$ rpki-client -vvf rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/152E5750901211EEA25BED1EC4F9AE02.roa File: 152E5750901211EEA25BED1EC4F9AE02.roa (raw, json) Hash identifier: S393tIRXjqwIgNjaze8iQkcL22A9fRb/vcetFTNN4As= Subject key identifier: 13:6D:9B:C5:CF:FB:28:E2:21:12:88:D2:BE:40:F2:1F:47:65:19:28 Certificate issuer: /CN=A912D14B/serialNumber=4FDE9490FF2FF3E9BF93B498D74F31F75EA9FCFF Certificate serial: 042C Authority key identifier: 4F:DE:94:90:FF:2F:F3:E9:BF:93:B4:98:D7:4F:31:F7:5E:A9:FC:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T96UkP8v8-m_k7SY108x916p_P8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/152E5750901211EEA25BED1EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:03:28 +0000 ROA not before: Fri 05 Sep 2025 01:06:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138161 IP address blocks: 103.121.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/T96UkP8v8-m_k7SY108x916p_P8.crl rsync://rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/T96UkP8v8-m_k7SY108x916p_P8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T96UkP8v8-m_k7SY108x916p_P8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D14B, serialNumber=4FDE9490FF2FF3E9BF93B498D74F31F75EA9FCFF Validity Not Before: Sep 5 01:06:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45540-2241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:ee:8f:ed:2a:6e:da:56:83:93:a9:31:da: 6a:86:97:4d:10:e9:30:bd:74:26:0a:7f:c0:3d:f3: a6:a9:ff:9e:71:78:86:a1:41:42:f2:28:78:75:25: e9:3c:ed:4d:46:f3:76:fd:05:ab:8f:13:13:46:65: cf:c8:5b:fc:bd:2c:1b:9a:2e:1d:35:49:83:63:ee: b3:c3:46:2a:ad:89:6a:e4:86:42:c1:24:46:87:63: c1:78:ca:3a:7a:cb:51:4e:a2:97:3c:b9:9b:46:2b: d4:db:be:ae:82:b0:66:1a:7b:31:fd:20:b3:3a:25: b6:66:dd:a0:5e:85:69:d7:28:02:ee:57:2c:7f:f4: 27:f7:79:2b:5b:10:72:99:84:53:4e:a9:e3:99:8c: 9f:47:7a:04:de:df:37:84:62:c0:63:66:e1:dd:21: 1d:65:d8:d6:61:cf:a3:16:ff:91:4f:8f:29:18:a2: 39:78:dd:67:ab:7b:18:8f:ca:61:ea:5b:87:ea:c2: 33:bd:0b:fc:4f:24:2b:36:2c:31:90:4b:22:fa:6c: 4f:15:56:96:52:59:52:56:0f:94:75:cd:ad:25:28: ff:29:3c:1f:45:a1:37:fb:cb:ed:52:d3:24:13:4c: 7a:c4:49:cb:18:f6:e7:03:e8:e5:b2:58:6d:97:e5: 39:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6D:9B:C5:CF:FB:28:E2:21:12:88:D2:BE:40:F2:1F:47:65:19:28 X509v3 Authority Key Identifier: keyid:4F:DE:94:90:FF:2F:F3:E9:BF:93:B4:98:D7:4F:31:F7:5E:A9:FC:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/T96UkP8v8-m_k7SY108x916p_P8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T96UkP8v8-m_k7SY108x916p_P8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D14B/DC1E7214A4E611EC9EF4314DC4F9AE02/152E5750901211EEA25BED1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.192.0/24 