$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa File: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (raw, json) Hash identifier: KTaHAZyPpMlIDuVBthhJ2WYqqSedJ7oO3+TcA6KSViM= Subject key identifier: 09:98:3A:CB:98:14:C2:52:3D:1B:0D:E8:9C:40:C7:69:4E:0B:AC:27 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 042F Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:50:26 +0000 ROA not before: Wed 19 Mar 2025 00:45:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134087 IP address blocks: 103.182.168.0/23 maxlen: 23 2001:df0:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Mar 19 00:45:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a43612-7c24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:31:e9:22:c4:e9:70:60:35:88:dc:9c:38: 92:ed:33:a4:40:b2:fa:3a:a0:ef:2c:4b:33:55:db: 53:a5:fe:d7:ed:1e:f6:81:1d:9e:3c:c4:12:da:29: 88:4b:c8:9f:ad:d9:78:58:16:e4:cf:e4:18:ee:f2: d4:11:8c:d7:81:81:5f:39:34:6a:d2:dd:c0:be:6c: 98:cd:74:fd:80:9a:ba:51:f3:11:c4:4f:f8:d4:68: 2f:f9:7c:4c:22:1f:8d:14:4b:88:65:c7:f1:33:77: b1:aa:36:db:25:de:5f:84:16:10:3c:7b:d7:7b:00: 2e:14:4c:4c:10:b5:cb:38:1c:a6:c2:55:0d:fb:52: db:3d:90:68:5e:cc:cd:c9:0f:89:a5:58:87:c1:ef: f0:2f:d6:f6:11:e7:f7:5d:8b:20:03:55:49:c3:5e: f5:cb:7d:13:42:c5:dc:bc:32:86:3e:fb:d9:88:51: 9c:81:38:f5:2a:1b:ac:56:22:f2:51:24:4b:60:f1: 17:31:35:d2:29:ea:d4:a7:0d:12:70:8b:c3:a3:f5: bf:2b:2b:d2:8b:71:de:c3:53:5e:c3:0c:2c:29:da: 1a:6c:52:a6:96:e4:1a:02:87:6c:08:b7:d4:b0:1e: 53:cf:0f:98:2f:de:e6:ef:6d:dc:4d:9f:21:3d:10: 90:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:98:3A:CB:98:14:C2:52:3D:1B:0D:E8:9C:40:C7:69:4E:0B:AC:27 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.182.168.0/23 IPv6: 2001:df0:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption 04:13:c7:82:31:c6:9b:4e:7e:3f:68:8d:12:41:9e:81:ad:e0: a7:59:09:3a:a4:ea:f9:5c:1f:e1:0d:a6:6c:48:01:7a:50:da: 50:78:e9:8a:78:e0:95:cc:cc:8d:8b:4c:29:ad:1b:7d:48:63: 2d:2b:e0:44:ea:b4:1f:a4:e2:21:c3:35:a6:bd:a8:38:29:74: db:02:3b:34:6c:2e:c5:0f:27:9b:6d:b8:e9:69:9c:86:17:16: dd:7e:fb:fc:c3:ff:f4:8a:ac:fb:7c:42:eb:a6:95:5f:9d:b5: 71:ae:df:bc:3c:a8:9e:6a:d9:f9:be:8b:4c:03:b3:2c:27:8e: 23:df:98:4a:c2:4f:2f:08:f5:ba:c0:e5:37:ab:85:c4:ba:ad: a9:5d:b2:62:47:81:2b:3a:44:ba:e8:33:0c:06:93:66:3d:9b: ef:07:e8:84:2f:a4:67:11:03:b2:97:da:5f:73:94:9d:55:ae: 11:e2:11:64:2a:f1:40:51:e9:ce:0e:d9:aa:c7:c4:50:26:f0: 57:6c:cd:e0:42:34:ec:3a:1d:0d:f7:00:47:58:fa:3d:ce:c9: 39:a1:f3:c6:88:73:d9:dc:fb:73:24:2c:0e:83:56:cc:d1:b8: 75:ef:08:9e:85:3b:73:5d:97:6b:9e:87:cd:01:23:a5:9b:90: 8f:87:5b:43 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwMzE5MDA0NTU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzYxMi03YzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdgx6SLE6XBgNYjcnDiS7TOkQLL6OqDvLEszVdtTpf7X7R72gR2ePMQS2imI S8ifrdl4WBbkz+QY7vLUEYzXgYFfOTRq0t3AvmyYzXT9gJq6UfMRxE/41Ggv+XxM Ih+NFEuIZcfxM3exqjbbJd5fhBYQPHvXewAuFExMELXLOBymwlUN+1LbPZBoXszN yQ+JpViHwe/wL9b2Eef3XYsgA1VJw171y30TQsXcvDKGPvvZiFGcgTj1KhusViLy USRLYPEXMTXSKerUpw0ScIvDo/W/KyvSi3Hew1NewwwsKdoabFKmluQaAodsCLfU sB5Tzw+YL97m723cTZ8hPRCQ2wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAmYOsuY FMJSPRsN6JxAx2lOC6wnMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTZEQjQvRTg0REI5OEE5RDlBMTFFQ0JBOTI4RjQ1QzRGOUFFMDIvODU0QUNDRDJE RkVBMTFFQ0I3REYwQTJFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7aoMA8EAgACMAkDBwAgAQ3wfsAwDQYJKoZIhvcNAQELBQADggEB AAQTx4IxxptOfj9ojRJBnoGt4KdZCTqk6vlcH+ENpmxIAXpQ2lB46Yp44JXMzI2L TCmtG31IYy0r4ETqtB+k4iHDNaa9qDgpdNsCOzRsLsUPJ5ttuOlpnIYXFt1++/zD //SKrPt8QuumlV+dtXGu37w8qJ5q2fm+i0wDsywnjiPfmErCTy8I9brA5TerhcS6 raldsmJHgSs6RLroMwwGk2Y9m+8H6IQvpGcRA7KX2l9zlJ1VrhHiEWQq8UBR6c4O 2arHxFAm8FdszeBCNOw6HQ33AEdY+j3OyTmh88aIc9nc+3MkLA6DVszRuHXvCJ6F O3Ndl2ueh80BI6WbkI+HW0M= -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:31 2026 by rpki-client