$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa File: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (raw, json) Hash identifier: YuvkBqlEeFCoXBaOZasT0zM29UlrwmymL5NE2blVSiE= Subject key identifier: D6:AA:98:31:EB:E2:EE:18:77:71:A1:9B:77:EC:6E:62:9E:D2:0A:4B Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DD9 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:49:11 +0000 ROA not before: Wed 18 Feb 2026 16:13:51 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 31898 IP address blocks: 103.81.184.0/22 maxlen: 24 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7641 (0x1dd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 18 16:13:51 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47c17-e0c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6e:f7:c3:3c:09:9e:d1:44:cc:c5:7b:25:53: 24:b8:33:11:ce:27:8a:bb:b5:7f:d9:3a:68:00:4b: 49:39:d8:6f:31:1b:ec:54:c0:1d:fa:f7:f5:8a:04: 9b:f9:c5:9a:bf:75:98:54:ff:ba:80:ce:36:de:bb: 27:34:94:8c:b6:b0:0a:4b:f3:85:89:ed:11:56:45: 36:22:a9:e6:93:6c:41:88:da:9d:74:0c:56:3a:db: 7f:aa:bd:b1:1c:18:c3:e5:a8:b8:a9:99:5c:15:68: 0e:87:c8:b7:6b:25:8d:49:ba:48:68:d1:96:2b:2a: a0:7a:65:74:8a:86:fb:07:55:87:1f:16:1c:2a:9b: a9:c3:0e:e6:1e:b3:63:fc:b8:86:e6:96:b4:91:81: 8b:11:67:8b:b7:6a:29:d2:f4:fb:a2:85:c8:59:30: d9:5b:f0:f5:fc:8d:29:f3:6b:c5:36:65:67:2c:c0: 29:5e:77:e7:7a:ba:2a:1a:b7:07:a2:45:f2:22:89: a0:71:21:e6:0c:5c:a8:95:da:d7:2f:42:aa:85:bd: f2:43:5d:7f:2d:3e:99:68:37:32:6c:bb:2e:c5:05: 1b:b4:16:81:21:4d:18:bf:78:4b:fc:30:4c:60:9a: 03:f8:9b:2f:ce:d0:10:e3:48:5d:a8:c2:f0:6d:ba: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AA:98:31:EB:E2:EE:18:77:71:A1:9B:77:EC:6E:62:9E:D2:0A:4B X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:55:9b:f6:54:d3:48:a0:55:cc:26:75:9b:3f:4d:fe:55:a9: be:bf:4f:ec:bb:5f:a2:ed:7b:98:4f:e3:1c:4f:2f:a4:54:b4: 2b:94:db:d3:1d:23:e9:bf:b3:33:35:67:a7:2e:be:74:a0:21: 61:64:ee:d7:9d:39:09:05:2c:f7:e1:e1:ae:45:cd:a4:8b:98: a4:af:e7:42:58:bf:60:a2:e8:94:a6:05:7f:00:7c:56:e2:43: 7b:1f:c5:17:76:24:0c:09:50:6e:1f:3b:0b:72:f8:1a:25:5a: 7e:73:a9:24:d1:fd:53:2b:0a:d0:a5:e8:42:2f:0b:8e:6e:55: 15:09:29:3e:82:c6:12:14:a4:8e:06:ff:a6:6b:de:21:f4:cb: b3:12:29:18:08:3c:f5:e7:1c:7b:10:6b:33:5a:c8:65:10:c3: 30:74:9e:f5:ab:94:25:47:f6:c1:9c:78:f2:b3:b3:8b:93:66: bb:49:73:fe:80:a0:4f:60:d3:7b:b0:6c:34:44:1f:04:f0:f6: ff:d1:4c:8b:c4:48:f5:96:c8:63:d1:3f:63:10:0e:cd:fe:d1: fe:5a:e8:3d:d4:f6:6d:7f:10:ac:e4:d2:10:6d:1f:ad:90:60: 78:32:7a:8a:50:47:97:81:cd:4b:0f:3c:28:9f:ed:92:4a:6e: 4e:c9:43:c9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICHdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwMjE4MTYxMzUxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2MxNy1lMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwG73wzwJntFEzMV7JVMkuDMRzieKu7V/2TpoAEtJOdhvMRvsVMAd+vf1igSb +cWav3WYVP+6gM423rsnNJSMtrAKS/OFie0RVkU2Iqnmk2xBiNqddAxWOtt/qr2x HBjD5ai4qZlcFWgOh8i3ayWNSbpIaNGWKyqgemV0iob7B1WHHxYcKpupww7mHrNj /LiG5pa0kYGLEWeLt2op0vT7ooXIWTDZW/D1/I0p82vFNmVnLMApXnfneroqGrcH okXyIomgcSHmDFyoldrXL0Kqhb3yQ11/LT6ZaDcybLsuxQUbtBaBIU0Yv3hL/DBM YJoD+JsvztAQ40hdqMLwbboNcwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNaqmDHr 4u4Yd3Ghm3fsbmKe0gpLMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvOEExQUY4NkU5 NEJDMTFFQzlFNDlEQjQxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ1G4AwQCypDEMA0GCSqGSIb3DQEBCwUAA4IBAQCLVZv2VNNIoFXM JnWbP03+Vam+v0/su1+i7XuYT+McTy+kVLQrlNvTHSPpv7MzNWenLr50oCFhZO7X nTkJBSz34eGuRc2ki5ikr+dCWL9gouiUpgV/AHxW4kN7H8UXdiQMCVBuHzsLcvga JVp+c6kk0f1TKwrQpehCLwuOblUVCSk+gsYSFKSOBv+ma94h9MuzEikYCDz15xx7 EGszWshlEMMwdJ71q5QlR/bBnHjys7OLk2a7SXP+gKBPYNN7sGw0RB8E8Pb/0UyL xEj1lshj0T9jEA7N/tH+Wug91PZtfxCs5NIQbR+tkGB4MnqKUEeXgc1LDzwon+2S Sm5OyUPJ -----END CERTIFICATE-----Generated at Fri Mar 13 05:28:19 2026 by rpki-client