$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa File: 98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa (raw, json) Hash identifier: gPmOaoN+l9WJ/rTZGr8yHo6MmYAS6GPMF/52rd8LuYY= Subject key identifier: 10:85:66:95:AA:C5:46:35:71:60:C5:AC:87:4B:97:BE:97:22:F0:63 Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Certificate serial: 028B Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:17:14 +0000 ROA not before: Wed 01 Oct 2025 03:30:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9299 IP address blocks: 103.71.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 01:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116DDB, serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Validity Not Before: Oct 1 03:30:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4749a-cd8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:de:9f:c9:1f:e6:99:49:6f:f2:ba:fa:e2:1c: 9b:b8:96:fc:66:e6:40:92:ce:cd:c3:82:05:91:61: bc:72:02:28:34:4e:08:4e:51:69:b5:9a:6e:95:a5: ac:ac:29:0f:93:da:99:09:5f:96:e9:0d:ac:bc:18: 95:64:0a:9d:2d:cd:95:f3:83:dd:45:a3:79:b8:7c: f9:36:3f:48:94:7a:0e:b0:0c:24:9e:02:27:63:e9: 6d:c7:c2:2a:79:ab:29:84:eb:0d:b7:c5:eb:d0:5e: cc:67:64:fc:c5:9e:b1:a0:ce:19:b6:40:5e:52:d0: 24:72:5e:68:7c:8f:15:fa:be:d9:33:aa:d6:40:72: 45:3f:1b:29:fd:c8:78:7a:c2:7a:35:f4:55:9a:a8: 3e:9f:30:b5:f9:95:b4:82:dd:be:cb:01:59:e5:65: 35:57:d2:a1:22:09:32:e7:0c:95:17:67:d4:74:b1: 98:9b:7b:a1:1e:08:cf:b2:5c:c3:ea:27:c6:67:95: 2d:45:76:e8:e1:ab:e2:13:dd:14:a8:e8:ab:a1:af: 6d:9e:3a:39:ed:4d:ce:1a:32:ae:5d:58:59:d0:c9: 85:be:ea:d2:64:3f:0d:df:c4:5b:f6:50:0a:ab:06: e2:c4:85:48:1a:1d:27:2d:71:96:e7:02:86:93:a0: f2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:85:66:95:AA:C5:46:35:71:60:C5:AC:87:4B:97:BE:97:22:F0:63 X509v3 Authority Key Identifier: keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/98ABC1DC2BAF11F0B6DD613FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.71.95.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e7:e1:bb:12:0b:33:6d:9f:16:8d:18:a9:a6:03:59:37:13: 52:89:fd:39:f8:46:ac:01:61:6f:a7:21:7f:36:25:0b:13:53: 4c:c8:cf:22:4f:fb:4a:c8:ee:a6:07:71:a2:2c:a3:ab:ab:00: 8c:f1:e2:d7:e0:a2:74:93:36:62:dc:c2:fa:4f:3e:3d:2e:f2: 69:c7:f5:53:dc:96:37:7e:6f:38:78:74:c7:48:5f:15:24:67: 9e:b7:5d:10:57:52:b0:bd:cb:d1:7c:15:68:a5:7a:07:d7:a9: 87:12:08:18:c0:0b:9d:6e:7c:ac:b7:ad:e6:61:50:70:52:ad: 04:eb:5f:40:19:14:17:97:b0:5e:75:ff:8e:27:d9:d0:41:87: 7e:96:a4:02:50:d3:6a:1b:94:f0:d6:6f:24:93:69:5b:be:cc: 5e:13:61:ee:cd:1d:5d:ee:3f:80:e4:e0:59:b0:1d:bd:a6:da: 8b:2b:79:6a:90:b8:d1:ba:a6:87:51:a8:7e:9e:0e:23:8c:63: 38:e9:92:b9:0b:52:49:f6:2c:e0:da:dd:49:af:3a:cd:e2:3e: 68:e4:c8:df:67:86:5f:55:d9:e2:ee:c3:61:86:d1:d5:cf:00: 2e:5a:2f:46:22:11:9a:87:84:f7:45:cc:77:a4:3c:71:c2:60: 02:88:35:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZEREIxMTAvBgNVBAUTKDBDNzY5REE0NDk4MkY2MTY1MDM2Mjk0M0U2REZFRjk1 MUI5Nzc3RkEwHhcNMjUxMDAxMDMzMDE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQ5YS1jZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt96fyR/mmUlv8rr64hybuJb8ZuZAks7Nw4IFkWG8cgIoNE4ITlFptZpulaWs rCkPk9qZCV+W6Q2svBiVZAqdLc2V84PdRaN5uHz5Nj9IlHoOsAwkngInY+ltx8Iq easphOsNt8Xr0F7MZ2T8xZ6xoM4ZtkBeUtAkcl5ofI8V+r7ZM6rWQHJFPxsp/ch4 esJ6NfRVmqg+nzC1+ZW0gt2+ywFZ5WU1V9KhIgky5wyVF2fUdLGYm3uhHgjPslzD 6ifGZ5UtRXbo4aviE90UqOiroa9tnjo57U3OGjKuXVhZ0MmFvurSZD8N38Rb9lAK qwbixIVIGh0nLXGW5wKGk6DyjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBCFZpWq xUY1cWDFrIdLl76XIvBjMB8GA1UdIwQYMBaAFAx2naRJgvYWUDYpQ+bf75Ubl3f6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkREQi9FMUNEQ0REMkJF MUIxMUVEQTYxQUNEODRDNEY5QUUwMi9ESGFkcEVtQzloWlFOaWxENXRfdmxSdVhk X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIYWRwRW1DOWhaUU5pbEQ1dF92bFJ1WGRfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZEREIvRTFDRENERDJCRTFCMTFFREE2MUFDRDg0QzRGOUFFMDIvOThBQkMxREMy QkFGMTFGMEI2REQ2MTNGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ0dfMA0GCSqGSIb3DQEBCwUAA4IBAQB15+G7EgszbZ8WjRippgNZ NxNSif05+EasAWFvpyF/NiULE1NMyM8iT/tKyO6mB3GiLKOrqwCM8eLX4KJ0kzZi 3ML6Tz49LvJpx/VT3JY3fm84eHTHSF8VJGeet10QV1KwvcvRfBVopXoH16mHEggY wAudbnyst63mYVBwUq0E619AGRQXl7Bedf+OJ9nQQYd+lqQCUNNqG5Tw1m8kk2lb vsxeE2HuzR1d7j+A5OBZsB29ptqLK3lqkLjRuqaHUah+ng4jjGM46ZK5C1JJ9izg 2t1JrzrN4j5o5MjfZ4ZfVdni7sNhhtHVzwAuWi9GIhGah4T3Rcx3pDxxwmACiDWu -----END CERTIFICATE-----Generated at Sun Mar 8 00:01:16 2026 by rpki-client