$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa File: F84C1D9C406111EAA351F913C4F9AE02.roa (raw, json) Hash identifier: ZiiZYbmkg3n6zqgPw8ZXM9niSF2z+ejf3luh9TSJfQY= Subject key identifier: 95:78:50:CC:55:52:00:94:12:76:C2:42:9E:F8:BC:91:9E:33:04:77 Certificate issuer: /CN=A9157D65/serialNumber=A77838D7F541C61DB069DABCE5D83709A7C2AE0D Certificate serial: 0BBD Authority key identifier: A7:78:38:D7:F5:41:C6:1D:B0:69:DA:BC:E5:D8:37:09:A7:C2:AE:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:55:14 +0000 ROA not before: Mon 02 Feb 2026 17:30:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138551 IP address blocks: 103.132.187.0/24 maxlen: 24 103.148.108.0/24 maxlen: 24 2001:df7:8500::/48 maxlen: 48 2402:3360::/32 maxlen: 32 2402:3360::/48 maxlen: 48 2402:3360:1::/48 maxlen: 48 2402:3360:2::/48 maxlen: 48 2402:3360:3::/48 maxlen: 48 2402:3360:4::/48 maxlen: 48 2402:3360:5::/48 maxlen: 48 2402:3360:6::/48 maxlen: 48 2402:3360:7::/48 maxlen: 48 2402:3360:8::/48 maxlen: 48 2402:3360:9::/48 maxlen: 48 2402:3360:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.crl rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3005 (0xbbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D65, serialNumber=A77838D7F541C61DB069DABCE5D83709A7C2AE0D Validity Not Before: Feb 2 17:30:30 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47d82-297d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e0:7f:c9:ed:93:80:d6:ab:86:70:94:cf:1d: 9e:1f:98:f9:09:f1:13:0f:c0:24:4f:73:36:da:3d: 0e:74:6f:d6:79:3e:89:60:e4:70:61:ed:23:7f:e1: 25:b0:5a:7f:b8:d3:55:5b:04:c8:8d:56:95:05:74: 70:f0:61:15:05:38:f0:e9:63:74:50:89:7c:d1:fb: 60:4e:4c:ae:1b:5b:fc:0b:17:bc:65:ab:7b:fc:68: b2:ff:62:d5:f7:bd:a9:18:e1:21:13:83:39:1d:d5: 51:48:a2:75:a8:a5:66:b3:03:bc:e4:a9:aa:3c:f4: 11:a8:be:bc:e7:25:f4:37:88:21:78:b6:f5:ff:90: f5:a1:74:a2:60:b2:b4:ad:6c:d6:38:71:d5:2d:85: 04:06:7b:ee:23:f2:7f:de:e6:e2:18:ba:8b:26:a0: e7:07:36:5b:02:24:66:27:46:be:e2:e6:52:45:ce: 4e:08:e8:66:31:60:ef:69:1c:81:f4:88:36:ef:e1: 54:c6:50:28:e5:82:0e:d0:7d:02:b2:9d:4f:18:5f: f8:0a:14:15:d6:15:9a:d9:7c:15:79:16:21:93:07: cc:da:58:63:29:5e:6b:08:ff:19:c0:7e:1f:27:58: cc:ab:0c:ba:fe:a8:3f:be:a6:0a:07:c1:17:ba:d9: bf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:78:50:CC:55:52:00:94:12:76:C2:42:9E:F8:BC:91:9E:33:04:77 X509v3 Authority Key Identifier: keyid:A7:78:38:D7:F5:41:C6:1D:B0:69:DA:BC:E5:D8:37:09:A7:C2:AE:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/p3g41_VBxh2wadq85dg3CafCrg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3g41_VBxh2wadq85dg3CafCrg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D65/1A0DA82A406111EAA2BCE512C4F9AE02/F84C1D9C406111EAA351F913C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.187.0/24 