$ rpki-client -vvf rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa File: 5A9BEA702D7611EB9827C368C4F9AE02.roa (raw, json) Hash identifier: QZLhy7Vz+xjAFOnh0UK67yHA5xSNslonwzbO4ukIeHg= Subject key identifier: 64:1D:BC:EC:90:7C:4A:E6:1A:DF:08:40:DA:A3:81:5B:39:4F:10:76 Certificate issuer: /CN=A915DAF1/serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Certificate serial: 07DD Authority key identifier: BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:46:00 +0000 ROA not before: Sun 02 Mar 2025 23:00:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140224 IP address blocks: 103.148.186.0/24 maxlen: 24 103.148.187.0/24 maxlen: 24 2001:df2:e380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DAF1, serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Validity Not Before: Mar 2 23:00:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a418e8-8776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:36:6e:2a:e3:4e:11:3f:64:a2:03:e9:ea: 7a:36:4c:07:3b:b5:b0:5b:87:41:8f:35:b1:b4:ed: a3:aa:66:70:02:49:47:c1:19:27:a5:74:42:97:0e: b1:b0:14:d2:3b:cb:67:d5:80:e2:6c:59:f5:eb:b6: 19:b0:30:76:51:36:63:6f:fd:93:94:1c:25:d8:fe: b9:45:09:39:b5:23:cd:67:b4:41:ef:74:c6:13:23: cf:f9:bc:65:65:84:9f:01:c6:70:85:8b:b3:38:f7: 97:84:dc:cd:c1:97:b3:48:ac:f8:40:d3:65:06:ed: e6:0a:cb:30:21:c0:07:d6:c6:58:75:a5:73:10:2e: 46:97:49:80:cd:fd:52:39:7f:0a:2d:85:ca:5b:5b: 46:b5:ae:68:3a:cd:da:58:26:03:a7:3c:c0:df:7e: 02:53:58:66:3a:53:64:c9:e7:6a:ef:09:ca:c5:cc: 1c:3e:52:e8:19:f7:d0:75:e5:72:db:21:c5:4c:a5: 36:d0:b5:57:44:ea:25:14:d4:f2:00:ce:b6:5a:87: 06:2e:80:f6:0f:83:32:38:3c:48:77:09:22:2b:b9: 7b:eb:ba:13:bd:d7:cd:5d:1d:9f:ca:52:d7:f1:11: 63:6c:c8:03:ae:b5:7e:14:14:db:6b:c8:64:f0:1a: a1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1D:BC:EC:90:7C:4A:E6:1A:DF:08:40:DA:A3:81:5B:39:4F:10:76 X509v3 Authority Key Identifier: keyid:BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/5A9BEA702D7611EB9827C368C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.186.0/23 IPv6: 2001:df2:e380::/48 Signature Algorithm: sha256WithRSAEncryption 3d:bc:df:4b:20:c7:63:38:6b:32:b5:1d:1d:1e:c1:f6:a7:67: 99:29:dd:6d:81:40:c8:b7:b9:8f:0d:03:c0:61:99:5a:60:5a: f2:f4:fe:60:38:27:1c:fa:11:c7:56:17:52:ad:c2:57:07:72: bb:74:d7:63:53:5c:b5:5b:25:44:6d:3a:86:0a:96:ae:b4:23: fd:f3:3d:df:47:4f:77:13:13:cb:5b:ab:75:99:1a:ab:12:11: f6:da:c0:2f:40:75:04:a7:85:fa:a5:75:e2:e1:b6:f9:e5:11: 76:99:c0:1d:3f:35:f7:87:cd:ea:27:76:78:96:08:b3:9f:3d: 60:3e:01:5a:07:d9:2c:20:02:43:bf:df:dc:76:e6:0a:34:e9: 09:77:3b:2f:7d:de:93:2c:48:01:6b:3d:3e:eb:20:b2:05:bd: 86:67:99:65:8c:cd:7f:8c:16:f6:f9:71:19:34:d2:c6:97:0d: 02:1e:78:af:3f:82:ec:db:e7:0c:49:34:a2:b3:37:2b:83:0c: 83:44:2d:9e:7d:68:11:df:33:9d:87:6b:3c:d1:d3:53:bb:83: fa:d6:96:5b:1b:fc:29:d5:80:65:58:c2:a1:72:09:b1:2c:d1: f3:7d:0e:b1:9a:70:9c:86:14:9a:1d:70:3a:68:d0:89:5d:50: 00:5c:c8:33 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBRjExMTAvBgNVBAUTKEJCOUY0MkNGQ0UzODhFREM0QjI5RUE2NURFQjYxNjJC MjU2RDIxMDIwHhcNMjUwMzAyMjMwMDA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MThlOC04Nzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC42birjThE/ZKID6ep6NkwHO7WwW4dBjzWxtO2jqmZwAklHwRknpXRClw6x sBTSO8tn1YDibFn167YZsDB2UTZjb/2TlBwl2P65RQk5tSPNZ7RB73TGEyPP+bxl ZYSfAcZwhYuzOPeXhNzNwZezSKz4QNNlBu3mCsswIcAH1sZYdaVzEC5Gl0mAzf1S OX8KLYXKW1tGta5oOs3aWCYDpzzA334CU1hmOlNkyedq7wnKxcwcPlLoGffQdeVy 2yHFTKU20LVXROolFNTyAM62WocGLoD2D4MyODxIdwkiK7l767oTvdfNXR2fylLX 8RFjbMgDrrV+FBTba8hk8BqhwwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGQdvOyQ fErmGt8IQNqjgVs5TxB2MB8GA1UdIwQYMBaAFLufQs/OOI7cSynqZd62FislbSEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REFGMS8wQjJCOTBBNDJE NzUxMUVCOTM2RTM0NThDNEY5QUUwMi91NTlDejg0NGp0eExLZXBsM3JZV0t5VnRJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1OUN6ODQ0anR4TEtlcGwzcllXS3lWdElRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBRjEvMEIyQjkwQTQyRDc1MTFFQjkzNkUzNDU4QzRGOUFFMDIvNUE5QkVBNzAy RDc2MTFFQjk4MjdDMzY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5S6MA8EAgACMAkDBwAgAQ3y44AwDQYJKoZIhvcNAQELBQADggEB AD2830sgx2M4azK1HR0ewfanZ5kp3W2BQMi3uY8NA8BhmVpgWvL0/mA4Jxz6EcdW F1KtwlcHcrt012NTXLVbJURtOoYKlq60I/3zPd9HT3cTE8tbq3WZGqsSEfbawC9A dQSnhfqldeLhtvnlEXaZwB0/NfeHzeondniWCLOfPWA+AVoH2SwgAkO/39x25go0 6Ql3Oy993pMsSAFrPT7rILIFvYZnmWWMzX+MFvb5cRk00saXDQIeeK8/guzb5wxJ NKKzNyuDDINELZ59aBHfM52HazzR01O7g/rWllsb/CnVgGVYwqFyCbEs0fN9DrGa cJyGFJodcDpo0IldUABcyDM= -----END CERTIFICATE-----Generated at Mon Mar 2 08:53:39 2026 by rpki-client