$ rpki-client -vvf rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/A2139F38EF8111F091D2B45E5F6F56BC.roa File: A2139F38EF8111F091D2B45E5F6F56BC.roa (raw, json) Hash identifier: htJ4VDMIgUmAqLLv+vJUBNK9ByybYpEa/tAe+qkz96c= Subject key identifier: 6F:66:58:FA:3D:8A:B3:B6:1E:3F:D1:AA:02:B9:CC:01:8D:A7:5C:27 Certificate issuer: /CN=A913EBFD/serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Certificate serial: 0BD0 Authority key identifier: B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/A2139F38EF8111F091D2B45E5F6F56BC.roa Signing time: Sun 01 Mar 2026 17:10:35 +0000 ROA not before: Mon 12 Jan 2026 19:15:43 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138550 IP address blocks: 103.132.184.0/24 maxlen: 24 2001:df7:8300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3024 (0xbd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EBFD, serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Validity Not Before: Jan 12 19:15:43 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4730b-7edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:48:8c:8e:0c:f3:c3:f1:16:58:da:1e:a0: 92:8f:a7:12:79:50:46:eb:e8:56:74:fc:d2:3f:05: b0:85:68:e7:78:9c:f8:2f:ee:80:7d:8a:e2:48:d6: 0d:43:f4:5c:d2:0a:af:89:60:ff:30:f9:02:db:e3: 82:fc:0a:71:8d:be:2f:30:65:5f:50:9a:9a:b5:1a: 3d:2b:4b:5a:ea:5a:33:19:04:fd:4d:6d:45:ba:84: fe:a7:02:f4:8e:ea:e9:14:26:f7:a6:31:92:7b:95: 65:8c:a6:99:e7:d4:08:ea:f1:8d:05:70:df:ce:65: c1:ae:3f:77:3e:1b:a2:e9:44:23:79:ca:8e:b5:da: 8d:27:b3:fe:63:62:51:96:b6:f1:b8:6f:d0:69:4b: c7:80:56:2a:5f:90:ab:b0:71:93:89:82:b8:f9:50: 7c:95:09:07:89:f3:31:51:5c:e6:29:b8:33:41:70: 2a:50:fc:91:0d:62:2b:20:38:49:35:7e:b2:20:78: 56:d1:60:29:05:5d:e4:e3:ba:3a:3e:13:2e:ea:c9: d8:21:73:98:6b:d0:72:c8:69:10:19:51:b7:aa:dd: 02:3e:23:cc:d0:e8:a0:01:2b:b0:87:bb:e6:56:aa: cd:c0:21:fa:3f:df:49:27:66:3f:cc:4f:c4:a4:05: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:66:58:FA:3D:8A:B3:B6:1E:3F:D1:AA:02:B9:CC:01:8D:A7:5C:27 X509v3 Authority Key Identifier: keyid:B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/A2139F38EF8111F091D2B45E5F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.132.184.0/24 IPv6: 2001:df7:8300::/48 Signature Algorithm: sha256WithRSAEncryption 56:15:43:22:43:c0:8c:fa:62:ba:6d:17:17:b0:d8:81:d9:ef: 5b:be:81:17:db:99:5e:97:cf:94:58:3b:53:4c:3f:d4:37:d3: 01:b6:e7:ae:2a:df:40:de:3e:fb:5a:d7:a8:82:a7:3b:e7:be: 97:b3:41:5d:45:e1:87:22:06:8a:21:d4:ef:f2:9f:46:87:a7: 77:54:30:20:dd:af:e4:2d:03:d7:b9:79:3b:58:91:a9:a5:81: 7f:8a:19:87:3e:25:85:c2:be:40:df:18:ce:26:44:bb:23:c9: 28:af:c5:64:b1:65:46:c4:54:53:27:cb:b2:21:33:0e:29:17: 7e:22:1b:88:b0:48:a2:b3:7d:0e:06:56:58:58:c2:2c:43:3f: 13:1f:f2:6b:41:9c:59:dc:bd:3a:be:cc:44:b6:3d:27:cb:bc: 41:a6:b4:54:61:06:2e:2b:72:99:84:ae:b4:cf:52:2f:f7:65: a2:16:50:51:9f:64:05:b2:65:fa:49:19:df:af:ed:0d:64:c7: e3:47:8b:6f:fa:b8:7f:1a:48:90:47:20:42:70:51:7b:d4:e4: 85:33:c4:d4:8f:a0:76:10:3e:64:89:8e:b4:97:6e:fc:9e:03: 84:10:3b:92:30:4b:e0:25:80:d2:cd:a1:f3:94:8d:7b:46:02: 20:83:aa:a1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VCRkQxMTAvBgNVBAUTKEIxNDBBRjA0OTE5QjQ1MTM4MjVBNkVBNTdFMUFCOUU1 NDM3OUUzQzgwHhcNMjYwMTEyMTkxNTQzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzMwYi03ZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjxIjI4M88PxFljaHqCSj6cSeVBG6+hWdPzSPwWwhWjneJz4L+6AfYriSNYN Q/Rc0gqviWD/MPkC2+OC/Apxjb4vMGVfUJqatRo9K0ta6lozGQT9TW1FuoT+pwL0 jurpFCb3pjGSe5VljKaZ59QI6vGNBXDfzmXBrj93Phui6UQjecqOtdqNJ7P+Y2JR lrbxuG/QaUvHgFYqX5CrsHGTiYK4+VB8lQkHifMxUVzmKbgzQXAqUPyRDWIrIDhJ NX6yIHhW0WApBV3k47o6PhMu6snYIXOYa9ByyGkQGVG3qt0CPiPM0OigASuwh7vm VqrNwCH6P99JJ2Y/zE/EpAWwDwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFG9mWPo9 irO2Hj/RqgK5zAGNp1wnMB8GA1UdIwQYMBaAFLFArwSRm0UTglpupX4aueVDeePI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUJGRC9GN0NFNjI5QTNB OEUxMUVBODBBRjBFMzFDNEY5QUUwMi9zVUN2QkpHYlJST0NXbTZsZmhxNTVVTjU0 OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVQ3ZCSkdiUlJPQ1dtNmxmaHE1NVVONTQ4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VCRkQvRjdDRTYyOUEzQThFMTFFQTgwQUYwRTMxQzRGOUFFMDIvQTIxMzlGMzhF RjgxMTFGMDkxRDJCNDVFNUY2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4S4MA8EAgACMAkDBwAgAQ33gwAwDQYJKoZIhvcNAQELBQADggEB AFYVQyJDwIz6YrptFxew2IHZ71u+gRfbmV6Xz5RYO1NMP9Q30wG2564q30DePvta 16iCpzvnvpezQV1F4YciBooh1O/yn0aHp3dUMCDdr+QtA9e5eTtYkamlgX+KGYc+ JYXCvkDfGM4mRLsjySivxWSxZUbEVFMny7IhMw4pF34iG4iwSKKzfQ4GVlhYwixD PxMf8mtBnFncvTq+zES2PSfLvEGmtFRhBi4rcpmErrTPUi/3ZaIWUFGfZAWyZfpJ Gd+v7Q1kx+NHi2/6uH8aSJBHIEJwUXvU5IUzxNSPoHYQPmSJjrSXbvyeA4QQO5Iw S+AlgNLNofOUjXtGAiCDqqE= -----END CERTIFICATE-----Generated at Fri Mar 27 09:00:30 2026 by rpki-client