$ rpki-client -vvf rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa File: 3CE37DD8C0F911EBB5625E1CC4F9AE02.roa (raw, json) Hash identifier: kKFHElA513S2ePi08UhxofDps7bPiV+Vk5IuCYGiQoc= Subject key identifier: 4E:6D:F7:E8:0E:B1:D6:8D:D4:E0:3E:DF:25:71:31:E3:69:49:BF:5B Certificate issuer: /CN=A9159298/serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Certificate serial: 0674 Authority key identifier: 64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:10:01 +0000 ROA not before: Thu 20 Nov 2025 21:43:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63961 IP address blocks: 103.159.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159298, serialNumber=64CE06A16CA89123556AA9AFD7248DBEF0E69A86 Validity Not Before: Nov 20 21:43:48 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5a849-46fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:70:01:d6:b7:84:64:ac:86:1b:f9:6c:9c:bb: cf:ce:a9:f8:37:03:d5:93:33:b6:43:bd:d8:4e:97: 7f:eb:78:08:2d:d2:ed:bc:54:76:8a:cd:d7:f2:83: b2:a1:6f:4d:41:b0:c5:d7:c0:5e:43:7b:f2:f1:d4: 2c:e7:53:f3:f0:6d:f4:c8:d6:70:d0:c6:e9:54:33: 0b:fa:88:1a:88:da:75:d3:52:ae:4a:3c:64:f0:ee: d1:9f:5a:2f:ac:a9:90:f9:ee:3b:f8:75:35:78:b8: e4:6a:c1:cf:61:67:42:ed:3c:00:c8:c7:ed:fa:aa: bf:8c:a5:53:f5:b4:32:bb:d8:f5:2b:ed:32:df:ec: b6:ee:6f:72:89:52:c1:43:c8:b3:9c:6b:e6:5f:f7: 1f:7f:d4:01:65:e5:a4:2d:b1:46:b3:48:52:09:fb: 97:5c:9d:59:a5:14:b6:0a:39:a1:34:59:96:91:87: 99:c0:ff:93:cc:1b:b2:2f:90:f2:41:96:ea:9d:0f: c6:fc:19:fb:e6:f1:da:ee:9b:22:60:e0:ad:2d:27: b0:5a:47:fe:f3:f8:ab:23:08:fe:f3:b9:4b:0f:24: 01:fd:53:50:b3:1e:e3:73:42:57:1a:c8:7c:32:1b: 95:34:41:54:fc:ae:5d:f8:39:10:56:31:17:11:49: df:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:6D:F7:E8:0E:B1:D6:8D:D4:E0:3E:DF:25:71:31:E3:69:49:BF:5B X509v3 Authority Key Identifier: keyid:64:CE:06:A1:6C:A8:91:23:55:6A:A9:AF:D7:24:8D:BE:F0:E6:9A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/ZM4GoWyokSNVaqmv1ySNvvDmmoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM4GoWyokSNVaqmv1ySNvvDmmoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159298/62229EF2B61E11EBB0FC4C77C4F9AE02/3CE37DD8C0F911EBB5625E1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.2.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:94:74:57:0d:86:34:0a:34:5b:68:0f:d3:ba:f3:8c:cb:ad: 15:e4:f6:d8:37:6e:98:8b:e4:00:1a:bc:89:73:c0:dc:84:8e: 7d:84:f0:8f:8a:3a:64:aa:85:af:ab:a0:c2:f9:15:b4:49:1e: 89:54:e9:08:b6:5a:b5:18:21:44:64:a9:d1:59:e5:68:23:da: 32:b1:af:53:e6:e6:8e:be:00:43:d3:33:4d:8a:53:00:5f:e8: 06:c7:18:b1:6c:77:44:18:c3:ed:dd:da:a1:b3:df:4f:07:1e: 8f:6b:ed:f5:8e:64:7e:8a:9d:e4:2c:20:1f:86:9c:74:f0:06: 91:6f:7e:12:35:1d:85:df:73:a5:0f:fe:5f:c5:82:30:82:e5: 1c:08:a3:30:95:07:28:e2:fa:68:d8:39:34:7f:fc:9f:2d:40: 6d:77:c4:b7:4f:73:33:6c:74:1d:2e:fa:13:18:a6:26:90:da: b1:49:0a:de:fb:ff:92:b9:d2:25:2d:a9:08:22:36:5f:35:a3: ee:57:d5:cd:cc:12:d9:65:ca:ca:1c:cf:b5:94:2b:b9:d9:ab: eb:0a:71:ff:a7:e6:d7:64:43:67:21:a3:46:15:94:eb:2a:fa: f9:1b:5e:ad:d3:0a:d3:f8:37:76:99:fb:9b:4b:bf:97:a7:49: a6:66:88:83 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyOTgxMTAvBgNVBAUTKDY0Q0UwNkExNkNBODkxMjM1NTZBQTlBRkQ3MjQ4REJF RjBFNjlBODYwHhcNMjUxMTIwMjE0MzQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTg0OS00NmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnAB1reEZKyGG/lsnLvPzqn4NwPVkzO2Q73YTpd/63gILdLtvFR2is3X8oOy oW9NQbDF18BeQ3vy8dQs51Pz8G30yNZw0MbpVDML+ogaiNp101KuSjxk8O7Rn1ov rKmQ+e47+HU1eLjkasHPYWdC7TwAyMft+qq/jKVT9bQyu9j1K+0y3+y27m9yiVLB Q8iznGvmX/cff9QBZeWkLbFGs0hSCfuXXJ1ZpRS2CjmhNFmWkYeZwP+TzBuyL5Dy QZbqnQ/G/Bn75vHa7psiYOCtLSewWkf+8/irIwj+87lLDyQB/VNQsx7jc0JXGsh8 MhuVNEFU/K5d+DkQVjEXEUnfGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE5t9+gO sdaN1OA+3yVxMeNpSb9bMB8GA1UdIwQYMBaAFGTOBqFsqJEjVWqpr9ckjb7w5pqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTI5OC82MjIyOUVGMkI2 MUUxMUVCQjBGQzRDNzdDNEY5QUUwMi9aTTRHb1d5b2tTTlZhcW12MXlTTnZ2RG1t b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNNEdvV3lva1NOVmFxbXYxeVNOdnZEbW1vWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyOTgvNjIyMjlFRjJCNjFFMTFFQkIwRkM0Qzc3QzRGOUFFMDIvM0NFMzdERDhD MEY5MTFFQkI1NjI1RTFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ58CMA0GCSqGSIb3DQEBCwUAA4IBAQAKlHRXDYY0CjRbaA/TuvOM y60V5PbYN26Yi+QAGryJc8DchI59hPCPijpkqoWvq6DC+RW0SR6JVOkItlq1GCFE ZKnRWeVoI9oysa9T5uaOvgBD0zNNilMAX+gGxxixbHdEGMPt3dqhs99PBx6Pa+31 jmR+ip3kLCAfhpx08AaRb34SNR2F33OlD/5fxYIwguUcCKMwlQco4vpo2Dk0f/yf LUBtd8S3T3MzbHQdLvoTGKYmkNqxSQre+/+SudIlLakIIjZfNaPuV9XNzBLZZcrK HM+1lCu52avrCnH/p+bXZENnIaNGFZTrKvr5G16t0wrT+Dd2mfubS7+Xp0mmZoiD -----END CERTIFICATE-----Generated at Thu Mar 26 10:21:13 2026 by rpki-client