$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa File: 2996029C591611EA86D2A42DC4F9AE02.roa (raw, json) Hash identifier: YoQLzF1Lm5yCnjPw539aGKaVVb5igGFfhZc6/2536gM= Subject key identifier: E7:F0:24:E8:A0:51:D4:60:CB:36:8D:63:B7:0B:DD:E4:FB:91:E3:F9 Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 0B50 Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa Signing time: Mon 30 Mar 2026 19:24:46 +0000 ROA not before: Mon 30 Mar 2026 19:24:46 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 132454 IP address blocks: 103.21.168.0/22 maxlen: 24 2400:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E, serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Mar 30 19:24:46 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cacdfe-71b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:21:db:ed:63:d4:ff:67:a3:9f:c3:47:de:4d: 30:4c:3e:fc:07:d2:0b:dc:9c:8b:fc:22:41:c9:c3: 02:d5:a9:fa:e1:c2:96:9d:ab:96:30:a6:aa:a6:3f: 0f:e8:6c:a6:09:fe:b1:19:47:0d:47:a2:85:45:3f: 6e:08:99:44:2a:71:c4:21:2b:d2:74:24:eb:a3:68: 50:de:24:9a:43:7c:a3:9c:12:53:18:bf:6f:e2:e0: 63:26:45:3e:4b:a3:cb:85:68:9d:19:dd:7e:9f:a4: 42:df:4e:4f:66:4c:00:1a:27:c2:5f:34:87:aa:16: 29:35:9d:29:e9:21:43:5d:dd:0e:a8:e7:f9:0b:e6: fc:aa:43:fc:13:46:45:13:1e:31:f8:16:6e:f0:38: 67:da:1b:48:73:fa:06:e3:78:88:5f:29:56:13:9b: bd:23:b5:3b:94:4c:36:e1:6d:c4:d6:f1:0e:83:9d: 03:ff:35:3b:d5:e0:9d:43:b5:66:80:a2:fd:f1:e7: 8d:97:db:83:c4:9e:67:5f:c6:60:b2:6f:87:8d:60: 85:d9:09:e2:9e:08:1a:e9:1f:f7:b3:4f:b3:bc:6c: 54:e0:44:3b:e3:2d:3a:75:2a:e8:52:fb:9f:37:89: 33:0a:de:02:9a:e1:fc:61:a8:e2:90:d4:b6:79:68: 44:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F0:24:E8:A0:51:D4:60:CB:36:8D:63:B7:0B:DD:E4:FB:91:E3:F9 X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.168.0/22 IPv6: 2400:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 61:40:0e:41:97:eb:8b:92:16:0a:5a:57:c9:6d:92:b7:06:70: a1:e3:f9:da:2e:86:e1:09:61:fd:46:dd:4b:89:bc:78:f6:df: fc:9c:f6:0c:f8:42:94:ec:e8:0b:f5:1e:8d:03:a7:cd:08:17: 01:0f:ed:0d:03:14:99:72:3d:e2:32:12:38:cd:2d:6d:01:22: b5:e5:dd:d1:ab:7d:25:fe:c6:f2:a8:5b:08:34:06:1e:d4:be: 37:03:0c:a5:73:2a:0b:5c:2f:c8:52:a6:5a:38:fd:96:ab:64: 3b:4e:56:22:dd:e8:61:59:79:84:34:34:be:f8:f2:38:6f:23: a1:bb:d9:2b:ca:59:54:be:f2:49:88:4c:a5:24:76:cc:9a:83: b4:fd:9c:6b:6b:c3:36:d6:e1:78:5d:d8:aa:1b:e6:b0:da:51: 6c:d2:3a:c2:20:a6:0e:62:87:b1:d3:1b:fe:d1:e6:12:db:8b: 69:7c:6b:ef:fa:b6:01:d2:2a:1a:58:89:e5:a7:43:18:af:69: 87:14:ba:b0:88:1e:b7:7b:13:e2:97:b1:32:ca:05:20:e7:ab: 2e:4d:0c:94:4c:fd:1b:fe:5f:47:f6:77:6f:30:5e:59:44:9c: 25:b1:6b:ff:c0:74:35:7e:f8:b9:4d:d5:23:80:09:3f:a6:c5: 7c:0c:cd:73 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjYwMzMwMTkyNDQ2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhY2RmZS03MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSHb7WPU/2ejn8NH3k0wTD78B9IL3JyL/CJBycMC1an64cKWnauWMKaqpj8P 6GymCf6xGUcNR6KFRT9uCJlEKnHEISvSdCTro2hQ3iSaQ3yjnBJTGL9v4uBjJkU+ S6PLhWidGd1+n6RC305PZkwAGifCXzSHqhYpNZ0p6SFDXd0OqOf5C+b8qkP8E0ZF Ex4x+BZu8Dhn2htIc/oG43iIXylWE5u9I7U7lEw24W3E1vEOg50D/zU71eCdQ7Vm gKL98eeNl9uDxJ5nX8Zgsm+HjWCF2Qningga6R/3s0+zvGxU4EQ74y06dSroUvuf N4kzCt4CmuH8YajikNS2eWhE3wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOfwJOig UdRgyzaNY7cL3eT7keP5MB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvMjk5NjAyOUM1 OTE2MTFFQTg2RDJBNDJEQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxWoMA0EAgACMAcDBQAkAIqAMA0GCSqGSIb3DQEBCwUAA4IBAQBh QA5Bl+uLkhYKWlfJbZK3BnCh4/naLobhCWH9Rt1Libx49t/8nPYM+EKU7OgL9R6N A6fNCBcBD+0NAxSZcj3iMhI4zS1tASK15d3Rq30l/sbyqFsINAYe1L43AwylcyoL XC/IUqZaOP2Wq2Q7TlYi3ehhWXmENDS++PI4byOhu9kryllUvvJJiEylJHbMmoO0 /Zxra8M21uF4XdiqG+aw2lFs0jrCIKYOYoex0xv+0eYS24tpfGvv+rYB0ioaWInl p0MYr2mHFLqwiB63exPil7EyygUg56suTQyUTP0b/l9H9ndvMF5ZRJwlsWv/wHQ1 fvi5TdUjgAk/psV8DM1z -----END CERTIFICATE-----Generated at Fri Apr 17 20:47:58 2026 by rpki-client