$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa File: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (raw, json) Hash identifier: o4MIbjV7bEKRdqQSG3TgsvtbWH+YQ+ah1raxjNrzdVA= Subject key identifier: D4:84:74:19:60:9B:7C:E7:AC:A1:64:EA:CF:0E:81:1C:2C:AC:85:EC Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 0238 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:33:24 +0000 ROA not before: Sun 27 Apr 2025 02:37:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141778 IP address blocks: 103.121.178.0/24 maxlen: 24 103.121.179.0/24 maxlen: 24 2001:df2:2ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Apr 27 02:37:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ddb4-af76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:30:8a:64:4d:51:72:6a:25:00:d4:88:16:ff: 6f:a7:7e:70:fe:1f:99:26:20:70:74:a5:9e:45:95: 1c:1b:c9:fd:aa:9f:b2:c8:ed:ec:e9:87:46:b8:19: 51:70:e2:8a:4f:66:3b:e4:2d:0e:67:8d:c9:69:67: e2:e5:33:f3:df:05:01:02:19:3a:64:0a:96:e2:ff: b9:f8:7b:c6:cf:d3:1a:11:57:63:21:ee:7e:1f:a1: 89:96:6c:a2:d8:64:2d:54:92:6b:7a:f9:b4:82:3e: f6:4a:f3:d6:5c:b1:88:4c:8b:5b:ce:e9:bf:27:42: d2:43:57:d3:b4:8d:7c:a9:a1:91:d1:26:b8:8e:75: 13:98:11:a4:63:76:dc:19:7f:70:9b:b6:c0:90:79: f9:5c:51:c3:67:4d:ea:81:a9:41:09:29:6c:4c:9d: 96:56:9b:c7:84:c3:66:54:0a:9d:2d:59:8e:e3:c2: ce:18:4e:e9:c9:61:23:8f:3d:2b:65:06:17:43:97: 2d:10:09:d5:99:b4:91:cc:d5:99:69:41:f6:fb:5a: 13:ee:0f:f6:ce:29:46:cd:1c:4a:54:15:36:06:12: 13:75:92:9d:0d:94:6e:07:94:84:4f:72:db:48:91: 3c:3a:9f:a9:a0:9f:a2:9e:47:9e:d2:a4:a0:26:b8: 85:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:84:74:19:60:9B:7C:E7:AC:A1:64:EA:CF:0E:81:1C:2C:AC:85:EC X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/19E19DA0E5CE11EDB697BC74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.178.0/23 IPv6: 2001:df2:2ec0::/48 Signature Algorithm: sha256WithRSAEncryption b3:cb:bf:e9:6b:e7:33:22:c7:fa:fd:cc:b1:1d:cc:d5:b0:44: bf:11:e9:ea:6d:9b:e0:3b:94:89:e7:36:9a:b1:18:d0:17:82: c2:11:5e:c2:9e:3f:2c:ee:ac:0a:06:80:7e:bc:55:9c:32:9f: c2:b1:ba:ab:be:ee:0a:36:48:c8:78:03:df:f4:9a:ad:c1:f6: 8d:fa:66:4d:9e:56:f5:90:46:39:c5:0b:03:a9:61:e7:69:87: 33:42:3e:7b:6f:bb:11:4a:6e:c3:73:9a:73:5d:44:05:4f:35: c0:f0:66:e1:8a:8e:f5:0c:ae:e8:28:5d:fe:56:99:89:b1:cb: 8a:1b:6a:9e:57:e4:b8:fe:7e:74:f8:8d:fb:3b:bb:0f:37:dc: 56:76:21:bb:ba:b9:ed:6f:d2:5a:2e:d5:cb:f0:69:1b:7f:dd: 84:ef:8d:9c:d1:4d:85:bd:8f:4a:d0:2a:96:0e:3e:dc:5b:e6: a9:90:38:fc:33:f1:7e:6c:eb:53:43:79:c7:f5:30:98:6f:e2: a0:42:7e:72:c9:c3:5b:2a:fb:a1:0e:8b:70:4a:87:ca:a9:d4: 59:c1:17:6b:09:e0:a7:25:fb:ee:e9:a2:1b:da:7e:b6:34:3c: 65:d4:13:32:f5:a0:33:d4:3c:5b:e2:a1:ed:89:97:19:b3:3f: 9c:d8:40:05 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwNDI3MDIzNzIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGRiNC1hZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljCKZE1RcmolANSIFv9vp35w/h+ZJiBwdKWeRZUcG8n9qp+yyO3s6YdGuBlR cOKKT2Y75C0OZ43JaWfi5TPz3wUBAhk6ZAqW4v+5+HvGz9MaEVdjIe5+H6GJlmyi 2GQtVJJrevm0gj72SvPWXLGITItbzum/J0LSQ1fTtI18qaGR0Sa4jnUTmBGkY3bc GX9wm7bAkHn5XFHDZ03qgalBCSlsTJ2WVpvHhMNmVAqdLVmO48LOGE7pyWEjjz0r ZQYXQ5ctEAnVmbSRzNWZaUH2+1oT7g/2zilGzRxKVBU2BhITdZKdDZRuB5SET3Lb SJE8Op+poJ+inkee0qSgJriF7QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNSEdBlg m3znrKFk6s8OgRwsrIXsMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQxRDUvMzQzMzYxRUVDQzhDMTFFREE0QzFBMTQzQzRGOUFFMDIvMTlFMTlEQTBF NUNFMTFFREI2OTdCQzc0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ3myMA8EAgACMAkDBwAgAQ3yLsAwDQYJKoZIhvcNAQELBQADggEB ALPLv+lr5zMix/r9zLEdzNWwRL8R6eptm+A7lInnNpqxGNAXgsIRXsKePyzurAoG gH68VZwyn8Kxuqu+7go2SMh4A9/0mq3B9o36Zk2eVvWQRjnFCwOpYedphzNCPntv uxFKbsNzmnNdRAVPNcDwZuGKjvUMrugoXf5WmYmxy4obap5X5Lj+fnT4jfs7uw83 3FZ2Ibu6ue1v0lou1cvwaRt/3YTvjZzRTYW9j0rQKpYOPtxb5qmQOPwz8X5s61ND ecf1MJhv4qBCfnLJw1sq+6EOi3BKh8qp1FnBF2sJ4Kcl++7pohvafrY0PGXUEzL1 oDPUPFvioe2JlxmzP5zYQAU= -----END CERTIFICATE-----Generated at Mon Mar 2 11:54:38 2026 by rpki-client