$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/8AF33E36160E11F195136F2C2B3D8C67.roa File: 8AF33E36160E11F195136F2C2B3D8C67.roa (raw, json) Hash identifier: 3Qf43LejVMYObXq2xEMUis8BZYPMSWI0XFlk5JiZduA= Subject key identifier: 8D:46:CC:D8:3A:C4:46:B9:A1:E7:4C:B6:A5:7E:EC:F5:C1:84:7E:27 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 08C2 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/8AF33E36160E11F195136F2C2B3D8C67.roa Signing time: Mon 02 Mar 2026 08:05:14 +0000 ROA not before: Mon 02 Mar 2026 08:05:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 2764 IP address blocks: 103.154.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Mar 2 08:05:14 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a544ba-a982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:05:e7:91:38:9d:22:d2:c1:f0:52:ad:40:24: 8e:34:08:ae:fc:41:32:a3:85:6e:e4:ca:a9:0f:b2: 81:a9:19:1f:48:da:6c:01:95:f2:b8:af:ce:35:3a: 59:33:1a:f5:fb:73:1b:2e:c7:49:54:da:6c:ba:9b: 5c:ee:93:bf:ec:29:d0:5e:0f:02:82:42:0b:c9:c0: ca:9a:b2:12:a3:db:3c:09:0b:f4:0a:f3:7e:02:2c: 68:aa:7c:5b:f1:6d:75:ce:aa:78:1d:1b:a1:9a:a2: b6:8f:43:8e:45:31:47:af:6c:3d:43:9f:68:58:ce: bd:5e:82:b0:82:e5:05:9a:f3:0c:59:04:f7:31:b4: 50:87:d4:f3:0d:f2:0a:17:17:0c:7c:c7:0c:be:44: 4f:cd:e2:f0:f8:bc:84:49:73:d3:7d:e3:c4:87:b7: 9a:12:1b:15:0b:2b:ab:b6:be:d1:31:72:6f:f0:b0: 29:87:29:16:5e:c6:14:0c:cd:3b:1e:73:48:d7:01: 54:9a:79:9b:d5:d0:27:50:17:12:7b:74:f8:ef:ba: ef:65:81:f1:39:ad:c3:43:fc:ea:13:32:fe:30:10: 8d:a0:51:19:96:88:12:7c:68:d1:dd:80:1e:5b:c7: 9b:c4:a4:ac:a0:68:72:aa:1c:23:61:dc:33:16:ce: 66:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:46:CC:D8:3A:C4:46:B9:A1:E7:4C:B6:A5:7E:EC:F5:C1:84:7E:27 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/8AF33E36160E11F195136F2C2B3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.154.28.0/24 Signature Algorithm: sha256WithRSAEncryption 48:1e:03:ba:74:d5:31:80:f3:a5:7b:d3:38:e1:fe:91:81:9a: 05:57:04:7e:5a:5d:60:f1:84:cd:1e:2a:85:1a:0a:9b:19:7c: dd:d4:04:48:1f:bd:c3:87:53:19:e3:7b:ca:5a:63:3f:ee:de: 10:10:c8:27:3b:58:c9:66:8e:79:cd:c1:37:6e:fd:11:de:c2: 5e:ae:19:9f:44:c6:93:f0:39:3b:9f:da:67:f2:de:e4:45:09: 20:32:49:fa:f0:ad:19:e3:91:28:fa:85:97:73:17:68:b5:18: 38:a6:84:5d:2f:1a:c0:81:80:05:8c:5c:13:43:52:ad:62:75: b1:34:56:73:63:fb:0b:13:80:e7:60:cd:95:40:30:04:25:d6: d8:b3:e6:4a:b0:8f:6d:b5:c6:c7:99:ce:99:45:8c:b6:48:eb: 52:95:72:1d:f4:c4:c3:3c:9c:fa:cf:22:9a:7d:eb:3a:9c:b2: 1a:7a:98:f0:53:60:da:2b:79:5d:ff:9f:fb:05:63:36:13:d9: 14:b7:5b:d2:c5:37:81:28:51:b4:c5:28:af:32:8e:5f:b5:89: 18:ca:78:1a:02:cb:75:67:2f:04:c3:cb:31:26:56:b3:62:12: c1:76:85:68:3f:5b:05:61:ae:2d:c2:e2:c1:bc:1e:18:f1:8a: 49:26:6d:7d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjYwMzAyMDgwNTE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NDRiYS1hOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowXnkTidItLB8FKtQCSONAiu/EEyo4Vu5MqpD7KBqRkfSNpsAZXyuK/ONTpZ Mxr1+3MbLsdJVNpsuptc7pO/7CnQXg8CgkILycDKmrISo9s8CQv0CvN+Aixoqnxb 8W11zqp4HRuhmqK2j0OORTFHr2w9Q59oWM69XoKwguUFmvMMWQT3MbRQh9TzDfIK FxcMfMcMvkRPzeLw+LyESXPTfePEh7eaEhsVCyurtr7RMXJv8LAphykWXsYUDM07 HnNI1wFUmnmb1dAnUBcSe3T477rvZYHxOa3DQ/zqEzL+MBCNoFEZlogSfGjR3YAe W8ebxKSsoGhyqhwjYdwzFs5mdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI1GzNg6 xEa5oedMtqV+7PXBhH4nMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvOEFGMzNFMzYx NjBFMTFGMTk1MTM2RjJDMkIzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5ocMA0GCSqGSIb3DQEBCwUAA4IBAQBIHgO6dNUxgPOle9M44f6R gZoFVwR+Wl1g8YTNHiqFGgqbGXzd1ARIH73Dh1MZ43vKWmM/7t4QEMgnO1jJZo55 zcE3bv0R3sJerhmfRMaT8Dk7n9pn8t7kRQkgMkn68K0Z45Eo+oWXcxdotRg4poRd LxrAgYAFjFwTQ1KtYnWxNFZzY/sLE4DnYM2VQDAEJdbYs+ZKsI9ttcbHmc6ZRYy2 SOtSlXId9MTDPJz6zyKafes6nLIaepjwU2DaK3ld/5/7BWM2E9kUt1vSxTeBKFG0 xSivMo5ftYkYyngaAst1Zy8Ew8sxJlazYhLBdoVoP1sFYa4twuLBvB4Y8YpJJm19 -----END CERTIFICATE-----Generated at Thu Mar 12 22:52:58 2026 by rpki-client