$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa File: 4D94E0D6545211E6A367BC68C4F9AE02.roa (raw, json) Hash identifier: nzLMDhvvKl6G16FEG2gICFkWdz4KTK6PcIX/fg8UQKE= Subject key identifier: F6:9C:80:E9:E1:E1:9E:9C:3C:13:DF:2A:43:CF:C0:A5:82:B6:9A:BF Certificate issuer: /CN=A915DB9F/serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Certificate serial: 1FB9 Authority key identifier: 7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:28:28 +0000 ROA not before: Mon 02 Jun 2025 16:15:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135290 IP address blocks: 103.212.180.0/22 maxlen: 22 103.212.180.0/24 maxlen: 24 103.212.181.0/24 maxlen: 24 103.212.182.0/24 maxlen: 24 103.212.183.0/24 maxlen: 24 2404:b680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8121 (0x1fb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB9F, serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Validity Not Before: Jun 2 16:15:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a422dc-64fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:83:23:6a:bc:ae:9d:6f:e1:ae:08:a3:ec:33: 3e:cd:c0:7b:0d:04:14:bd:59:7c:24:54:b5:af:1e: 95:d6:b5:81:d0:40:9d:1c:9a:5c:4b:41:1b:2e:ff: d5:19:53:fd:a7:9e:3c:14:e3:7d:c7:d0:aa:9e:12: 8b:f2:2e:1c:36:6f:e6:f7:fb:0c:ce:7a:32:cc:6e: 20:0d:ee:e8:de:d7:59:32:c7:25:48:f7:67:76:e4: 87:92:ab:36:6d:2e:4d:13:bf:19:eb:c6:e7:b7:2a: c4:3d:2e:71:fd:aa:f1:88:a3:d9:16:16:36:20:e0: 89:07:19:f6:ff:ac:2e:7c:cc:0d:43:ee:9b:c5:a0: ba:73:78:5d:f9:f4:e1:a5:f7:49:66:60:94:7a:2d: 46:c6:8d:ad:a1:e7:ad:cb:32:4e:3f:e8:66:6a:19: 85:75:b4:bd:eb:e5:ec:79:ce:f1:b2:9e:9e:72:28: 68:ba:a4:c8:b7:24:61:8d:65:ed:ae:16:f9:2c:fa: b3:ae:70:26:3e:41:df:c1:c8:fd:79:90:fc:2f:84: 37:ee:87:33:03:c0:61:d3:ce:d5:75:8b:4a:cd:28: 84:9d:c9:ae:55:14:84:12:11:40:92:d0:01:cb:3a: 90:de:ee:57:d2:bd:51:98:f8:1e:17:14:cd:1a:e9: 11:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9C:80:E9:E1:E1:9E:9C:3C:13:DF:2A:43:CF:C0:A5:82:B6:9A:BF X509v3 Authority Key Identifier: keyid:7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.180.0/22 IPv6: 2404:b680::/32 Signature Algorithm: sha256WithRSAEncryption 68:63:0f:c4:20:18:d3:be:0a:d5:33:02:58:aa:69:3a:2c:67: 72:18:5f:a9:7b:72:07:7a:63:c5:3a:34:f1:25:da:79:eb:9a: c2:c9:e6:b8:71:bd:96:47:b3:7e:59:00:ed:7d:52:d4:bb:de: 01:a8:04:ed:83:f3:c7:d7:fd:e1:6e:52:80:47:26:7b:1a:af: de:4d:11:dd:59:e7:22:be:a5:29:83:99:68:0c:00:c5:d1:1d: 5a:f0:95:4a:3d:88:41:ba:62:07:43:45:1c:c4:e4:37:95:73: d9:a0:2c:64:f3:95:7d:c5:83:4e:7b:5f:47:b8:7f:68:14:ed: 99:de:0a:b6:14:f6:27:cd:c7:e2:35:a2:33:78:57:b4:3c:e4: 3d:af:61:d5:e6:84:68:7f:ec:30:e3:4d:35:55:85:ea:26:21: 8a:6e:80:b7:07:6c:d8:dd:b8:82:62:72:ab:d3:d8:a8:62:c7: f6:84:0a:cc:6a:7a:4a:64:f9:eb:78:85:10:f3:0d:77:45:ad: e1:8f:c4:af:9e:43:7b:f9:ab:ed:35:d0:ef:43:8f:fb:7a:3b: 9f:e4:a7:19:47:50:56:b7:fe:c4:ba:a2:67:c6:2c:77:48:46: fc:a8:b5:1c:d9:d1:f9:b8:1a:5d:99:70:50:20:06:4e:bf:92: a2:33:53:a9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICH7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCOUYxMTAvBgNVBAUTKDdFMEFBOENEMkJFODYxNzAxQTVDQTdDRkI5RDQ1MEQz RDkxODI3RTgwHhcNMjUwNjAyMTYxNTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjJkYy02NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YMjaryunW/hrgij7DM+zcB7DQQUvVl8JFS1rx6V1rWB0ECdHJpcS0EbLv/V GVP9p548FON9x9CqnhKL8i4cNm/m9/sMznoyzG4gDe7o3tdZMsclSPdnduSHkqs2 bS5NE78Z68bntyrEPS5x/arxiKPZFhY2IOCJBxn2/6wufMwNQ+6bxaC6c3hd+fTh pfdJZmCUei1Gxo2toeetyzJOP+hmahmFdbS96+Xsec7xsp6ecihouqTItyRhjWXt rhb5LPqzrnAmPkHfwcj9eZD8L4Q37oczA8Bh087VdYtKzSiEncmuVRSEEhFAktAB yzqQ3u5X0r1RmPgeFxTNGukRdQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPacgOnh 4Z6cPBPfKkPPwKWCtpq/MB8GA1UdIwQYMBaAFH4KqM0r6GFwGlynz7nUUNPZGCfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI5Ri9CODhGNDI1MjU0 NTAxMUU2QTNBNkQ0NjZDNEY5QUUwMi9mZ3FvelN2b1lYQWFYS2ZQdWRSUTA5a1lK LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZncW96U3ZvWVhBYVhLZlB1ZFJRMDlrWUotZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCOUYvQjg4RjQyNTI1NDUwMTFFNkEzQTZENDY2QzRGOUFFMDIvNEQ5NEUwRDY1 NDUyMTFFNkEzNjdCQzY4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ9S0MA0EAgACMAcDBQAkBLaAMA0GCSqGSIb3DQEBCwUAA4IBAQBo Yw/EIBjTvgrVMwJYqmk6LGdyGF+pe3IHemPFOjTxJdp565rCyea4cb2WR7N+WQDt fVLUu94BqATtg/PH1/3hblKARyZ7Gq/eTRHdWecivqUpg5loDADF0R1a8JVKPYhB umIHQ0UcxOQ3lXPZoCxk85V9xYNOe19HuH9oFO2Z3gq2FPYnzcfiNaIzeFe0POQ9 r2HV5oRof+ww4001VYXqJiGKboC3B2zY3biCYnKr09ioYsf2hArManpKZPnreIUQ 8w13Ra3hj8SvnkN7+avtNdDvQ4/7ejuf5KcZR1BWt/7EuqJnxix3SEb8qLUc2dH5 uBpdmXBQIAZOv5KiM1Op -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:07 2026 by rpki-client