$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa File: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (raw, json) Hash identifier: 3Fmdi951WMlO5pIrJJT0qggVYSRtlXXjg5aoHRb8yfw= Subject key identifier: B2:6B:53:B9:16:7A:E6:D2:8E:62:AB:D3:E7:35:90:56:79:C3:78:7C Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 023D Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa Signing time: Fri 03 Apr 2026 02:35:40 +0000 ROA not before: Fri 03 Apr 2026 02:35:40 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 151047 IP address blocks: 103.224.126.0/24 maxlen: 24 2001:df2:2d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Apr 3 02:35:40 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf277c-88d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:48:c1:f0:d3:6c:12:d2:d5:b1:f7:3e:0a: 94:44:08:fc:16:57:bb:e3:61:1c:a3:ee:75:f7:08: ee:a9:d9:62:49:a6:d6:84:a4:d9:67:13:16:d7:12: d7:10:15:41:d6:47:ac:ce:cd:06:ed:43:c8:e9:03: d7:2c:eb:33:a8:f5:6b:76:6a:d1:cf:77:67:7a:02: a1:42:a6:a7:05:a9:a0:ff:4a:52:0c:9b:df:c6:43: 7b:7c:7a:f8:1c:a3:e1:c2:8c:49:9f:21:ec:98:71: be:62:c3:aa:2f:49:95:d5:9e:97:41:96:0f:5e:6f: 69:5b:13:22:36:fe:f1:65:6b:b0:b5:de:88:b9:8c: 11:3d:a8:5c:2e:17:c2:69:3a:7c:ec:97:3d:c9:1d: 60:53:cf:21:d4:42:e3:80:7b:ec:39:07:79:88:2d: 14:67:5b:85:4b:da:bc:a9:c2:ab:e6:a3:b9:35:d6: 22:24:aa:dc:67:92:84:ec:33:5a:f5:b5:f9:4e:50: ff:85:2e:28:b5:75:96:a9:15:a8:4f:27:05:bf:5c: d3:95:96:4c:79:ed:a2:f1:04:b7:73:bc:63:5d:14: 78:b4:6a:0f:53:02:79:fd:d7:ea:fb:4d:dd:86:78: 82:ff:fb:ea:d8:4a:23:5b:fe:58:13:39:75:90:d2: c0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:6B:53:B9:16:7A:E6:D2:8E:62:AB:D3:E7:35:90:56:79:C3:78:7C X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.126.0/24 IPv6: 2001:df2:2d40::/48 Signature Algorithm: sha256WithRSAEncryption 7e:2c:8b:6a:f6:c9:5a:40:cc:17:3e:15:2a:85:f2:59:7e:78: b2:c2:71:b1:20:1b:d3:63:3f:43:31:e2:00:40:ee:90:a6:8f: 91:61:d5:f4:c1:a4:b1:1e:7e:5b:b5:51:98:0f:f0:0d:53:b3: aa:d8:13:50:3f:b9:87:95:4a:90:8e:d7:00:5b:3a:f0:4e:48: de:af:23:66:44:35:77:2d:c8:f1:c6:86:19:af:db:68:90:0b: 56:c6:a0:b2:4b:85:38:61:35:23:20:10:ed:a8:11:4a:d1:cf: 2a:4b:35:0a:c2:93:68:31:af:0f:8f:d3:e5:0b:23:16:d5:4d: 56:f6:15:a1:dc:3c:0b:b0:01:5d:e0:5f:ef:5e:ca:90:f7:eb: 5b:07:80:9f:ec:2f:4f:d3:3a:e0:01:a4:ce:a4:67:bd:f4:56: 45:51:9f:76:87:7f:cb:9e:35:16:02:8a:37:87:25:af:60:4d: 19:c1:39:68:12:2f:0d:a8:3e:58:cb:be:3a:ef:7d:7b:63:d4: 47:43:ca:dd:9d:db:da:d1:de:18:a3:e0:d1:13:b2:f6:e3:e4: fb:50:e7:7a:ab:93:f0:56:da:0a:f3:b6:59:df:44:05:0c:f4: 86:8a:07:2e:76:a2:2b:88:ea:19:a5:25:80:74:5e:97:1d:0a: 24:c8:79:02 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjYwNDAzMDIzNTQwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMjc3Yy04OGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMlIwfDTbBLS1bH3PgqURAj8Fle742Eco+519wjuqdliSabWhKTZZxMW1xLX EBVB1keszs0G7UPI6QPXLOszqPVrdmrRz3dnegKhQqanBamg/0pSDJvfxkN7fHr4 HKPhwoxJnyHsmHG+YsOqL0mV1Z6XQZYPXm9pWxMiNv7xZWuwtd6IuYwRPahcLhfC aTp87Jc9yR1gU88h1ELjgHvsOQd5iC0UZ1uFS9q8qcKr5qO5NdYiJKrcZ5KE7DNa 9bX5TlD/hS4otXWWqRWoTycFv1zTlZZMee2i8QS3c7xjXRR4tGoPUwJ5/dfq+03d hniC//vq2EojW/5YEzl1kNLAZwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLJrU7kW eubSjmKr0+c1kFZ5w3h8MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYyQjgvMkYxNzYwOEFDQzJDMTFFREI5ODYwNTcxQzRGOUFFMDIvMjA3QzQ1QjBD QzJGMTFFREFCRTI1RjcyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ+B+MA8EAgACMAkDBwAgAQ3yLUAwDQYJKoZIhvcNAQELBQADggEB AH4si2r2yVpAzBc+FSqF8ll+eLLCcbEgG9NjP0Mx4gBA7pCmj5Fh1fTBpLEeflu1 UZgP8A1Ts6rYE1A/uYeVSpCO1wBbOvBOSN6vI2ZENXctyPHGhhmv22iQC1bGoLJL hThhNSMgEO2oEUrRzypLNQrCk2gxrw+P0+ULIxbVTVb2FaHcPAuwAV3gX+9eypD3 61sHgJ/sL0/TOuABpM6kZ730VkVRn3aHf8ueNRYCijeHJa9gTRnBOWgSLw2oPljL vjrvfXtj1EdDyt2d29rR3hij4NETsvbj5PtQ53qrk/BW2grztlnfRAUM9IaKBy52 oiuI6hmlJYB0XpcdCiTIeQI= -----END CERTIFICATE-----Generated at Fri Apr 17 23:02:59 2026 by rpki-client