$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa File: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (raw, json) Hash identifier: KX6DklLChpyy6uFhTyu0wieTEAiRW7QBB9X6fj81ntY= Subject key identifier: 9C:C9:A8:56:AC:90:14:D9:0A:4F:38:EE:C1:06:80:98:B4:1E:55:7E Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 307A Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:25:55 +0000 ROA not before: Mon 04 Aug 2025 15:56:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32590 IP address blocks: 45.121.184.0/22 maxlen: 24 103.10.124.0/23 maxlen: 24 103.28.54.0/23 maxlen: 24 2404:3fc0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12410 (0x307a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Aug 4 15:56:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42243-f406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:5b:3c:7b:be:e3:22:be:7d:76:92:47:3d: 09:08:4a:22:a9:23:7e:48:cb:ef:1e:a5:47:82:a8: 0e:7e:3d:b7:ba:8c:ca:94:df:34:23:14:06:65:78: ae:37:57:e4:42:b1:9b:9b:9c:ce:1f:f5:7a:1b:b0: 22:8e:70:28:1c:43:02:09:e3:ff:0c:81:7f:4b:58: 73:09:24:f2:4b:f7:5c:a4:cb:77:22:46:f9:38:3d: f7:8f:65:b7:9a:95:7b:0a:11:cc:70:f1:77:8e:1b: 1c:72:4b:43:64:e8:ff:2a:e1:e9:b9:6c:d7:f6:37: 3c:fc:fb:92:1c:a8:4e:1d:49:fe:18:27:7c:d5:2f: fd:66:5c:74:83:33:df:4d:e8:c4:94:03:e4:e6:ca: 5f:76:47:17:fb:ff:9b:c7:d1:db:34:47:86:d8:03: 00:0e:63:54:92:ec:c3:ee:48:f3:3c:be:ca:b9:ed: e6:48:e0:09:15:58:8a:c8:b8:e4:e4:62:15:9a:33: 85:ca:60:aa:c2:34:36:7f:99:16:46:c5:c3:74:32: 3c:d4:28:5b:de:e9:6b:2f:79:9e:2a:f6:ae:79:96: 5d:5d:ef:f0:b3:58:a3:1f:b9:98:5c:b1:da:7f:f6: 63:32:bc:62:4a:4d:74:87:26:d2:fe:7d:9c:56:ab: cf:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C9:A8:56:AC:90:14:D9:0A:4F:38:EE:C1:06:80:98:B4:1E:55:7E X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/149AB4BE7CE911EEB9A02D83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.184.0/22 103.10.124.0/23 103.28.54.0/23 IPv6: 2404:3fc0::/40 Signature Algorithm: sha256WithRSAEncryption 9e:b7:4f:ad:ee:71:83:75:c6:54:a1:78:77:62:e1:d1:dc:e3: 5b:b7:b6:6a:08:86:11:c0:31:34:2e:42:0d:66:16:fc:66:43: fb:71:a8:f7:0c:62:8c:c7:a0:6e:c0:81:5d:ed:71:66:6a:d0: af:d5:18:a5:76:06:1a:d8:e0:5a:86:81:71:62:06:12:1d:a8: 87:0d:33:ac:dc:a0:0e:24:54:b8:29:5d:7b:84:3a:d7:bf:88: 3d:24:cf:fa:58:6b:bb:12:5c:58:28:4e:26:6e:ef:82:ba:15: 1e:be:50:74:d0:24:ce:89:7a:e9:4f:99:1e:8a:ba:5c:26:c5: c9:01:12:25:a3:63:85:5e:37:e1:00:3a:02:db:c5:fa:ab:1e: 37:15:c8:44:5e:3b:cb:72:2f:52:8f:2d:6e:97:85:81:0f:02: e2:8d:73:70:b5:ad:f6:4c:31:14:b7:37:7b:c6:49:2d:20:c9: b5:00:ca:bf:ab:dd:65:4e:e3:7a:5b:c1:fe:28:ba:94:b7:b4: 4c:dc:61:9f:8e:1a:26:a9:6f:4b:55:01:0b:06:2b:68:d4:3d: f0:ed:d6:91:a5:e9:cd:be:5f:18:75:91:9b:1b:47:c8:bd:3a: f5:e5:4a:09:e9:fa:f0:7f:06:17:98:ff:5a:ba:26:b1:e1:96: e5:66:59:1e -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICMHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwODA0MTU1NjAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI0My1mNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhJbPHu+4yK+fXaSRz0JCEoiqSN+SMvvHqVHgqgOfj23uozKlN80IxQGZXiu N1fkQrGbm5zOH/V6G7AijnAoHEMCCeP/DIF/S1hzCSTyS/dcpMt3Ikb5OD33j2W3 mpV7ChHMcPF3jhsccktDZOj/KuHpuWzX9jc8/PuSHKhOHUn+GCd81S/9Zlx0gzPf TejElAPk5spfdkcX+/+bx9HbNEeG2AMADmNUkuzD7kjzPL7Kue3mSOAJFViKyLjk 5GIVmjOFymCqwjQ2f5kWRsXDdDI81Chb3ulrL3meKvaueZZdXe/ws1ijH7mYXLHa f/ZjMrxiSk10hybS/n2cVqvPDQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFJzJqFas kBTZCk847sEGgJi0HlV+MB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE3N0MvOTI0Q0RDQzAxNDMwMTFFM0EwQjE5RjJBNTkxMUVBMzIvMTQ5QUI0QkU3 Q0U5MTFFRUI5QTAyRDgzQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAY BAIAATASAwQCLXm4AwQBZwp8AwQBZxw2MA4EAgACMAgDBgAkBD/AADANBgkqhkiG 9w0BAQsFAAOCAQEAnrdPre5xg3XGVKF4d2Lh0dzjW7e2agiGEcAxNC5CDWYW/GZD +3Go9wxijMegbsCBXe1xZmrQr9UYpXYGGtjgWoaBcWIGEh2ohw0zrNygDiRUuCld e4Q617+IPSTP+lhruxJcWChOJm7vgroVHr5QdNAkzol66U+ZHoq6XCbFyQESJaNj hV434QA6AtvF+qseNxXIRF47y3IvUo8tbpeFgQ8C4o1zcLWt9kwxFLc3e8ZJLSDJ tQDKv6vdZU7jelvB/ii6lLe0TNxhn44aJqlvS1UBCwYraNQ98O3WkaXpzb5fGHWR mxtHyL069eVKCen68H8GF5j/WromseGW5WZZHg== -----END CERTIFICATE-----Generated at Mon Mar 2 13:19:47 2026 by rpki-client