$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0E17B1AE78F511EC83E56014C4F9AE02.roa File: 0E17B1AE78F511EC83E56014C4F9AE02.roa (raw, json) Hash identifier: thljpBcbTfFsywqUx5BbJ+XVWb8JNohUp1zcHq2Dk8Q= Subject key identifier: 21:E3:75:B8:72:41:9F:E6:1B:B9:EE:D4:CC:BF:48:D3:C0:EC:38:7A Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1154 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0E17B1AE78F511EC83E56014C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:16:16 +0000 ROA not before: Thu 10 Apr 2025 17:26:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136003 IP address blocks: 103.134.36.0/23 maxlen: 23 103.134.36.0/24 maxlen: 24 2404:5c40::/32 maxlen: 32 2404:5c40::/48 maxlen: 48 2404:5c40:1::/48 maxlen: 48 2404:5c40:2::/48 maxlen: 48 2404:5c40:3::/48 maxlen: 48 2404:5c40:4::/48 maxlen: 48 2404:5c40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4436 (0x1154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Apr 10 17:26:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42e0f-5ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b7:6f:bd:e0:41:23:00:10:35:a3:ac:9c:ed: f9:2a:64:69:63:ce:cd:c1:9e:71:fd:5d:82:bb:e1: 79:80:f6:38:d1:24:14:87:60:0b:b4:d8:52:11:48: 88:42:30:a9:a0:5a:aa:af:7e:df:fa:7c:c3:f5:33: 69:d8:e3:e9:de:47:dd:18:cc:80:b5:69:55:e2:e8: 5e:70:c2:cd:4c:2d:1a:34:92:79:08:62:9c:ab:b5: 02:0a:88:79:c0:c6:fe:db:23:02:47:80:15:d3:2c: 28:be:3f:2e:b8:10:c0:29:8d:ca:79:f8:44:3c:88: 3c:7c:de:a5:2f:d6:2a:69:d1:ca:6f:6d:5f:94:19: e2:c4:19:24:4a:7e:be:2c:0f:bf:b5:f3:12:f4:7a: e9:a8:b9:02:b1:ea:d4:22:52:bb:e1:86:9c:42:8b: 8b:14:f4:c1:47:80:8a:1a:42:cc:6b:36:e2:a5:77: 9d:bc:a2:0c:31:3b:cd:69:dc:28:ec:02:b3:ec:17: c2:54:e6:75:77:4c:96:9b:a8:5a:d7:aa:f8:13:a8: 2b:d9:69:87:6d:d9:b8:09:77:4d:62:33:cd:be:9a: 88:20:86:00:07:cf:0d:47:b2:6d:3b:2b:c7:3d:88: d4:0f:70:60:ce:ff:79:4c:5f:31:6e:e6:63:6d:1f: 18:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E3:75:B8:72:41:9F:E6:1B:B9:EE:D4:CC:BF:48:D3:C0:EC:38:7A X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0E17B1AE78F511EC83E56014C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.36.0/23 IPv6: 2404:5c40::/32 Signature Algorithm: sha256WithRSAEncryption 57:b2:c2:7a:28:e3:c9:78:d9:28:fd:15:1a:37:98:04:99:0c: e0:6b:4c:a8:bb:57:73:03:09:f6:5c:86:75:67:89:f1:48:2f: cc:cf:66:1f:ba:79:e4:d4:10:83:72:65:7b:d5:d3:f6:65:e8: 3e:c6:77:f4:68:11:78:3c:9f:2f:2b:09:70:97:b5:26:4f:52: 08:89:a3:af:ee:73:ab:74:fd:c1:3b:c3:21:e6:76:98:80:53: 9b:b4:42:28:72:78:1f:8d:52:8a:87:ea:62:a6:73:7f:bc:f8: d6:a4:d5:fb:74:af:4d:3a:59:3b:fe:1d:78:bb:b2:3c:07:56: 4a:79:56:73:fc:9b:89:f6:51:25:75:1b:4d:2a:e9:73:a7:d7: 64:8d:b8:ce:5f:ce:90:d7:4b:bd:4d:55:bb:78:1f:71:90:b1: 84:c0:1b:ac:fb:9b:1f:f4:6b:3c:98:09:23:7c:d1:f5:27:25: 6c:0d:76:29:a5:b0:ae:a3:9f:82:6d:e8:09:98:88:55:4b:5a: 20:40:a9:2f:87:ee:9a:03:76:ff:9c:8a:23:87:f4:4a:7f:52: 1f:f5:48:97:96:d7:ff:2d:41:64:e6:ce:7d:04:d0:72:68:16: 5d:cd:4d:2b:b7:a7:22:1c:9f:c0:a5:61:b9:b5:c7:a6:9f:fe: 40:9d:a7:2b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjUwNDEwMTcyNjEyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmUwZi01ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7dvveBBIwAQNaOsnO35KmRpY87NwZ5x/V2Cu+F5gPY40SQUh2ALtNhSEUiI QjCpoFqqr37f+nzD9TNp2OPp3kfdGMyAtWlV4uhecMLNTC0aNJJ5CGKcq7UCCoh5 wMb+2yMCR4AV0ywovj8uuBDAKY3KefhEPIg8fN6lL9YqadHKb21flBnixBkkSn6+ LA+/tfMS9HrpqLkCserUIlK74YacQouLFPTBR4CKGkLMazbipXedvKIMMTvNadwo 7AKz7BfCVOZ1d0yWm6ha16r4E6gr2WmHbdm4CXdNYjPNvpqIIIYAB88NR7JtOyvH PYjUD3Bgzv95TF8xbuZjbR8Y3QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFCHjdbhy QZ/mG7nu1My/SNPA7Dh6MB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYwOEQvODEwNzNBMzAyODc3MTFFOTk0MjFDODRDQzRGOUFFMDIvMEUxN0IxQUU3 OEY1MTFFQzgzRTU2MDE0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4YkMA0EAgACMAcDBQAkBFxAMA0GCSqGSIb3DQEBCwUAA4IBAQBX ssJ6KOPJeNko/RUaN5gEmQzga0you1dzAwn2XIZ1Z4nxSC/Mz2Yfunnk1BCDcmV7 1dP2Zeg+xnf0aBF4PJ8vKwlwl7UmT1IIiaOv7nOrdP3BO8Mh5naYgFObtEIocngf jVKKh+pipnN/vPjWpNX7dK9NOlk7/h14u7I8B1ZKeVZz/JuJ9lEldRtNKulzp9dk jbjOX86Q10u9TVW7eB9xkLGEwBus+5sf9Gs8mAkjfNH1JyVsDXYppbCuo5+CbegJ mIhVS1ogQKkvh+6aA3b/nIojh/RKf1If9UiXltf/LUFk5s59BNByaBZdzU0rt6ci HJ/ApWG5tcemn/5Anacr -----END CERTIFICATE-----Generated at Mon Mar 2 13:03:20 2026 by rpki-client