$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa File: E986DDEC979911ECB3B7CE39C4F9AE02.roa (raw, json) Hash identifier: lB6b/c7YkZB1xUmMUoy51BHUaOehAcAlRWfeJ6RIV+0= Subject key identifier: 79:BA:DD:67:CE:44:B9:99:BA:E3:E0:D9:68:41:5C:46:3F:33:24:34 Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 0495 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:53:47 +0000 ROA not before: Sat 21 Jun 2025 08:15:24 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149449 IP address blocks: 103.179.198.0/24 maxlen: 24 103.179.199.0/24 maxlen: 24 2400:4e20::/32 maxlen: 32 2400:4e20::/33 maxlen: 33 2400:4e20:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Jun 21 08:15:24 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fe9b-3eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:0c:cf:98:71:5d:7e:20:74:fb:40:73:12: 3a:ec:34:0a:95:a0:19:69:3b:91:95:ce:2e:cf:b5: a6:9d:8f:b8:36:62:40:dd:00:96:f0:48:63:6c:e4: 2e:77:ca:52:75:f9:80:ad:29:4f:0b:68:70:9e:f1: 26:a6:75:76:27:c1:0b:72:6d:1b:6e:4b:d4:83:49: 6c:a1:4d:1e:3d:11:a4:97:ac:b9:f6:49:f7:ba:9c: cc:02:ef:51:52:b0:8e:51:40:01:7c:04:6e:6d:e5: 4c:42:f4:65:55:69:9c:da:06:af:3d:6e:54:3b:2e: 41:32:d0:fb:1f:cb:61:28:60:b6:94:99:01:ac:28: 13:63:08:0b:0e:c3:a4:7b:df:b5:7c:ba:22:28:26: f4:66:8a:87:2e:cf:8d:aa:db:06:d0:3c:b4:68:3b: 74:ae:33:e6:c5:5c:b4:2d:0b:01:98:04:f2:97:b4: 55:c6:ae:79:0d:08:0f:82:44:35:8e:ca:8d:45:7a: 06:21:dd:7b:46:ab:79:80:1e:f3:2f:30:d0:bf:42: c3:1a:2b:7d:16:c4:1d:93:65:74:e7:32:f7:6f:a7: e4:b9:69:53:5a:e0:b1:bb:e3:d5:4f:4a:82:9b:82: c6:9d:df:e9:82:d8:d2:35:16:82:b8:73:39:e7:ea: 7a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BA:DD:67:CE:44:B9:99:BA:E3:E0:D9:68:41:5C:46:3F:33:24:34 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.179.198.0/23 IPv6: 2400:4e20::/32 Signature Algorithm: sha256WithRSAEncryption 21:0b:4e:32:e9:c0:f7:b7:2f:a7:22:65:42:03:b4:1d:c5:17: bd:94:eb:a1:70:79:2f:aa:f0:a9:79:ff:d8:f4:a5:7d:04:cf: 4f:e3:6f:f7:b9:63:18:ce:f9:dd:b3:ed:f4:e0:a5:5b:59:df: 2c:47:81:7a:d0:34:1d:47:51:33:ce:97:52:99:98:1d:d9:4b: 56:c0:9a:4c:4b:1b:06:82:e2:d0:7c:2a:cb:07:08:9b:18:1e: f7:d7:fb:93:40:19:28:2d:b4:8b:bf:f0:ab:02:9a:4c:4c:ac: b2:32:e8:73:29:6f:aa:d2:b1:05:97:c4:73:71:c1:81:69:81: bb:ba:9d:4c:3c:7f:fe:2e:cd:68:66:4f:62:97:a6:4b:39:d0: fb:8e:91:79:95:7d:59:51:c0:a8:94:f7:d1:c4:60:ca:43:e5: 11:ba:f7:df:fb:71:f8:97:4d:c7:c1:35:a4:a3:51:f3:69:f4: d9:c2:b2:c1:d7:4d:5d:06:62:85:7c:d2:29:42:53:79:99:f7: 63:ec:74:f7:75:9e:ad:b1:4a:c4:ee:54:dd:58:ca:79:43:4c: bf:fe:7e:83:ab:bd:11:a4:f2:93:fa:e5:d5:5f:9d:2e:fe:d0: 96:e2:4e:61:65:c3:79:7d:19:46:fb:6d:76:45:6b:80:5b:15: 97:07:03:06 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUwNjIxMDgxNTI0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmU5Yi0zZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtysMz5hxXX4gdPtAcxI67DQKlaAZaTuRlc4uz7WmnY+4NmJA3QCW8EhjbOQu d8pSdfmArSlPC2hwnvEmpnV2J8ELcm0bbkvUg0lsoU0ePRGkl6y59kn3upzMAu9R UrCOUUABfARubeVMQvRlVWmc2gavPW5UOy5BMtD7H8thKGC2lJkBrCgTYwgLDsOk e9+1fLoiKCb0ZoqHLs+NqtsG0Dy0aDt0rjPmxVy0LQsBmATyl7RVxq55DQgPgkQ1 jsqNRXoGId17Rqt5gB7zLzDQv0LDGit9FsQdk2V05zL3b6fkuWlTWuCxu+PVT0qC m4LGnd/pgtjSNRaCuHM55+p6QwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHm63WfO RLmZuuPg2WhBXEY/MyQ0MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJERTQvNENDQ0MzMzI3OTJBMTFFQ0IwQzU5MTYyQzRGOUFFMDIvRTk4NkRERUM5 Nzk5MTFFQ0IzQjdDRTM5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7PGMA0EAgACMAcDBQAkAE4gMA0GCSqGSIb3DQEBCwUAA4IBAQAh C04y6cD3ty+nImVCA7QdxRe9lOuhcHkvqvCpef/Y9KV9BM9P42/3uWMYzvnds+30 4KVbWd8sR4F60DQdR1EzzpdSmZgd2UtWwJpMSxsGguLQfCrLBwibGB731/uTQBko LbSLv/CrAppMTKyyMuhzKW+q0rEFl8RzccGBaYG7up1MPH/+Ls1oZk9il6ZLOdD7 jpF5lX1ZUcColPfRxGDKQ+URuvff+3H4l03HwTWko1HzafTZwrLB101dBmKFfNIp QlN5mfdj7HT3dZ6tsUrE7lTdWMp5Q0y//n6Dq70RpPKT+uXVX50u/tCW4k5hZcN5 fRlG+212RWuAWxWXBwMG -----END CERTIFICATE-----Generated at Mon Mar 2 09:00:25 2026 by rpki-client