$ rpki-client -vvf rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/E897EA5A3EE411ED905A3415C4F9AE02.roa File: E897EA5A3EE411ED905A3415C4F9AE02.roa (raw, json) Hash identifier: MaFJmDPMqlk1C6MUJjdtLiNgPwGqra//weYceabgP/k= Subject key identifier: 66:FF:21:B2:46:56:FA:78:2B:E3:1C:C3:8D:0B:E2:1E:2A:9B:E4:A1 Certificate issuer: /CN=A912CA50/serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Certificate serial: 08A4 Authority key identifier: 7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/E897EA5A3EE411ED905A3415C4F9AE02.roa Signing time: Mon 02 Mar 2026 04:53:25 +0000 ROA not before: Wed 10 Sep 2025 21:33:04 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4637 IP address blocks: 103.155.8.0/23 maxlen: 24 2406:60c0::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CA50, serialNumber=7C7C43AAD0C86B5F378E5D7C3332A05DE4612750 Validity Not Before: Sep 10 21:33:04 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a517c5-417d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ba:7b:b8:68:ee:28:e7:78:ad:0d:3b:0b:45: e2:6b:e9:5a:76:2b:48:1b:aa:15:a1:be:6e:0d:51: 67:4c:3d:90:aa:06:5a:63:6c:39:8e:92:93:37:37: 56:32:b3:c8:2a:49:7e:05:5c:71:ca:28:f9:f0:74: 8f:d8:c3:9a:df:cc:7f:ed:b1:5d:51:8e:0f:92:8c: be:88:94:f8:e5:93:fb:63:b6:41:e5:ed:20:b9:af: 6a:56:47:06:a4:eb:12:9c:7a:39:3e:1f:77:dd:e0: cf:3b:a1:d5:c9:61:f3:73:8e:8b:f1:45:4a:2a:25: 17:46:db:dd:54:e5:62:08:35:60:5f:7b:8d:fa:7c: f5:ac:c9:d9:c7:6e:29:e8:f5:2d:4a:5a:0f:72:ca: e4:aa:5f:74:85:2f:b4:e5:be:d6:1a:e9:2a:37:de: c6:bd:76:db:ff:df:58:5f:e2:9b:05:96:7c:7d:f1: 72:63:7a:80:2e:f1:57:0b:d2:17:2b:b6:7a:f1:fd: 86:6b:1e:60:de:dc:b8:67:89:6c:ff:24:80:a9:f9: 3b:e8:01:36:ff:3b:ae:75:de:4e:0d:9d:db:16:29: 6f:78:a9:dd:a1:cc:70:78:7b:8e:48:8e:e5:de:92: 36:8b:35:60:57:6b:45:2d:68:ba:2e:25:75:84:a8: e4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:FF:21:B2:46:56:FA:78:2B:E3:1C:C3:8D:0B:E2:1E:2A:9B:E4:A1 X509v3 Authority Key Identifier: keyid:7C:7C:43:AA:D0:C8:6B:5F:37:8E:5D:7C:33:32:A0:5D:E4:61:27:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/fHxDqtDIa183jl18MzKgXeRhJ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fHxDqtDIa183jl18MzKgXeRhJ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CA50/381C1716FBA511EABBAEB363C4F9AE02/E897EA5A3EE411ED905A3415C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.155.8.0/23 IPv6: 2406:60c0::/32 Signature Algorithm: sha256WithRSAEncryption 