$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa File: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (raw, json) Hash identifier: OmMxdAPnBhZTGqQOr8JuZaqqyL1RNUDNSiTMUXir/l4= Subject key identifier: 5F:C3:D8:DE:62:0E:62:2C:48:DD:A8:2F:E2:C3:56:6B:40:47:B3:8F Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 0228 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:33:10 +0000 ROA not before: Mon 31 Mar 2025 02:59:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151047 IP address blocks: 103.224.126.0/24 maxlen: 24 2001:df2:2d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Mar 31 02:59:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3dda6-d9cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:1c:96:71:12:b7:c4:2a:25:c8:53:49:f7: 38:37:04:e4:14:79:27:a4:7f:6b:3b:19:9b:32:31: cc:da:12:22:c3:df:18:44:60:95:44:c0:14:6a:40: 88:fb:d3:0e:5b:2a:6c:cc:e7:62:8f:89:90:65:37: 6b:54:ab:a2:b7:db:14:b9:0b:c7:c4:b6:42:2c:dd: 31:16:1c:27:8f:87:b1:92:46:6b:c1:3f:5a:e4:01: 52:54:aa:8d:c0:4e:a5:4a:28:00:18:7e:0f:37:9d: 6d:67:12:0e:08:ec:38:1d:f2:14:7d:20:ad:02:79: 12:b9:f4:46:84:c1:f8:2f:ba:3f:30:14:d5:0a:e7: 26:0d:c0:cb:28:98:43:fa:62:15:c7:8b:d9:a7:5a: 74:eb:4f:33:7d:64:16:66:57:11:db:d5:18:44:c5: 44:1c:a8:8a:7c:0e:37:5f:3e:2e:ae:34:cd:7e:72: 8b:6c:e8:f0:4f:b7:0b:51:e4:eb:c6:1b:99:b3:64: e3:74:ab:cb:e5:29:06:95:06:14:c5:61:85:96:cb: 11:80:9f:3c:81:23:a6:69:99:88:37:9c:0f:f2:4b: ef:99:06:b5:aa:3f:3d:86:98:55:6b:93:56:66:cc: 33:b0:50:31:2c:53:3e:fa:5b:d2:e4:c0:a4:b6:09: a2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C3:D8:DE:62:0E:62:2C:48:DD:A8:2F:E2:C3:56:6B:40:47:B3:8F X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.126.0/24 IPv6: 2001:df2:2d40::/48 Signature Algorithm: sha256WithRSAEncryption 83:1d:ba:dd:0e:24:75:dc:69:3a:8e:39:f8:08:00:75:26:98: 79:13:0a:98:9d:c3:1a:95:0a:31:01:34:15:e0:0f:a9:14:6c: 41:4f:0d:3e:e7:4a:12:72:4e:b4:e5:fb:94:18:f3:a3:b8:f7: 35:12:f7:fa:cc:8e:c8:ed:4e:c5:d3:3c:90:ee:19:7a:21:62: 34:81:f4:f3:ad:7e:da:3b:3d:45:0b:0e:a0:a5:a4:25:fb:42: 9f:44:84:ab:9a:21:79:a8:f6:a0:ce:a5:ef:99:4c:87:b1:2c: 28:4e:0c:db:3a:2a:3f:5b:54:2e:03:42:bf:28:da:4f:11:82: 63:cc:0f:c6:35:d8:4b:80:0b:9b:8f:fa:72:6e:b6:a5:30:b5: 6d:68:cd:af:cc:13:79:02:8a:2a:94:6e:8e:3e:74:78:0e:5a: 31:42:12:61:5f:c6:70:95:87:9f:7e:7f:03:da:1f:08:29:b2: f7:49:44:57:4d:3e:2d:93:32:79:d4:91:6d:cd:4d:07:98:cb: 43:11:c2:85:44:ff:5a:cf:09:1b:53:ce:71:c8:f1:2e:7a:0b: 90:2c:3d:08:ac:41:c8:e9:f1:1c:a2:c6:c5:e2:14:a5:04:79: 1a:34:2b:91:34:91:74:26:d1:52:16:f6:b8:40:56:c2:5c:8b: 73:d2:3f:b8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwMzMxMDI1OTA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGRhNi1kOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZgclnESt8QqJchTSfc4NwTkFHknpH9rOxmbMjHM2hIiw98YRGCVRMAUakCI +9MOWypszOdij4mQZTdrVKuit9sUuQvHxLZCLN0xFhwnj4exkkZrwT9a5AFSVKqN wE6lSigAGH4PN51tZxIOCOw4HfIUfSCtAnkSufRGhMH4L7o/MBTVCucmDcDLKJhD +mIVx4vZp1p0608zfWQWZlcR29UYRMVEHKiKfA43Xz4urjTNfnKLbOjwT7cLUeTr xhuZs2TjdKvL5SkGlQYUxWGFlssRgJ88gSOmaZmIN5wP8kvvmQa1qj89hphVa5NW ZswzsFAxLFM++lvS5MCktgmiMwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFF/D2N5i DmIsSN2oL+LDVmtAR7OPMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYyQjgvMkYxNzYwOEFDQzJDMTFFREI5ODYwNTcxQzRGOUFFMDIvMjA3QzQ1QjBD QzJGMTFFREFCRTI1RjcyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ+B+MA8EAgACMAkDBwAgAQ3yLUAwDQYJKoZIhvcNAQELBQADggEB AIMdut0OJHXcaTqOOfgIAHUmmHkTCpidwxqVCjEBNBXgD6kUbEFPDT7nShJyTrTl +5QY86O49zUS9/rMjsjtTsXTPJDuGXohYjSB9POtfto7PUULDqClpCX7Qp9EhKua IXmo9qDOpe+ZTIexLChODNs6Kj9bVC4DQr8o2k8RgmPMD8Y12EuAC5uP+nJutqUw tW1oza/ME3kCiiqUbo4+dHgOWjFCEmFfxnCVh59+fwPaHwgpsvdJRFdNPi2TMnnU kW3NTQeYy0MRwoVE/1rPCRtTznHI8S56C5AsPQisQcjp8RyixsXiFKUEeRo0K5E0 kXQm0VIW9rhAVsJci3PSP7g= -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:35 2026 by rpki-client