$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/AA54657A880E11ED9BE52B17C4F9AE02.roa File: AA54657A880E11ED9BE52B17C4F9AE02.roa (raw, json) Hash identifier: d64wjm9gxbiMp8OVy71nexJK/cOMcYjRyvHzyINqLwQ= Subject key identifier: 97:33:5D:5C:6D:D6:C2:D1:30:D7:8C:25:01:0A:DA:06:36:F6:64:8F Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1BF6 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/AA54657A880E11ED9BE52B17C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:33:47 +0000 ROA not before: Thu 08 Jan 2026 16:13:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 47582 IP address blocks: 103.82.128.0/22 maxlen: 24 125.62.64.0/22 maxlen: 24 2400:83c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7158 (0x1bf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB, serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: Jan 8 16:13:36 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4787b-91d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ed:23:34:1e:67:ea:15:d9:98:8d:9e:bc:94: 10:9b:29:da:36:e8:aa:c3:81:15:b3:c8:43:8f:96: b8:2d:95:1e:59:d8:0a:0f:54:f0:5f:36:4d:b2:a0: f3:c7:74:1e:56:50:d4:b6:dc:11:e5:5c:48:c4:b0: 2f:a1:43:9f:f1:63:b1:0a:cb:ae:08:5d:3c:9f:24: 86:93:5e:ae:6f:a1:12:6c:57:38:2e:41:f8:be:44: b0:16:8f:ee:03:55:a3:06:7c:7f:48:32:c4:3c:fc: 1e:18:53:84:69:ae:74:ea:36:1f:eb:37:7c:73:d8: 9f:dd:57:39:13:26:15:6e:da:69:01:96:7e:a8:38: ec:c0:ea:93:84:78:3b:e5:0f:c1:5c:20:d0:f5:31: 48:db:d5:12:0a:4f:46:35:29:87:6d:54:ee:de:ea: 83:c8:00:7b:8b:d6:45:b0:76:00:51:a2:a9:5d:8a: 03:28:72:53:34:fd:0c:7c:9d:32:ed:0e:30:bf:bb: 82:29:9d:33:f7:9a:6b:d6:be:3a:36:7c:9b:63:fc: ad:21:0b:19:ae:a0:ca:29:a2:b5:3d:b6:ba:d9:ff: 6b:41:40:d1:c4:a2:2e:d2:24:ba:4c:76:70:9e:0b: 13:a3:77:95:84:2b:bc:1b:83:42:7e:0c:47:47:43: 83:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:33:5D:5C:6D:D6:C2:D1:30:D7:8C:25:01:0A:DA:06:36:F6:64:8F X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/AA54657A880E11ED9BE52B17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 125.62.64.0/22 IPv6: 2400:83c0::/32 Signature Algorithm: sha256WithRSAEncryption 26:58:cd:80:43:20:5d:fa:53:3b:6b:92:45:fe:dd:08:d8:f6: c7:31:fd:a1:19:77:31:e7:92:b8:5f:d2:63:99:fa:33:e2:50: 85:a4:8c:5f:df:5a:fa:04:bc:a4:f5:08:53:ce:0e:4d:25:ad: 48:df:f7:a9:ba:c0:74:da:08:e3:09:3c:9b:52:a0:74:90:0b: 1d:03:dc:a5:32:24:87:18:b7:a5:6c:4b:f3:01:aa:51:27:20: 1d:2a:47:00:53:ec:c9:fa:dd:89:eb:07:f0:e6:be:10:5f:8f: 86:29:b2:d6:c6:59:2b:18:0b:01:fb:88:c8:26:4e:90:0d:35: bd:4b:60:17:e7:f7:8a:94:a9:25:79:fb:32:85:cf:60:44:70: b5:b6:ee:c6:d7:8b:9e:9f:85:d9:f9:28:52:a0:b1:b9:33:80: bf:de:71:d9:f0:f5:e0:4d:6a:2e:94:84:6e:51:a2:8f:f4:fa: d7:8b:bf:4e:97:ae:7c:16:83:3f:4e:07:86:f9:88:13:cf:46: 6d:fb:2c:08:59:b3:1a:0e:4e:45:ef:01:e4:ac:b2:45:72:57: bc:81:9e:a0:87:3d:6e:8e:bb:51:c6:0f:c6:72:f4:79:36:e4: a6:2b:38:94:80:14:3e:0b:b2:a4:2d:c3:59:c2:0b:25:86:51: f6:f5:e1:ac -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICG/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjYwMTA4MTYxMzM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzg3Yi05MWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2u0jNB5n6hXZmI2evJQQmynaNuiqw4EVs8hDj5a4LZUeWdgKD1TwXzZNsqDz x3QeVlDUttwR5VxIxLAvoUOf8WOxCsuuCF08nySGk16ub6ESbFc4LkH4vkSwFo/u A1WjBnx/SDLEPPweGFOEaa506jYf6zd8c9if3Vc5EyYVbtppAZZ+qDjswOqThHg7 5Q/BXCDQ9TFI29USCk9GNSmHbVTu3uqDyAB7i9ZFsHYAUaKpXYoDKHJTNP0MfJ0y 7Q4wv7uCKZ0z95pr1r46NnybY/ytIQsZrqDKKaK1Pba62f9rQUDRxKIu0iS6THZw ngsTo3eVhCu8G4NCfgxHR0ODeQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFJczXVxt 1sLRMNeMJQEK2gY29mSPMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvQUE1NDY1N0E4 ODBFMTFFRDlCRTUyQjE3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1KAAwQCfT5AMA0EAgACMAcDBQAkAIPAMA0GCSqGSIb3DQEBCwUA A4IBAQAmWM2AQyBd+lM7a5JF/t0I2PbHMf2hGXcx55K4X9Jjmfoz4lCFpIxf31r6 BLyk9QhTzg5NJa1I3/epusB02gjjCTybUqB0kAsdA9ylMiSHGLelbEvzAapRJyAd KkcAU+zJ+t2J6wfw5r4QX4+GKbLWxlkrGAsB+4jIJk6QDTW9S2AX5/eKlKklefsy hc9gRHC1tu7G14uen4XZ+ShSoLG5M4C/3nHZ8PXgTWoulIRuUaKP9PrXi79Ol658 FoM/TgeG+YgTz0Zt+ywIWbMaDk5F7wHkrLJFcle8gZ6ghz1ujrtRxg/GcvR5NuSm KziUgBQ+C7KkLcNZwgslhlH29eGs -----END CERTIFICATE-----Generated at Tue Mar 3 00:30:16 2026 by rpki-client