$ rpki-client -vvf rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa File: BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa (raw, json) Hash identifier: O/DaZ2TyDSBDVUnKUn1vpjjbru6lNNlGoCvBk79DOHo= Subject key identifier: C7:35:08:C9:E4:19:59:4B:93:8C:53:10:5A:AA:5F:EB:56:EC:33:42 Certificate issuer: /CN=A913367F/serialNumber=D4EA9464F322B26D7D2128DC3752F228880016DA Certificate serial: 0833 Authority key identifier: D4:EA:94:64:F3:22:B2:6D:7D:21:28:DC:37:52:F2:28:88:00:16:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:39:08 +0000 ROA not before: Wed 06 Aug 2025 22:01:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.104.212.0/24 maxlen: 24 103.104.213.0/24 maxlen: 24 103.104.214.0/24 maxlen: 24 103.104.215.0/24 maxlen: 24 103.153.14.0/24 maxlen: 24 103.153.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.crl rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2099 (0x833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913367F, serialNumber=D4EA9464F322B26D7D2128DC3752F228880016DA Validity Not Before: Aug 6 22:01:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4093c-6df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:03:a9:52:37:e1:29:46:f2:ff:fc:b9:49: 60:3e:4d:eb:85:68:2c:e9:56:ae:7b:30:19:44:10: 3e:74:78:ba:05:82:2b:17:3c:60:bd:26:24:1f:cd: 29:bb:75:28:74:39:f9:63:1c:9b:1e:19:d4:5d:fa: d1:b5:20:7b:ef:b7:1d:0a:cd:0c:a2:49:5f:a7:37: ea:ab:a0:bd:fc:c3:6e:4e:04:65:1e:82:3c:ee:7e: e7:be:34:22:14:7e:75:ef:72:69:e2:ff:17:3b:73: 98:f1:1a:41:71:20:38:36:1d:3f:df:67:e0:26:8a: ce:fb:91:d0:5c:7a:62:b1:b6:dc:eb:2e:95:7a:a4: b3:6e:0c:d4:74:9b:f2:ee:ed:df:65:f9:df:5c:80: 6e:91:c3:f5:f5:a7:f8:d3:4f:94:ac:64:55:8b:f9: 1b:e9:66:14:96:db:2d:72:c5:2e:3a:49:3f:9c:9f: 37:9e:b3:32:c3:3b:c8:ce:c0:94:61:b1:a0:ae:fb: b6:bb:0f:8a:9a:51:81:55:88:a5:4e:d3:a8:a5:e5: 82:d5:75:2c:b8:f9:3c:44:56:52:fc:0a:06:4b:19: 87:c8:34:aa:1b:b9:04:03:bb:f8:7c:fd:49:92:a5: e2:ca:f0:7f:f2:2c:c8:53:05:83:c3:55:c3:d2:20: 70:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:35:08:C9:E4:19:59:4B:93:8C:53:10:5A:AA:5F:EB:56:EC:33:42 X509v3 Authority Key Identifier: keyid:D4:EA:94:64:F3:22:B2:6D:7D:21:28:DC:37:52:F2:28:88:00:16:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.212.0/22 103.153.14.0/23 Signature Algorithm: sha256WithRSAEncryption 88:17:c2:24:de:24:0b:d1:0d:f8:eb:ff:92:52:6d:69:8f:f2: 6e:48:06:af:17:e5:5f:e1:f0:92:e2:65:ea:af:a6:61:29:76: a7:cb:4f:c3:1c:be:41:fd:be:62:c4:4f:49:ad:1d:8a:9b:ca: 84:a4:6e:fe:59:82:8f:21:2b:5c:c8:be:87:ab:4d:19:4d:f4: b4:a1:b2:a8:5f:06:00:85:3c:9f:76:7b:b4:4b:90:5d:a6:44: 2b:ae:9f:08:21:62:62:37:39:27:0b:82:f1:74:44:08:15:c7: 93:45:39:d9:3d:4e:6f:a8:41:9b:e0:02:58:e5:a2:fe:a2:c8: 70:d4:18:6b:b5:68:09:c4:c1:cd:fb:73:df:83:01:92:e0:07: a2:06:7f:2b:af:9c:e2:2f:15:10:e4:d9:b4:1d:0c:0c:cb:31: 0e:fb:5a:09:c4:e0:3f:49:78:30:c5:33:9b:ca:b2:67:53:29: ca:bd:91:c3:de:97:13:ee:d0:c4:8d:34:2f:ad:e7:70:ef:f3: eb:fa:44:d8:d1:e9:82:3b:87:00:c8:7b:54:98:10:4e:91:d7: 24:81:e2:bb:37:94:07:b4:3f:24:18:3f:c2:83:05:0d:e2:32: 8b:58:84:6b:24:ac:db:a6:b0:bf:c8:4d:bf:71:d6:28:49:3e: 30:24:c3:47 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2N0YxMTAvBgNVBAUTKEQ0RUE5NDY0RjMyMkIyNkQ3RDIxMjhEQzM3NTJGMjI4 ODgwMDE2REEwHhcNMjUwODA2MjIwMTU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDkzYy02ZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNUDqVI34SlG8v/8uUlgPk3rhWgs6VauezAZRBA+dHi6BYIrFzxgvSYkH80p u3UodDn5YxybHhnUXfrRtSB777cdCs0Moklfpzfqq6C9/MNuTgRlHoI87n7nvjQi FH5173Jp4v8XO3OY8RpBcSA4Nh0/32fgJorO+5HQXHpisbbc6y6VeqSzbgzUdJvy 7u3fZfnfXIBukcP19af400+UrGRVi/kb6WYUltstcsUuOkk/nJ83nrMywzvIzsCU YbGgrvu2uw+KmlGBVYilTtOopeWC1XUsuPk8RFZS/AoGSxmHyDSqG7kEA7v4fP1J kqXiyvB/8izIUwWDw1XD0iBw8wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMc1CMnk GVlLk4xTEFqqX+tW7DNCMB8GA1UdIwQYMBaAFNTqlGTzIrJtfSEo3DdS8iiIABba MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzY3Ri9BMjIxOTA1ODEy OEIxMUVCQkZBMkM0N0VDNEY5QUUwMi8xT3FVWlBNaXNtMTlJU2pjTjFMeUtJZ0FG dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPcVVaUE1pc20xOUlTamNOMUx5S0lnQUZ0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM2N0YvQTIyMTkwNTgxMjhCMTFFQkJGQTJDNDdFQzRGOUFFMDIvQkYxM0FCOEM1 RDMzMTFFRkE0M0UwQzZFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ2jUAwQBZ5kOMA0GCSqGSIb3DQEBCwUAA4IBAQCIF8Ik3iQL0Q34 6/+SUm1pj/JuSAavF+Vf4fCS4mXqr6ZhKXany0/DHL5B/b5ixE9JrR2Km8qEpG7+ WYKPIStcyL6Hq00ZTfS0obKoXwYAhTyfdnu0S5BdpkQrrp8IIWJiNzknC4LxdEQI FceTRTnZPU5vqEGb4AJY5aL+oshw1BhrtWgJxMHN+3PfgwGS4AeiBn8rr5ziLxUQ 5Nm0HQwMyzEO+1oJxOA/SXgwxTObyrJnUynKvZHD3pcT7tDEjTQvredw7/Pr+kTY 0emCO4cAyHtUmBBOkdckgeK7N5QHtD8kGD/CgwUN4jKLWIRrJKzbprC/yE2/cdYo ST4wJMNH -----END CERTIFICATE-----Generated at Fri Mar 13 22:47:29 2026 by rpki-client