FEA9AF1CC05A89CB10EA2E3731706DF3F5 Validity Not Before: Sep 30 12:10:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3da32-c454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:63:6d:32:b2:0b:04:9a:31:34:e4:fa:1a:a9: bc:36:4f:ab:9d:7e:8f:fa:c4:b2:00:8f:69:6a:84: a3:ff:2b:29:ed:47:21:c7:96:d8:b7:21:82:c8:e3: 0e:54:72:8c:3d:64:24:69:4a:e0:8a:e4:f7:83:b5: db:6c:08:3e:71:5f:44:c2:3a:8d:aa:70:a6:f6:91: e2:99:97:49:92:fb:f0:3d:c6:5d:a8:f7:93:ba:09: 9b:a9:21:d8:ae:c5:af:0f:86:be:8e:40:c8:82:1d: 8d:e1:cc:44:16:bd:35:29:98:a6:22:53:aa:67:7f: 42:fc:7d:3f:c2:14:63:71:aa:d5:54:dc:8a:bc:ac: fd:b9:51:29:49:38:d5:ab:a9:22:76:60:a1:84:03: c1:c5:d2:21:6d:78:b0:41:8f:33:84:02:87:b4:c0: e1:40:14:65:7a:82:6b:0c:7a:bc:1c:e0:6a:bd:aa: 84:63:78:d1:e3:f8:35:25:61:31:65:41:23:71:2b: 5a:a1:4c:8d:ce:05:3a:ae:b6:04:ce:59:0e:9f:25: 48:77:75:7e:b2:ee:f9:4e:e1:00:d7:72:51:81:1d: 02:2e:15:56:4e:82:23:57:95:d3:e7:cd:0f:ab:b4: 6d:cf:fd:4e:c9:2c:67:f2:c9:e0:ce:fb:bf:52:98: e7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:72:08:DA:3F:7B:B0:54:48:B5:B4:41:BC:1D:6C:94:FC:8C:A2 X509v3 Authority Key Identifier: keyid:8F:A8:64:FE:A9:AF:1C:C0:5A:89:CB:10:EA:2E:37:31:70:6D:F3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.126.0/24 Signature Algorithm: sha256WithRSAEncryption aa:2b:9a:7c:64:5f:9f:2a:f0:19:3a:f6:fb:f5:41:60:ca:64: 46:f5:91:06:b8:df:78:07:a3:21:db:c2:9f:d9:94:0e:7d:ec: 47:88:93:ef:1a:32:89:29:69:82:02:05:b2:e0:4b:b6:cb:64: 98:60:45:2c:0b:5f:1c:42:de:0b:65:2c:18:96:aa:b6:d5:a7: b3:ee:42:cc:74:7c:1c:61:f1:8c:54:54:a3:a4:5e:00:04:28: ef:2f:1d:80:14:bf:a7:59:aa:4d:79:41:ee:45:04:d8:39:8f: 0b:af:f2:63:66:17:cf:b7:4c:2f:b2:1e:49:4b:c9:27:2b:61: bc:6c:74:e4:44:be:db:7c:13:4d:04:e7:2c:45:32:2b:1e:16: 79:18:a5:d5:5d:a1:bb:e5:bb:a8:9d:4c:e4:83:6e:be:e8:a7: a5:82:3e:19:29:de:d7:a8:29:a5:33:ff:bf:52:e6:cb:ea:d0: a3:5d:41:07:29:92:a1:eb:be:9a:51:80:86:70:5f:08:2e:af: 20:f2:9f:99:45:49:8b:0c:52:d5:0b:3d:f4:e8:15:b9:95:0a: bb:7b:61:2a:96:a9:76:74:84:59:48:74:d8:ce:3a:91:48:82: 56:fe:51:bb:f6:ed:5a:a8:e2:ef:f4:fd:29:da:4b:ae:c3:7e: d9:c0:b1:86 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REFGNTExMC8GA1UEBRMoOEZBODY0RkVBOUFGMUNDMDVBODlDQjEwRUEyRTM3MzE3 MDZERjNGNTAeFw0yNTA5MzAxMjEwNTBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkYTMyLWM0NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCPY20ysgsEmjE05Poaqbw2T6udfo/6xLIAj2lqhKP/KyntRyHHlti3IYLI4w5U cow9ZCRpSuCK5PeDtdtsCD5xX0TCOo2qcKb2keKZl0mS+/A9xl2o95O6CZupIdiu xa8Phr6OQMiCHY3hzEQWvTUpmKYiU6pnf0L8fT/CFGNxqtVU3Iq8rP25USlJONWr qSJ2YKGEA8HF0iFteLBBjzOEAoe0wOFAFGV6gmsMerwc4Gq9qoRjeNHj+DUlYTFl QSNxK1qhTI3OBTqutgTOWQ6fJUh3dX6y7vlO4QDXclGBHQIuFVZOgiNXldPnzQ+r tG3P/U7JLGfyyeDO+79SmOe7AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUJbtyCNo/ e7BUSLW0QbwdbJT8jKIwHwYDVR0jBBgwFoAUj6hk/qmvHMBaicsQ6i43MXBt8/Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQUY1LzdDRDQyQTY4OURG NTExRjA5QTJCNjYyMEM0RjlBRTAyL2o2aGtfcW12SE1CYWljc1E2aTQzTVhCdDhf VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvajZoa19xbXZITUJhaWNzUTZpNDNNWEJ0OF9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REFGNS83Q0Q0MkE2ODlERjUxMUYwOUEyQjY2MjBDNEY5QUUwMi84MTIxRENBNDlE RjYxMUYwQjdENTM5M0ZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnvX4wDQYJKoZIhvcNAQELBQADggEBAKormnxkX58q8Bk69vv1QWDK ZEb1kQa433gHoyHbwp/ZlA597EeIk+8aMokpaYICBbLgS7bLZJhgRSwLXxxC3gtl LBiWqrbVp7PuQsx0fBxh8YxUVKOkXgAEKO8vHYAUv6dZqk15Qe5FBNg5jwuv8mNm F8+3TC+yHklLyScrYbxsdOREvtt8E00E5yxFMiseFnkYpdVdobvlu6idTOSDbr7o p6WCPhkp3teoKaUz/79S5svq0KNdQQcpkqHrvppRgIZwXwguryDyn5lFSYsMUtUL PfToFbmVCrt7YSqWqXZ0hFlIdNjOOpFIglb+Ubv27Vqo4u/0/SnaS67DftnAsYY= -----END CERTIFICATE-----Generated at Mon Mar 2 13:18:45 2026 by rpki-client