$ rpki-client -vvf rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/AFB3319E5F0C11EC8C2C2820C4F9AE02.roa File: AFB3319E5F0C11EC8C2C2820C4F9AE02.roa (raw, json) Hash identifier: liyIoKZvBkV0Aziw45ZbW4vF4gmLNcsLQA6CwfjGf3Q= Subject key identifier: 97:DC:22:05:B0:99:BE:1D:C5:D8:8C:43:CF:60:63:46:70:BD:0A:E8 Certificate issuer: /CN=A915A921/serialNumber=EFA6C1E6ECFAD1E88A9F44D28002EED639B2BA54 Certificate serial: 0900 Authority key identifier: EF:A6:C1:E6:EC:FA:D1:E8:8A:9F:44:D2:80:02:EE:D6:39:B2:BA:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76bB5uz60eiKn0TSgALu1jmyulQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/AFB3319E5F0C11EC8C2C2820C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:53:26 +0000 ROA not before: Thu 10 Jul 2025 21:01:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140705 IP address blocks: 103.152.10.0/23 maxlen: 24 2001:df3:eb80::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/76bB5uz60eiKn0TSgALu1jmyulQ.crl rsync://rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/76bB5uz60eiKn0TSgALu1jmyulQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76bB5uz60eiKn0TSgALu1jmyulQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A921, serialNumber=EFA6C1E6ECFAD1E88A9F44D28002EED639B2BA54 Validity Not Before: Jul 10 21:01:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a428b6-ee55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b1:71:27:3f:24:f1:09:d1:79:da:1a:45:4b: c1:bb:a6:a0:9b:31:54:7f:29:6e:21:a2:78:3a:6a: 52:7d:4b:21:a0:ae:7b:74:9e:5a:4b:10:67:20:36: 8c:26:a0:fa:96:de:bf:1f:0f:54:4b:74:35:0d:dc: 3b:53:00:71:94:46:ad:26:97:09:00:48:02:26:48: 14:6b:54:aa:36:95:a7:74:06:af:02:65:d3:67:f9: 60:49:f2:29:ab:58:2b:e1:27:73:5e:f9:86:51:01: ef:8f:dd:56:bd:1d:ef:f0:58:45:cc:2c:43:d4:ca: 6b:f6:d9:20:c0:3e:d7:73:d9:17:c0:c5:81:64:40: 00:fa:32:8a:17:b7:88:86:73:be:e1:fb:e6:93:e0: f3:5d:91:7d:f5:07:76:dc:e1:87:a8:b7:e9:22:cd: ef:25:67:6d:5e:e4:da:f8:b7:6a:91:f3:c8:db:c6: c5:b8:74:89:82:02:6c:e8:42:62:b7:a6:b2:05:55: b0:4d:08:93:5c:f1:e2:45:3f:73:cb:9d:a4:fa:2d: 2f:f3:97:31:77:6f:f3:8b:45:35:ef:96:86:c6:22: ad:c6:81:39:44:4f:48:28:9f:6a:47:4b:de:02:86: 6a:09:22:33:69:57:1a:1b:2a:ab:04:ba:27:dc:3b: 6c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DC:22:05:B0:99:BE:1D:C5:D8:8C:43:CF:60:63:46:70:BD:0A:E8 X509v3 Authority Key Identifier: keyid:EF:A6:C1:E6:EC:FA:D1:E8:8A:9F:44:D2:80:02:EE:D6:39:B2:BA:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/76bB5uz60eiKn0TSgALu1jmyulQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76bB5uz60eiKn0TSgALu1jmyulQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A921/E38D182EC5B411EA9926C81DC4F9AE02/AFB3319E5F0C11EC8C2C2820C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.10.0/23 