$ rpki-client -vvf rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/657B47B61C2F11E880C4ED7BC4F9AE02.roa File: 657B47B61C2F11E880C4ED7BC4F9AE02.roa (raw, json) Hash identifier: 1ghEv7poKGW1kihPQdkAbm84XN1Xrk7KTTqEVU0zlnI= Subject key identifier: 81:F1:D6:90:61:AE:54:A5:88:D0:D2:A1:36:58:B4:A9:F6:2E:ED:5C Certificate issuer: /CN=A915F438/serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Certificate serial: 25BD Authority key identifier: 93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/657B47B61C2F11E880C4ED7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:39:15 +0000 ROA not before: Tue 16 Sep 2025 15:53:28 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38800 IP address blocks: 103.154.194.0/23 maxlen: 23 103.154.194.0/24 maxlen: 24 103.154.195.0/24 maxlen: 24 182.50.168.0/22 maxlen: 22 182.50.168.0/22 maxlen: 24 202.87.208.0/22 maxlen: 24 203.99.156.0/22 maxlen: 22 203.99.156.0/22 maxlen: 24 203.99.156.0/24 maxlen: 24 203.99.157.0/24 maxlen: 24 2402:ae80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9661 (0x25bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F438, serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Validity Not Before: Sep 16 15:53:28 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44183-24f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:07:ca:a2:66:e1:62:47:95:9b:3b:58:96:e1: 69:81:4a:b4:e4:00:4f:a0:45:68:9b:1f:db:a6:46: fc:79:15:b4:f2:b3:e2:3f:2b:71:d0:70:29:2f:11: 0b:2c:27:69:0b:c7:c1:bf:48:2e:08:78:c7:9e:ed: 33:a4:58:43:9a:66:26:6d:9d:1d:ae:90:01:6c:64: df:a5:b6:40:bd:1d:b0:cd:fc:5b:0a:ad:b5:f1:37: 4f:2d:15:5d:76:1f:2b:5d:b2:a7:6c:af:04:58:c4: a8:c6:5e:3d:41:4f:86:8e:b1:82:90:12:06:e8:9b: 46:68:f5:9e:1e:fe:bd:ff:80:f7:1c:4f:7f:a7:a4: 1d:68:bb:4d:a9:19:50:af:34:d5:22:d5:45:9e:02: df:af:17:27:d0:55:77:28:0e:01:e6:6c:de:d3:44: 78:fc:2a:6c:73:70:4a:d9:be:21:89:10:51:6a:64: 45:70:d3:d6:ee:e3:c3:97:f5:c3:48:52:eb:b3:05: 47:be:c3:14:fa:27:53:c3:3a:07:f5:4f:22:4d:c8: ac:f5:2d:10:13:b8:3b:f4:cb:a7:9a:19:6b:85:e1: 8e:7e:22:8b:3f:ee:a2:8f:b2:93:8b:71:99:46:0d: 04:c3:bd:65:b9:d2:50:b6:9a:16:e0:d6:ac:13:96: 2f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F1:D6:90:61:AE:54:A5:88:D0:D2:A1:36:58:B4:A9:F6:2E:ED:5C X509v3 Authority Key Identifier: keyid:93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/657B47B61C2F11E880C4ED7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.154.194.0/23 182.50.168.0/22 202.87.208.0/22 203.99.156.0/22 IPv6: 2402:ae80::/32 Signature Algorithm: sha256WithRSAEncryption 