$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa File: DFDEC4D007A411EFAB20A473C4F9AE02.roa (raw, json) Hash identifier: 80SnbVxPivXWHEwHHqV8hYnrOqhwI1EXSpGak/LvQw0= Subject key identifier: CC:06:7E:D7:0E:6C:58:B9:17:48:86:A1:3D:F3:96:CF:6E:E2:EA:91 Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 018B Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa Signing time: Thu 21 May 2026 04:36:36 +0000 ROA not before: Thu 21 May 2026 04:36:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 152710 IP address blocks: 103.49.124.0/24 maxlen: 24 103.49.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8, serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: May 21 04:36:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0e8bd3-979a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:8c:c1:0a:e4:48:82:e7:10:c2:7a:c9:6e: 89:b3:1b:b9:ac:6f:66:c1:58:dc:1a:9c:f3:80:df: 33:6b:5d:2c:ae:41:ed:6d:93:df:4b:97:fb:fc:d6: 58:41:dd:a9:5f:25:b0:8c:df:07:69:21:50:0e:e5: 36:a0:65:c8:50:21:a8:89:2e:e1:e8:b8:d0:63:b6: 51:6c:c1:59:18:d2:f3:62:23:5f:a7:b1:cd:19:ab: c0:c6:fd:25:5e:a5:9c:29:52:34:f0:27:57:3c:12: fc:c9:7e:55:ae:b4:75:59:c1:17:b7:e4:77:81:db: 14:a2:3e:51:74:87:45:71:19:c5:c2:79:9c:35:42: 77:0b:fe:58:fc:10:8b:8f:9d:7c:9e:af:8a:99:26: d6:3b:1d:d4:be:4e:e4:74:d5:31:62:1b:8c:82:c2: ff:f5:f7:41:cd:a3:aa:1f:21:d7:cc:b3:f2:90:0f: fe:b0:dd:36:bd:17:cc:bf:85:8c:05:33:8b:4c:ca: 55:2e:2b:87:ec:20:49:09:94:1f:32:50:33:e4:d9: 63:56:c0:1f:14:90:60:b1:b7:7f:2d:16:6f:c4:17: a2:c3:09:fb:31:95:fc:a0:6d:27:2a:10:f2:af:1d: e5:cd:36:d2:20:33:74:15:a9:39:d9:1b:74:af:f1: ed:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:06:7E:D7:0E:6C:58:B9:17:48:86:A1:3D:F3:96:CF:6E:E2:EA:91 X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.124.0/23 Signature Algorithm: sha256WithRSAEncryption 41:d9:34:65:da:58:5a:b5:2d:24:e1:aa:0f:f6:be:32:c0:ac: b4:e0:7e:84:41:fb:cc:8b:55:f0:2c:9d:a5:b4:38:e7:71:7b: 93:8d:31:9a:6a:29:4f:2a:d8:6c:05:54:ba:89:45:37:f8:44: 54:e5:fb:4c:7a:ba:bd:f5:94:4e:6f:89:a8:bd:5a:6a:fc:09: d8:5d:74:39:75:c4:bf:c0:f1:a8:cc:29:c5:0d:00:2a:f3:db: 30:63:27:54:47:c6:a0:86:89:05:75:7e:0f:67:ec:49:1b:25: 68:25:44:50:6c:0b:ed:c6:7b:b9:71:88:b9:c8:51:c4:a7:09: 29:65:80:a1:1a:28:a2:00:c7:d5:90:2d:2a:aa:a4:e6:e2:02: a8:0c:22:50:97:c8:c2:5f:3d:15:c9:8b:db:81:d8:8d:35:67: e4:5c:1c:f5:e4:35:0a:0b:13:98:78:67:8e:d3:b9:d8:8f:f0: d4:25:4c:a1:25:3e:68:9e:8e:7e:0c:40:ac:c8:32:cb:c3:29: 1d:b9:30:67:5b:e7:e4:83:6a:85:33:7a:a7:6e:6f:98:d6:3a: f1:0f:1e:b8:1b:78:82:1c:4d:f4:9f:a5:eb:96:2c:9b:ea:12: 4f:97:6e:a3:a0:3b:b0:5a:68:c2:2d:df:94:05:33:0a:0d:a5: df:94:4f:a9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5QjgxMTAvBgNVBAUTKDU2NzgyNjE2Mjc1NEI0NjBDQjU4NjZEQUMzMTQ4ODBD NzAzNTQ2MUQwHhcNMjYwNTIxMDQzNjM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlOGJkMy05NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZSMwQrkSILnEMJ6yW6Jsxu5rG9mwVjcGpzzgN8za10srkHtbZPfS5f7/NZY Qd2pXyWwjN8HaSFQDuU2oGXIUCGoiS7h6LjQY7ZRbMFZGNLzYiNfp7HNGavAxv0l XqWcKVI08CdXPBL8yX5VrrR1WcEXt+R3gdsUoj5RdIdFcRnFwnmcNUJ3C/5Y/BCL j518nq+KmSbWOx3Uvk7kdNUxYhuMgsL/9fdBzaOqHyHXzLPykA/+sN02vRfMv4WM BTOLTMpVLiuH7CBJCZQfMlAz5NljVsAfFJBgsbd/LRZvxBeiwwn7MZX8oG0nKhDy rx3lzTbSIDN0Fak52Rt0r/Ht7QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMwGftcO bFi5F0iGoT3zls9u4uqRMB8GA1UdIwQYMBaAFFZ4JhYnVLRgy1hm2sMUiAxwNUYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlCOC9DOEIxRDQ0RTA3 QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRHRExXR2Jhd3hTSURIQTFS aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q5QjgvQzhCMUQ0NEUwN0ExMTFFRjg0RjNEMjZBQzRGOUFFMDIvREZERUM0RDAw N0E0MTFFRkFCMjBBNDczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZzF8MA0GCSqGSIb3DQEBCwUAA4IBAQBB2TRl2lhatS0k4aoP9r4y wKy04H6EQfvMi1XwLJ2ltDjncXuTjTGaailPKthsBVS6iUU3+ERU5ftMerq99ZRO b4movVpq/AnYXXQ5dcS/wPGozCnFDQAq89swYydUR8aghokFdX4PZ+xJGyVoJURQ bAvtxnu5cYi5yFHEpwkpZYChGiiiAMfVkC0qqqTm4gKoDCJQl8jCXz0VyYvbgdiN NWfkXBz15DUKCxOYeGeO07nYj/DUJUyhJT5ono5+DECsyDLLwykduTBnW+fkg2qF M3qnbm+Y1jrxDx64G3iCHE30n6Xrliyb6hJPl26joDuwWmjCLd+UBTMKDaXflE+p -----END CERTIFICATE-----Generated at Thu Jun 4 11:16:51 2026 by rpki-client