$ rpki-client -vvf rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa File: 849DE48AB8DC11F0AFE11A3EC4F9AE02.roa (raw, json) Hash identifier: lF0Ud6Tl/4ldhJMDYPaNURdkT4vTTPUYzgxNpz7UXSc= Subject key identifier: 06:8E:60:99:F0:B2:BC:A7:B1:E6:5E:D0:FC:7D:FE:69:6E:54:3A:75 Certificate issuer: /CN=A912F22D/serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Certificate serial: 0BE9 Authority key identifier: 2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:34:45 +0000 ROA not before: Tue 20 Jan 2026 19:16:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 141351 IP address blocks: 103.132.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F22D, serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Validity Not Before: Jan 20 19:16:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a478b5-37e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:0e:41:e0:28:9c:09:2c:09:bf:a3:87:5c: 4b:ff:46:f3:10:13:52:f3:d0:fc:d1:92:f6:75:dd: 52:e6:ee:6d:47:28:02:fe:62:63:96:14:6a:45:96: c1:23:40:6d:fe:28:6f:2e:53:54:4a:61:4f:1b:8a: eb:e9:8a:2d:00:ab:1f:e9:50:0c:d1:7b:14:41:e8: 2d:68:93:ee:ce:d9:57:8f:ec:eb:99:89:cf:a7:4f: 13:06:4f:e4:b6:82:f0:5b:73:e6:f2:92:a7:fd:15: b7:3c:df:c7:61:db:8e:27:04:ba:72:cc:3e:68:f1: 94:b0:da:13:30:22:97:2b:ee:37:88:fb:c4:97:eb: b0:e1:31:61:b6:54:a2:b4:0e:bb:b5:dd:80:55:d2: 51:5d:34:c5:80:ca:b9:78:af:d7:a0:e7:e6:9d:d3: 53:07:5a:97:6d:e0:e5:c6:0a:cd:53:98:30:47:0a: 61:a0:72:d8:2e:2e:a4:2f:1f:3d:48:c2:24:2a:5d: e4:20:f6:2f:0a:b9:2c:6a:93:ed:0f:c1:00:83:03: 16:4f:dd:47:d2:b8:b1:0e:25:c6:c3:0e:d4:a4:09: 52:4e:c2:2d:73:1a:b4:3d:80:57:00:a4:a0:95:8d: 5d:3d:30:f0:c4:bb:78:33:b8:da:2c:63:90:ce:43: 08:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8E:60:99:F0:B2:BC:A7:B1:E6:5E:D0:FC:7D:FE:69:6E:54:3A:75 X509v3 Authority Key Identifier: keyid:2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/849DE48AB8DC11F0AFE11A3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.216.0/24 Signature Algorithm: sha256WithRSAEncryption c8:36:80:4c:85:02:93:95:9d:66:25:b1:6c:1c:94:28:a5:bd: b1:76:32:85:94:44:2d:58:56:d4:7e:40:2a:12:b8:d3:d7:1d: bb:cd:32:d0:f2:76:f9:f6:3d:55:3c:cd:e1:7b:48:2f:87:f5: 2a:d7:86:db:f7:09:4b:5f:39:e6:57:c9:9c:48:87:b6:96:6a: 0e:0b:36:ff:7a:33:51:15:aa:b2:bd:42:a4:04:cb:d2:60:fe: 55:8a:07:f7:ed:3f:f3:26:37:39:b8:7e:0d:9b:39:ab:c2:7e: 2c:ba:90:69:8c:5b:1f:00:55:fa:5f:d8:1e:76:a4:98:17:1a: 6d:29:f2:68:02:7c:50:d6:94:00:1d:08:2f:67:12:ca:52:f4: a3:76:36:b1:d8:6e:73:ae:6b:e3:17:70:41:b1:cb:10:30:41: 52:72:85:2a:83:c4:28:5f:a1:ca:8d:65:20:5a:a2:6f:53:d8: 8e:00:69:bd:1b:d7:43:ed:4e:64:f0:13:b3:ba:49:47:83:d0: b6:5d:be:61:bd:ba:db:5e:e8:e3:e8:e8:75:b5:96:1d:7f:cd: 3b:d3:c4:82:09:60:60:22:1b:1e:95:2d:df:4a:fc:34:3e:08: 9f:6d:3a:10:63:ae:83:3b:04:78:16:89:5e:0e:f4:78:bb:0f: d4:b0:b7:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYyMkQxMTAvBgNVBAUTKDJEQUI4MkEwQTlCOEU0NDk2QTlEQTBEREVERUY3RTkz MTYyNTE3NjgwHhcNMjYwMTIwMTkxNjA3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzhiNS0zN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXwOQeAonAksCb+jh1xL/0bzEBNS89D80ZL2dd1S5u5tRygC/mJjlhRqRZbB I0Bt/ihvLlNUSmFPG4rr6YotAKsf6VAM0XsUQegtaJPuztlXj+zrmYnPp08TBk/k toLwW3Pm8pKn/RW3PN/HYduOJwS6csw+aPGUsNoTMCKXK+43iPvEl+uw4TFhtlSi tA67td2AVdJRXTTFgMq5eK/XoOfmndNTB1qXbeDlxgrNU5gwRwphoHLYLi6kLx89 SMIkKl3kIPYvCrksapPtD8EAgwMWT91H0rixDiXGww7UpAlSTsItcxq0PYBXAKSg lY1dPTDwxLt4M7jaLGOQzkMI5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAaOYJnw srynseZe0Px9/mluVDp1MB8GA1UdIwQYMBaAFC2rgqCpuORJap2g3e3vfpMWJRdo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjIyRC8yQUFGQ0NFRTM2 OEUxMUVBOTJBNDlFN0RDNEY5QUUwMi9MYXVDb0ttNDVFbHFuYURkN2U5LWt4WWxG MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xhdUNvS200NUVscW5hRGQ3ZTkta3hZbEYyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYyMkQvMkFBRkNDRUUzNjhFMTFFQTkyQTQ5RTdEQzRGOUFFMDIvODQ5REU0OEFC OERDMTFGMEFGRTExQTNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4TYMA0GCSqGSIb3DQEBCwUAA4IBAQDINoBMhQKTlZ1mJbFsHJQo pb2xdjKFlEQtWFbUfkAqErjT1x27zTLQ8nb59j1VPM3he0gvh/Uq14bb9wlLXznm V8mcSIe2lmoOCzb/ejNRFaqyvUKkBMvSYP5Vigf37T/zJjc5uH4Nmzmrwn4supBp jFsfAFX6X9gedqSYFxptKfJoAnxQ1pQAHQgvZxLKUvSjdjax2G5zrmvjF3BBscsQ MEFScoUqg8QoX6HKjWUgWqJvU9iOAGm9G9dD7U5k8BOzuklHg9C2Xb5hvbrbXujj 6Oh1tZYdf80708SCCWBgIhselS3fSvw0PgifbToQY66DOwR4FoleDvR4uw/UsLdV -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:54 2026 by rpki-client