6b:5d:9c:27:1f:33:c1:91:65:47:c5:c2:ec:72:77:a5:8c:04: 2a:f3:7b:88:e4:79:66:11:1d:0d:c3:44:53:37:67:f9:3f:65: b6:fd:8e:a6:21:88:2d:2d:b4:7d:d4:b4:db:a0:b3:23:49:0c: de:f9:3a:b4:28:bd:de:c4:94:9b:97:38:3e:2c:ff:02:06:3c: 93:b8:a3:e1:85:56:0f:bf:56:16:f5:c0:7d:69:0f:ec:3e:34: 15:f6:12:57:15:46:03:c1:40:b3:53:b8:da:7a:ce:eb:7d:70: d5:0d:01:79:29:b8:6e:56:f1:81:95:c5:30:d0:90:dc:f2:66: 44:09:fa:15:f3:67:ea:17:e5:7d:f2:d0:ce:f0:3c:3b:dd:32: b4:8c:e0:6e:57:7e:92:08:c2:3f:9b:a5:d5:00:1e:50:13:e9: 06:e9:3b:a0:ab:bb:c9:00:62:e0:88:4a:60:55:9f:52:4e:20: f4:6b:31:6a:1f:1b:ec:ae:c0:67:9d:ab:b0:1d:49:49:10:d4: 23:e5:7d:68:00:43:58:a2:1f:af:56:99:ed:d5:2d:0f:4a:9b: e4:d5:74:56:55:ce:d8:d0:7d:36:b6:19:a9:dc:a3:b1:b1:15: 39:1c:2b:b2:86:be:4f:48:6e:ad:13:7e:fc:9f:be:00:4a:41: de:36:05:b1 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICJb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY0MzgxMTAvBgNVBAUTKDkzRTc2MThDQ0ZFMjY0ODBENzkyN0ExODcxQkFEODNG RUY5REY0ODQwHhcNMjUwOTE2MTU1MzI4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDE4My0yNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkAfKombhYkeVmztYluFpgUq05ABPoEVomx/bpkb8eRW08rPiPytx0HApLxEL LCdpC8fBv0guCHjHnu0zpFhDmmYmbZ0drpABbGTfpbZAvR2wzfxbCq218TdPLRVd dh8rXbKnbK8EWMSoxl49QU+GjrGCkBIG6JtGaPWeHv69/4D3HE9/p6QdaLtNqRlQ rzTVItVFngLfrxcn0FV3KA4B5mze00R4/Cpsc3BK2b4hiRBRamRFcNPW7uPDl/XD SFLrswVHvsMU+idTwzoH9U8iTcis9S0QE7g79MunmhlrheGOfiKLP+6ij7KTi3GZ Rg0Ew71ludJQtpoW4NasE5YvQQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFIHx1pBh rlSliNDSoTZYtKn2Lu1cMB8GA1UdIwQYMBaAFJPnYYzP4mSA15J6GHG62D/vnfSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjQzOC9CN0VGNTNGRTJC NEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJRFhrbm9ZY2JyWVAtLWQ5 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2stZGhqTV9pWklEWGtub1ljYnJZUC0tZDlJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY0MzgvQjdFRjUzRkUyQjRFMTFFNUFDQkJERjNBQzRGOUFFMDIvNjU3QjQ3QjYx QzJGMTFFODgwQzRFRDdCQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBZ5rCAwQCtjKoAwQCylfQAwQCy2OcMA0EAgACMAcDBQAkAq6AMA0G CSqGSIb3DQEBCwUAA4IBAQBrXZwnHzPBkWVHxcLscneljAQq83uI5HlmER0Nw0RT N2f5P2W2/Y6mIYgtLbR91LTboLMjSQze+Tq0KL3exJSblzg+LP8CBjyTuKPhhVYP v1YW9cB9aQ/sPjQV9hJXFUYDwUCzU7jaes7rfXDVDQF5KbhuVvGBlcUw0JDc8mZE CfoV82fqF+V98tDO8Dw73TK0jOBuV36SCMI/m6XVAB5QE+kG6Tugq7vJAGLgiEpg VZ9STiD0azFqHxvsrsBnnauwHUlJENQj5X1oAENYoh+vVpnt1S0PSpvk1XRWVc7Y 0H02thmp3KOxsRU5HCuyhr5PSG6tE378n74ASkHeNgWx -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:40 2026 by rpki-client