$ rpki-client -vvf rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/DD3109D66C6C11EB92CE744BC4F9AE02.roa File: DD3109D66C6C11EB92CE744BC4F9AE02.roa (raw, json) Hash identifier: 1/FiSAp5S80nIms1MrbrTHxNEyVDVL/s7F44yTIycP0= Subject key identifier: 68:52:67:1D:4C:99:3C:21:63:F3:8A:C7:7E:BC:19:48:7B:3A:59:EE Certificate issuer: /CN=A915FBEA/serialNumber=DF515B5915E833EEDB444D19C30A00F097815A35 Certificate serial: 073B Authority key identifier: DF:51:5B:59:15:E8:33:EE:DB:44:4D:19:C3:0A:00:F0:97:81:5A:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FbWRXoM-7bRE0ZwwoA8JeBWjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/DD3109D66C6C11EB92CE744BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:35:10 +0000 ROA not before: Tue 24 Feb 2026 21:18:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133173 IP address blocks: 103.254.50.0/24 maxlen: 24 2001:df0:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/31FbWRXoM-7bRE0ZwwoA8JeBWjU.crl rsync://rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/31FbWRXoM-7bRE0ZwwoA8JeBWjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FbWRXoM-7bRE0ZwwoA8JeBWjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1851 (0x73b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FBEA, serialNumber=DF515B5915E833EEDB444D19C30A00F097815A35 Validity Not Before: Feb 24 21:18:54 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46abe-57fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:aa:1e:9f:c6:b4:34:0c:f5:20:1a:78:f9:0c: 81:1a:2e:70:0c:3e:fd:59:ad:d1:89:42:5c:b0:b3: 1e:25:78:14:c8:9d:08:84:24:02:25:31:55:04:06: a6:e4:10:5a:be:66:56:b6:8d:19:c9:03:9b:3f:29: f3:b4:94:91:7b:2d:28:ef:0b:b2:ef:ba:b2:d9:7a: 64:c9:29:ac:7e:1f:c7:58:cb:5b:ad:84:c0:e5:09: fc:26:06:76:8d:0b:28:71:15:53:bc:1d:b1:d9:c5: 7f:99:73:a2:78:22:e3:3b:29:7c:f6:7a:52:df:45: 2c:93:60:13:45:ec:38:85:ad:3b:2f:30:70:52:ca: 78:6d:63:a2:af:8e:88:0e:9b:a0:9a:13:9f:22:56: e5:2d:fb:13:30:34:25:fc:90:c3:a5:11:53:8e:a0: 5c:2e:e8:4b:ea:c6:09:33:b3:95:ca:ab:2a:20:60: 52:c8:30:4a:bb:4e:85:10:8e:42:d5:d2:74:f0:54: fa:a4:1a:b0:5a:84:e2:8e:1c:79:80:82:11:48:40: 04:75:0f:42:5f:0a:ea:24:86:cc:20:45:56:d2:ea: 9c:9f:54:7d:1b:31:99:de:5f:4f:d3:6a:a3:c2:c7: f9:2b:95:c9:07:e6:bc:4b:eb:dd:46:ee:61:d3:1a: e2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:52:67:1D:4C:99:3C:21:63:F3:8A:C7:7E:BC:19:48:7B:3A:59:EE X509v3 Authority Key Identifier: keyid:DF:51:5B:59:15:E8:33:EE:DB:44:4D:19:C3:0A:00:F0:97:81:5A:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/31FbWRXoM-7bRE0ZwwoA8JeBWjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FbWRXoM-7bRE0ZwwoA8JeBWjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FBEA/AA7E391A6C6B11EB8FEF194BC4F9AE02/DD3109D66C6C11EB92CE744BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.50.0/24 