$ rpki-client -vvf rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/A2272F186E1D11EEB6A10A0CC4F9AE02.roa File: A2272F186E1D11EEB6A10A0CC4F9AE02.roa (raw, json) Hash identifier: pdKfh0rHk6MsKSq/P/C5bZ/12KI4D++yBlGSjUNlgck= Subject key identifier: 0D:80:2F:A2:AD:D5:DE:7F:D3:10:3D:62:AD:4B:E2:02:9C:41:E2:80 Certificate issuer: /CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Certificate serial: 07DB Authority key identifier: C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/A2272F186E1D11EEB6A10A0CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:57:41 +0000 ROA not before: Fri 16 Jan 2026 21:17:55 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 151487 IP address blocks: 103.160.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D128, serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Validity Not Before: Jan 16 21:17:55 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a58945-2e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6b:11:78:29:ea:e5:2a:80:b8:e9:67:fa:4c: 78:06:c0:2a:31:62:48:2a:8e:54:f0:8b:ad:28:48: 77:bc:8a:bc:ad:f9:da:ff:fa:4d:24:d7:13:bd:42: a2:5c:2e:bc:c6:57:18:e2:4e:8d:56:71:55:ba:2e: 4e:0d:91:fb:ad:74:15:16:39:16:00:a8:87:da:ed: b8:ce:97:6f:39:e3:14:2c:e4:64:10:9e:35:01:9e: f9:9b:9a:a0:7c:1a:2e:26:22:4d:34:59:cd:46:91: 75:d6:98:b1:3f:8d:75:84:85:b8:e0:00:ee:00:b9: aa:58:b3:5d:62:9f:5a:14:66:9c:8c:e9:0a:51:ed: 56:6d:40:af:4a:92:7c:98:e7:b8:45:4d:a6:30:a7: 53:d5:0f:33:c3:7a:c9:ed:55:e1:f6:63:18:65:77: 5b:96:9b:77:59:b3:0f:d5:8b:9e:07:da:93:97:dc: bc:a2:3e:fe:17:d9:99:b6:81:d2:0b:90:13:d1:6d: f2:6a:92:dd:10:e7:9a:9f:33:3d:04:9a:e4:cf:d4: 41:61:f7:a1:51:21:a7:35:8f:b9:de:82:f3:86:bf: bb:97:26:e5:26:e2:9b:5a:82:47:f6:80:f7:2e:d8: 12:1f:04:ed:4a:9e:cb:35:f4:68:57:2b:c0:ce:cb: 75:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:80:2F:A2:AD:D5:DE:7F:D3:10:3D:62:AD:4B:E2:02:9C:41:E2:80 X509v3 Authority Key Identifier: keyid:C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/A2272F186E1D11EEB6A10A0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.160.100.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c7:9d:98:01:4e:0c:99:a1:59:b4:1a:e0:24:f6:38:1b:15: 0d:58:d8:c4:8f:05:15:ff:97:fc:8b:07:96:ad:60:37:3c:63: a7:8a:fb:f3:1e:82:d8:a1:f2:0c:1d:c9:10:72:8d:aa:29:c5: 6e:1c:4d:cc:98:c4:5d:dd:d6:d6:09:46:3d:4a:70:0a:d9:4a: 00:b5:07:32:b6:14:d0:92:20:a0:de:6c:40:df:c1:0a:34:c8: 96:7f:87:c5:1b:e7:7f:9b:b3:45:43:10:04:0d:b4:16:4e:bb: 0d:0e:d0:ff:24:b9:1a:2b:50:aa:48:09:2d:77:80:3e:6e:31: fc:97:ef:cc:66:ac:27:e9:82:58:b7:aa:a4:ee:4e:e6:df:00: 39:d1:cb:29:09:ea:f5:7a:da:85:d4:23:dd:90:29:86:1e:4f: e2:c9:ad:80:76:64:19:72:aa:5a:52:2e:aa:e6:fb:2e:c6:1a: 43:cd:c8:50:38:89:ec:6c:31:63:a4:e8:26:a9:59:6f:9a:f0: 5c:fc:e9:86:09:05:10:38:e1:29:44:9a:0b:ab:c7:44:a4:0f: d5:71:3e:eb:45:e9:29:07:de:66:52:b1:64:f3:1f:5e:01:77: af:58:fc:07:a8:56:f6:bf:03:f2:26:bd:7e:02:c3:ad:b3:41: cd:fe:da:26 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxMjgxMTAvBgNVBAUTKEM1MDQ1NjU1NzdBRTk5RjYxOTFDOTc4MzNEREJERDYy NEVDMjRFOTIwHhcNMjYwMTE2MjExNzU1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODk0NS0yZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWsReCnq5SqAuOln+kx4BsAqMWJIKo5U8IutKEh3vIq8rfna//pNJNcTvUKi XC68xlcY4k6NVnFVui5ODZH7rXQVFjkWAKiH2u24zpdvOeMULORkEJ41AZ75m5qg fBouJiJNNFnNRpF11pixP411hIW44ADuALmqWLNdYp9aFGacjOkKUe1WbUCvSpJ8 mOe4RU2mMKdT1Q8zw3rJ7VXh9mMYZXdblpt3WbMP1YueB9qTl9y8oj7+F9mZtoHS C5AT0W3yapLdEOeanzM9BJrkz9RBYfehUSGnNY+53oLzhr+7lyblJuKbWoJH9oD3 LtgSHwTtSp7LNfRoVyvAzst1MwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA2AL6Kt 1d5/0xA9Yq1L4gKcQeKAMB8GA1UdIwQYMBaAFMUEVlV3rpn2GRyXgz3b3WJOwk6S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDEyOC85MERFOUM2NjNF QTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1mWVpISmVEUGR2ZFlrN0NU cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hRUldWWGV1bWZZWkhKZURQZHZkWWs3Q1RwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQxMjgvOTBERTlDNjYzRUEzMTFFQjhBQ0I5MDEzQzRGOUFFMDIvQTIyNzJGMTg2 RTFEMTFFRUI2QTEwQTBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6BkMA0GCSqGSIb3DQEBCwUAA4IBAQCSx52YAU4MmaFZtBrgJPY4 GxUNWNjEjwUV/5f8iweWrWA3PGOnivvzHoLYofIMHckQco2qKcVuHE3MmMRd3dbW CUY9SnAK2UoAtQcythTQkiCg3mxA38EKNMiWf4fFG+d/m7NFQxAEDbQWTrsNDtD/ JLkaK1CqSAktd4A+bjH8l+/MZqwn6YJYt6qk7k7m3wA50cspCer1etqF1CPdkCmG Hk/iya2AdmQZcqpaUi6q5vsuxhpDzchQOInsbDFjpOgmqVlvmvBc/OmGCQUQOOEp RJoLq8dEpA/VcT7rRekpB95mUrFk8x9eAXevWPwHqFb2vwPyJr1+AsOts0HN/tom -----END CERTIFICATE-----Generated at Thu Mar 26 22:06:47 2026 by rpki-client