$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa File: 137DD3E8E60C11F0A18B1E57676F56BC.roa (raw, json) Hash identifier: uV78r469K9kpBYYycBaJqz/OEoI2cFdGsz5vaAFm0kA= Subject key identifier: 87:06:90:65:E5:C7:B2:9E:2C:17:AA:78:89:53:FB:87:2D:2C:0A:2E Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0864 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa Signing time: Sat 14 Mar 2026 19:14:39 +0000 ROA not before: Sat 14 Mar 2026 19:14:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154346 IP address blocks: 103.152.206.0/24 maxlen: 24 2001:df7:3701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Mar 14 19:14:39 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69b5b39f-46c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e5:e6:73:72:31:c6:91:89:27:a2:fa:f9:1b: 04:84:7b:b1:48:14:46:c7:f5:00:5c:b7:c7:c4:c7: 0f:fc:17:bf:f0:2d:a6:71:5a:d5:cd:63:6a:4b:9e: 6d:f9:dc:86:56:68:1c:1d:38:1f:d6:dc:26:b9:88: d0:3e:b1:2e:df:b6:87:e0:df:de:9d:cc:ec:19:e4: 58:2b:75:33:b2:88:d1:bc:af:67:7f:55:fa:9a:33: 83:1f:a1:c8:df:60:da:f3:c0:96:aa:98:48:52:53: 1a:de:29:8a:0f:5c:28:b4:4a:05:97:5f:cb:64:54: 8e:38:20:e9:3b:71:cc:34:99:56:93:0b:06:77:92: d3:41:28:ed:f6:ac:ec:8c:4d:9a:1e:d4:e7:43:6a: b0:b0:da:2b:cb:92:64:cd:4f:36:b5:77:ee:16:2b: 6b:34:72:dd:2f:3e:17:91:6b:ec:29:00:47:33:5c: 93:e7:ad:4b:3c:a0:36:30:e4:3a:47:9c:5c:78:b4: 6e:dc:c8:af:d1:ad:b8:d7:59:01:7a:13:e1:05:c0: 72:f2:52:11:ea:d5:66:1a:c1:56:62:b5:a7:b5:cc: f5:bd:0a:f9:07:06:a0:eb:6c:f5:54:09:2b:36:e4: 6e:b1:4a:a4:6f:d4:03:07:0e:31:b0:f7:1a:4c:95: dd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:06:90:65:E5:C7:B2:9E:2C:17:AA:78:89:53:FB:87:2D:2C:0A:2E X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/137DD3E8E60C11F0A18B1E57676F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.152.206.0/24 IPv6: 2001:df7:3701::/48 Signature Algorithm: sha256WithRSAEncryption ba:38:b9:9d:67:d0:c4:02:c1:5a:59:84:f5:01:aa:5d:1b:a7: b6:e0:06:2e:b1:e7:9e:f6:99:6f:ee:b8:2c:ae:ff:4e:5f:ba: 5d:d1:c4:60:69:5c:b0:f1:9c:25:52:dd:82:33:8c:27:a2:b9: 2a:6d:22:9d:ea:e1:c0:11:40:e7:84:09:73:39:47:b0:19:bd: fe:dd:66:91:91:74:eb:96:19:38:ca:fe:4a:dc:34:3b:01:f6: 37:64:b8:0d:02:8f:6f:ce:21:00:2b:50:2c:fe:8f:39:93:4e: 25:83:c0:32:d7:c5:fa:3f:73:be:b8:5f:65:3c:b5:90:ea:23: 46:db:55:33:d9:99:a2:5c:0d:c5:88:fc:e4:9f:85:64:26:60: cb:6b:7d:f8:8f:2f:2a:ed:88:47:76:6c:fc:17:9a:d7:3b:c2: a3:c1:04:c8:d6:0d:13:cd:27:87:e8:09:2d:f4:c8:c7:d9:89: 30:57:3e:37:8b:0d:88:e7:1d:0f:b1:2d:d3:2c:04:1e:10:1a: 0e:f3:be:f1:2e:4b:d6:af:86:f8:c0:7d:42:4c:ed:84:21:e8: 16:3d:b9:c5:7e:6e:26:3e:c5:b5:e1:25:aa:94:e2:8b:5e:e4: 2b:89:51:43:03:79:aa:1f:4e:95:ab:3a:51:41:23:26:1c:ea: 16:a3:71:d6 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjYwMzE0MTkxNDM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI1YjM5Zi00NmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+Xmc3IxxpGJJ6L6+RsEhHuxSBRGx/UAXLfHxMcP/Be/8C2mcVrVzWNqS55t +dyGVmgcHTgf1twmuYjQPrEu37aH4N/enczsGeRYK3UzsojRvK9nf1X6mjODH6HI 32Da88CWqphIUlMa3imKD1wotEoFl1/LZFSOOCDpO3HMNJlWkwsGd5LTQSjt9qzs jE2aHtTnQ2qwsNory5JkzU82tXfuFitrNHLdLz4XkWvsKQBHM1yT561LPKA2MOQ6 R5xceLRu3Miv0a2411kBehPhBcBy8lIR6tVmGsFWYrWntcz1vQr5Bwag62z1VAkr NuRusUqkb9QDBw4xsPcaTJXd7wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIcGkGXl x7KeLBeqeIlT+4ctLAouMB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlBMEQvMEZCNzkxNjRGQjE1MTFFQUIwMTFFQzZFQzRGOUFFMDIvMTM3REQzRThF NjBDMTFGMEExOEIxRTU3Njc2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5jOMA8EAgACMAkDBwAgAQ33NwEwDQYJKoZIhvcNAQELBQADggEB ALo4uZ1n0MQCwVpZhPUBql0bp7bgBi6x5572mW/uuCyu/05ful3RxGBpXLDxnCVS 3YIzjCeiuSptIp3q4cARQOeECXM5R7AZvf7dZpGRdOuWGTjK/krcNDsB9jdkuA0C j2/OIQArUCz+jzmTTiWDwDLXxfo/c764X2U8tZDqI0bbVTPZmaJcDcWI/OSfhWQm YMtrffiPLyrtiEd2bPwXmtc7wqPBBMjWDRPNJ4foCS30yMfZiTBXPjeLDYjnHQ+x LdMsBB4QGg7zvvEuS9avhvjAfUJM7YQh6BY9ucV+biY+xbXhJaqU4ote5CuJUUMD eaofTpWrOlFBIyYc6hajcdY= -----END CERTIFICATE-----Generated at Thu Mar 26 07:31:34 2026 by rpki-client