$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa File: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (raw, json) Hash identifier: yY5W8QHlOVcNFdNHN5tf5xhCqQSWa5PPR1EloS7CLPA= Subject key identifier: 71:BD:6B:7C:F4:BD:47:E6:29:00:6F:0D:F6:39:96:F8:2D:86:27:C4 Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: DF Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:37:06 +0000 ROA not before: Fri 13 Jun 2025 06:47:28 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151210 IP address blocks: 103.132.102.0/23 maxlen: 23 103.132.102.0/24 maxlen: 24 103.132.103.0/24 maxlen: 24 2001:df2:5fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Jun 13 06:47:28 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a092-8142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:d9:9b:35:7b:d9:be:4a:47:8a:26:da:30: 4f:6f:2c:1c:93:50:f0:91:81:8c:54:24:7e:2a:3b: ce:06:c0:c0:81:08:90:11:c4:d2:6a:e0:ac:4e:ba: ea:0d:b2:d8:6b:61:cb:ca:00:53:8c:e7:ef:ed:f7: fd:43:74:7b:c5:81:77:77:1c:07:02:2b:4f:72:7d: 10:da:4e:9c:6d:07:a1:ab:11:c0:fe:96:1a:43:e8: 47:5d:7b:24:a9:4f:5f:5c:2c:9a:76:96:3c:56:6c: a5:cd:1b:f6:71:18:d8:15:c8:cb:70:67:51:3e:34: de:08:e0:a2:49:94:f6:ab:73:f5:bf:e0:60:a5:cd: 9b:b3:1f:b2:cf:97:e8:ac:fc:c8:22:c2:d8:d0:6d: 20:00:07:84:52:04:1c:9a:81:1f:80:2f:df:ae:27: 9d:b6:b9:78:72:7e:2e:0e:72:ef:27:2c:fa:f8:f5: 18:45:67:b6:6e:80:e4:46:1b:a2:27:bc:51:7b:6f: 15:90:0c:06:34:31:da:d8:c9:74:a2:e0:e7:09:8b: 18:59:51:bd:61:45:c4:17:7a:23:ea:3f:d4:db:15: 30:a9:48:c2:2c:7f:86:be:f3:5e:c8:3d:38:40:0b: ac:8a:5e:d0:36:5a:da:bd:42:fb:41:3a:71:2b:f3: 99:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BD:6B:7C:F4:BD:47:E6:29:00:6F:0D:F6:39:96:F8:2D:86:27:C4 X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/2C7AE786042711F0BCEB4A75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.102.0/23 IPv6: 2001:df2:5fc0::/48 Signature Algorithm: sha256WithRSAEncryption 01:36:ee:b0:fe:61:b3:f1:e2:4e:58:72:ef:e4:18:ee:e7:66: da:df:f3:41:a4:46:26:4f:0e:4f:a8:70:f8:07:d0:07:bb:a5: 85:a0:15:86:61:b5:c3:62:34:32:aa:37:1d:54:96:7e:94:b0: 82:01:bd:5b:06:dd:3c:16:fd:7f:38:82:4f:6c:96:67:3a:64: 8b:19:ed:43:99:5b:82:67:8c:b9:e4:7d:5b:9b:6b:26:3e:3f: 31:2e:68:70:25:b4:22:1e:cc:7d:5b:9e:e6:e6:08:63:ad:22: 7d:b8:63:74:e9:1b:e0:1d:c6:bd:e5:25:31:76:a6:1b:b8:38: 77:8d:5c:9a:5f:94:f6:7d:d0:47:c8:16:75:9f:ce:6f:04:9b: 38:5c:4f:8f:00:8f:c0:4b:24:3d:8c:57:45:1b:42:98:1e:8b: df:2d:9a:fe:84:5e:13:23:eb:06:51:84:ed:b6:b7:51:ee:72: ce:69:a8:96:78:3d:77:26:54:b2:39:51:24:eb:1a:7a:89:70: 32:d6:17:58:f6:4a:b2:d7:18:61:f3:dc:40:ed:dc:dc:71:72: 16:bf:81:8b:da:8d:58:9d:13:7a:90:d4:be:81:ab:f8:31:3c: 35:69:28:41:30:2d:39:7c:8f:a3:44:13:66:a1:fe:11:a7:96: ac:2b:90:f3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyNTgxMTAvBgNVBAUTKDc4NDQ1OUE0QjY2QzgzNUZDRjVENkU1QTU2ODcyRDky NDdENDY1OEEwHhcNMjUwNjEzMDY0NzI4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTA5Mi04MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCnZmzV72b5KR4om2jBPbywck1DwkYGMVCR+KjvOBsDAgQiQEcTSauCsTrrq DbLYa2HLygBTjOfv7ff9Q3R7xYF3dxwHAitPcn0Q2k6cbQehqxHA/pYaQ+hHXXsk qU9fXCyadpY8VmylzRv2cRjYFcjLcGdRPjTeCOCiSZT2q3P1v+Bgpc2bsx+yz5fo rPzIIsLY0G0gAAeEUgQcmoEfgC/friedtrl4cn4uDnLvJyz6+PUYRWe2boDkRhui J7xRe28VkAwGNDHa2Ml0ouDnCYsYWVG9YUXEF3oj6j/U2xUwqUjCLH+GvvNeyD04 QAusil7QNlravUL7QTpxK/OZawIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHG9a3z0 vUfmKQBvDfY5lvgthifEMB8GA1UdIwQYMBaAFHhEWaS2bINfz11uWlaHLZJH1GWK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTI1OC9BQzA5QzZFRUUz MDYxMUVGQTgwN0IwNTNDNEY5QUUwMi9lRVJacExac2cxX1BYVzVhVm9jdGtrZlVa WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyNTgvQUMwOUM2RUVFMzA2MTFFRkE4MDdCMDUzQzRGOUFFMDIvMkM3QUU3ODYw NDI3MTFGMEJDRUI0QTc1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4RmMA8EAgACMAkDBwAgAQ3yX8AwDQYJKoZIhvcNAQELBQADggEB AAE27rD+YbPx4k5Ycu/kGO7nZtrf80GkRiZPDk+ocPgH0Ae7pYWgFYZhtcNiNDKq Nx1Uln6UsIIBvVsG3TwW/X84gk9slmc6ZIsZ7UOZW4JnjLnkfVubayY+PzEuaHAl tCIezH1bnubmCGOtIn24Y3TpG+Adxr3lJTF2phu4OHeNXJpflPZ90EfIFnWfzm8E mzhcT48Aj8BLJD2MV0UbQpgei98tmv6EXhMj6wZRhO22t1Hucs5pqJZ4PXcmVLI5 USTrGnqJcDLWF1j2SrLXGGHz3EDt3Nxxcha/gYvajVidE3qQ1L6Bq/gxPDVpKEEw LTl8j6NEE2ah/hGnlqwrkPM= -----END CERTIFICATE-----Generated at Thu Mar 26 19:23:59 2026 by rpki-client