$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/1F89C5C22CB511F08A1A9242C4F9AE02.roa File: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (raw, json) Hash identifier: D8qVBp2VClb8+sa1J879+KOZDXHyJTue8gxn6woZXbo= Subject key identifier: 27:66:08:82:E4:35:8F:E8:7E:B9:10:50:ED:AF:85:57:58:0C:53:3B Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 04BC Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/1F89C5C22CB511F08A1A9242C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:29:31 +0000 ROA not before: Sun 21 Dec 2025 00:21:09 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151373 IP address blocks: 103.103.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 00:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Dec 21 00:21:09 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4858b-ffcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:d2:56:67:a2:fb:ae:b0:87:01:36:19:b7: 2b:1e:5c:d4:9b:5e:5b:68:80:4d:02:4d:db:7c:9c: 34:14:12:83:bf:56:8a:70:5e:94:d2:28:9a:7f:e8: 94:cd:97:eb:8b:59:f6:89:95:9e:96:eb:e5:da:8e: 15:9e:9a:e8:51:82:be:3d:6f:e8:50:b0:0e:ef:8a: 9e:7f:fa:44:cd:8f:89:64:3d:68:ee:05:7f:49:27: 8c:97:31:b1:e0:49:b3:51:49:eb:2b:55:cb:5f:ae: 18:a1:ad:bc:ab:8c:cf:45:83:11:d5:54:23:84:14: d8:1d:99:81:aa:06:cd:92:9f:d2:ed:32:1e:2c:65: be:45:18:e9:f1:7f:51:dc:3d:db:8f:ac:5a:75:f4: 47:4f:b9:d2:e9:86:28:87:8d:c5:6a:b2:4a:7b:14: 1d:12:29:34:58:f4:35:61:7c:db:37:b1:d9:de:15: 4c:8c:e5:a8:89:3f:f2:fa:11:17:f5:df:c3:96:7a: 28:fd:85:b8:3e:2a:e6:46:47:95:9b:96:47:4a:48: 03:6e:aa:4a:32:c0:03:06:8e:79:09:c7:23:cb:32: 8b:ab:51:5d:af:79:e5:f4:43:1e:9c:48:1f:7f:b2: 9d:dc:95:f3:27:a5:54:9e:1c:02:06:01:ee:89:39: 22:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:66:08:82:E4:35:8F:E8:7E:B9:10:50:ED:AF:85:57:58:0C:53:3B X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/1F89C5C22CB511F08A1A9242C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.103.244.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:d1:96:76:6a:58:70:bb:4c:b1:73:5f:e0:a3:5f:72:2e:2c: a8:eb:63:b6:57:e9:3e:55:5f:70:dc:6b:fa:d2:be:4d:e4:11: bf:12:ae:63:11:dd:4c:1e:35:ea:8d:79:7d:17:11:ea:2a:22: 73:82:a4:4a:0d:21:e1:54:fd:5d:6e:19:f5:3c:49:cc:79:fc: c5:f1:f6:d6:9c:08:9e:40:60:f4:a5:f8:34:10:67:42:0a:f9: 78:87:5d:6b:d1:f2:54:e7:2b:ec:f1:bd:a5:a3:c1:89:29:f0: fc:8b:e0:4a:8b:b9:f3:8e:56:40:6e:9c:cd:e9:b8:b8:91:61: 0f:a5:37:8e:9b:a9:90:34:0f:8b:c3:1b:47:fe:f8:33:d8:1f: 9a:c9:ef:e7:4d:8b:4b:9c:3b:fd:05:f2:29:57:de:1d:30:78: e0:e9:d2:7e:81:01:be:02:17:5c:35:66:0e:4a:2d:40:a5:91: 5e:29:e8:a2:ce:4d:f2:a5:57:bd:52:e1:5d:4e:03:cc:dd:1f: 14:4f:90:fc:5c:db:35:68:ad:f3:b0:78:c7:8f:11:da:40:b7: 61:75:00:78:0b:1a:09:9f:b8:d6:a7:82:d1:87:ff:a1:26:64: b1:ef:a5:57:95:81:b5:86:b4:cb:ec:7c:61:d3:f8:db:a5:93: 84:30:e6:ec -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUxMjIxMDAyMTA5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU4Yi1mZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw/SVmei+66whwE2GbcrHlzUm15baIBNAk3bfJw0FBKDv1aKcF6U0iiaf+iU zZfri1n2iZWeluvl2o4VnproUYK+PW/oULAO74qef/pEzY+JZD1o7gV/SSeMlzGx 4EmzUUnrK1XLX64Yoa28q4zPRYMR1VQjhBTYHZmBqgbNkp/S7TIeLGW+RRjp8X9R 3D3bj6xadfRHT7nS6YYoh43FarJKexQdEik0WPQ1YXzbN7HZ3hVMjOWoiT/y+hEX 9d/Dlnoo/YW4PirmRkeVm5ZHSkgDbqpKMsADBo55CccjyzKLq1Fdr3nl9EMenEgf f7Kd3JXzJ6VUnhwCBgHuiTkiWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCdmCILk NY/ofrkQUO2vhVdYDFM7MB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvMUY4OUM1QzIy Q0I1MTFGMDhBMUE5MjQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2f0MA0GCSqGSIb3DQEBCwUAA4IBAQBd0ZZ2alhwu0yxc1/go19y Liyo62O2V+k+VV9w3Gv60r5N5BG/Eq5jEd1MHjXqjXl9FxHqKiJzgqRKDSHhVP1d bhn1PEnMefzF8fbWnAieQGD0pfg0EGdCCvl4h11r0fJU5yvs8b2lo8GJKfD8i+BK i7nzjlZAbpzN6bi4kWEPpTeOm6mQNA+LwxtH/vgz2B+aye/nTYtLnDv9BfIpV94d MHjg6dJ+gQG+AhdcNWYOSi1ApZFeKeiizk3ypVe9UuFdTgPM3R8UT5D8XNs1aK3z sHjHjxHaQLdhdQB4CxoJn7jWp4LRh/+hJmSx76VXlYG1hrTL7Hxh0/jbpZOEMObs -----END CERTIFICATE-----Generated at Wed Mar 11 12:49:55 2026 by rpki-client