103.148.108.0/24 IPv6: 2001:df7:8500::/48 2402:3360::/32 Signature Algorithm: sha256WithRSAEncryption 0f:26:8f:ff:bc:5e:43:ca:40:b4:80:8f:4b:df:f5:2c:95:4c: 03:e9:c4:61:e5:f2:e7:7f:ab:b1:63:e8:8d:73:55:71:6d:80: 76:1a:87:bf:59:fe:53:87:4d:94:83:2c:51:48:3b:91:f7:7d: 39:2d:79:cf:ab:c4:49:c5:ef:b9:73:15:cd:20:47:ed:4a:d1: 3e:f8:ea:20:08:32:61:2c:73:a8:f9:3a:95:5d:44:dc:f0:34: e4:5d:4a:7d:ec:8e:4a:3c:cd:c6:3f:e6:05:74:72:80:c5:68: de:67:23:44:c3:d3:c9:d2:44:21:de:54:1c:22:89:5f:1f:93: 45:8d:5c:90:b9:48:30:5a:00:16:3e:fc:32:f5:6f:c1:41:cf: 91:e6:f0:6a:e9:c4:16:5c:62:8c:2f:29:0a:75:6f:fc:5c:ad: b2:34:39:67:0f:a8:37:9d:ee:09:78:43:f2:1d:1e:a1:f8:a3: f9:22:d6:1a:0c:4a:d5:1a:7c:67:fc:da:c6:6b:7f:7d:18:88: 89:cb:0a:ea:b2:10:83:3c:2a:44:d1:14:88:84:de:4b:1c:a0: 2c:30:0e:60:1b:33:8f:57:e2:60:84:9b:0b:eb:1a:6f:b0:fc: a0:34:5b:8f:13:20:84:10:a6:4b:fc:81:ab:a3:46:fa:57:54: f8:4e:54:f0 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICC70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjUxMTAvBgNVBAUTKEE3NzgzOEQ3RjU0MUM2MURCMDY5REFCQ0U1RDgzNzA5 QTdDMkFFMEQwHhcNMjYwMjAyMTczMDMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Q4Mi0yOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OB/ye2TgNarhnCUzx2eH5j5CfETD8AkT3M22j0OdG/WeT6JYORwYe0jf+El sFp/uNNVWwTIjVaVBXRw8GEVBTjw6WN0UIl80ftgTkyuG1v8Cxe8Zat7/Giy/2LV 972pGOEhE4M5HdVRSKJ1qKVmswO85KmqPPQRqL685yX0N4gheLb1/5D1oXSiYLK0 rWzWOHHVLYUEBnvuI/J/3ubiGLqLJqDnBzZbAiRmJ0a+4uZSRc5OCOhmMWDvaRyB 9Ig27+FUxlAo5YIO0H0Csp1PGF/4ChQV1hWa2XwVeRYhkwfM2lhjKV5rCP8ZwH4f J1jMqwy6/qg/vqYKB8EXutm/+QIDAQABo4ICfjCCAnowHQYDVR0OBBYEFJV4UMxV UgCUEnbCQp74vJGeMwR3MB8GA1UdIwQYMBaAFKd4ONf1QcYdsGnavOXYNwmnwq4N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2NS8xQTBEQTgyQTQw NjExMUVBQTJCQ0U1MTJDNEY5QUUwMi9wM2c0MV9WQnhoMndhZHE4NWRnM0NhZkNy ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZzQxX1ZCeGgyd2FkcTg1ZGczQ2FmQ3JnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjUvMUEwREE4MkE0MDYxMTFFQUEyQkNFNTEyQzRGOUFFMDIvRjg0QzFEOUM0 MDYxMTFFQUEzNTFGOTEzQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQAZ4S7AwQAZ5RsMBYEAgACMBADBwAgAQ33hQADBQAkAjNgMA0GCSqG SIb3DQEBCwUAA4IBAQAPJo//vF5DykC0gI9L3/UslUwD6cRh5fLnf6uxY+iNc1Vx bYB2Goe/Wf5Th02UgyxRSDuR9305LXnPq8RJxe+5cxXNIEftStE++OogCDJhLHOo +TqVXUTc8DTkXUp97I5KPM3GP+YFdHKAxWjeZyNEw9PJ0kQh3lQcIolfH5NFjVyQ uUgwWgAWPvwy9W/BQc+R5vBq6cQWXGKMLykKdW/8XK2yNDlnD6g3ne4JeEPyHR6h +KP5ItYaDErVGnxn/NrGa399GIiJywrqshCDPCpE0RSIhN5LHKAsMA5gGzOPV+Jg hJsL6xpvsPygNFuPEyCEEKZL/IGro0b6V1T4TlTw -----END CERTIFICATE-----Generated at Sat Mar 28 15:06:49 2026 by rpki-client