IPv6: 2001:df3:eb80::/48 Signature Algorithm: sha256WithRSAEncryption 44:7a:58:17:70:87:c5:22:e4:81:44:90:30:6c:34:82:43:9c: c2:f7:59:95:de:d5:41:5d:5e:5e:89:a2:c1:10:7f:53:c7:09: 1d:79:fb:24:3a:83:c5:aa:65:16:7c:c9:93:41:02:12:a0:6a: 52:6c:6f:2b:3f:c7:0a:22:9c:ad:fa:1f:7e:b7:60:48:1a:7e: 26:bd:11:4e:0a:83:59:d5:40:bf:89:fb:3c:39:64:62:37:6f: 60:0b:37:a6:7a:f3:14:df:1f:7d:45:59:02:ac:ae:bc:0f:9d: d9:89:10:56:8a:44:20:8f:66:f2:e1:b0:c6:d0:e9:60:33:6b: 37:ca:32:bf:81:fb:63:b1:e4:3e:ad:5a:a2:eb:e0:13:15:5e: f1:aa:a2:2d:1e:2e:ad:ce:da:10:d4:20:ed:0b:f6:9e:6a:71: 0f:66:06:a6:ab:7e:76:07:4b:e5:84:96:d6:2f:8c:c9:f7:97: 43:84:2e:07:9b:38:55:5b:80:05:d1:9a:c3:14:26:44:3e:fd: 56:86:c3:fc:24:14:6a:69:8e:1b:f1:08:31:e9:88:8a:d9:ed: 8a:11:99:bc:88:84:96:21:fd:e9:01:ee:37:ff:0d:63:c9:99: 55:79:26:17:86:ba:be:a6:c2:37:53:cd:b0:15:db:a2:53:2a: 18:bd:8c:90 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE5MjExMTAvBgNVBAUTKEVGQTZDMUU2RUNGQUQxRTg4QTlGNDREMjgwMDJFRUQ2 MzlCMkJBNTQwHhcNMjUwNzEwMjEwMTM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjhiNi1lZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybFxJz8k8QnRedoaRUvBu6agmzFUfyluIaJ4OmpSfUshoK57dJ5aSxBnIDaM JqD6lt6/Hw9US3Q1Ddw7UwBxlEatJpcJAEgCJkgUa1SqNpWndAavAmXTZ/lgSfIp q1gr4SdzXvmGUQHvj91WvR3v8FhFzCxD1Mpr9tkgwD7Xc9kXwMWBZEAA+jKKF7eI hnO+4fvmk+DzXZF99Qd23OGHqLfpIs3vJWdtXuTa+LdqkfPI28bFuHSJggJs6EJi t6ayBVWwTQiTXPHiRT9zy52k+i0v85cxd2/zi0U175aGxiKtxoE5RE9IKJ9qR0ve AoZqCSIzaVcaGyqrBLon3DtsSwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJfcIgWw mb4dxdiMQ89gY0ZwvQroMB8GA1UdIwQYMBaAFO+mwebs+tHoip9E0oAC7tY5srpU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTkyMS9FMzhEMTgyRUM1 QjQxMUVBOTkyNkM4MURDNEY5QUUwMi83NmJCNXV6NjBlaUtuMFRTZ0FMdTFqbXl1 bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc2YkI1dXo2MGVpS24wVFNnQUx1MWpteXVsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE5MjEvRTM4RDE4MkVDNUI0MTFFQTk5MjZDODFEQzRGOUFFMDIvQUZCMzMxOUU1 RjBDMTFFQzhDMkMyODIwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5gKMA8EAgACMAkDBwAgAQ3z64AwDQYJKoZIhvcNAQELBQADggEB AER6WBdwh8Ui5IFEkDBsNIJDnML3WZXe1UFdXl6JosEQf1PHCR15+yQ6g8WqZRZ8 yZNBAhKgalJsbys/xwoinK36H363YEgafia9EU4Kg1nVQL+J+zw5ZGI3b2ALN6Z6 8xTfH31FWQKsrrwPndmJEFaKRCCPZvLhsMbQ6WAzazfKMr+B+2Ox5D6tWqLr4BMV XvGqoi0eLq3O2hDUIO0L9p5qcQ9mBqarfnYHS+WEltYvjMn3l0OELgebOFVbgAXR msMUJkQ+/VaGw/wkFGppjhvxCDHpiIrZ7YoRmbyIhJYh/ekB7jf/DWPJmVV5JheG ur6mwjdTzbAV26JTKhi9jJA= -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:39 2026 by rpki-client