$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/312D1714A6F211EFBD311B19C4F9AE02.roa File: 312D1714A6F211EFBD311B19C4F9AE02.roa (raw, json) Hash identifier: KoKgWmsxfkCkbgWCHOo/9Lqsa6nPc6n6w00K8LYdEf4= Subject key identifier: BC:E8:0D:17:C6:90:D1:C6:CE:0F:95:B9:6B:6E:78:0F:7A:40:62:D5 Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 08F8 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/312D1714A6F211EFBD311B19C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:17 +0000 ROA not before: Fri 22 Aug 2025 21:01:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137526 IP address blocks: 103.153.170.0/23 maxlen: 23 103.153.170.0/24 maxlen: 24 103.153.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Aug 22 21:01:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4479d-3c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1e:20:a1:2d:59:e2:f3:69:fa:d4:20:5b:ce: 3c:be:2e:1c:f0:e8:61:0d:d5:34:ce:b8:20:48:27: 9c:0e:b9:ec:c3:fe:ba:b2:d5:a9:cc:02:b1:5f:2f: 0d:b1:98:c3:93:53:dd:92:d7:48:1d:1c:e7:53:b1: 2c:4e:26:73:e7:ff:c7:c8:7e:3f:51:5e:67:88:dd: 67:83:3d:b5:8f:90:1f:19:6a:86:67:41:83:f4:ad: d3:60:ea:63:04:71:23:59:b4:0c:a9:5d:3c:35:20: e6:a3:14:fe:29:d8:ea:92:9f:fe:ea:e7:b9:c2:73: 87:22:27:be:be:e1:83:6e:d1:2c:6f:96:61:69:5a: c8:23:fb:b0:f6:dd:f4:ad:61:47:97:54:21:b2:60: 77:9f:94:ca:db:4a:6a:9f:ce:c8:8c:ac:98:93:03: d1:24:5f:d1:85:3b:8b:c1:3c:fa:ef:12:39:f6:c9: b3:01:a8:9e:32:89:ad:c4:21:47:85:da:8e:29:d7: ce:dc:b7:17:90:84:a0:60:70:f9:03:cd:18:e1:af: c1:e4:e0:c1:c8:00:a7:4b:62:c1:5b:12:2a:ad:96: 25:f6:4b:65:78:fa:a4:69:43:ba:dd:9d:eb:a0:b9: f1:ad:eb:1d:96:1c:81:09:15:87:27:5a:3a:ad:95: 56:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E8:0D:17:C6:90:D1:C6:CE:0F:95:B9:6B:6E:78:0F:7A:40:62:D5 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/312D1714A6F211EFBD311B19C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.153.170.0/23 Signature Algorithm: sha256WithRSAEncryption 99:81:96:e5:3e:ff:4e:39:fa:10:fd:11:05:31:a2:37:7a:65: 0a:c1:2b:cd:bf:d3:be:82:39:56:34:23:55:5c:c0:d1:fc:54: ad:ca:c2:36:f2:7a:c0:30:e5:8c:4f:70:8a:6e:a6:02:6c:6c: f2:3f:32:9f:d5:04:5b:5b:48:19:13:3e:9b:d9:83:96:af:69: e8:27:13:88:97:24:87:91:60:c7:ae:03:a5:e9:c5:40:86:20: df:e2:7b:68:79:a3:26:8d:13:03:36:0d:68:2d:65:59:5f:c3: 86:1a:0c:7f:8f:51:2c:fc:d9:5d:25:d6:16:98:9a:ff:27:8c: 7e:87:d6:c8:cb:85:30:1d:11:e0:42:73:ad:1c:d7:02:ed:e4: 35:62:89:de:d9:a8:3d:64:e0:bd:a2:12:3c:f2:68:9b:99:f7: f2:cf:a4:06:b1:66:37:02:fe:43:9b:02:57:84:a2:a6:01:38: ba:5b:19:ce:de:80:8c:6f:01:79:8f:1d:57:64:ae:f9:10:87: 93:a5:63:ae:0b:a1:04:d6:5d:34:b0:a0:41:b7:a0:92:63:48: 5b:a0:66:41:4e:91:a6:0e:08:b9:88:4d:96:e3:67:04:18:e4: 7b:71:91:78:30:89:95:e9:26:52:ba:e4:8b:5a:9f:91:b3:51: 58:f8:20:e3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjUwODIyMjEwMTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDc5ZC0zYzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh4goS1Z4vNp+tQgW848vi4c8OhhDdU0zrggSCecDrnsw/66stWpzAKxXy8N sZjDk1PdktdIHRznU7EsTiZz5//HyH4/UV5niN1ngz21j5AfGWqGZ0GD9K3TYOpj BHEjWbQMqV08NSDmoxT+Kdjqkp/+6ue5wnOHIie+vuGDbtEsb5ZhaVrII/uw9t30 rWFHl1QhsmB3n5TK20pqn87IjKyYkwPRJF/RhTuLwTz67xI59smzAaieMomtxCFH hdqOKdfO3LcXkISgYHD5A80Y4a/B5ODByACnS2LBWxIqrZYl9ktlePqkaUO63Z3r oLnxresdlhyBCRWHJ1o6rZVWNQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLzoDRfG kNHGzg+VuWtueA96QGLVMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDRTIvNjE4MEMwQTJDRDZGMTFFQTk3NTQ4MDQzQzRGOUFFMDIvMzEyRDE3MTRB NkYyMTFFRkJEMzExQjE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5mqMA0GCSqGSIb3DQEBCwUAA4IBAQCZgZblPv9OOfoQ/REFMaI3 emUKwSvNv9O+gjlWNCNVXMDR/FStysI28nrAMOWMT3CKbqYCbGzyPzKf1QRbW0gZ Ez6b2YOWr2noJxOIlySHkWDHrgOl6cVAhiDf4ntoeaMmjRMDNg1oLWVZX8OGGgx/ j1Es/NldJdYWmJr/J4x+h9bIy4UwHRHgQnOtHNcC7eQ1Yone2ag9ZOC9ohI88mib mffyz6QGsWY3Av5DmwJXhKKmATi6WxnO3oCMbwF5jx1XZK75EIeTpWOuC6EE1l00 sKBBt6CSY0hboGZBTpGmDgi5iE2W42cEGOR7cZF4MImV6SZSuuSLWp+Rs1FY+CDj -----END CERTIFICATE-----Generated at Thu Mar 26 14:55:27 2026 by rpki-client