$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa File: 89EA369C2A7411F09A757F45C4F9AE02.roa (raw, json) Hash identifier: 2VeVxpw4IPzgEibTNEjoXK/Qy1fd2SwF+0DbU+sMNRg= Subject key identifier: 5F:58:CB:D4:9E:74:B2:83:9A:3A:95:24:85:B3:F7:E6:0F:E2:64:6E Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CE2 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:10:10 +0000 ROA not before: Wed 24 Dec 2025 18:16:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 58715 IP address blocks: 103.126.20.0/22 maxlen: 23 103.126.21.0/24 maxlen: 24 103.126.22.0/24 maxlen: 24 103.126.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 24 18:16:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a472f2-d4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:22:e8:11:ca:01:99:ab:ab:db:ca:15:23:bf: 62:01:bd:fb:fc:89:93:dd:7e:8b:93:05:06:d0:ec: 96:32:fa:17:0a:01:d1:23:47:47:1e:ad:91:a1:3e: 70:74:5d:6a:de:00:49:dc:31:bc:63:7e:e2:d0:35: ec:d7:ec:08:0c:79:5a:22:8d:d5:1d:08:cb:31:7f: 8d:3c:02:63:ba:02:dc:f4:da:b8:63:8f:bd:0f:e1: d2:5a:71:9b:6d:47:33:c9:7e:9d:48:4c:e2:a6:00: 39:d4:5b:cb:7c:ca:99:51:df:b7:8f:c4:d3:37:3e: 27:aa:48:de:40:70:fe:f0:5b:3c:e1:5f:68:da:47: 55:86:0b:58:56:3c:dd:37:26:a5:c0:4c:8a:e2:aa: bd:41:98:6f:4a:3c:d6:b0:78:4f:83:71:ff:11:c3: 4f:c3:81:2a:b4:83:73:ad:a1:38:56:68:73:c3:22: f4:40:85:9a:bb:24:92:6f:f2:40:32:30:6d:14:2c: e0:a5:3f:99:12:88:0a:fc:8d:d0:be:5b:a9:0c:49: f3:e9:3f:8a:ea:1c:23:e4:97:d9:65:b7:ec:55:be: 65:5b:8f:4b:a6:6e:49:c2:c2:11:f8:6d:f2:8e:a7: b3:e7:bc:d3:5a:2d:22:2f:d3:45:18:3a:98:51:22: 1a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:58:CB:D4:9E:74:B2:83:9A:3A:95:24:85:B3:F7:E6:0F:E2:64:6E X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/89EA369C2A7411F09A757F45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.20.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:a2:be:86:7f:d6:f3:a4:56:a9:b2:89:3a:0d:d4:d8:e0:63: e3:b6:c2:73:e1:a7:78:9b:71:de:c1:8e:6d:41:0e:6d:4f:6f: 44:5c:30:92:60:d9:9e:87:26:43:68:52:ff:e2:59:d0:8f:f5: e1:62:32:61:d4:d3:98:c2:d5:08:16:bf:66:ea:3c:0a:39:89: 82:2a:d1:fe:e9:dc:58:d6:e3:ba:32:dc:88:86:12:d5:6d:a3: bd:8a:f1:ac:cc:91:2e:c1:c8:9c:02:cc:f0:3a:1d:b7:aa:aa: f4:4e:82:38:be:42:4b:84:d4:67:46:25:20:70:af:58:21:73: 96:fd:cf:a0:16:3c:bf:57:b5:26:20:f0:1d:60:72:b3:5e:3c: 0a:0b:10:38:75:96:3b:17:ba:40:92:b7:2b:36:f1:7d:c3:f6: 8f:04:35:d2:5d:6c:b4:cd:f4:c5:ae:d7:1a:91:25:74:54:31: ad:25:ad:5c:f3:c7:ff:e4:7e:5f:15:21:1b:63:ae:cf:06:0c: ea:4e:55:71:d9:68:db:6c:4c:b0:fc:9f:4b:00:8b:81:60:44: be:d0:fd:99:6b:9f:eb:eb:0b:c7:0d:ee:00:02:ec:22:b0:54: 20:85:9c:e9:08:4d:14:f4:a3:d0:70:11:f0:dd:2c:79:57:8e: f3:63:13:71 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjI0MTgxNjA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJmMi1kNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyLoEcoBmaur28oVI79iAb37/ImT3X6LkwUG0OyWMvoXCgHRI0dHHq2RoT5w dF1q3gBJ3DG8Y37i0DXs1+wIDHlaIo3VHQjLMX+NPAJjugLc9Nq4Y4+9D+HSWnGb bUczyX6dSEzipgA51FvLfMqZUd+3j8TTNz4nqkjeQHD+8Fs84V9o2kdVhgtYVjzd NyalwEyK4qq9QZhvSjzWsHhPg3H/EcNPw4EqtINzraE4VmhzwyL0QIWauySSb/JA MjBtFCzgpT+ZEogK/I3QvlupDEnz6T+K6hwj5JfZZbfsVb5lW49Lpm5JwsIR+G3y jqez57zTWi0iL9NFGDqYUSIaXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF9Yy9Se dLKDmjqVJIWz9+YP4mRuMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCRjMvMUJDNkVCMjAxMUU3MTFFQUI5MDNBQTc5QzRGOUFFMDIvODlFQTM2OUMy QTc0MTFGMDlBNzU3RjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ34UMA0GCSqGSIb3DQEBCwUAA4IBAQAqor6Gf9bzpFapsok6DdTY 4GPjtsJz4ad4m3HewY5tQQ5tT29EXDCSYNmehyZDaFL/4lnQj/XhYjJh1NOYwtUI Fr9m6jwKOYmCKtH+6dxY1uO6MtyIhhLVbaO9ivGszJEuwcicAszwOh23qqr0ToI4 vkJLhNRnRiUgcK9YIXOW/c+gFjy/V7UmIPAdYHKzXjwKCxA4dZY7F7pAkrcrNvF9 w/aPBDXSXWy0zfTFrtcakSV0VDGtJa1c88f/5H5fFSEbY67PBgzqTlVx2WjbbEyw /J9LAIuBYES+0P2Za5/r6wvHDe4AAuwisFQghZzpCE0U9KPQcBHw3Sx5V47zYxNx -----END CERTIFICATE-----Generated at Sat Mar 14 04:04:58 2026 by rpki-client