$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/AC2C4AA0391F11F1BD3AD0FAB7833773.roa File: AC2C4AA0391F11F1BD3AD0FAB7833773.roa (raw, json) Hash identifier: 0cccYt2m6S2dw6ZuCcBDsMyRl29jhFA8rzAB3dSSO60= Subject key identifier: A2:44:DE:AE:A2:07:CD:9F:7B:AD:EF:22:03:E4:9F:34:DC:6B:9B:EE Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 0722 Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/AC2C4AA0391F11F1BD3AD0FAB7833773.roa Signing time: Wed 15 Apr 2026 23:06:02 +0000 ROA not before: Wed 15 Apr 2026 23:06:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 135060 IP address blocks: 103.134.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: Apr 15 23:06:02 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69e019da-e36d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5d:7d:ab:44:89:79:42:67:11:0a:94:a8:b4: 06:fa:bc:d5:cc:2b:9e:d7:8b:3f:94:ce:56:5f:38: 0a:0f:e7:fc:ec:25:de:b6:09:14:20:01:bb:7a:b5: 89:50:90:8c:b9:b1:24:5a:99:8e:9b:57:79:1e:0c: 7d:b3:1f:1e:da:bd:bb:4e:38:4d:a1:f5:ff:53:8e: 06:17:09:a7:59:fc:8d:c6:7a:23:41:25:12:11:57: 7e:2b:15:05:e4:4b:7c:97:f5:f4:da:ed:97:72:a9: c7:b2:5c:20:0c:93:7c:dc:ad:39:d6:a8:d2:d0:f5: 61:ea:5f:1f:d8:3b:6d:7a:31:9d:cb:56:c9:b4:07: 81:a5:b8:e6:b4:12:90:8d:cd:81:da:2e:d3:74:08: 74:f6:d5:9b:19:bf:02:91:dc:67:67:6b:59:7e:d5: 19:f8:30:43:ba:9a:bb:9c:0a:b7:15:b1:fb:25:c6: 5c:52:18:e2:3b:89:2e:ba:0b:bd:e0:98:49:d0:59: 9e:99:aa:b3:e3:93:ca:45:96:41:93:15:d5:07:0a: 4a:62:95:de:b1:ff:01:ef:20:c2:27:c4:27:de:96: 6f:9a:5e:d5:d7:0f:01:7e:a0:2a:a0:0c:d6:ff:99: 28:f2:80:ad:18:d6:e5:24:dd:5b:c8:6f:8c:a0:4c: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:44:DE:AE:A2:07:CD:9F:7B:AD:EF:22:03:E4:9F:34:DC:6B:9B:EE X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/AC2C4AA0391F11F1BD3AD0FAB7833773.roa sbgp-ipAddrBlock: critical IPv4: 103.134.53.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d5:10:d4:41:63:7a:59:2b:b5:4c:9b:28:10:21:6e:d6:0d: 0c:ab:de:19:81:c2:64:cc:39:2f:ff:75:2c:53:6f:14:89:07: 82:c3:83:ad:59:08:03:c3:d1:5f:ba:83:1d:db:9f:13:1f:19: 52:bd:02:01:4c:06:48:06:fb:51:27:12:6e:fa:26:4b:ca:76: 8f:82:a2:e2:ce:cd:a7:2a:03:5d:95:f2:75:3f:2c:d7:6d:e1: c7:d8:c9:08:21:99:72:1b:93:95:8c:d9:9b:13:4a:07:45:bf: 04:d4:99:22:ae:71:34:78:a8:ce:e3:f3:6c:aa:95:cb:fb:a5: a5:0d:23:8f:b7:3a:19:6a:0b:d7:dc:7d:a5:6d:a5:74:d5:44: 75:8d:02:64:24:5d:8e:52:fe:46:a7:0f:e6:83:3d:d3:fd:71: d6:c9:0b:0a:ab:15:6f:b3:b4:02:b5:31:f1:22:65:83:b2:11: aa:7b:da:f8:1b:08:ff:6d:b9:57:6a:06:46:5c:d5:12:9e:bd: 9b:8f:b2:d0:4c:ba:92:61:b1:9d:31:b1:f0:dd:67:f0:8a:b1: 27:ee:15:e5:a6:83:23:91:ae:d8:79:ae:1f:ae:45:4c:3d:a2: 72:2c:62:85:cc:cd:45:77:e7:2b:70:6c:4a:4d:0e:df:12:54: 61:f6:e1:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjYwNDE1MjMwNjAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwMTlkYS1lMzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAol19q0SJeUJnEQqUqLQG+rzVzCue14s/lM5WXzgKD+f87CXetgkUIAG7erWJ UJCMubEkWpmOm1d5Hgx9sx8e2r27TjhNofX/U44GFwmnWfyNxnojQSUSEVd+KxUF 5Et8l/X02u2XcqnHslwgDJN83K051qjS0PVh6l8f2DttejGdy1bJtAeBpbjmtBKQ jc2B2i7TdAh09tWbGb8CkdxnZ2tZftUZ+DBDupq7nAq3FbH7JcZcUhjiO4kuugu9 4JhJ0Fmemaqz45PKRZZBkxXVBwpKYpXesf8B7yDCJ8Qn3pZvml7V1w8BfqAqoAzW /5ko8oCtGNblJN1byG+MoEyCLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKJE3q6i B82fe63vIgPknzTca5vuMB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQwNUMvREVDRTBGMEE3QkQ1MTFFQkI5MTIzRDUyQzRGOUFFMDIvQUMyQzRBQTAz OTFGMTFGMUJEM0FEMEZBQjc4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4Y1MA0GCSqGSIb3DQEBCwUAA4IBAQBk1RDUQWN6WSu1TJsoECFu 1g0Mq94ZgcJkzDkv/3UsU28UiQeCw4OtWQgDw9FfuoMd258THxlSvQIBTAZIBvtR JxJu+iZLynaPgqLizs2nKgNdlfJ1PyzXbeHH2MkIIZlyG5OVjNmbE0oHRb8E1Jki rnE0eKjO4/NsqpXL+6WlDSOPtzoZagvX3H2lbaV01UR1jQJkJF2OUv5Gpw/mgz3T /XHWyQsKqxVvs7QCtTHxImWDshGqe9r4Gwj/bblXagZGXNUSnr2bj7LQTLqSYbGd MbHw3WfwirEn7hXlpoMjka7Yea4frkVMPaJyLGKFzM1Fd+crcGxKTQ7fElRh9uEj -----END CERTIFICATE-----Generated at Fri Apr 17 09:40:19 2026 by rpki-client