$ rpki-client -vvf rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/2FA6E74C0E0511F0971F7328C4F9AE02.roa File: 2FA6E74C0E0511F0971F7328C4F9AE02.roa (raw, json) Hash identifier: IRQ5tUvjSdYBMHXJtMeaFpdBVsbhUU9VeI4w+7YPShY= Subject key identifier: 71:3F:31:D1:0B:DB:FF:99:32:E8:12:38:C3:65:D7:4D:05:B1:A3:C6 Certificate issuer: /CN=A9155098/serialNumber=6032F63FD261681A40F730B9787251E63328CD6E Certificate serial: 0189 Authority key identifier: 60:32:F6:3F:D2:61:68:1A:40:F7:30:B9:78:72:51:E6:33:28:CD:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDL2P9JhaBpA9zC5eHJR5jMozW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/2FA6E74C0E0511F0971F7328C4F9AE02.roa Signing time: Wed 01 Apr 2026 05:38:37 +0000 ROA not before: Wed 01 Apr 2026 05:38:37 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 395793 IP address blocks: 103.14.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/YDL2P9JhaBpA9zC5eHJR5jMozW4.crl rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/YDL2P9JhaBpA9zC5eHJR5jMozW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDL2P9JhaBpA9zC5eHJR5jMozW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155098, serialNumber=6032F63FD261681A40F730B9787251E63328CD6E Validity Not Before: Apr 1 05:38:37 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69ccaf5d-1d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:1e:6d:9a:33:9c:14:df:08:02:5b:b3:6e: f7:e4:85:51:8e:dc:c0:7f:78:2a:95:ba:f9:d2:f5: a1:80:63:51:63:1e:84:5e:d9:ce:b1:87:bf:bb:66: fb:06:14:6d:de:0b:2f:75:98:81:e5:a4:3b:2c:d0: 86:6a:6c:21:c8:7b:b9:e4:f8:88:65:3b:82:63:59: d7:56:a0:ad:04:64:85:ac:04:7b:b5:e9:96:cb:31: b8:1c:93:58:3a:00:61:2e:a4:b8:6b:41:0f:ff:3d: 89:74:59:0e:d6:77:a9:40:f9:8a:85:34:f6:b0:44: 6d:54:d3:86:ba:ab:bb:2b:3f:be:1f:5d:9a:0e:d3: c2:d8:3a:c7:fb:2d:9d:29:e0:15:4c:14:9b:b3:4e: 64:4d:92:38:40:59:0e:df:25:ab:12:8c:0c:f4:1f: a9:5d:b8:63:f4:46:a4:e8:5c:f0:1f:ea:fa:bd:6c: 75:f9:df:02:a6:22:5f:67:a9:d9:dc:b4:40:eb:3b: fa:22:ba:60:1a:88:f1:de:e3:ac:14:1f:c2:eb:54: b4:6a:84:3c:91:17:4a:38:37:de:4d:7d:96:ac:bf: 93:5d:99:5b:6b:71:f6:05:02:43:24:dc:c4:45:3d: a7:57:cc:a2:9d:20:35:71:10:ad:72:af:20:0c:85: 78:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3F:31:D1:0B:DB:FF:99:32:E8:12:38:C3:65:D7:4D:05:B1:A3:C6 X509v3 Authority Key Identifier: keyid:60:32:F6:3F:D2:61:68:1A:40:F7:30:B9:78:72:51:E6:33:28:CD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/YDL2P9JhaBpA9zC5eHJR5jMozW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDL2P9JhaBpA9zC5eHJR5jMozW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/2FA6E74C0E0511F0971F7328C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.92.0/23 