$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa File: 2996029C591611EA86D2A42DC4F9AE02.roa (raw, json) Hash identifier: E6F1mSj22VFZjTijIxGVDm3HxBBroHic26cWoiE6yN4= Subject key identifier: FD:0A:95:A4:30:A5:82:AA:D7:1D:73:7F:3F:FC:A6:1F:D3:E6:C5:AA Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 0B3B Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:38 +0000 ROA not before: Wed 26 Mar 2025 19:29:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132454 IP address blocks: 103.21.168.0/22 maxlen: 24 2400:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E, serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Mar 26 19:29:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42eda-5e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4b:33:f8:d6:03:13:9a:74:ed:17:fe:eb:29: 73:6f:f1:ed:53:96:36:28:ae:e1:80:f6:91:c0:46: 74:1d:a1:20:76:bc:00:99:ab:bf:8f:69:f3:76:45: c0:d4:c9:16:26:c5:50:ce:e7:ca:1d:af:73:5e:eb: 46:60:23:3b:e9:98:24:d4:ad:c1:e8:a8:ec:d4:f2: a5:1e:2a:3c:b8:eb:8a:e8:d3:41:5c:0d:da:df:1c: ab:2b:dd:b6:ea:9a:73:95:b4:78:40:79:85:bb:e8: 6a:24:ec:01:30:5d:bd:4f:b3:52:ba:7a:27:76:dd: d4:3a:1a:9e:7d:e7:33:7f:0f:ec:05:84:86:94:d1: 34:b8:07:bd:f9:9f:32:30:c2:cd:0e:76:04:54:e9: 49:f3:21:21:6a:5e:00:d0:90:2b:2a:96:80:be:7d: 38:e2:63:55:c9:89:5e:42:cb:15:69:41:e5:c1:1a: 46:65:ee:47:0f:2a:21:9c:1e:56:13:b9:e7:6b:44: 50:88:b2:d7:89:fb:a7:9d:ba:7a:4a:b6:e9:87:d9: a4:80:aa:68:f7:70:c3:d5:d9:b6:d8:59:bf:35:c1: 1a:f0:37:97:81:ce:c3:ef:08:4b:06:a3:31:1a:57: 92:c4:a9:ab:e4:d3:72:c0:8e:c7:69:6d:60:13:8c: 93:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0A:95:A4:30:A5:82:AA:D7:1D:73:7F:3F:FC:A6:1F:D3:E6:C5:AA X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.168.0/22 IPv6: 2400:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 57:30:b5:61:45:15:ff:1d:43:a2:c5:17:a8:2e:25:45:d4:c5: 79:48:0e:12:89:02:63:64:19:b8:1a:13:a7:75:35:ba:62:1d: 16:72:eb:c8:4d:14:5a:27:30:2f:96:9a:f3:18:7c:d6:da:17: 09:dd:a6:e5:cf:8f:56:63:d1:f0:7b:9e:e2:1f:60:33:ef:0a: 6f:1e:98:dd:cf:cb:01:48:4b:10:ba:21:89:17:96:15:33:46: c4:78:81:d3:8d:e8:1a:9a:a9:d8:46:8e:f4:50:9f:df:ab:72: 74:aa:b9:a9:c9:94:da:78:73:ad:34:10:da:7f:9f:36:24:0c: 6f:ad:88:dc:04:d5:ee:65:13:7e:6a:b3:69:1a:45:2d:e3:de: 12:b5:07:b5:53:d8:77:c2:4a:f7:45:02:5a:11:73:a7:db:55: 4b:66:c4:85:55:78:ea:5d:43:85:74:8b:24:71:bf:89:59:c4: 3b:f3:21:9a:30:52:38:a4:22:df:68:03:d3:5c:fc:26:84:95: ef:10:b1:30:67:fa:5f:12:3e:7f:7e:c0:3b:d3:4e:5c:0e:a2: cf:f7:bb:74:07:fd:b0:30:8a:a9:28:26:c4:2e:53:9f:b3:9a: 0a:fa:45:0f:36:1c:85:1b:3f:5d:7a:a0:3d:7e:1f:f5:9e:11: 36:c7:83:e6 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjUwMzI2MTkyOTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmVkYS01ZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsksz+NYDE5p07Rf+6ylzb/HtU5Y2KK7hgPaRwEZ0HaEgdrwAmau/j2nzdkXA 1MkWJsVQzufKHa9zXutGYCM76Zgk1K3B6Kjs1PKlHio8uOuK6NNBXA3a3xyrK922 6ppzlbR4QHmFu+hqJOwBMF29T7NSunondt3UOhqefeczfw/sBYSGlNE0uAe9+Z8y MMLNDnYEVOlJ8yEhal4A0JArKpaAvn044mNVyYleQssVaUHlwRpGZe5HDyohnB5W E7nna0RQiLLXifunnbp6Srbph9mkgKpo93DD1dm22Fm/NcEa8DeXgc7D7whLBqMx GleSxKmr5NNywI7HaW1gE4yTDQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP0KlaQw pYKq1x1zfz/8ph/T5sWqMB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvMjk5NjAyOUM1 OTE2MTFFQTg2RDJBNDJEQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxWoMA0EAgACMAcDBQAkAIqAMA0GCSqGSIb3DQEBCwUAA4IBAQBX MLVhRRX/HUOixReoLiVF1MV5SA4SiQJjZBm4GhOndTW6Yh0WcuvITRRaJzAvlprz GHzW2hcJ3ablz49WY9Hwe57iH2Az7wpvHpjdz8sBSEsQuiGJF5YVM0bEeIHTjega mqnYRo70UJ/fq3J0qrmpyZTaeHOtNBDaf582JAxvrYjcBNXuZRN+arNpGkUt494S tQe1U9h3wkr3RQJaEXOn21VLZsSFVXjqXUOFdIskcb+JWcQ78yGaMFI4pCLfaAPT XPwmhJXvELEwZ/pfEj5/fsA7005cDqLP97t0B/2wMIqpKCbELlOfs5oK+kUPNhyF Gz9deqA9fh/1nhE2x4Pm -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:43 2026 by rpki-client