$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa File: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (raw, json) Hash identifier: u48zpmX4MX32BsS3SWmiT1sLqFE6P1rFb2rRJj5ZiBw= Subject key identifier: 60:C2:B1:46:67:55:E6:98:24:FC:4A:5E:4E:2B:8C:D9:5E:EA:A8:79 Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 01CF Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:14:10 +0000 ROA not before: Mon 29 Sep 2025 05:02:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 31898 IP address blocks: 103.255.96.0/24 maxlen: 24 103.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 29 05:02:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a51ca2-c848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1b:3e:62:04:d1:ee:68:76:b3:8b:c0:5b:04: 8f:24:c1:c8:bb:eb:fb:b0:78:86:77:5e:c6:58:96: 6d:f4:49:31:99:7d:c4:13:28:39:ce:ff:24:c1:25: 2c:27:bc:06:1e:ee:b1:9c:75:c8:af:2c:fc:fc:13: 4f:eb:a9:21:9f:71:ff:42:5d:6d:0a:0e:c8:56:5c: 61:a9:3e:14:e3:58:6f:9a:00:9f:c4:0c:d3:8c:8c: 76:0f:03:98:e7:fa:fb:c9:c4:e8:44:6a:04:2b:11: 1e:bf:14:b6:ff:b1:00:03:26:e0:b5:13:7b:5f:46: bb:02:a7:d1:7b:c3:fd:07:a7:0e:41:65:2a:34:6b: 38:05:27:90:c7:50:79:e5:6d:f4:fb:39:21:a5:ff: 6e:98:47:48:aa:63:e4:25:8a:6c:79:22:e4:d5:cb: 8c:77:18:14:03:e3:ca:09:5d:48:02:5a:08:69:04: 6a:49:92:91:49:1e:7e:ca:83:84:92:31:30:bb:5f: 40:9c:7e:55:c6:e4:ee:bf:56:7f:0a:99:1f:ba:33: bf:6b:82:f6:85:54:dc:bd:3c:e7:03:41:16:d4:34: 3d:55:40:97:f8:d9:f4:38:60:2c:2c:98:77:f0:1b: 02:d2:84:f8:22:ea:0f:23:b2:ff:30:11:2a:6e:d9: e2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C2:B1:46:67:55:E6:98:24:FC:4A:5E:4E:2B:8C:D9:5E:EA:A8:79 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.96.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:68:3c:bd:b1:e9:0e:6f:50:0b:49:d1:7d:57:fc:3f:b3:5b: 4d:66:52:b2:14:00:a4:90:c3:9d:fb:61:65:c5:25:bd:b6:5b: 4a:30:1e:1f:84:d9:a7:83:93:59:a0:79:68:37:45:68:15:4c: f1:9b:e4:4d:75:1f:3c:11:3e:12:63:93:de:59:f3:8a:47:4a: 58:7b:0a:74:f0:62:4f:bf:f6:db:2a:e1:3e:2b:4c:3b:65:6e: a6:8c:97:59:54:93:e0:08:59:5f:2b:fb:36:4f:4b:e1:d8:80: 3b:1d:98:94:76:3e:81:cd:11:82:bb:b8:52:cd:89:ab:66:7f: 45:28:95:d8:1d:72:2c:c7:d2:4f:e4:c8:c7:7e:ba:a8:3d:58: c3:44:40:2c:10:7a:c1:4f:00:f6:38:6f:49:ab:3a:6f:ce:b0: ba:14:6e:77:07:97:c1:b3:d8:eb:bd:b7:1c:8d:02:7b:18:5b: c0:ef:f4:1a:0a:f3:80:66:12:a9:fe:f2:19:23:a3:34:c8:d6: c9:fd:86:de:12:26:36:39:79:04:0b:a3:a4:bb:d6:13:db:5e: da:91:80:7a:48:65:df:3d:65:5a:2c:8a:d7:f2:b3:23:93:33: 53:6e:ff:96:ea:06:b1:5a:bd:6d:8c:c2:09:e4:39:29:a8:92: 61:bb:2d:19 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwOTI5MDUwMjQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWNhMi1jODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBs+YgTR7mh2s4vAWwSPJMHIu+v7sHiGd17GWJZt9EkxmX3EEyg5zv8kwSUs J7wGHu6xnHXIryz8/BNP66khn3H/Ql1tCg7IVlxhqT4U41hvmgCfxAzTjIx2DwOY 5/r7ycToRGoEKxEevxS2/7EAAybgtRN7X0a7AqfRe8P9B6cOQWUqNGs4BSeQx1B5 5W30+zkhpf9umEdIqmPkJYpseSLk1cuMdxgUA+PKCV1IAloIaQRqSZKRSR5+yoOE kjEwu19AnH5VxuTuv1Z/CpkfujO/a4L2hVTcvTznA0EW1DQ9VUCX+Nn0OGAsLJh3 8BsC0oT4IuoPI7L/MBEqbtniGwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGDCsUZn VeaYJPxKXk4rjNle6qh5MB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDMzMvOTU2Q0IwODY5ODFCMTFFRUFCMEZDOTIyQzRGOUFFMDIvMjEwQTRFQkFD MEYyMTFFRTk5RkZCQTIxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/9gMA0GCSqGSIb3DQEBCwUAA4IBAQAbaDy9sekOb1ALSdF9V/w/ s1tNZlKyFACkkMOd+2FlxSW9tltKMB4fhNmng5NZoHloN0VoFUzxm+RNdR88ET4S Y5PeWfOKR0pYewp08GJPv/bbKuE+K0w7ZW6mjJdZVJPgCFlfK/s2T0vh2IA7HZiU dj6BzRGCu7hSzYmrZn9FKJXYHXIsx9JP5MjHfrqoPVjDREAsEHrBTwD2OG9Jqzpv zrC6FG53B5fBs9jrvbccjQJ7GFvA7/QaCvOAZhKp/vIZI6M0yNbJ/YbeEiY2OXkE C6Oku9YT217akYB6SGXfPWVaLIrX8rMjkzNTbv+W6gaxWr1tjMIJ5DkpqJJhuy0Z -----END CERTIFICATE-----Generated at Thu Mar 26 06:55:00 2026 by rpki-client