$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa File: 33E73FAAE50B11EF838B6642C4F9AE02.roa (raw, json) Hash identifier: d+TSvpxly3k8El4+pV6d2wdav1wdXrK2Z6zZMFeDKxk= Subject key identifier: BA:2E:C9:B8:88:1C:E2:48:E7:D3:C2:C7:91:6C:C7:18:FB:83:38:F0 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 194A Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:34:38 +0000 ROA not before: Fri 20 Feb 2026 17:14:09 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 63989 IP address blocks: 103.82.248.0/24 maxlen: 24 103.82.249.0/24 maxlen: 24 103.82.250.0/24 maxlen: 24 103.82.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6474 (0x194a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Feb 20 17:14:09 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a44e7d-3018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:c9:d9:0e:28:70:46:9a:85:1a:9e:09:13: 91:f5:76:77:33:8a:5c:79:0b:0f:ba:22:80:8d:43: e5:f5:fb:98:17:ef:5c:a2:e1:2d:c2:67:73:dd:73: 28:30:f1:b6:1d:a0:f6:e7:f1:50:65:3f:93:6d:ce: b1:3b:0e:fa:56:39:bf:63:94:ac:fe:4b:62:04:55: 7a:35:8e:bf:73:d1:04:5f:cd:a3:96:e3:89:fd:c8: 63:9c:b1:aa:18:e7:f4:98:56:0e:a1:ac:96:97:3e: 56:91:86:eb:47:a3:89:31:bf:62:20:4f:33:0c:93: 68:b0:6f:36:27:2f:fd:0c:69:a8:a7:43:fd:9f:59: b4:5b:77:7b:61:b7:43:36:58:be:e7:8b:10:66:8c: 78:c9:1b:e7:23:94:d0:34:00:84:9a:78:28:8e:d7: a2:6e:54:7a:ce:15:36:d4:3f:68:cf:c8:54:65:6b: 5c:24:cc:2e:1b:3e:ff:03:0f:e9:a7:bb:23:5f:00: 80:64:2c:5b:c1:e7:11:77:7c:8e:3f:37:63:2d:5a: 0a:27:94:17:f4:68:a8:f2:52:48:5c:99:6b:2b:eb: 2e:b4:e5:cc:28:c7:b1:8b:1b:94:61:5d:14:05:3f: 36:6a:8d:4c:ae:d0:a9:92:5b:4a:71:6c:54:55:85: e7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2E:C9:B8:88:1C:E2:48:E7:D3:C2:C7:91:6C:C7:18:FB:83:38:F0 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.248.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:d2:74:23:c2:b0:66:ac:3e:07:4f:a9:0b:0d:ff:75:32:a6: 44:c3:89:2b:e2:78:c0:01:59:b2:9c:e6:7b:f2:98:b2:43:8f: a1:af:5e:58:29:93:09:54:c2:44:c0:2c:db:0f:fd:1e:7c:3a: bd:f5:c1:a5:f5:d5:22:90:52:60:9e:c9:bb:b8:8b:cd:8c:ce: c7:20:36:81:81:f2:dc:5c:24:28:0f:2d:46:06:09:0b:9e:4f: cf:5c:60:db:09:0a:ab:38:c9:22:3a:dc:85:fc:ed:85:16:32: 21:4c:8c:2d:8c:a2:af:7c:93:e4:fd:18:28:a3:90:d6:30:69: 91:98:cd:44:7e:ad:32:52:f2:86:0c:e0:6a:ad:22:4e:e5:44: a1:94:0b:b1:08:e1:f0:a2:86:ae:a6:c1:91:c2:45:09:6c:35: 41:3c:7d:87:37:99:75:0b:19:a2:77:8b:eb:2a:cc:bc:8f:36: 8c:06:2e:86:40:87:65:a0:0e:3e:6e:a4:23:dc:51:2c:a3:10: 41:3f:fe:7e:aa:af:fa:ad:e6:57:38:03:0a:eb:77:21:d0:9a: 6d:ba:9a:97:c8:21:d2:29:97:30:6e:a3:f7:f2:c2:23:83:49: 2d:f5:c4:4b:a0:92:91:6d:ee:73:11:65:a3:66:d8:57:74:91: 7a:04:1a:62 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjYwMjIwMTcxNDA5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGU3ZC0zMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVfJ2Q4ocEaahRqeCROR9XZ3M4pceQsPuiKAjUPl9fuYF+9couEtwmdz3XMo MPG2HaD25/FQZT+Tbc6xOw76Vjm/Y5Ss/ktiBFV6NY6/c9EEX82jluOJ/chjnLGq GOf0mFYOoayWlz5WkYbrR6OJMb9iIE8zDJNosG82Jy/9DGmop0P9n1m0W3d7YbdD Nli+54sQZox4yRvnI5TQNACEmngojteiblR6zhU21D9oz8hUZWtcJMwuGz7/Aw/p p7sjXwCAZCxbwecRd3yOPzdjLVoKJ5QX9Gio8lJIXJlrK+sutOXMKMexixuUYV0U BT82ao1MrtCpkltKcWxUVYXnLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLouybiI HOJI59PCx5Fsxxj7gzjwMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEMTMvQUEyNURGMUM5OEZEMTFFN0E4MTQ1NTYwQzRGOUFFMDIvMzNFNzNGQUFF NTBCMTFFRjgzOEI2NjQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ1L4MA0GCSqGSIb3DQEBCwUAA4IBAQB+0nQjwrBmrD4HT6kLDf91 MqZEw4kr4njAAVmynOZ78piyQ4+hr15YKZMJVMJEwCzbD/0efDq99cGl9dUikFJg nsm7uIvNjM7HIDaBgfLcXCQoDy1GBgkLnk/PXGDbCQqrOMkiOtyF/O2FFjIhTIwt jKKvfJPk/Rgoo5DWMGmRmM1Efq0yUvKGDOBqrSJO5UShlAuxCOHwooaupsGRwkUJ bDVBPH2HN5l1Cxmid4vrKsy8jzaMBi6GQIdloA4+bqQj3FEsoxBBP/5+qq/6reZX OAMK63ch0JptupqXyCHSKZcwbqP38sIjg0kt9cRLoJKRbe5zEWWjZthXdJF6BBpi -----END CERTIFICATE-----Generated at Thu Mar 26 11:27:49 2026 by rpki-client