$ rpki-client -vvf rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa File: 985276043B6D11F0AFFFDD4DC4F9AE02.roa (raw, json) Hash identifier: zvmo/rI7OvzOr9dv2MHAmv5RaiCJuYG/rsH+0wQ/XT4= Subject key identifier: 21:B3:68:D3:D0:5C:B7:A8:26:10:33:02:26:AE:5C:27:93:CB:50:61 Certificate issuer: /CN=A919E2D2/serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Certificate serial: 0452 Authority key identifier: 32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:49:56 +0000 ROA not before: Sun 03 Aug 2025 01:08:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 396982 IP address blocks: 103.207.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E2D2, serialNumber=32554EA293DB09D9600F938F05C0203FB9ABE993 Validity Not Before: Aug 3 01:08:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a435f4-6a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:25:87:49:df:59:a7:3c:5e:a1:b6:32:c1:aa: 29:a2:08:2b:e5:e6:7b:5a:d9:99:5b:62:8c:c3:61: 34:0b:ba:8d:7f:91:83:91:4c:12:ff:d1:6a:36:c2: ab:a5:ad:e4:0b:77:dd:d7:ec:5b:39:5d:03:d4:c2: c6:3c:5a:bf:12:a8:56:75:fd:87:e8:f5:5c:67:26: 5b:df:86:71:6e:4b:3c:e8:06:96:2a:e6:1f:ee:c7: aa:b2:17:9c:02:60:f7:df:b8:63:0c:93:b6:5b:cf: 2b:8e:a6:cf:b5:83:95:8b:e5:9c:09:49:be:0e:e9: 79:1c:c3:25:59:8f:d7:3e:0c:9c:2a:64:e9:bf:4c: d9:33:01:b4:87:6b:e0:1d:18:93:fd:21:30:cd:28: f9:34:21:1b:0f:ff:e4:fa:60:58:aa:bd:86:e9:a0: 8d:29:76:c5:34:0f:79:df:8f:62:69:8b:6a:d3:d2: 1e:aa:44:71:5c:5d:c2:56:76:ac:d7:ef:5c:1a:5b: bc:dd:44:3a:2f:3d:f8:7d:b8:1c:d7:b8:3b:74:82: 1b:1d:b8:38:19:42:bd:94:1d:13:0c:b8:cb:6b:7a: 6e:5d:d6:3f:2e:2e:f5:54:d3:2c:12:d5:a2:a9:3d: cc:26:aa:b1:56:d3:2d:67:23:db:7c:ee:af:d0:a4: 04:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B3:68:D3:D0:5C:B7:A8:26:10:33:02:26:AE:5C:27:93:CB:50:61 X509v3 Authority Key Identifier: keyid:32:55:4E:A2:93:DB:09:D9:60:0F:93:8F:05:C0:20:3F:B9:AB:E9:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/MlVOopPbCdlgD5OPBcAgP7mr6ZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MlVOopPbCdlgD5OPBcAgP7mr6ZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E2D2/BC03552C8F9B11EC82603D16C4F9AE02/985276043B6D11F0AFFFDD4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.207.158.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:a9:8a:7e:27:71:23:57:b0:ba:e3:57:cd:f5:90:77:60:91: 0f:04:a2:1c:c4:17:cf:31:6a:17:60:fe:84:4a:12:ee:41:2f: 05:95:6d:d2:5b:c3:de:58:8f:72:31:0f:b1:f7:2a:a8:7c:62: 34:de:35:e3:d3:83:b2:7d:10:e9:40:90:9e:c8:93:cb:3d:3f: fe:9d:4e:d0:74:b8:94:03:a0:11:dc:21:ec:38:4e:4a:1c:b6: 78:25:10:9d:21:3c:bb:ec:16:eb:fe:d1:61:f8:83:d7:9b:c5: 4c:72:04:ad:29:6d:61:96:07:9c:96:8e:96:91:08:8e:a7:40: 46:ce:d9:43:ad:44:ea:f0:dd:3d:e2:43:38:8e:04:66:08:d5: b3:f2:c4:83:eb:69:6c:8a:be:20:f2:5f:d3:d1:ed:96:54:bb: 19:e5:80:86:73:30:d9:fe:c0:de:e1:29:ba:a2:8d:f6:a5:34: 36:5a:e0:d1:e0:29:7e:3a:1f:a9:a3:37:af:1c:1a:80:01:b1: 79:e5:10:2d:b3:e2:11:c3:d7:4a:88:b9:8e:6a:48:a8:93:ba: 9a:91:9f:81:1d:ad:45:bd:12:4a:b5:61:1e:15:10:0d:2c:86: 88:2f:4d:0c:cb:1c:61:ed:82:20:04:fd:c3:64:84:23:49:a4: 17:20:54:e6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUyRDIxMTAvBgNVBAUTKDMyNTU0RUEyOTNEQjA5RDk2MDBGOTM4RjA1QzAyMDNG QjlBQkU5OTMwHhcNMjUwODAzMDEwODA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzVmNC02YTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iWHSd9ZpzxeobYywaopoggr5eZ7WtmZW2KMw2E0C7qNf5GDkUwS/9FqNsKr pa3kC3fd1+xbOV0D1MLGPFq/EqhWdf2H6PVcZyZb34Zxbks86AaWKuYf7seqshec AmD337hjDJO2W88rjqbPtYOVi+WcCUm+Dul5HMMlWY/XPgycKmTpv0zZMwG0h2vg HRiT/SEwzSj5NCEbD//k+mBYqr2G6aCNKXbFNA95349iaYtq09IeqkRxXF3CVnas 1+9cGlu83UQ6Lz34fbgc17g7dIIbHbg4GUK9lB0TDLjLa3puXdY/Li71VNMsEtWi qT3MJqqxVtMtZyPbfO6v0KQEewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCGzaNPQ XLeoJhAzAiauXCeTy1BhMB8GA1UdIwQYMBaAFDJVTqKT2wnZYA+TjwXAID+5q+mT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTJEMi9CQzAzNTUyQzhG OUIxMUVDODI2MDNEMTZDNEY5QUUwMi9NbFZPb3BQYkNkbGdENU9QQmNBZ1A3bXI2 Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01sVk9vcFBiQ2RsZ0Q1T1BCY0FnUDdtcjZaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUUyRDIvQkMwMzU1MkM4RjlCMTFFQzgyNjAzRDE2QzRGOUFFMDIvOTg1Mjc2MDQz QjZEMTFGMEFGRkZERDREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ8+eMA0GCSqGSIb3DQEBCwUAA4IBAQArqYp+J3EjV7C641fN9ZB3 YJEPBKIcxBfPMWoXYP6EShLuQS8FlW3SW8PeWI9yMQ+x9yqofGI03jXj04OyfRDp QJCeyJPLPT/+nU7QdLiUA6AR3CHsOE5KHLZ4JRCdITy77Bbr/tFh+IPXm8VMcgSt KW1hlgeclo6WkQiOp0BGztlDrUTq8N094kM4jgRmCNWz8sSD62lsir4g8l/T0e2W VLsZ5YCGczDZ/sDe4Sm6oo32pTQ2WuDR4Cl+Oh+pozevHBqAAbF55RAts+IRw9dK iLmOakiok7qakZ+BHa1FvRJKtWEeFRANLIaIL00Myxxh7YIgBP3DZIQjSaQXIFTm -----END CERTIFICATE-----Generated at Thu Mar 26 03:30:28 2026 by rpki-client