$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa File: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (raw, json) Hash identifier: qTMcD52pvUMM/WCWaNI81abZP7wM1l8RWKy8BwN+uGg= Subject key identifier: 68:95:B7:62:75:24:A4:02:1B:F0:F8:8E:50:A9:61:21:4A:4D:5F:FA Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: 0265 Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:05:45 +0000 ROA not before: Wed 21 Jan 2026 01:21:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150685 IP address blocks: 103.55.240.0/24 maxlen: 24 103.55.241.0/24 maxlen: 24 2001:df1:b3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5, serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: Jan 21 01:21:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a40f79-247e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:85:30:22:b1:11:07:dc:91:2d:40:09:3b:06: 83:42:8b:29:b9:10:c3:16:4c:29:63:c3:a6:73:bb: f8:33:69:3d:0a:43:e3:40:4e:a1:8a:83:ad:30:df: ef:fe:4f:1f:2c:90:49:05:2f:29:d2:05:dc:7f:63: 0a:1a:b2:b3:c5:38:43:f2:29:87:04:3b:2e:44:24: f0:1f:64:1a:70:96:14:d9:8a:e9:25:c3:3c:72:17: a8:ce:31:c5:ca:39:26:bf:ed:03:56:86:a4:e1:39: a5:8e:78:2b:b9:72:46:7c:d2:47:fe:7e:1b:b2:4c: d9:54:3c:77:c0:46:27:73:1f:73:05:17:04:61:13: b5:37:a7:02:e6:79:c5:1d:e6:ee:94:c1:2b:4b:27: f4:91:ec:4e:73:23:ff:2b:4b:8a:5e:c9:f2:e1:0b: fd:ba:64:c2:f9:62:60:77:ee:aa:8c:03:be:d0:a9: d7:b4:df:48:a5:fb:2b:76:51:c0:81:f5:43:39:27: 26:af:57:f4:03:0a:b8:d8:23:84:6e:24:d2:bf:4b: 55:c0:2f:e8:e4:9b:dc:a9:d4:c7:7c:16:68:f6:80: 8a:fc:04:eb:e8:9b:b6:5d:d9:5b:84:59:77:de:8b: aa:4f:69:9f:f3:4e:61:c4:8b:83:df:b2:29:d8:5b: 7a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:95:B7:62:75:24:A4:02:1B:F0:F8:8E:50:A9:61:21:4A:4D:5F:FA X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.55.240.0/23 IPv6: 2001:df1:b3c0::/48 Signature Algorithm: sha256WithRSAEncryption 97:9b:cd:8c:8b:89:f4:7b:81:dd:1d:24:04:c5:cd:e2:56:f4: 9b:4c:93:c5:84:ab:67:b8:4d:6f:54:b3:56:f8:8c:d3:eb:27: 1a:80:88:81:67:79:18:b0:3d:25:7b:dc:dd:3e:a4:ad:cb:25: e7:5a:bf:66:16:2d:0a:f1:ef:f2:2b:9a:b0:9e:0e:0c:69:26: f0:28:39:a5:11:bd:53:9d:7a:88:d4:96:92:34:5d:02:c3:17: 70:b3:b5:21:b0:e1:bb:6c:2e:37:0e:e8:96:69:cc:8b:bb:c0: 1e:93:d7:b7:69:e8:c9:ca:2d:67:8a:b8:63:bd:37:91:a0:4c: 19:c3:9e:6a:31:31:66:c3:99:b3:a3:c8:e1:0d:4f:c0:10:09: 97:d9:35:ec:06:64:a4:26:07:3d:31:c7:b4:84:db:99:7a:70: d7:84:b7:63:ed:f1:ac:db:03:0c:16:63:25:98:28:6a:34:dc: df:a9:fa:5d:b4:bf:c9:c1:df:5a:a4:bc:e1:49:c0:a6:8a:a9: 7d:1c:47:fa:57:bd:ca:28:2b:2e:a6:d5:69:19:10:bb:0b:3c: 15:ff:98:cb:15:c2:f1:d7:a5:e4:72:63:29:8a:6d:36:55:27: 0b:e5:20:61:8b:d6:d4:a2:50:37:0c:fd:f1:86:71:15:a9:76: 50:5c:e1:51 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjYwMTIxMDEyMTQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGY3OS0yNDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroUwIrERB9yRLUAJOwaDQospuRDDFkwpY8Omc7v4M2k9CkPjQE6hioOtMN/v /k8fLJBJBS8p0gXcf2MKGrKzxThD8imHBDsuRCTwH2QacJYU2YrpJcM8cheozjHF yjkmv+0DVoak4TmljngruXJGfNJH/n4bskzZVDx3wEYncx9zBRcEYRO1N6cC5nnF HebulMErSyf0kexOcyP/K0uKXsny4Qv9umTC+WJgd+6qjAO+0KnXtN9IpfsrdlHA gfVDOScmr1f0Awq42COEbiTSv0tVwC/o5JvcqdTHfBZo9oCK/ATr6Ju2XdlbhFl3 3ouqT2mf805hxIuD37Ip2Ft6aQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGiVt2J1 JKQCG/D4jlCpYSFKTV/6MB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBCRjUvNkZDNjQxMzQ3RkE5MTFFRDlBM0E0MjUyQzRGOUFFMDIvQjIyMzNGNkM3 RkFCMTFFRDgzNEQ4RDUyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZzfwMA8EAgACMAkDBwAgAQ3xs8AwDQYJKoZIhvcNAQELBQADggEB AJebzYyLifR7gd0dJATFzeJW9JtMk8WEq2e4TW9Us1b4jNPrJxqAiIFneRiwPSV7 3N0+pK3LJedav2YWLQrx7/IrmrCeDgxpJvAoOaURvVOdeojUlpI0XQLDF3CztSGw 4btsLjcO6JZpzIu7wB6T17dp6MnKLWeKuGO9N5GgTBnDnmoxMWbDmbOjyOENT8AQ CZfZNewGZKQmBz0xx7SE25l6cNeEt2Pt8azbAwwWYyWYKGo03N+p+l20v8nB31qk vOFJwKaKqX0cR/pXvcooKy6m1WkZELsLPBX/mMsVwvHXpeRyYymKbTZVJwvlIGGL 1tSiUDcM/fGGcRWpdlBc4VE= -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:21 2026 by rpki-client