$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa File: 214E0454B58A11ECAF32FE29C4F9AE02.roa (raw, json) Hash identifier: DeN5+WLuYB95EX5XxNOKqEvwckp++ai7lfprhRYcj3g= Subject key identifier: 6B:DE:5C:D1:E3:23:0F:83:F2:A9:F1:FA:33:5C:42:F9:8A:EF:18:06 Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 03EF Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:51:10 +0000 ROA not before: Thu 29 Jan 2026 00:20:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 149294 IP address blocks: 103.178.18.0/23 maxlen: 24 2400:3ee0::/32 maxlen: 32 2400:3ee0::/48 maxlen: 48 2400:3ee0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Jan 29 00:20:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4363d-7d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:a4:00:99:06:3a:5e:fa:3e:0d:d1:4c:4b: 06:3c:6e:ca:ee:33:c7:94:c8:a7:80:aa:8d:96:09: e6:91:29:11:06:96:1f:f9:a6:1d:cd:31:48:02:a3: c6:d2:94:aa:53:50:f3:f8:d8:e4:40:0d:69:56:fd: 0f:36:be:5e:38:0b:15:b9:bc:31:e4:ff:b2:33:b7: fe:5b:4e:74:b7:f1:b2:3f:1e:b5:ea:84:1c:66:3d: 40:87:d8:25:26:10:b0:bd:7c:68:cd:77:f8:3a:ee: 16:38:69:fe:a8:96:a1:c7:9b:6f:ad:47:6a:27:56: 46:d6:89:b3:13:07:b6:db:0a:55:6d:e0:97:0c:36: 66:00:b7:e2:3e:52:6e:15:d9:66:0a:9c:e1:56:5f: 29:ff:00:af:e1:93:18:1e:c2:49:a3:80:30:0d:aa: cb:de:37:c4:fc:f8:99:8d:ea:f8:f1:f0:8e:31:9f: b4:f1:c2:2f:e9:b2:31:73:2a:53:bd:28:ff:90:ca: 53:43:3b:17:b5:5c:fa:10:6c:9c:d0:34:13:3e:9e: 43:d7:66:db:e9:95:48:f7:56:87:f8:c5:69:4f:a8: a8:e0:a1:f7:0d:00:14:1b:80:a6:61:52:f8:ef:8f: 3d:f0:73:3b:42:82:94:95:a1:e6:f9:2b:db:8d:aa: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DE:5C:D1:E3:23:0F:83:F2:A9:F1:FA:33:5C:42:F9:8A:EF:18:06 X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.178.18.0/23 IPv6: 2400:3ee0::/32 Signature Algorithm: sha256WithRSAEncryption ab:98:58:6b:38:82:2e:4f:47:3b:45:ae:40:50:a1:38:b8:46: 5f:02:44:82:92:45:af:27:f6:56:97:fc:c6:61:07:a2:f7:81: aa:6d:79:89:ff:d3:af:ba:e4:9e:81:a4:db:51:e4:d3:55:bb: 5f:f5:fa:fe:b1:05:3c:f2:cc:17:13:d9:c4:7b:49:ab:e3:3a: 0c:6c:cc:45:c3:07:15:59:51:71:1e:91:4b:8a:82:a5:09:81: b7:e7:a3:d0:e6:5f:2e:87:18:83:d9:58:56:4a:41:b9:4c:d6: 41:0f:67:96:d8:f3:7b:e5:18:00:cb:7d:9f:c1:19:2f:46:10: 3c:ed:4d:67:d0:68:11:ba:63:a4:d8:23:8c:5d:4e:7f:c1:22: ae:05:e2:0b:46:dc:fe:97:09:01:10:f0:8b:ee:cb:78:a5:ed: 5e:fe:34:fc:9a:90:ba:fa:94:18:83:7b:08:60:ec:b9:12:da: 63:7c:2b:22:60:5e:b8:3d:f8:8b:11:57:6d:62:58:d3:f5:a6: ad:e0:d1:32:f1:c3:e9:8d:c2:3f:4d:d8:6a:3c:30:52:6a:9f: 1a:4b:e4:13:ba:2c:83:6d:2c:42:f8:c2:c7:96:86:51:72:cb: 86:4a:a7:b7:0c:67:37:07:1d:d7:66:cb:45:27:3c:73:dd:a3: 93:3c:0c:d8 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjYwMTI5MDAyMDM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzYzZC03ZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhukAJkGOl76Pg3RTEsGPG7K7jPHlMingKqNlgnmkSkRBpYf+aYdzTFIAqPG 0pSqU1Dz+NjkQA1pVv0PNr5eOAsVubwx5P+yM7f+W050t/GyPx616oQcZj1Ah9gl JhCwvXxozXf4Ou4WOGn+qJahx5tvrUdqJ1ZG1omzEwe22wpVbeCXDDZmALfiPlJu FdlmCpzhVl8p/wCv4ZMYHsJJo4AwDarL3jfE/PiZjer48fCOMZ+08cIv6bIxcypT vSj/kMpTQzsXtVz6EGyc0DQTPp5D12bb6ZVI91aH+MVpT6io4KH3DQAUG4CmYVL4 74898HM7QoKUlaHm+SvbjapBvwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGveXNHj Iw+D8qnx+jNcQvmK7xgGMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MUMvMkE3MDkwRkFCNTg2MTFFQ0FFODFFRDIyQzRGOUFFMDIvMjE0RTA0NTRC NThBMTFFQ0FGMzJGRTI5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7ISMA0EAgACMAcDBQAkAD7gMA0GCSqGSIb3DQEBCwUAA4IBAQCr mFhrOIIuT0c7Ra5AUKE4uEZfAkSCkkWvJ/ZWl/zGYQei94GqbXmJ/9OvuuSegaTb UeTTVbtf9fr+sQU88swXE9nEe0mr4zoMbMxFwwcVWVFxHpFLioKlCYG356PQ5l8u hxiD2VhWSkG5TNZBD2eW2PN75RgAy32fwRkvRhA87U1n0GgRumOk2COMXU5/wSKu BeILRtz+lwkBEPCL7st4pe1e/jT8mpC6+pQYg3sIYOy5EtpjfCsiYF64PfiLEVdt YljT9aat4NEy8cPpjcI/TdhqPDBSap8aS+QTuiyDbSxC+MLHloZRcsuGSqe3DGc3 Bx3XZstFJzxz3aOTPAzY -----END CERTIFICATE-----Generated at Mon Mar 2 09:08:36 2026 by rpki-client