$ rpki-client -vvf rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa File: 28D28DD0F1B511EE83596382C4F9AE02.roa (raw, json) Hash identifier: Tsypd5PAGds9yTda5JDqiyaHkJ9ezgmOq8JDQWBskdY= Subject key identifier: CE:0C:EB:C4:4C:17:C9:C9:4B:1F:87:52:B1:FD:D3:9F:1F:17:30:82 Certificate issuer: /CN=A918BBEF/serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Certificate serial: 06C4 Authority key identifier: 24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:34:52 +0000 ROA not before: Mon 04 Aug 2025 23:35:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 5065 IP address blocks: 103.97.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 21:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BBEF, serialNumber=2412876430E2ACF4A1A83E5A575C7F97AB2B3B2E Validity Not Before: Aug 4 23:35:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4326c-e0af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:35:f3:e1:e5:50:5a:e5:22:77:29:c9:6a:ad: 11:7f:43:55:c7:12:95:cd:a2:8d:17:53:6b:d1:53: 3e:3b:7e:b2:c3:36:81:61:16:b3:31:23:ac:cd:2b: 70:21:93:5f:f0:c3:bf:54:5d:0e:79:78:a7:69:16: d1:f4:c0:95:86:45:91:c1:9e:18:28:20:fd:75:f1: d8:2e:73:cc:bc:51:05:81:af:21:7f:82:f5:00:37: a9:86:a4:8c:58:d6:19:03:f1:05:ec:43:16:05:96: 6f:f3:0e:40:0a:06:7f:0d:2c:80:0c:c0:56:d3:57: fb:c3:79:60:26:22:a6:c5:9a:21:10:44:5d:af:b0: ee:3d:27:41:13:f0:5a:a8:50:55:3c:e4:f0:81:06: 40:5e:90:05:d1:35:2e:ee:96:b0:d5:0d:38:13:7a: 06:d6:e8:40:df:5d:7c:69:bf:6a:64:37:b5:d9:8f: 1e:76:2e:f5:2e:c5:24:12:a1:c8:9e:61:ad:3f:8e: 35:81:95:1a:2b:ad:8f:e0:9d:9b:57:eb:af:95:54: 84:64:1f:9b:7e:93:a5:a9:3e:5d:fa:11:fc:d2:ed: 78:a8:87:18:41:f9:11:4a:2e:6d:50:dc:39:af:42: b8:cb:ca:b9:14:fb:98:3a:ae:83:98:24:75:13:8e: 3c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0C:EB:C4:4C:17:C9:C9:4B:1F:87:52:B1:FD:D3:9F:1F:17:30:82 X509v3 Authority Key Identifier: keyid:24:12:87:64:30:E2:AC:F4:A1:A8:3E:5A:57:5C:7F:97:AB:2B:3B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/JBKHZDDirPShqD5aV1x_l6srOy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JBKHZDDirPShqD5aV1x_l6srOy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BBEF/F791C37EA04211EB85699E21C4F9AE02/28D28DD0F1B511EE83596382C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.34.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:8f:32:00:48:51:c4:b1:b5:c3:4d:6c:d4:e5:78:af:5d:14: fd:ad:d0:c9:3f:ca:8b:87:bb:4a:90:71:6b:91:2f:90:f5:60: 7a:66:44:5c:a5:6a:e2:64:01:54:e9:21:f9:28:5b:84:cf:fb: e1:5e:d5:ef:33:f9:02:89:98:82:40:65:ae:8f:b9:54:70:7a: 4d:a7:fe:82:4f:d9:ce:ed:36:71:03:0b:da:02:b8:fe:7e:95: d5:bc:e5:7c:18:96:85:fc:3c:55:dc:59:2b:96:cf:5f:9d:e0: 55:23:88:e2:19:b3:f8:45:5f:43:9c:d4:c8:f1:5d:06:0d:56: c8:ff:74:43:50:90:d4:52:42:43:6a:b8:02:88:f6:98:25:70: 06:ca:b6:51:6d:bb:27:41:64:d5:10:9b:60:55:88:18:10:3a: 58:54:34:64:43:84:75:0f:bc:84:13:65:35:44:12:29:8c:bf: 7e:b8:46:4b:2a:1f:da:77:a7:97:2a:d3:a5:ad:7f:ac:d6:80: 73:f9:8e:45:ec:b2:16:21:7c:74:89:1a:00:39:04:44:88:37: bc:d4:62:9f:29:ad:ef:eb:6b:10:45:de:66:35:79:45:fe:ab: f7:30:38:29:6e:6a:88:22:ff:64:56:75:34:38:94:24:67:9f: 3f:8a:52:61 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCRUYxMTAvBgNVBAUTKDI0MTI4NzY0MzBFMkFDRjRBMUE4M0U1QTU3NUM3Rjk3 QUIyQjNCMkUwHhcNMjUwODA0MjMzNTMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzI2Yy1lMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzXz4eVQWuUidynJaq0Rf0NVxxKVzaKNF1Nr0VM+O36ywzaBYRazMSOszStw IZNf8MO/VF0OeXinaRbR9MCVhkWRwZ4YKCD9dfHYLnPMvFEFga8hf4L1ADephqSM WNYZA/EF7EMWBZZv8w5ACgZ/DSyADMBW01f7w3lgJiKmxZohEERdr7DuPSdBE/Ba qFBVPOTwgQZAXpAF0TUu7paw1Q04E3oG1uhA3118ab9qZDe12Y8edi71LsUkEqHI nmGtP441gZUaK62P4J2bV+uvlVSEZB+bfpOlqT5d+hH80u14qIcYQfkRSi5tUNw5 r0K4y8q5FPuYOq6DmCR1E448nQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM4M68RM F8nJSx+HUrH9058fFzCCMB8GA1UdIwQYMBaAFCQSh2Qw4qz0oag+Wldcf5erKzsu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkJFRi9GNzkxQzM3RUEw NDIxMUVCODU2OTlFMjFDNEY5QUUwMi9KQktIWkREaXJQU2hxRDVhVjF4X2w2c3JP eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pCS0haRERpclBTaHFENWFWMXhfbDZzck95NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCRUYvRjc5MUMzN0VBMDQyMTFFQjg1Njk5RTIxQzRGOUFFMDIvMjhEMjhERDBG MUI1MTFFRTgzNTk2MzgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2EiMA0GCSqGSIb3DQEBCwUAA4IBAQBfjzIASFHEsbXDTWzU5Xiv XRT9rdDJP8qLh7tKkHFrkS+Q9WB6ZkRcpWriZAFU6SH5KFuEz/vhXtXvM/kCiZiC QGWuj7lUcHpNp/6CT9nO7TZxAwvaArj+fpXVvOV8GJaF/DxV3Fkrls9fneBVI4ji GbP4RV9DnNTI8V0GDVbI/3RDUJDUUkJDargCiPaYJXAGyrZRbbsnQWTVEJtgVYgY EDpYVDRkQ4R1D7yEE2U1RBIpjL9+uEZLKh/ad6eXKtOlrX+s1oBz+Y5F7LIWIXx0 iRoAOQREiDe81GKfKa3v62sQRd5mNXlF/qv3MDgpbmqIIv9kVnU0OJQkZ58/ilJh -----END CERTIFICATE-----Generated at Thu Mar 5 14:06:46 2026 by rpki-client