$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/2B1FE092CFEE11F082935D16C4F9AE02.roa File: 2B1FE092CFEE11F082935D16C4F9AE02.roa (raw, json) Hash identifier: 6xMDbRG7wBKknxTgsFGsxPPwxSF0IsdgT+T+xByYGfk= Subject key identifier: 73:23:E0:19:33:71:EA:C3:B2:0C:5A:EE:06:56:3B:25:F6:6D:70:3B Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 01E7 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/2B1FE092CFEE11F082935D16C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:44 +0000 ROA not before: Wed 03 Dec 2025 02:17:08 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 21859 IP address blocks: 103.126.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Dec 3 02:17:08 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4666c-f0c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:82:31:ee:cd:49:88:a9:39:97:2f:de:01: 59:39:23:e9:34:b6:d2:a3:37:85:df:34:e0:cd:9a: f1:95:7b:2b:0a:db:b6:3c:cd:da:4c:0f:7f:d2:41: ef:c2:8c:0b:95:54:27:42:bb:5a:76:4b:99:ed:03: db:79:a7:a1:8d:52:2f:ab:34:c1:ad:c2:a8:7b:0e: 2e:ab:e0:a9:a8:c4:e4:0a:fe:5e:48:00:a4:53:b3: 05:c6:4a:f9:2c:93:7b:35:ef:c4:1a:22:b8:6b:85: da:49:ce:51:58:85:4d:29:dd:f0:c1:ba:3a:db:c9: 06:eb:4a:7a:36:13:16:c7:2f:df:ca:e5:ae:20:ba: ae:78:7b:8c:02:d4:57:b7:95:1a:58:3f:b9:84:c1: 9f:e4:c3:8c:2f:28:a6:df:18:38:2d:0d:ce:3c:d7: ad:ba:cd:64:4b:38:8e:4b:4a:44:40:5b:8b:2f:34: b1:0a:b9:79:cd:fa:dd:6b:c4:a1:4c:ec:41:04:eb: 03:5a:f4:32:37:7d:62:76:2d:d4:b8:fb:b6:94:60: 42:2c:e0:7f:96:c1:5a:7f:26:5d:d4:56:6e:6c:ab: 28:21:ec:2d:a3:81:46:e2:55:c6:92:24:fd:1f:25: b6:3a:c2:b9:16:0a:cd:61:a5:7d:94:11:2d:b2:cf: 02:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:23:E0:19:33:71:EA:C3:B2:0C:5A:EE:06:56:3B:25:F6:6D:70:3B X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/2B1FE092CFEE11F082935D16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.142.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:37:90:85:95:59:66:bb:fe:a2:0b:1d:4b:e6:4e:e3:9e:4e: 00:84:6e:23:86:19:ec:81:5c:d6:e0:24:6e:b4:e7:ab:c6:b3: 22:d8:1c:f0:60:b9:39:9a:fa:26:59:06:9b:ab:7d:e5:b0:02: 03:e2:97:56:3b:94:56:68:c4:8e:e1:06:97:26:08:14:71:77: 99:9d:b4:a7:15:cb:0f:fd:a8:03:18:dc:e6:c2:a3:1c:58:e3: da:cd:69:21:16:46:ac:27:d8:ec:5b:6f:08:c9:92:df:71:90: 08:a7:01:7b:4b:b2:10:ff:98:70:6e:34:2c:46:13:5b:a2:c5: 49:cb:b5:b8:60:20:47:b7:35:da:b5:d0:39:dc:0b:6b:f9:ce: 74:15:80:05:f9:50:fe:05:13:43:a2:a7:95:8b:0e:12:a8:fc: 8e:10:44:48:1c:5a:d8:82:56:b8:5d:ad:47:f5:67:49:b0:2b: dd:d1:9e:4e:da:a0:d8:c7:16:65:62:63:e7:08:c1:e3:d6:43: 0b:c0:e3:4d:fa:b4:af:c2:22:7a:7c:23:09:aa:27:59:f3:69: 91:37:01:51:03:d3:8b:75:c7:9f:cf:3a:5f:1c:2f:79:b0:11: a4:fe:b7:b4:ed:e7:b5:a9:34:c9:b2:59:80:fb:72:40:98:6a: 4b:d2:c9:82 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjUxMjAzMDIxNzA4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY2Yy1mMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEqCMe7NSYipOZcv3gFZOSPpNLbSozeF3zTgzZrxlXsrCtu2PM3aTA9/0kHv wowLlVQnQrtadkuZ7QPbeaehjVIvqzTBrcKoew4uq+CpqMTkCv5eSACkU7MFxkr5 LJN7Ne/EGiK4a4XaSc5RWIVNKd3wwbo628kG60p6NhMWxy/fyuWuILqueHuMAtRX t5UaWD+5hMGf5MOMLyim3xg4LQ3OPNetus1kSziOS0pEQFuLLzSxCrl5zfrda8Sh TOxBBOsDWvQyN31idi3UuPu2lGBCLOB/lsFafyZd1FZubKsoIewto4FG4lXGkiT9 HyW2OsK5FgrNYaV9lBEtss8CQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHMj4Bkz cerDsgxa7gZWOyX2bXA7MB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0REODUvODQ2RjRBNjg0QkMzMTFFRThDNjU3MzE5QzRGOUFFMDIvMkIxRkUwOTJD RkVFMTFGMDgyOTM1RDE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ36OMA0GCSqGSIb3DQEBCwUAA4IBAQBbN5CFlVlmu/6iCx1L5k7j nk4AhG4jhhnsgVzW4CRutOerxrMi2BzwYLk5mvomWQabq33lsAID4pdWO5RWaMSO 4QaXJggUcXeZnbSnFcsP/agDGNzmwqMcWOPazWkhFkasJ9jsW28IyZLfcZAIpwF7 S7IQ/5hwbjQsRhNbosVJy7W4YCBHtzXatdA53Atr+c50FYAF+VD+BRNDoqeViw4S qPyOEERIHFrYgla4Xa1H9WdJsCvd0Z5O2qDYxxZlYmPnCMHj1kMLwONN+rSvwiJ6 fCMJqidZ82mRNwFRA9OLdcefzzpfHC95sBGk/re07ee1qTTJslmA+3JAmGpL0smC -----END CERTIFICATE-----Generated at Thu Mar 26 11:28:28 2026 by rpki-client