$ rpki-client -vvf rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa File: A8C0A13EAB5D11ED88A54424C4F9AE02.roa (raw, json) Hash identifier: ifLxbQEdtSwEDPztO7x9EMblPFgWaxhozSMbQ6cMQgs= Subject key identifier: 7C:AA:06:66:1A:66:A9:A3:70:61:B7:BE:12:A3:7F:9D:32:51:44:54 Certificate issuer: /CN=A9142091/serialNumber=E08813BD188CDC2ABF5018DE6FE37F443747208E Certificate serial: 0253 Authority key identifier: E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa Signing time: Fri 03 Apr 2026 02:34:31 +0000 ROA not before: Fri 03 Apr 2026 02:34:31 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 132148 IP address blocks: 103.84.100.0/23 maxlen: 23 103.84.100.0/24 maxlen: 24 103.84.101.0/24 maxlen: 24 2001:df1:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142091, serialNumber=E08813BD188CDC2ABF5018DE6FE37F443747208E Validity Not Before: Apr 3 02:34:31 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf2737-5db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:3f:b1:91:a9:17:3f:17:16:21:05:a1:b4:e8: 87:44:94:c6:89:6f:8c:9c:ec:10:07:71:08:1e:fd: e8:9d:73:e7:26:f7:d6:83:f8:d8:cb:46:0b:72:66: d1:a1:e9:c3:a2:59:d3:63:9f:29:c4:31:8f:50:3f: 36:48:19:76:df:f9:5f:14:2f:65:20:06:57:02:cf: de:33:19:1e:1c:44:ae:f1:0c:12:7b:ab:7d:e5:df: 58:2a:8b:b5:6b:f4:54:0e:b2:8a:4f:6c:ac:08:2c: 03:cf:2c:46:33:cb:49:59:3c:0c:44:57:f0:73:e5: 14:31:eb:0a:0c:2d:d6:11:d7:50:19:5c:f9:09:78: 28:f4:ea:28:9f:cd:78:fc:e2:a3:36:14:05:fe:8d: 0e:c8:f5:d6:69:06:95:e4:9a:f2:32:b7:80:af:24: a3:dc:c3:21:50:ae:91:37:f5:44:35:53:5f:9a:ba: ab:27:af:db:57:55:36:e9:88:7f:1e:a6:f2:e5:b9: 8c:be:9c:74:1b:38:c9:e7:3f:81:81:1a:67:80:bf: 26:8b:47:df:be:9b:31:90:68:4c:ba:63:18:3e:94: c7:08:c3:5c:7d:86:31:a7:fb:43:fc:8c:df:63:99: 29:11:aa:26:08:42:eb:ab:f8:f0:82:5a:b8:66:19: 37:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AA:06:66:1A:66:A9:A3:70:61:B7:BE:12:A3:7F:9D:32:51:44:54 X509v3 Authority Key Identifier: keyid:E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.100.0/23 IPv6: 2001:df1:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 28:dd:43:bf:1d:7a:49:ac:53:b2:fa:9a:03:a3:c6:4c:ba:2c: d9:08:ce:c1:d0:00:e5:ac:82:73:62:45:a3:10:2b:c7:1d:62: 7c:2f:e6:51:5e:b7:64:4e:e4:fa:6f:5a:0c:d1:9c:43:23:da: 7f:96:10:45:4c:ea:91:de:73:dc:88:dc:0a:c3:26:dd:a8:07: fd:92:94:05:2b:84:5f:13:45:e3:97:37:5d:ec:eb:b7:eb:26: 80:1c:97:29:47:eb:bc:af:1d:cd:fa:69:db:5f:e9:d1:24:ae: 2d:05:58:32:30:df:4b:a6:33:ce:5d:e5:91:cd:bb:a3:3d:5b: 95:ad:90:6e:79:bb:5a:2e:87:df:b5:f9:66:23:85:be:94:a8: 18:cf:58:4e:2d:12:70:58:4c:7c:cb:3a:f7:f3:bd:15:81:e6: 19:c3:a1:d3:88:a7:a7:ed:6e:f5:bb:3f:bf:0e:b3:0a:11:7e: 45:e3:4e:fa:f3:7b:1d:10:19:72:7c:88:dc:bf:44:df:f8:92: d2:77:aa:c1:a9:18:2b:dc:6a:ec:7e:ac:8f:f2:5e:86:bd:35: 3c:e0:c2:ac:be:9a:b4:b1:88:c9:e0:6e:c6:76:dd:aa:f9:ee: 08:34:72:e3:b8:ea:ff:73:1f:2c:ea:8c:e2:2f:6b:f3:7d:32: 2c:ed:5e:61 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwOTExMTAvBgNVBAUTKEUwODgxM0JEMTg4Q0RDMkFCRjUwMThERTZGRTM3RjQ0 Mzc0NzIwOEUwHhcNMjYwNDAzMDIzNDMxWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMjczNy01ZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiT+xkakXPxcWIQWhtOiHRJTGiW+MnOwQB3EIHv3onXPnJvfWg/jYy0YLcmbR oenDolnTY58pxDGPUD82SBl23/lfFC9lIAZXAs/eMxkeHESu8QwSe6t95d9YKou1 a/RUDrKKT2ysCCwDzyxGM8tJWTwMRFfwc+UUMesKDC3WEddQGVz5CXgo9Ooon814 /OKjNhQF/o0OyPXWaQaV5JryMreArySj3MMhUK6RN/VENVNfmrqrJ6/bV1U26Yh/ Hqby5bmMvpx0GzjJ5z+BgRpngL8mi0ffvpsxkGhMumMYPpTHCMNcfYYxp/tD/Izf Y5kpEaomCELrq/jwglq4Zhk3ZwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHyqBmYa ZqmjcGG3vhKjf50yUURUMB8GA1UdIwQYMBaAFOCIE70YjNwqv1AY3m/jf0Q3RyCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjA5MS9BQkM0RDQ0NEFC NTkxMUVEOUI3OUIxMUVDNEY5QUUwMi80SWdUdlJpTTNDcV9VQmplYi1OX1JEZEhJ STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJZ1R2UmlNM0NxX1VCamViLU5fUkRkSElJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIwOTEvQUJDNEQ0NDRBQjU5MTFFRDlCNzlCMTFFQzRGOUFFMDIvQThDMEExM0VB QjVEMTFFRDg4QTU0NDI0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ1RkMA8EAgACMAkDBwAgAQ3x8MAwDQYJKoZIhvcNAQELBQADggEB ACjdQ78dekmsU7L6mgOjxky6LNkIzsHQAOWsgnNiRaMQK8cdYnwv5lFet2RO5Ppv WgzRnEMj2n+WEEVM6pHec9yI3ArDJt2oB/2SlAUrhF8TReOXN13s67frJoAclylH 67yvHc36adtf6dEkri0FWDIw30umM85d5ZHNu6M9W5WtkG55u1ouh9+1+WYjhb6U qBjPWE4tEnBYTHzLOvfzvRWB5hnDodOIp6ftbvW7P78OswoRfkXjTvrzex0QGXJ8 iNy/RN/4ktJ3qsGpGCvcaux+rI/yXoa9NTzgwqy+mrSxiMngbsZ23ar57gg0cuO4 6v9zHyzqjOIva/N9MiztXmE= -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:04 2026 by rpki-client