$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa File: B78B5CB6D65F11EA8B30486EC4F9AE02.roa (raw, json) Hash identifier: 63SvkNtOtWbMBX9OafD7gBxRNQiiJy4ZpY24C9PDr4o= Subject key identifier: E6:EF:66:75:FD:53:FC:1D:B2:C7:6E:1B:95:AE:CD:52:50:46:0F:C0 Certificate issuer: /CN=A917F8F2/serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Certificate serial: 08B3 Authority key identifier: B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa Signing time: Fri 30 Jan 2026 20:17:18 +0000 ROA not before: Fri 30 Jan 2026 20:17:18 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134737 IP address blocks: 103.149.8.0/24 maxlen: 24 103.149.9.0/24 maxlen: 24 2001:df4:6580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 19:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8F2, serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Validity Not Before: Jan 30 20:17:18 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697d11ce-9537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:56:b5:02:ad:d4:49:fb:d4:cc:7f:59:29:97: 8c:cf:f8:6b:a9:c5:9e:bf:7a:dd:51:22:63:68:bc: 3b:9d:e4:b3:18:42:2d:38:40:ca:cd:74:d7:89:9e: 4f:bf:d7:fd:e1:ad:88:a5:15:5f:86:e6:75:d9:05: 44:42:f2:cf:b4:91:32:d8:4d:d1:84:27:68:d2:62: 9c:ee:38:67:ad:67:9a:91:75:e4:9c:b6:22:ae:11: 06:10:9b:78:c6:ab:6b:78:b0:72:b8:39:04:de:5e: 3b:cb:03:bc:7a:fa:b7:c7:ce:30:23:65:dd:fc:b7: f3:72:82:2c:ac:64:c0:9f:f9:39:82:0b:d1:f8:50: dc:04:1b:b4:02:8c:55:c3:b2:99:54:d0:98:99:ce: d0:c9:79:d8:1d:2f:25:e3:38:76:32:8a:cf:ba:01: c6:fc:29:a8:fa:99:1c:69:a8:8f:c0:ad:f2:5b:46: 22:dc:75:7b:54:66:96:44:a9:85:77:89:ba:c7:35: 8f:3e:7f:01:09:0b:0c:f2:e6:62:76:31:ff:c8:ba: 57:30:39:90:b6:21:02:c1:17:f3:58:5a:75:04:cc: 21:04:a7:60:54:3c:90:4f:20:88:50:86:c1:5d:61: 72:1f:10:16:30:ae:06:19:f0:68:f3:1e:2f:0f:af: 06:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:EF:66:75:FD:53:FC:1D:B2:C7:6E:1B:95:AE:CD:52:50:46:0F:C0 X509v3 Authority Key Identifier: keyid:B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.8.0/23 IPv6: 2001:df4:6580::/48 Signature Algorithm: sha256WithRSAEncryption 7e:96:1d:0a:ca:88:9b:75:b2:76:c2:ff:7f:c8:99:c6:7d:ea: 2a:fb:4b:1f:47:b7:9e:8b:73:ee:bc:73:ea:2f:cc:c3:a5:1e: 57:2c:e8:27:22:07:7f:d7:a4:11:d2:13:5f:56:c9:08:05:8c: d1:64:d0:67:aa:55:a1:50:f7:ac:aa:a6:f0:86:b6:81:49:5f: 66:33:3a:fc:5b:69:d5:2b:14:29:b1:64:ee:61:90:1f:9a:ef: b9:3f:1d:ea:5b:b6:d0:4c:77:6e:71:ed:f5:39:0e:d2:54:48: ea:88:1a:be:6a:3c:74:1e:95:53:f9:2c:bb:cb:b8:65:86:24: a3:2a:26:2a:47:79:6f:b3:ae:94:17:62:a3:7d:dd:e8:c4:d4: 56:5d:7f:5f:25:3b:95:90:6f:30:43:72:1d:75:7e:49:bf:66: 51:b9:18:4f:8f:43:ba:69:6f:73:06:fc:d2:6d:49:7a:df:74: 1d:c1:0c:c5:f6:78:de:99:d1:50:2f:f8:5b:e9:57:3b:1c:49: a6:fd:ac:09:a8:a9:7e:95:37:d7:81:7e:49:30:87:f0:cc:23: 89:9a:3d:b7:5a:9b:f8:62:31:b6:65:8e:5a:07:ee:fe:1e:5c: 32:3d:cf:fd:96:3a:88:9a:00:61:c5:00:e9:8a:a5:9b:95:56: 38:94:df:bf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx N0Y4RjIxMTAvBgNVBAUTKEI3OTFCRDFDOUUyMDgxQUE4NEY4MDc4MDY2QzBDN0Y2 MEE2Mzc5MEUwHhcNMjYwMTMwMjAxNzE4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdkMTFjZS05NTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVa1Aq3USfvUzH9ZKZeMz/hrqcWev3rdUSJjaLw7neSzGEItOEDKzXTXiZ5P v9f94a2IpRVfhuZ12QVEQvLPtJEy2E3RhCdo0mKc7jhnrWeakXXknLYirhEGEJt4 xqtreLByuDkE3l47ywO8evq3x84wI2Xd/LfzcoIsrGTAn/k5ggvR+FDcBBu0AoxV w7KZVNCYmc7QyXnYHS8l4zh2MorPugHG/Cmo+pkcaaiPwK3yW0Yi3HV7VGaWRKmF d4m6xzWPPn8BCQsM8uZidjH/yLpXMDmQtiECwRfzWFp1BMwhBKdgVDyQTyCIUIbB XWFyHxAWMK4GGfBo8x4vD68GUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFObvZnX9 U/wdssduG5WuzVJQRg/AMB8GA1UdIwQYMBaAFLeRvRyeIIGqhPgHgGbAx/YKY3kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhGMi8wMjJENTcxQ0Q2 NUUxMUVBQjYwQ0EzNkJDNEY5QUUwMi90NUc5SEo0Z2dhcUUtQWVBWnNESDlncGpl UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q1RzlISjRnZ2FxRS1BZUFac0RIOWdwamVRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4RjIvMDIyRDU3MUNENjVFMTFFQUI2MENBMzZCQzRGOUFFMDIvQjc4QjVDQjZE NjVGMTFFQThCMzA0ODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlQgwDwQCAAIwCQMHACABDfRlgDANBgkqhkiG9w0BAQsF AAOCAQEAfpYdCsqIm3WydsL/f8iZxn3qKvtLH0e3notz7rxz6i/Mw6UeVyzoJyIH f9ekEdITX1bJCAWM0WTQZ6pVoVD3rKqm8Ia2gUlfZjM6/Ftp1SsUKbFk7mGQH5rv uT8d6lu20Ex3bnHt9TkO0lRI6ogavmo8dB6VU/ksu8u4ZYYkoyomKkd5b7OulBdi o33d6MTUVl1/XyU7lZBvMENyHXV+Sb9mUbkYT49Dumlvcwb80m1Jet90HcEMxfZ4 3pnRUC/4W+lXOxxJpv2sCaipfpU314F+STCH8MwjiZo9t1qb+GIxtmWOWgfu/h5c Mj3P/ZY6iJoAYcUA6Yqlm5VWOJTfvw== -----END CERTIFICATE-----Generated at Thu Feb 19 22:40:57 2026 by rpki-client