Signature Algorithm: sha256WithRSAEncryption 76:01:d8:20:a4:65:9b:2b:4d:79:3e:37:d3:24:d6:06:54:f1: 5a:6c:75:2d:db:b4:45:5d:5e:f4:e6:d7:b4:49:56:09:18:75: cf:fd:9a:e7:47:35:84:7f:60:7b:24:6c:d1:ea:1f:b2:36:85: 35:df:6c:63:3b:d8:b4:14:99:7c:2c:17:f4:d2:f4:b8:41:9f: 7d:42:b7:0e:13:3e:28:e5:2f:ff:e2:48:fd:19:b5:68:03:8c: 02:37:ef:c2:97:43:47:c2:91:c6:de:81:e4:83:3e:57:a4:6a: 78:ea:c1:22:be:d6:ea:a4:d4:5a:0f:d9:69:54:0e:0c:5e:46: 08:67:1c:ab:21:69:7f:a7:17:3b:dd:b2:af:41:c6:3a:62:41: d2:2d:ac:b7:e0:a4:1e:c9:ad:a2:1d:62:18:50:52:23:d3:b6: 76:6b:be:74:b2:2f:25:a0:69:3b:fa:33:74:df:35:df:31:cf: ba:4d:95:05:82:16:46:2e:ea:ba:6f:2e:cc:b0:73:9a:2a:81: 2b:da:88:4f:fd:69:ef:1e:63:bd:1f:92:3b:47:98:52:f5:4c: 73:99:85:84:14:9a:ab:bb:6c:93:b7:cb:4c:81:09:81:8e:6d: aa:4f:23:08:63:b0:f0:0b:ae:0b:55:ba:05:b5:c9:ff:29:c9: e6:ea:f9:27 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxNEIxMTAvBgNVBAUTKDRGREU5NDkwRkYyRkYzRTlCRjkzQjQ5OEQ3NEYzMUY3 NUVBOUZDRkYwHhcNMjUwOTA1MDEwNjU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTU0MC0yMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uTuj+0qbtpWg5OpMdpqhpdNEOkwvXQmCn/APfOmqf+ecXiGoUFC8ih4dSXp PO1NRvN2/QWrjxMTRmXPyFv8vSwbmi4dNUmDY+6zw0YqrYlq5IZCwSRGh2PBeMo6 estRTqKXPLmbRivU276ugrBmGnsx/SCzOiW2Zt2gXoVp1ygC7lcsf/Qn93krWxBy mYRTTqnjmYyfR3oE3t83hGLAY2bh3SEdZdjWYc+jFv+RT48pGKI5eN1nq3sYj8ph 6luH6sIzvQv8TyQrNiwxkEsi+mxPFVaWUllSVg+Udc2tJSj/KTwfRaE3+8vtUtMk E0x6xEnLGPbnA+jlslhtl+U5WwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBNtm8XP +yjiIRKI0r5A8h9HZRkoMB8GA1UdIwQYMBaAFE/elJD/L/Ppv5O0mNdPMfdeqfz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDE0Qi9EQzFFNzIxNEE0 RTYxMUVDOUVGNDMxNERDNEY5QUUwMi9UOTZVa1A4djgtbV9rN1NZMTA4eDkxNnBf UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Q5NlVrUDh2OC1tX2s3U1kxMDh4OTE2cF9QOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQxNEIvREMxRTcyMTRBNEU2MTFFQzlFRjQzMTREQzRGOUFFMDIvMTUyRTU3NTA5 MDEyMTFFRUEyNUJFRDFFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ3nAMA0GCSqGSIb3DQEBCwUAA4IBAQB2AdggpGWbK015PjfTJNYG VPFabHUt27RFXV705te0SVYJGHXP/ZrnRzWEf2B7JGzR6h+yNoU132xjO9i0FJl8 LBf00vS4QZ99QrcOEz4o5S//4kj9GbVoA4wCN+/Cl0NHwpHG3oHkgz5XpGp46sEi vtbqpNRaD9lpVA4MXkYIZxyrIWl/pxc73bKvQcY6YkHSLay34KQeya2iHWIYUFIj 07Z2a750si8loGk7+jN03zXfMc+6TZUFghZGLuq6by7MsHOaKoEr2ohP/WnvHmO9 H5I7R5hS9UxzmYWEFJqru2yTt8tMgQmBjm2qTyMIY7DwC64LVboFtcn/Kcnm6vkn -----END CERTIFICATE-----Generated at Thu Mar 26 09:06:23 2026 by rpki-client