$ rpki-client -vvf rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa File: 2FD106D2B92711E99D48BA23C4F9AE02.roa (raw, json) Hash identifier: OBgW+edgtqEgU2zYC3kqUPRhw9Mb7tvvEfxdbFYsVkI= Subject key identifier: A9:11:A0:34:17:D0:4E:44:F4:75:84:10:D1:F9:CA:97:52:0E:7D:F3 Certificate issuer: /CN=A912A9B1/serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965 Certificate serial: 0E59 Authority key identifier: 25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:37:32 +0000 ROA not before: Mon 04 Aug 2025 18:27:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133936 IP address blocks: 103.140.138.0/24 maxlen: 24 103.140.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.crl rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A9B1, serialNumber=2523ACE16FEFDE6239E268C4E046B6C8C5F61965 Validity Not Before: Aug 4 18:27:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a424fc-07fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:69:36:ee:94:e9:02:d7:95:6d:1c:ec:27:15: 38:fa:a2:1b:14:c7:b4:5f:d4:11:d2:49:3d:70:9c: 5a:9b:f1:3e:8d:26:ad:d1:a3:c5:6a:ac:e1:cb:8c: 7d:d2:33:19:c5:7c:0d:4f:51:51:cc:97:5a:8b:3a: 06:78:6c:fc:30:06:bf:43:d4:93:a6:da:32:bf:b5: 9c:b6:d9:05:9c:ef:40:c2:56:4d:ef:4f:07:b4:98: 69:52:f0:34:f3:23:87:71:db:20:24:d1:76:c0:f7: e8:63:15:70:41:75:8d:df:33:1c:52:77:78:da:1d: 1f:e3:27:74:0b:fc:56:0c:90:98:7c:96:b7:8b:76: 35:ef:8b:34:91:3b:64:86:5c:ff:90:a7:e6:cb:18: 55:ac:dd:c4:c2:68:e8:e7:cf:8c:c8:c7:71:ac:50: 48:97:e0:0b:6e:74:0a:ff:47:55:1c:0a:d8:7a:14: 5a:c9:1e:8c:55:98:a0:de:1b:3e:c8:c4:33:4b:2c: 2a:dd:de:1f:27:c6:8c:38:88:dd:d2:ce:be:c8:3e: 6e:7a:54:35:68:41:35:4f:33:6f:bd:4f:ec:a6:ac: 62:35:52:6c:0a:79:db:f4:21:1b:93:f4:c8:89:20: 31:44:74:2c:17:05:ee:6f:c9:8f:1b:ce:ec:b3:5b: d5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:11:A0:34:17:D0:4E:44:F4:75:84:10:D1:F9:CA:97:52:0E:7D:F3 X509v3 Authority Key Identifier: keyid:25:23:AC:E1:6F:EF:DE:62:39:E2:68:C4:E0:46:B6:C8:C5:F6:19:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/JSOs4W_v3mI54mjE4Ea2yMX2GWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSOs4W_v3mI54mjE4Ea2yMX2GWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A9B1/5CACF6A8B92611E997528922C4F9AE02/2FD106D2B92711E99D48BA23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.140.138.0/23 Signature Algorithm: sha256WithRSAEncryption 06:25:03:e1:b5:a9:65:3a:59:8d:88:a8:e5:a0:ab:8c:cb:d3: 42:e9:b3:87:83:1e:07:90:83:07:60:e1:b3:26:d5:8d:57:b6: 5f:64:06:52:ba:f6:59:b5:d7:93:4e:d3:0b:d6:81:ec:f4:42: 85:06:50:69:52:3f:d3:87:8b:06:04:38:dc:e5:a2:97:c2:f0: d9:0c:53:89:a6:56:3f:c4:9b:90:5e:b7:4c:08:b3:45:54:5d: ac:df:a3:40:94:fa:20:17:60:16:91:00:f6:00:54:c9:a4:bd: fb:de:91:78:a7:0c:7e:e6:8f:76:7b:68:c9:e6:dd:7c:01:12: 3d:d5:a7:15:b5:39:c9:be:59:ac:1e:f8:85:d6:a8:1c:36:9f: eb:9f:2c:b4:b3:ee:70:37:ed:0d:21:0c:7e:39:4c:c0:69:ba: 7c:40:db:f6:d4:03:e9:55:7f:47:92:26:00:d9:9e:0a:c1:87: 7e:3b:fd:64:d5:b4:d3:57:f4:2f:11:48:55:86:50:4c:f1:d7: 13:fb:61:ee:f0:6c:26:7c:ad:43:bb:53:48:9f:c8:d8:1d:4b: f5:8a:e0:b1:7d:25:3b:e9:fc:50:c1:b8:89:26:20:99:f0:61: 61:cf:cb:76:98:c1:aa:7d:c2:36:d8:4b:e5:5e:05:2e:03:aa: 8d:aa:05:16 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE5QjExMTAvBgNVBAUTKDI1MjNBQ0UxNkZFRkRFNjIzOUUyNjhDNEUwNDZCNkM4 QzVGNjE5NjUwHhcNMjUwODA0MTgyNzQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRmYy0wN2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjmk27pTpAteVbRzsJxU4+qIbFMe0X9QR0kk9cJxam/E+jSat0aPFaqzhy4x9 0jMZxXwNT1FRzJdaizoGeGz8MAa/Q9STptoyv7WcttkFnO9AwlZN708HtJhpUvA0 8yOHcdsgJNF2wPfoYxVwQXWN3zMcUnd42h0f4yd0C/xWDJCYfJa3i3Y174s0kTtk hlz/kKfmyxhVrN3Ewmjo58+MyMdxrFBIl+ALbnQK/0dVHArYehRayR6MVZig3hs+ yMQzSywq3d4fJ8aMOIjd0s6+yD5uelQ1aEE1TzNvvU/spqxiNVJsCnnb9CEbk/TI iSAxRHQsFwXub8mPG87ss1vVzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKkRoDQX 0E5E9HWEENH5ypdSDn3zMB8GA1UdIwQYMBaAFCUjrOFv795iOeJoxOBGtsjF9hll MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTlCMS81Q0FDRjZBOEI5 MjYxMUU5OTc1Mjg5MjJDNEY5QUUwMi9KU09zNFdfdjNtSTU0bWpFNEVhMnlNWDJH V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTT3M0V192M21JNTRtakU0RWEyeU1YMkdXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE5QjEvNUNBQ0Y2QThCOTI2MTFFOTk3NTI4OTIyQzRGOUFFMDIvMkZEMTA2RDJC OTI3MTFFOTlENDhCQTIzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4yKMA0GCSqGSIb3DQEBCwUAA4IBAQAGJQPhtallOlmNiKjloKuM y9NC6bOHgx4HkIMHYOGzJtWNV7ZfZAZSuvZZtdeTTtML1oHs9EKFBlBpUj/Th4sG BDjc5aKXwvDZDFOJplY/xJuQXrdMCLNFVF2s36NAlPogF2AWkQD2AFTJpL373pF4 pwx+5o92e2jJ5t18ARI91acVtTnJvlmsHviF1qgcNp/rnyy0s+5wN+0NIQx+OUzA abp8QNv21APpVX9HkiYA2Z4KwYd+O/1k1bTTV/QvEUhVhlBM8dcT+2Hu8GwmfK1D u1NIn8jYHUv1iuCxfSU76fxQwbiJJiCZ8GFhz8t2mMGqfcI22EvlXgUuA6qNqgUW -----END CERTIFICATE-----Generated at Thu Mar 26 19:07:27 2026 by rpki-client