$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa File: F7B3707C806911EF8C30A03DC4F9AE02.roa (raw, json) Hash identifier: D1LvyPIB6XS8U0XsPUquyUJY63w3djQp7Wc3/arn9TY= Subject key identifier: BA:2D:68:EA:8D:8A:79:E1:58:F5:3D:1E:00:E7:E6:D1:42:9E:B9:CA Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 010E Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:53:44 +0000 ROA not before: Thu 03 Apr 2025 06:33:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138987 IP address blocks: 103.185.219.0/24 maxlen: 24 2001:df0:9ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3, serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Apr 3 06:33:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e278-a3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1e:07:4e:c4:ff:1f:93:2f:e4:04:43:42:15: f9:63:b6:09:2f:1a:94:7b:90:54:7a:b3:5e:fd:1f: b6:47:5c:5f:af:c2:34:cb:1d:da:78:2a:91:dd:4e: bb:b5:60:b6:90:df:67:b0:43:b2:6a:b8:49:d9:87: 9b:84:a3:25:59:2c:76:1a:03:60:50:d0:45:43:f8: 17:06:e5:e3:4b:b2:fb:18:55:1b:3d:54:af:65:a5: 79:4d:33:02:36:89:c3:ef:59:80:ca:1f:72:f8:5c: b0:d2:4d:0b:cd:c2:33:5d:e2:ca:2a:37:11:99:a1: f1:e1:e9:f1:b8:fc:6c:64:5d:9d:ba:cc:d4:26:fa: 2c:af:c6:6e:ed:67:31:82:3e:08:18:37:1a:a8:6d: 52:78:97:3a:c5:52:81:cb:d9:99:8e:6d:b7:a8:f8: 58:7e:d3:9a:da:22:cb:49:af:fa:1a:e9:b5:40:37: db:86:ba:e3:20:f8:81:d2:56:bf:83:ff:88:c7:bb: db:16:08:ea:34:b8:58:32:5e:ad:ae:05:9a:c4:e2: c9:45:59:f1:40:e5:e2:76:e6:0b:27:71:38:9a:2e: 04:03:f4:21:ec:b5:11:7b:e7:c6:63:30:9a:50:73: ee:df:67:a6:72:a0:e1:be:96:9a:6b:3f:e0:4f:fe: 46:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2D:68:EA:8D:8A:79:E1:58:F5:3D:1E:00:E7:E6:D1:42:9E:B9:CA X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.185.219.0/24 IPv6: 2001:df0:9ac0::/48 Signature Algorithm: sha256WithRSAEncryption 77:02:91:ed:df:90:0e:3c:e3:2a:e4:89:6d:91:49:94:1d:9a: 3e:6a:93:77:39:d0:d3:24:3b:b7:91:b3:bb:c1:c4:bd:af:37: f7:59:b1:24:b5:43:0f:24:33:e5:b4:ca:7e:c8:25:f8:42:95: 1b:14:0a:b4:7f:d7:67:0f:34:39:dd:48:52:0c:7a:99:68:02: 53:99:62:bd:fc:f1:ec:80:eb:f4:bb:57:4f:b3:8b:6e:2b:11: 08:b3:22:e0:a6:1b:ca:ba:b0:c5:af:10:60:db:e6:81:e3:81: 78:dc:b3:ef:0e:0a:6d:76:3a:be:8d:5f:81:00:3b:72:4f:e9: d3:66:04:54:7e:16:ed:71:3a:95:a1:0e:b7:f0:ca:e0:3e:a7: b0:8b:11:b0:25:66:dc:fe:0d:33:3f:78:02:1a:d3:5c:34:f8: ab:c3:ca:d5:fe:8c:7f:14:89:21:2b:db:e3:73:a2:34:0e:e4: c8:30:fd:85:1a:98:df:6a:ab:94:e3:04:db:b5:a7:c0:92:b3: 77:2d:a6:da:69:97:c9:ae:b3:74:d4:50:c2:c7:05:aa:7b:ba: 46:68:ad:72:be:a8:ab:ec:35:22:85:f2:b4:0e:a3:d7:3c:5d: 57:6a:a8:5a:2e:b8:f9:c4:c6:1c:93:e0:e3:f3:42:2d:02:48: 95:dd:67:a2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ5QzMxMTAvBgNVBAUTKDFFNUMxMDdFRkQwM0NGMTNEMjE0QTM5QTZBMkNFOERE QUQzMDQ3MEUwHhcNMjUwNDAzMDYzMzE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTI3OC1hM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B4HTsT/H5Mv5ARDQhX5Y7YJLxqUe5BUerNe/R+2R1xfr8I0yx3aeCqR3U67 tWC2kN9nsEOyarhJ2YebhKMlWSx2GgNgUNBFQ/gXBuXjS7L7GFUbPVSvZaV5TTMC NonD71mAyh9y+Fyw0k0LzcIzXeLKKjcRmaHx4enxuPxsZF2duszUJvosr8Zu7Wcx gj4IGDcaqG1SeJc6xVKBy9mZjm23qPhYftOa2iLLSa/6Gum1QDfbhrrjIPiB0la/ g/+Ix7vbFgjqNLhYMl6trgWaxOLJRVnxQOXiduYLJ3E4mi4EA/Qh7LURe+fGYzCa UHPu32emcqDhvpaaaz/gT/5GiwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLotaOqN innhWPU9HgDn5tFCnrnKMB8GA1UdIwQYMBaAFB5cEH79A88T0hSjmmos6N2tMEcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDlDMy80NUNDODJDQzgw NjkxMUVGODJDOTc3M0NDNEY5QUUwMi9IbHdRZnYwRHp4UFNGS09hYWl6bzNhMHdS dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQ5QzMvNDVDQzgyQ0M4MDY5MTFFRjgyQzk3NzNDQzRGOUFFMDIvRjdCMzcwN0M4 MDY5MTFFRjhDMzBBMDNEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ7nbMA8EAgACMAkDBwAgAQ3wmsAwDQYJKoZIhvcNAQELBQADggEB AHcCke3fkA484yrkiW2RSZQdmj5qk3c50NMkO7eRs7vBxL2vN/dZsSS1Qw8kM+W0 yn7IJfhClRsUCrR/12cPNDndSFIMeploAlOZYr388eyA6/S7V0+zi24rEQizIuCm G8q6sMWvEGDb5oHjgXjcs+8OCm12Or6NX4EAO3JP6dNmBFR+Fu1xOpWhDrfwyuA+ p7CLEbAlZtz+DTM/eAIa01w0+KvDytX+jH8UiSEr2+NzojQO5Mgw/YUamN9qq5Tj BNu1p8CSs3ctptppl8mus3TUUMLHBap7ukZorXK+qKvsNSKF8rQOo9c8XVdqqFou uPnExhyT4OPzQi0CSJXdZ6I= -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:05 2026 by rpki-client