$ rpki-client -vvf rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa File: D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa (raw, json) Hash identifier: y9AWX9pr7/40gfTliDeYcrWRNr/D4ngulxUgREVk2K4= Subject key identifier: EA:C9:C4:93:FB:B4:BF:05:B9:FD:FC:F8:B3:FB:B9:98:77:B2:E3:80 Certificate issuer: /CN=A915B6E9/serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E Certificate serial: 0470 Authority key identifier: F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:22:38 +0000 ROA not before: Sun 01 Mar 2026 14:22:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134732 IP address blocks: 103.180.244.0/23 maxlen: 24 2001:df0:6340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.crl rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1136 (0x470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B6E9, serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E Validity Not Before: Mar 1 14:22:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44bae-5983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:12:12:65:ba:30:ef:f7:87:c0:b7:84:8b:8b: fe:5a:50:f7:7f:84:34:07:ab:e5:08:f8:a2:de:62: 7c:e3:24:5c:4f:f5:ea:f4:20:0d:f8:44:05:2d:7a: 6b:dd:98:3f:09:b4:9b:45:d0:91:ce:44:23:d7:68: dc:65:13:52:bf:0b:66:8a:00:be:f3:03:54:b1:29: 58:8d:06:d8:d0:a6:36:ea:1b:21:c5:66:6e:3d:49: 8b:65:19:20:e0:ef:6b:22:33:f9:ca:c8:55:e4:05: 06:a1:5b:e7:ad:1d:03:c7:d5:3e:65:14:38:47:ed: 39:36:71:d2:28:ad:fb:c6:50:a9:2f:c6:cc:34:10: 27:40:94:0d:5c:09:fb:f2:c9:49:7b:95:d8:37:28: 02:e1:43:89:d7:78:bf:e1:5c:5f:d9:bb:26:46:87: 01:44:2f:c2:f5:9f:86:56:80:0b:c2:37:a9:ac:f7: b5:21:49:31:20:13:67:d9:ce:17:d2:12:bf:b9:97: 9e:1d:0f:df:27:41:21:ea:ff:7e:e5:b4:c9:17:33: 00:1d:7a:0a:cb:92:d0:80:6a:87:6d:a1:1e:70:e0: e2:aa:6b:25:a2:c4:1a:86:50:39:ca:5d:2a:1b:61: 1d:a2:f3:59:e4:a2:86:62:90:d7:0e:80:64:13:6d: 7a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C9:C4:93:FB:B4:BF:05:B9:FD:FC:F8:B3:FB:B9:98:77:B2:E3:80 X509v3 Authority Key Identifier: keyid:F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.180.244.0/23 IPv6: 2001:df0:6340::/48 Signature Algorithm: sha256WithRSAEncryption 0d:a6:7a:fa:5e:fd:68:f5:47:e0:60:6b:d0:33:d0:74:ea:b5: d6:82:75:4c:ca:e3:06:8d:c7:f6:d5:f3:f9:4f:08:22:d8:53: cb:b7:5c:43:96:5d:41:c0:66:51:28:73:6b:f4:a8:19:06:f3: 55:10:01:36:b9:6d:ba:06:c3:76:a0:72:98:a9:b0:88:01:82: 5f:6e:bc:a2:d6:9b:1e:af:56:79:38:45:8e:6a:57:80:20:19: d8:b9:14:25:5c:fb:03:f0:e4:60:eb:e6:c3:f8:8c:9a:84:ca: 24:bd:85:4b:d8:fe:5c:5a:d4:94:50:0a:40:08:55:41:d3:5e: b7:50:3f:45:8e:92:2f:d3:57:69:49:76:53:8c:a0:06:95:72: 61:f6:55:93:0f:73:5d:50:54:c3:4b:08:88:28:5a:47:9e:2b: 62:70:c7:48:71:94:57:04:e0:71:f1:a2:00:22:2f:54:e2:46: b5:1e:1e:75:f3:79:d6:3a:7a:eb:5b:33:73:2b:27:1e:d4:8c: b9:92:42:c9:8c:e0:90:38:c5:f5:57:88:b7:61:28:d1:f6:7f: c0:73:7b:e1:04:66:4b:f1:4f:29:11:a4:5e:6f:f7:d8:cf:9c: 01:9a:5c:54:c1:df:ec:13:b2:d0:e3:5c:16:86:68:c5:58:47: 8a:7c:e9:ea -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI2RTkxMTAvBgNVBAUTKEY4NjFBNDI0QzVERDk0Qjc0MUQ4MTgwOUI1RjdGRjM5 NTU2Mzc2NUUwHhcNMjYwMzAxMTQyMjM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGJhZS01OTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhISZbow7/eHwLeEi4v+WlD3f4Q0B6vlCPii3mJ84yRcT/Xq9CAN+EQFLXpr 3Zg/CbSbRdCRzkQj12jcZRNSvwtmigC+8wNUsSlYjQbY0KY26hshxWZuPUmLZRkg 4O9rIjP5yshV5AUGoVvnrR0Dx9U+ZRQ4R+05NnHSKK37xlCpL8bMNBAnQJQNXAn7 8slJe5XYNygC4UOJ13i/4Vxf2bsmRocBRC/C9Z+GVoALwjeprPe1IUkxIBNn2c4X 0hK/uZeeHQ/fJ0Eh6v9+5bTJFzMAHXoKy5LQgGqHbaEecODiqmslosQahlA5yl0q G2EdovNZ5KKGYpDXDoBkE216cwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOrJxJP7 tL8Fuf38+LP7uZh3suOAMB8GA1UdIwQYMBaAFPhhpCTF3ZS3QdgYCbX3/zlVY3Ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjZFOS8wQTE2OTE5Qzg1 OEUxMUVDOUMwMjg0NTRDNEY5QUUwMi8tR0drSk1YZGxMZEIyQmdKdGZmX09WVmpk bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1HR2tKTVhkbExkQjJCZ0p0ZmZfT1ZWamRsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI2RTkvMEExNjkxOUM4NThFMTFFQzlDMDI4NDU0QzRGOUFFMDIvRDI0MzhDN0M0 QjFGMTFFREFGNDFCQzdGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7T0MA8EAgACMAkDBwAgAQ3wY0AwDQYJKoZIhvcNAQELBQADggEB AA2mevpe/Wj1R+Bga9Az0HTqtdaCdUzK4waNx/bV8/lPCCLYU8u3XEOWXUHAZlEo c2v0qBkG81UQATa5bboGw3agcpipsIgBgl9uvKLWmx6vVnk4RY5qV4AgGdi5FCVc +wPw5GDr5sP4jJqEyiS9hUvY/lxa1JRQCkAIVUHTXrdQP0WOki/TV2lJdlOMoAaV cmH2VZMPc11QVMNLCIgoWkeeK2Jwx0hxlFcE4HHxogAiL1TiRrUeHnXzedY6eutb M3MrJx7UjLmSQsmM4JA4xfVXiLdhKNH2f8Bze+EEZkvxTykRpF5v99jPnAGaXFTB 3+wTstDjXBaGaMVYR4p86eo= -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:21 2026 by rpki-client