$ rpki-client -vvf rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa File: 582836EAF0BF11ED9EC0094AC4F9AE02.roa (raw, json) Hash identifier: WZyXijNT2/qLi4CbFT1eB1AVRbLAqbleS+ktkCs1S8g= Subject key identifier: B1:7E:A8:60:1E:FD:A2:ED:C6:8D:4D:66:B5:57:69:DF:4E:76:DB:38 Certificate issuer: /CN=A9197E5D/serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Certificate serial: 0225 Authority key identifier: 0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa Signing time: Sun 29 Mar 2026 02:38:29 +0000 ROA not before: Sun 29 Mar 2026 02:38:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 149422 IP address blocks: 103.88.102.0/23 maxlen: 23 103.88.102.0/24 maxlen: 24 103.88.103.0/24 maxlen: 24 2400:e0a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197E5D, serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Validity Not Before: Mar 29 02:38:29 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c890a5-38a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:7e:1c:c2:f7:45:f6:35:0f:61:dd:33:37:d5: ed:e1:30:cd:55:88:53:3d:0f:6a:14:1a:cf:90:17: 1b:1b:56:f2:68:03:95:bf:e0:b4:54:ca:ea:d2:e2: 75:1d:90:7a:af:f3:5d:0e:42:67:41:b0:ad:89:bf: a7:95:d5:66:49:cb:fd:5d:07:e8:2d:a7:f3:de:79: db:4b:de:f8:e4:0e:51:84:74:bc:2c:b9:7c:73:eb: c6:50:22:74:9b:c6:ac:ae:22:df:e4:ca:23:d6:4d: fb:64:90:a0:b3:66:e2:4b:8c:1d:10:c7:3d:56:d6: 1b:ab:ac:21:c8:a2:c4:d5:04:c5:dd:16:8a:cd:bd: dc:bf:86:2f:aa:69:00:9d:39:8b:8f:f1:82:ea:e0: d5:01:77:b1:2b:60:a0:f4:5a:d6:d2:37:6f:6a:23: e4:82:d0:04:94:81:d5:81:6c:0f:ec:40:20:0a:2c: 46:32:1c:a0:0c:70:5f:f1:61:09:43:07:6a:fe:77: a4:39:34:5b:10:6e:6a:39:42:f8:03:de:54:b4:62: d1:d4:ac:44:ca:d4:0e:e3:f9:14:c7:af:4d:9d:b5: 85:fa:ef:b9:aa:27:3b:c2:1f:39:26:60:a0:ea:9f: 4d:15:03:10:a3:3a:52:b7:d1:14:3a:df:e1:f9:38: e4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7E:A8:60:1E:FD:A2:ED:C6:8D:4D:66:B5:57:69:DF:4E:76:DB:38 X509v3 Authority Key Identifier: keyid:0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.102.0/23 IPv6: 2400:e0a0::/32 Signature Algorithm: sha256WithRSAEncryption 55:da:3c:d8:b9:dd:fc:b7:2b:29:63:48:4b:84:b3:6c:ec:3f: 01:ed:6f:7b:39:73:4f:05:06:0e:4c:ac:d9:d0:da:5a:44:0f: f0:a6:47:3f:2c:8f:1b:7a:a0:ad:5a:c2:bb:88:bc:0b:64:91: 47:66:fa:f4:38:c1:6c:a8:79:35:3c:0c:6c:c4:d7:14:c5:a4: 76:af:be:73:71:7d:21:db:b1:ce:bf:06:55:04:35:fc:34:19: 07:8b:53:e6:e6:65:36:3a:7a:df:2f:cf:62:2f:4f:f9:b0:c9: f2:90:79:8b:92:46:4c:8e:30:5e:f5:bb:d6:e5:f9:dd:56:15: 5c:b9:83:15:4b:c5:5d:c3:a6:44:e5:30:4a:b2:a5:50:f5:9d: d8:80:59:a6:25:97:a7:84:72:42:ff:e0:b3:9d:6b:53:0b:ce: d2:8c:f5:4f:1a:e7:ed:be:fb:6f:ed:1c:02:0c:c4:86:b5:e1: a3:75:ef:89:66:b4:cc:64:5e:94:97:64:82:e8:c2:93:39:2a: 61:85:14:bc:4d:30:2e:26:be:6a:27:8f:43:36:89:c4:9b:74: 8b:40:f6:e9:db:ca:d3:f7:39:b0:28:fa:1a:b9:e9:91:1e:88: 4e:95:6f:d9:6a:fc:80:7f:a6:b6:8a:58:f6:6b:1e:86:74:c7: bf:6e:21:f5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdFNUQxMTAvBgNVBAUTKDBCQTY4MkU4MDM4RDc3MUEzNzA3RUFGQTgyRkREMDRD NDI5QTRGODYwHhcNMjYwMzI5MDIzODI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4OTBhNS0zOGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhH4cwvdF9jUPYd0zN9Xt4TDNVYhTPQ9qFBrPkBcbG1byaAOVv+C0VMrq0uJ1 HZB6r/NdDkJnQbCtib+nldVmScv9XQfoLafz3nnbS9745A5RhHS8LLl8c+vGUCJ0 m8asriLf5Moj1k37ZJCgs2biS4wdEMc9VtYbq6whyKLE1QTF3RaKzb3cv4YvqmkA nTmLj/GC6uDVAXexK2Cg9FrW0jdvaiPkgtAElIHVgWwP7EAgCixGMhygDHBf8WEJ Qwdq/nekOTRbEG5qOUL4A95UtGLR1KxEytQO4/kUx69NnbWF+u+5qic7wh85JmCg 6p9NFQMQozpSt9EUOt/h+TjksQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLF+qGAe /aLtxo1NZrVXad9Odts4MB8GA1UdIwQYMBaAFAumgugDjXcaNwfq+oL90ExCmk+G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0U1RC80MTIyQ0Q5Q0Yw QjYxMUVEOEY0NEZCMjdDNEY5QUUwMi9DNmFDNkFPTmR4bzNCLXI2Z3YzUVRFS2FU NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2YUM2QU9OZHhvM0ItcjZndjNRVEVLYVQ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdFNUQvNDEyMkNEOUNGMEI2MTFFRDhGNDRGQjI3QzRGOUFFMDIvNTgyODM2RUFG MEJGMTFFRDlFQzAwOTRBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ1hmMA0EAgACMAcDBQAkAOCgMA0GCSqGSIb3DQEBCwUAA4IBAQBV 2jzYud38tyspY0hLhLNs7D8B7W97OXNPBQYOTKzZ0NpaRA/wpkc/LI8beqCtWsK7 iLwLZJFHZvr0OMFsqHk1PAxsxNcUxaR2r75zcX0h27HOvwZVBDX8NBkHi1Pm5mU2 OnrfL89iL0/5sMnykHmLkkZMjjBe9bvW5fndVhVcuYMVS8Vdw6ZE5TBKsqVQ9Z3Y gFmmJZenhHJC/+CznWtTC87SjPVPGuftvvtv7RwCDMSGteGjde+JZrTMZF6Ul2SC 6MKTOSphhRS8TTAuJr5qJ49DNonEm3SLQPbp28rT9zmwKPoauemRHohOlW/ZavyA f6a2ilj2ax6GdMe/biH1 -----END CERTIFICATE-----Generated at Mon Apr 6 10:08:05 2026 by rpki-client