31:d3:34:a1:d4:13:64:50:b7:6d:60:43:fb:f6:eb:2f:10:a8: db:61:b9:3e:a9:cf:12:d5:a1:87:2f:4c:99:81:b3:c3:41:bd: b2:75:b2:dc:35:a2:21:19:d5:e3:c2:12:59:16:53:7a:75:a8: 08:f4:d1:ea:25:d2:04:92:f9:36:30:09:3d:42:42:54:10:e3: 1b:43:21:d0:96:e6:30:74:3d:03:f8:3f:58:74:11:6e:88:0e: 7f:50:d5:e6:21:17:4c:4f:85:25:fe:13:74:a0:87:42:78:bc: 53:48:4e:db:0b:70:e1:aa:82:99:c2:dd:5f:c0:27:ae:7f:07: 38:91:01:04:b5:de:d1:4e:68:11:58:9d:f6:38:ee:2e:d5:16: a5:d9:ff:9b:f3:61:93:8e:51:7a:8f:bf:9a:5f:52:99:94:7e: ea:27:6c:72:ed:cb:2f:f4:fa:5e:43:88:0a:f8:36:fd:ad:79: 8f:66:78:40:64:7e:08:50:b5:48:ca:71:51:3f:13:71:f8:5e: 13:6e:9a:a2:70:5c:03:1b:cc:14:d6:ba:b4:ac:09:83:59:33: 07:ee:89:23:f9:3c:41:2c:df:fb:f0:89:29:d3:26:c0:32:29: 7c:6e:ed:df:55:af:6c:be:6a:75:2a:42:8a:5f:1b:da:a8:0d: 75:1f:3d:02 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNBNTAxMTAvBgNVBAUTKDdDN0M0M0FBRDBDODZCNUYzNzhFNUQ3QzMzMzJBMDVE RTQ2MTI3NTAwHhcNMjUwOTEwMjEzMzA0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTdjNS00MTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLp7uGjuKOd4rQ07C0Xia+laditIG6oVob5uDVFnTD2QqgZaY2w5jpKTNzdW MrPIKkl+BVxxyij58HSP2MOa38x/7bFdUY4Pkoy+iJT45ZP7Y7ZB5e0gua9qVkcG pOsSnHo5Ph933eDPO6HVyWHzc46L8UVKKiUXRtvdVOViCDVgX3uN+nz1rMnZx24p 6PUtSloPcsrkql90hS+05b7WGukqN97GvXbb/99YX+KbBZZ8ffFyY3qALvFXC9IX K7Z68f2Gax5g3ty4Z4ls/ySAqfk76AE2/zuudd5ODZ3bFilveKndocxweHuOSI7l 3pI2izVgV2tFLWi6LiV1hKjkaQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGb/IbJG Vvp4K+Mcw40L4h4qm+ShMB8GA1UdIwQYMBaAFHx8Q6rQyGtfN45dfDMyoF3kYSdQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0E1MC8zODFDMTcxNkZC QTUxMUVBQkJBRUIzNjNDNEY5QUUwMi9mSHhEcXRESWExODNqbDE4TXpLZ1hlUmhK MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZIeERxdERJYTE4M2psMThNektnWGVSaEoxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNBNTAvMzgxQzE3MTZGQkE1MTFFQUJCQUVCMzYzQzRGOUFFMDIvRTg5N0VBNUEz RUU0MTFFRDkwNUEzNDE1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5sIMA0EAgACMAcDBQAkBmDAMA0GCSqGSIb3DQEBCwUAA4IBAQAx 0zSh1BNkULdtYEP79usvEKjbYbk+qc8S1aGHL0yZgbPDQb2ydbLcNaIhGdXjwhJZ FlN6dagI9NHqJdIEkvk2MAk9QkJUEOMbQyHQluYwdD0D+D9YdBFuiA5/UNXmIRdM T4Ul/hN0oIdCeLxTSE7bC3DhqoKZwt1fwCeufwc4kQEEtd7RTmgRWJ32OO4u1Ral 2f+b82GTjlF6j7+aX1KZlH7qJ2xy7csv9PpeQ4gK+Db9rXmPZnhAZH4IULVIynFR PxNx+F4TbpqicFwDG8wU1rq0rAmDWTMH7okj+TxBLN/78Ikp0ybAMil8bu3fVa9s vmp1KkKKXxvaqA11Hz0C -----END CERTIFICATE-----Generated at Sat Mar 21 12:03:38 2026 by rpki-client