$ rpki-client -vvf rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/424D6EC4ACBC11EBB0651B63C4F9AE02.roa File: 424D6EC4ACBC11EBB0651B63C4F9AE02.roa (raw, json) Hash identifier: Lb/T9nBCmtckdHe4b9hm5305kn9OjeJ7JSA7XieKmSk= Subject key identifier: 4A:00:D5:A0:5D:51:81:3F:12:36:E1:2B:FE:50:B5:30:CC:CE:67:5D Certificate issuer: /CN=A912D072/serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Certificate serial: 086C Authority key identifier: 47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/424D6EC4ACBC11EBB0651B63C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:46:10 +0000 ROA not before: Sun 31 Aug 2025 21:13:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.153.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2156 (0x86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D072, serialNumber=475752844BEA7A49705BC25AA8F0C9EF100C98F8 Validity Not Before: Aug 31 21:13:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46d51-2827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e1:ad:b4:88:1b:f7:c6:4b:e1:72:6e:e4:eb: f1:d7:ae:76:e4:73:7d:0b:99:f9:23:49:c8:16:e9: 23:f2:97:54:35:53:60:4a:16:76:a3:18:8e:0b:4e: b7:9d:24:54:fc:57:3e:0f:3c:a1:5a:9b:fb:68:d3: 8b:a1:ad:ca:02:da:90:78:38:f2:34:a7:7d:ac:fc: 2f:6c:82:08:52:00:8f:68:63:87:d4:f5:2c:a4:7a: dd:19:9a:ca:d6:cc:ae:d7:e0:2a:a7:a0:d7:4d:d2: ac:15:23:fc:7c:b5:68:cd:61:7e:5d:4b:39:48:0a: 8a:c3:fe:59:1e:07:67:82:f4:fe:01:70:fb:9e:6c: 7f:9f:0a:87:2d:58:26:5d:75:3d:f0:a6:09:b2:95: 07:67:ed:5d:b5:c2:b3:b5:f9:d0:69:b1:30:cc:67: 63:32:d3:db:dd:72:d5:d7:e3:b4:33:d2:a3:77:8e: 01:1a:87:fd:47:6b:06:30:da:79:a2:06:be:82:d1: 71:29:47:67:3d:f0:29:14:6b:8f:5d:c8:f0:8b:e5: f3:15:e0:5e:4b:59:6d:62:82:e8:58:52:9f:a0:27: 35:61:e5:f1:97:67:1c:35:4c:ae:22:48:eb:3a:d9: 9a:1e:aa:70:71:2a:67:a3:0e:33:79:b6:15:3b:c0: bf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:00:D5:A0:5D:51:81:3F:12:36:E1:2B:FE:50:B5:30:CC:CE:67:5D X509v3 Authority Key Identifier: keyid:47:57:52:84:4B:EA:7A:49:70:5B:C2:5A:A8:F0:C9:EF:10:0C:98:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/R1dShEvqeklwW8JaqPDJ7xAMmPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1dShEvqeklwW8JaqPDJ7xAMmPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D072/3A418936FBE611EAB353660CC4F9AE02/424D6EC4ACBC11EBB0651B63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.153.138.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:9e:6f:13:79:74:03:49:1f:a7:21:fd:cd:f3:56:69:04:c5: 3c:77:7e:e0:6c:d2:b2:d0:41:cf:34:b2:eb:77:6f:59:44:73: 22:a4:49:c9:bf:83:ba:df:e8:33:ac:8d:56:c5:28:e8:2d:36: 9b:fb:ae:3b:b9:5d:10:c3:e6:54:d0:d9:c7:f5:c0:13:6f:5d: 16:a4:c7:56:0d:b0:05:f8:fc:e1:51:45:a7:49:03:28:89:d8: 71:e2:52:e8:b4:61:cd:06:ec:39:73:99:c8:d7:f9:3a:b9:bd: ad:4d:13:90:3a:97:2a:f3:16:2e:de:7c:e4:73:9e:83:b3:ec: c7:f0:51:c2:ce:4a:1e:7d:d9:0d:2a:84:d8:b9:22:0e:0e:15: cd:da:7d:c7:6d:65:20:02:59:d0:81:b0:14:54:97:11:f5:aa: 18:88:e0:c0:55:6a:53:32:c8:e5:cb:d6:1f:22:7c:e0:88:85: 75:b7:0d:37:24:6f:e5:83:51:98:cb:74:96:f0:f9:f1:39:af: c6:cb:ce:7f:c1:15:65:f6:ad:e1:41:a3:b9:c5:cd:a8:9d:26: 65:6c:74:a2:95:72:8f:33:f6:c9:9f:ae:d3:d9:62:8d:cc:50: 28:75:8e:1c:4f:8e:18:b5:61:a2:e0:9a:30:a7:a8:f8:fd:07: 18:5e:7b:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwNzIxMTAvBgNVBAUTKDQ3NTc1Mjg0NEJFQTdBNDk3MDVCQzI1QUE4RjBDOUVG MTAwQzk4RjgwHhcNMjUwODMxMjExMzE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQ1MS0yODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuGttIgb98ZL4XJu5Ovx16525HN9C5n5I0nIFukj8pdUNVNgShZ2oxiOC063 nSRU/Fc+DzyhWpv7aNOLoa3KAtqQeDjyNKd9rPwvbIIIUgCPaGOH1PUspHrdGZrK 1syu1+Aqp6DXTdKsFSP8fLVozWF+XUs5SAqKw/5ZHgdngvT+AXD7nmx/nwqHLVgm XXU98KYJspUHZ+1dtcKztfnQabEwzGdjMtPb3XLV1+O0M9Kjd44BGof9R2sGMNp5 oga+gtFxKUdnPfApFGuPXcjwi+XzFeBeS1ltYoLoWFKfoCc1YeXxl2ccNUyuIkjr OtmaHqpwcSpnow4zebYVO8C/7QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEoA1aBd UYE/EjbhK/5QtTDMzmddMB8GA1UdIwQYMBaAFEdXUoRL6npJcFvCWqjwye8QDJj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDA3Mi8zQTQxODkzNkZC RTYxMUVBQjM1MzY2MENDNEY5QUUwMi9SMWRTaEV2cWVrbHdXOEphcVBESjd4QU1t UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxZFNoRXZxZWtsd1c4SmFxUERKN3hBTW1QZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQwNzIvM0E0MTg5MzZGQkU2MTFFQUIzNTM2NjBDQzRGOUFFMDIvNDI0RDZFQzRB Q0JDMTFFQkIwNjUxQjYzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5mKMA0GCSqGSIb3DQEBCwUAA4IBAQAfnm8TeXQDSR+nIf3N81Zp BMU8d37gbNKy0EHPNLLrd29ZRHMipEnJv4O63+gzrI1WxSjoLTab+647uV0Qw+ZU 0NnH9cATb10WpMdWDbAF+PzhUUWnSQMoidhx4lLotGHNBuw5c5nI1/k6ub2tTROQ Opcq8xYu3nzkc56Ds+zH8FHCzkoefdkNKoTYuSIODhXN2n3HbWUgAlnQgbAUVJcR 9aoYiODAVWpTMsjly9YfInzgiIV1tw03JG/lg1GYy3SW8PnxOa/Gy85/wRVl9q3h QaO5xc2onSZlbHSilXKPM/bJn67T2WKNzFAodY4cT44YtWGi4Jowp6j4/QcYXnvY -----END CERTIFICATE-----Generated at Mon Mar 2 03:10:15 2026 by rpki-client