$ rpki-client -vvf rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa File: CA16E952AF6411EB95CDDD18C4F9AE02.roa (raw, json) Hash identifier: 3xq5p3AVGt409aSIRk2oci21u6gbUU5aFa+YoaSFvTs= Subject key identifier: 65:A9:15:EF:DE:38:3C:07:F0:93:F4:59:9D:94:32:05:65:DE:87:F8 Certificate issuer: /CN=A914C10B/serialNumber=08D3FBA8DDC218CBB3039C03761E6AB7076E4FA2 Certificate serial: 0689 Authority key identifier: 08:D3:FB:A8:DD:C2:18:CB:B3:03:9C:03:76:1E:6A:B7:07:6E:4F:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:35:37 +0000 ROA not before: Tue 04 Nov 2025 23:12:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13984 IP address blocks: 103.102.8.0/22 maxlen: 22 2401:dac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.crl rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 22:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C10B, serialNumber=08D3FBA8DDC218CBB3039C03761E6AB7076E4FA2 Validity Not Before: Nov 4 23:12:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43299-5ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c5:32:4e:9e:f5:77:df:11:70:6c:67:6c:d9: 89:6d:11:1c:bf:51:03:3e:06:80:c1:0e:22:d8:54: fe:d0:07:87:1c:29:8b:ef:7b:2c:8c:5c:bd:69:f4: 58:21:e5:11:b4:fe:cc:34:5a:29:12:de:91:4c:d5: 0e:f3:fb:bd:d8:d1:06:f3:65:b9:6d:42:5b:82:68: fd:b7:b5:a1:49:33:af:d1:2b:94:62:4c:31:6f:3b: c4:64:1e:91:91:a6:bc:d9:b2:48:64:81:10:4c:3b: 79:76:df:f6:d0:04:21:6c:32:f8:ab:c6:cb:2a:54: c9:45:c3:a9:43:04:be:a7:86:57:7e:62:28:12:5f: 2a:0a:aa:44:72:a5:fa:7d:b2:48:d6:ca:ab:63:ab: f7:2c:29:1b:4a:fe:ed:bf:d9:3a:15:ee:88:68:a9: 1c:ef:b8:28:1e:cf:97:a6:4f:1c:7d:db:36:c9:8a: b8:35:5d:07:29:10:a1:2b:68:49:dd:7a:db:34:75: 49:33:78:bd:90:d6:97:bf:bc:bd:ba:cb:ab:74:de: c5:2b:3a:4f:bb:29:34:aa:07:5d:61:b6:08:6e:8f: 17:cd:c3:9b:ad:b1:b3:b2:5f:05:8f:f3:5e:2d:48: c2:ce:a1:18:4d:1d:cd:33:35:19:7a:02:26:a9:c9: ae:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A9:15:EF:DE:38:3C:07:F0:93:F4:59:9D:94:32:05:65:DE:87:F8 X509v3 Authority Key Identifier: keyid:08:D3:FB:A8:DD:C2:18:CB:B3:03:9C:03:76:1E:6A:B7:07:6E:4F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.102.8.0/22 IPv6: 2401:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 22:c5:5c:e2:2b:50:0c:22:30:be:5e:ff:40:ff:c7:57:0b:74: 07:17:7c:01:a5:d5:a7:be:40:80:ea:95:23:38:eb:bd:e5:b0: f9:ee:2d:ed:99:c3:96:33:50:8c:e6:49:91:b9:d3:b4:b3:cc: 07:07:aa:59:bf:9b:68:2a:4f:1d:12:70:7e:f3:04:22:f2:8d: 85:25:36:ab:c3:ac:f3:61:7e:22:45:86:c9:e6:4e:bc:4b:0c: 37:03:b1:9a:f2:56:99:bc:f9:00:b4:4e:f0:3f:9a:cd:83:91: 56:77:dc:ea:ce:f8:a0:02:c3:d3:e0:c6:97:b3:52:bf:09:a2: b3:9e:c5:33:7c:a5:74:c0:3f:4e:83:2b:22:3d:23:2b:8f:a7: b5:8d:c2:11:6c:c1:be:32:f7:2f:3f:39:f1:d4:6f:12:8f:85: d4:e0:09:e6:c1:5d:da:f3:c2:89:55:81:f4:67:4c:5b:76:8a: fb:d6:75:81:e1:6a:3a:20:40:a4:8e:bb:e2:4c:6a:d8:dc:d8: 68:78:f7:30:a0:e8:8b:30:16:4d:51:de:03:b8:db:11:f9:6f: 77:12:31:87:2d:56:be:39:9b:ab:a0:64:bf:cf:dd:f8:ea:29: 4e:2a:a5:7d:bb:f6:31:ad:22:e8:5e:9f:26:fd:0f:82:ee:61: c2:3d:88:87 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxMEIxMTAvBgNVBAUTKDA4RDNGQkE4RERDMjE4Q0JCMzAzOUMwMzc2MUU2QUI3 MDc2RTRGQTIwHhcNMjUxMTA0MjMxMjU4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzI5OS01ZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8UyTp71d98RcGxnbNmJbREcv1EDPgaAwQ4i2FT+0AeHHCmL73ssjFy9afRY IeURtP7MNFopEt6RTNUO8/u92NEG82W5bUJbgmj9t7WhSTOv0SuUYkwxbzvEZB6R kaa82bJIZIEQTDt5dt/20AQhbDL4q8bLKlTJRcOpQwS+p4ZXfmIoEl8qCqpEcqX6 fbJI1sqrY6v3LCkbSv7tv9k6Fe6IaKkc77goHs+Xpk8cfds2yYq4NV0HKRChK2hJ 3XrbNHVJM3i9kNaXv7y9usurdN7FKzpPuyk0qgddYbYIbo8XzcObrbGzsl8Fj/Ne LUjCzqEYTR3NMzUZegImqcmuowIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGWpFe/e ODwH8JP0WZ2UMgVl3of4MB8GA1UdIwQYMBaAFAjT+6jdwhjLswOcA3YearcHbk+i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzEwQi83QjZDQTEyMkFG NjIxMUVCOEJBMUY3MTRDNEY5QUUwMi9DTlA3cU4zQ0dNdXpBNXdEZGg1cXR3ZHVU NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOUDdxTjNDR011ekE1d0RkaDVxdHdkdVQ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMxMEIvN0I2Q0ExMjJBRjYyMTFFQjhCQTFGNzE0QzRGOUFFMDIvQ0ExNkU5NTJB RjY0MTFFQjk1Q0RERDE4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2YIMA0EAgACMAcDBQAkAdrAMA0GCSqGSIb3DQEBCwUAA4IBAQAi xVziK1AMIjC+Xv9A/8dXC3QHF3wBpdWnvkCA6pUjOOu95bD57i3tmcOWM1CM5kmR udO0s8wHB6pZv5toKk8dEnB+8wQi8o2FJTarw6zzYX4iRYbJ5k68Sww3A7Ga8laZ vPkAtE7wP5rNg5FWd9zqzvigAsPT4MaXs1K/CaKznsUzfKV0wD9OgysiPSMrj6e1 jcIRbMG+MvcvPznx1G8Sj4XU4AnmwV3a88KJVYH0Z0xbdor71nWB4Wo6IECkjrvi TGrY3NhoePcwoOiLMBZNUd4DuNsR+W93EjGHLVa+OZuroGS/z9346ilOKqV9u/Yx rSLoXp8m/Q+C7mHCPYiH -----END CERTIFICATE-----Generated at Tue Mar 24 11:17:26 2026 by rpki-client