IPv6: 2001:df0:c800::/48 Signature Algorithm: sha256WithRSAEncryption 0c:38:d3:ad:39:55:97:89:67:66:be:65:b5:bf:87:88:df:b1: 73:1a:3d:06:a7:a2:cf:5d:95:79:bd:5d:11:0f:63:73:44:b1: 44:54:74:26:d8:7f:3a:b9:dd:18:4e:73:77:f2:e1:b8:4f:b0: a0:a3:d7:62:0f:c0:53:f8:ee:ac:4e:83:30:44:ec:20:d8:a2: d4:31:67:0a:12:fb:7a:9e:7b:c1:51:a2:1b:69:52:7c:e4:10: c9:89:c8:a5:12:0e:d3:03:a8:7e:75:ed:2b:10:fb:03:67:ac: 96:cb:dc:ab:71:cf:13:e7:59:4c:af:77:24:f0:b8:94:7f:b0: 84:4d:49:3b:59:8f:db:42:e5:18:ef:20:88:19:9c:82:47:f0: d0:45:2f:d9:4f:26:a1:97:91:da:42:0e:0a:ef:d3:08:28:f3: ed:a5:4b:3e:60:96:9a:92:04:58:63:d1:6f:dd:be:79:61:08: cf:ef:e8:ca:34:39:72:94:23:0b:2c:b0:60:09:94:ca:5a:1d: 5e:21:bb:8b:2e:06:a9:e8:f6:60:11:59:a7:22:d9:59:8b:2c: 84:7f:28:09:ae:5b:5f:9f:89:9f:42:81:f5:83:d9:49:c0:e8: 85:ce:d2:49:07:ac:c8:ab:a8:8d:39:7d:e0:18:c9:6e:be:53: e8:10:de:4e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZCRUExMTAvBgNVBAUTKERGNTE1QjU5MTVFODMzRUVEQjQ0NEQxOUMzMEEwMEYw OTc4MTVBMzUwHhcNMjYwMjI0MjExODU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmFiZS01N2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aoen8a0NAz1IBp4+QyBGi5wDD79Wa3RiUJcsLMeJXgUyJ0IhCQCJTFVBAam 5BBavmZWto0ZyQObPynztJSRey0o7wuy77qy2XpkySmsfh/HWMtbrYTA5Qn8JgZ2 jQsocRVTvB2x2cV/mXOieCLjOyl89npS30Usk2ATRew4ha07LzBwUsp4bWOir46I DpugmhOfIlblLfsTMDQl/JDDpRFTjqBcLuhL6sYJM7OVyqsqIGBSyDBKu06FEI5C 1dJ08FT6pBqwWoTijhx5gIIRSEAEdQ9CXwrqJIbMIEVW0uqcn1R9GzGZ3l9P02qj wsf5K5XJB+a8S+vdRu5h0xrijQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGhSZx1M mTwhY/OKx368GUh7OlnuMB8GA1UdIwQYMBaAFN9RW1kV6DPu20RNGcMKAPCXgVo1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkJFQS9BQTdFMzkxQTZD NkIxMUVCOEZFRjE5NEJDNEY5QUUwMi8zMUZiV1JYb00tN2JSRTBad3dvQThKZUJX alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMxRmJXUlhvTS03YlJFMFp3d29BOEplQldqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZCRUEvQUE3RTM5MUE2QzZCMTFFQjhGRUYxOTRCQzRGOUFFMDIvREQzMTA5RDY2 QzZDMTFFQjkyQ0U3NDRCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/4yMA8EAgACMAkDBwAgAQ3wyAAwDQYJKoZIhvcNAQELBQADggEB AAw40605VZeJZ2a+ZbW/h4jfsXMaPQanos9dlXm9XREPY3NEsURUdCbYfzq53RhO c3fy4bhPsKCj12IPwFP47qxOgzBE7CDYotQxZwoS+3qee8FRohtpUnzkEMmJyKUS DtMDqH517SsQ+wNnrJbL3KtxzxPnWUyvdyTwuJR/sIRNSTtZj9tC5RjvIIgZnIJH 8NBFL9lPJqGXkdpCDgrv0wgo8+2lSz5glpqSBFhj0W/dvnlhCM/v6Mo0OXKUIwss sGAJlMpaHV4hu4suBqno9mARWaci2VmLLIR/KAmuW1+fiZ9CgfWD2UnA6IXO0kkH rMirqI05feAYyW6+U+gQ3k4= -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:12 2026 by rpki-client