$ rpki-client -vvf rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/AA75695ACD2011F0B214A868C4F9AE02.roa File: AA75695ACD2011F0B214A868C4F9AE02.roa (raw, json) Hash identifier: MRRSvyAs4nXdOy4NirT/FV+CCoUxnvEKIcU+qHvpGa8= Subject key identifier: 49:2A:25:08:CE:45:AB:50:76:47:14:93:4F:D6:ED:A4:68:F5:F3:50 Certificate issuer: /CN=A917C2CC/serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1 Certificate serial: 0FAB Authority key identifier: F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/AA75695ACD2011F0B214A868C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:57:33 +0000 ROA not before: Sat 29 Nov 2025 12:41:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139016 IP address blocks: 103.138.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C2CC, serialNumber=F9B8F91D2928BEAA351CC345C4736932FD8639F1 Validity Not Before: Nov 29 12:41:03 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a461ed-455c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:a8:00:aa:2b:03:43:d2:bb:bd:bc:a7:9b: a1:af:6f:22:24:39:45:7b:1e:cb:d2:62:a8:e5:8a: ee:12:3b:da:4f:c3:cd:65:f5:87:1e:96:88:4b:e4: 31:d0:50:09:5d:2a:36:bd:a7:f7:56:44:d2:1a:66: 7e:cc:34:55:14:de:9a:d7:a3:11:d6:d3:da:6c:ac: 7f:a1:22:36:91:71:f6:ba:5f:d0:31:98:cd:48:ee: 62:78:af:2e:0c:d0:e3:d6:f5:5a:a1:af:ee:c3:47: c8:4a:ed:1e:ea:2c:27:ad:cb:f6:a5:23:a4:56:fa: ee:a3:c0:2f:1a:6e:4f:e0:3d:17:66:38:ce:e6:de: 68:3d:c2:a1:9a:f9:c6:3f:c3:eb:2d:51:60:6f:68: 2e:50:12:8e:d8:40:73:38:4c:e2:b0:f9:a5:66:5c: 9c:ed:02:bb:38:2e:ef:5d:9e:22:d4:95:5e:b2:18: 8e:b3:8d:5b:fd:40:2c:be:72:b7:e2:4b:e5:fc:f0: 69:f2:44:66:80:e5:15:2c:de:1b:4c:be:2e:7b:56: 91:3a:35:86:3b:ef:a5:49:c8:95:a8:7d:20:f9:83: 5b:b2:9c:0d:66:89:0d:28:64:a4:17:dd:ef:45:fc: 3c:b7:93:75:05:f1:62:10:69:70:f5:3c:11:1a:57: 90:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2A:25:08:CE:45:AB:50:76:47:14:93:4F:D6:ED:A4:68:F5:F3:50 X509v3 Authority Key Identifier: keyid:F9:B8:F9:1D:29:28:BE:AA:35:1C:C3:45:C4:73:69:32:FD:86:39:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/-bj5HSkovqo1HMNFxHNpMv2GOfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bj5HSkovqo1HMNFxHNpMv2GOfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C2CC/CC19387678DA11E9901B7F4DC4F9AE02/AA75695ACD2011F0B214A868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.151.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f9:8b:c2:49:72:1d:ae:5d:5c:e0:53:97:9a:f9:5e:ad:c0: d1:5b:f1:08:97:80:2e:5e:79:a0:fe:63:74:4c:55:ca:0f:a4: 5f:dc:de:f1:5c:5a:99:b6:3d:ad:3d:25:87:ed:18:06:2c:09: be:78:87:3c:90:a8:c0:7e:a5:e8:63:1c:60:e5:3f:0c:bf:ec: 65:08:64:44:6c:1c:56:15:78:f9:3b:e0:a8:54:b2:ab:c6:c5: b1:6d:81:5c:16:c2:85:66:47:98:bb:9c:bb:e4:71:13:f8:cb: f4:c6:a2:f4:32:86:17:97:9a:68:cc:a5:92:f0:5f:1d:b7:87: e5:59:08:40:11:8b:6d:fc:04:aa:0e:9c:5f:89:14:2f:f3:f5: 54:bc:f0:20:09:2a:f9:2f:c8:80:bc:e7:8b:2b:de:b2:a3:dd: db:ad:6d:ea:f7:1b:64:3b:bd:e4:dc:31:6a:14:c8:b3:d3:3c: dc:a6:56:d5:a9:5e:eb:e6:6b:50:4d:8e:1c:9b:87:73:6b:78: e9:de:94:c1:d2:19:ac:6b:e5:ed:2e:1c:50:2d:1c:31:dd:5e: 1b:90:a9:55:eb:2b:8d:0a:f8:94:84:c9:65:a9:b1:4c:3d:a0: 06:45:8a:8e:fb:92:cc:db:c2:9a:ca:1d:4f:ea:0c:32:f3:46: 74:f1:78:bc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICD6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyQ0MxMTAvBgNVBAUTKEY5QjhGOTFEMjkyOEJFQUEzNTFDQzM0NUM0NzM2OTMy RkQ4NjM5RjEwHhcNMjUxMTI5MTI0MTAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjFlZC00NTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui+oAKorA0PSu728p5uhr28iJDlFex7L0mKo5YruEjvaT8PNZfWHHpaIS+Qx 0FAJXSo2vaf3VkTSGmZ+zDRVFN6a16MR1tPabKx/oSI2kXH2ul/QMZjNSO5ieK8u DNDj1vVaoa/uw0fISu0e6iwnrcv2pSOkVvruo8AvGm5P4D0XZjjO5t5oPcKhmvnG P8PrLVFgb2guUBKO2EBzOEzisPmlZlyc7QK7OC7vXZ4i1JVeshiOs41b/UAsvnK3 4kvl/PBp8kRmgOUVLN4bTL4ue1aROjWGO++lSciVqH0g+YNbspwNZokNKGSkF93v Rfw8t5N1BfFiEGlw9TwRGleQrwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEkqJQjO RatQdkcUk0/W7aRo9fNQMB8GA1UdIwQYMBaAFPm4+R0pKL6qNRzDRcRzaTL9hjnx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzJDQy9DQzE5Mzg3Njc4 REExMUU5OTAxQjdGNERDNEY5QUUwMi8tYmo1SFNrb3ZxbzFITU5GeEhOcE12MkdP ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1iajVIU2tvdnFvMUhNTkZ4SE5wTXYyR09mRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MyQ0MvQ0MxOTM4NzY3OERBMTFFOTkwMUI3RjREQzRGOUFFMDIvQUE3NTY5NUFD RDIwMTFGMEIyMTRBODY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4qXMA0GCSqGSIb3DQEBCwUAA4IBAQAt+YvCSXIdrl1c4FOXmvle rcDRW/EIl4AuXnmg/mN0TFXKD6Rf3N7xXFqZtj2tPSWH7RgGLAm+eIc8kKjAfqXo Yxxg5T8Mv+xlCGREbBxWFXj5O+CoVLKrxsWxbYFcFsKFZkeYu5y75HET+Mv0xqL0 MoYXl5pozKWS8F8dt4flWQhAEYtt/ASqDpxfiRQv8/VUvPAgCSr5L8iAvOeLK96y o93brW3q9xtkO73k3DFqFMiz0zzcplbVqV7r5mtQTY4cm4dza3jp3pTB0hmsa+Xt LhxQLRwx3V4bkKlV6yuNCviUhMllqbFMPaAGRYqO+5LM28Kayh1P6gwy80Z08Xi8 -----END CERTIFICATE-----Generated at Fri Mar 27 07:12:01 2026 by rpki-client