Signature Algorithm: sha256WithRSAEncryption 72:50:31:d4:32:97:03:fc:1b:c8:ce:7e:ea:57:d4:e8:55:77: 12:8c:4b:54:8b:57:ef:3f:eb:ca:77:5e:8b:cb:05:f5:1c:7f: 51:b3:45:cc:6b:14:f9:bb:86:41:c4:a0:75:e4:ff:11:41:ee: 46:03:65:d6:a0:09:09:ba:c9:a4:11:8d:9b:5e:d7:94:9e:fc: af:f7:d7:22:39:50:58:08:fd:a5:56:7e:a6:3d:e4:3a:a3:fb: 9c:32:d4:5f:32:c8:3f:c8:d3:68:a2:39:42:94:df:be:d5:b8: 77:37:59:01:8c:9e:39:42:d3:af:6f:74:f8:71:06:40:b0:0d: 4f:c7:df:14:79:05:aa:39:7d:fb:64:26:61:32:0d:7e:53:79: 5f:ea:76:b0:67:d0:f0:e5:b8:21:b5:36:6a:20:51:fc:f5:9d: fa:74:e2:20:67:c0:02:b1:42:0a:66:58:5c:03:86:fb:a0:a2: 8d:91:20:48:c6:b6:ae:e0:cc:2c:ff:cb:fb:49:ad:ab:26:61: 3d:f0:33:42:1b:a7:ad:50:c6:8c:8d:5d:de:a0:20:d1:c1:4c: 3f:3e:9e:17:54:ae:8e:58:f1:bb:d7:a2:15:7a:af:72:66:6f: b6:09:13:2d:5b:f1:3e:50:04:3a:a6:d4:98:cd:86:47:0d:b2: 1d:02:57:68 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUwOTgxMTAvBgNVBAUTKDYwMzJGNjNGRDI2MTY4MUE0MEY3MzBCOTc4NzI1MUU2 MzMyOENENkUwHhcNMjYwNDAxMDUzODM3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjYWY1ZC0xZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQoebZoznBTfCAJbs2735IVRjtzAf3gqlbr50vWhgGNRYx6EXtnOsYe/u2b7 BhRt3gsvdZiB5aQ7LNCGamwhyHu55PiIZTuCY1nXVqCtBGSFrAR7temWyzG4HJNY OgBhLqS4a0EP/z2JdFkO1nepQPmKhTT2sERtVNOGuqu7Kz++H12aDtPC2DrH+y2d KeAVTBSbs05kTZI4QFkO3yWrEowM9B+pXbhj9Eak6FzwH+r6vWx1+d8CpiJfZ6nZ 3LRA6zv6IrpgGojx3uOsFB/C61S0aoQ8kRdKODfeTX2WrL+TXZlba3H2BQJDJNzE RT2nV8yinSA1cRCtcq8gDIV49QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHE/MdEL 2/+ZMugSOMNl100FsaPGMB8GA1UdIwQYMBaAFGAy9j/SYWgaQPcwuXhyUeYzKM1u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTA5OC9CMkIxQTJCOEZD NzExMUVFQkRDQzRCNTNDNEY5QUUwMi9ZREwyUDlKaGFCcEE5ekM1ZUhKUjVqTW96 VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lETDJQOUpoYUJwQTl6QzVlSEpSNWpNb3pXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUwOTgvQjJCMUEyQjhGQzcxMTFFRUJEQ0M0QjUzQzRGOUFFMDIvMkZBNkU3NEMw RTA1MTFGMDk3MUY3MzI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZw5cMA0GCSqGSIb3DQEBCwUAA4IBAQByUDHUMpcD/BvIzn7qV9To VXcSjEtUi1fvP+vKd16LywX1HH9Rs0XMaxT5u4ZBxKB15P8RQe5GA2XWoAkJusmk EY2bXteUnvyv99ciOVBYCP2lVn6mPeQ6o/ucMtRfMsg/yNNoojlClN++1bh3N1kB jJ45QtOvb3T4cQZAsA1Px98UeQWqOX37ZCZhMg1+U3lf6nawZ9Dw5bghtTZqIFH8 9Z36dOIgZ8ACsUIKZlhcA4b7oKKNkSBIxrau4Mws/8v7Sa2rJmE98DNCG6etUMaM jV3eoCDRwUw/Pp4XVK6OWPG716IVeq9yZm+2CRMtW/E+UAQ6ptSYzYZHDbIdAldo -----END CERTIFICATE-----Generated at Fri Apr 17 07:19:23 2026 by rpki-client