$ rpki-client -vvf rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa File: 2EF7E9168D2811F0B3A81665C4F9AE02.roa (raw, json) Hash identifier: AY2cMcE+jdXTc0+YGnWe4hGr2sKHPxx6mbQlYz370BQ= Subject key identifier: BD:C9:D4:96:5A:EF:03:6C:2A:F5:A1:4B:B3:41:3A:62:07:70:CA:23 Certificate issuer: /CN=A916732F/serialNumber=1FB4C3C5796F14B39DF51EFBA9DADAFD5CEBD09B Certificate serial: 064F Authority key identifier: 1F:B4:C3:C5:79:6F:14:B3:9D:F5:1E:FB:A9:DA:DA:FD:5C:EB:D0:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:47 +0000 ROA not before: Wed 14 Jan 2026 22:19:02 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 140068 IP address blocks: 103.148.14.0/24 maxlen: 24 103.148.15.0/24 maxlen: 24 103.161.46.0/24 maxlen: 24 103.161.47.0/24 maxlen: 24 2402:29e0::/32 maxlen: 32 2402:29e0:c010::/48 maxlen: 48 2402:29e0:c011::/48 maxlen: 48 2402:29e0:d010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.crl rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916732F, serialNumber=1FB4C3C5796F14B39DF51EFBA9DADAFD5CEBD09B Validity Not Before: Jan 14 22:19:02 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a48163-7d35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4c:c6:3d:0e:4b:69:97:6f:58:90:ce:60:64: 10:76:28:72:0d:81:1e:9c:90:e6:a9:d2:23:4f:ac: d1:c1:fa:b4:67:11:0f:df:63:08:79:0a:65:d4:5f: 5e:0b:c2:79:df:b6:37:8a:8a:72:c4:1c:3d:e5:71: 54:25:14:24:cc:8b:70:cc:d8:d2:5f:4d:0c:62:cb: a4:a5:3b:08:f0:94:71:02:02:e5:4f:78:49:f2:9b: bc:71:43:91:87:f3:36:7d:57:14:37:f7:fe:b3:e3: 1a:be:be:00:77:ee:fb:3a:41:d9:d9:31:4c:f1:3a: 4b:8c:be:ad:05:58:a7:7e:d0:5d:d5:86:5b:48:79: 0b:89:aa:fe:5a:b3:57:94:c1:d0:fe:5a:a3:4e:13: 6b:00:cf:6d:cf:17:b2:bf:41:cb:74:27:a0:48:ab: f3:59:f7:6c:f3:5e:12:f1:f5:0d:91:2f:ff:fa:7d: da:a5:4f:bc:3c:20:50:fb:84:16:02:de:6f:98:f8: a0:d7:42:57:b9:e8:40:ae:f9:22:2f:68:e7:95:64: 5b:c3:ff:d4:94:18:f9:25:2e:c0:92:b4:2c:f5:45: c6:14:b4:a2:9b:3e:c9:8a:c7:71:39:c0:af:fc:73: e8:76:56:76:60:1a:ae:98:20:dd:4e:e6:59:b2:2d: 9b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C9:D4:96:5A:EF:03:6C:2A:F5:A1:4B:B3:41:3A:62:07:70:CA:23 X509v3 Authority Key Identifier: keyid:1F:B4:C3:C5:79:6F:14:B3:9D:F5:1E:FB:A9:DA:DA:FD:5C:EB:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/H7TDxXlvFLOd9R77qdra_Vzr0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7TDxXlvFLOd9R77qdra_Vzr0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916732F/06B56150D91711EB89918D7DC4F9AE02/2EF7E9168D2811F0B3A81665C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.14.0/23 103.161.46.0/23 IPv6: 2402:29e0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:83:0d:52:80:5f:a2:13:64:6e:10:b1:dc:1f:ed:ee:c7:51: 1f:1b:30:77:81:b7:ab:84:3f:8e:62:2c:a4:a8:bf:2d:b4:44: 6b:f3:b5:1e:ce:ce:24:2c:86:dd:95:3f:4f:2b:8c:32:bd:45: e3:07:60:b2:57:45:af:ef:21:a4:fe:ab:64:a1:8d:66:1a:e4: de:a1:cf:be:f4:8a:75:2c:d5:4c:34:b8:28:6e:0d:05:10:72: 44:b1:b3:d7:e3:e9:21:20:49:70:71:02:92:55:57:9c:61:7d: 6c:ac:f9:20:7a:e3:1d:93:a0:01:49:75:da:82:aa:ac:a6:9a: ca:ba:fb:a8:6e:a2:17:52:72:70:d6:e1:9a:18:b9:a6:01:ef: 32:51:e8:ee:e4:36:64:53:ef:ae:26:f9:c3:54:1c:a6:c6:7c: 3e:7d:06:31:81:74:cb:f0:45:35:ac:de:1b:bc:fa:98:78:62: 31:c4:d1:c5:0b:46:d2:1e:d9:15:62:03:5a:44:33:1c:23:d3: 16:04:35:9b:5a:54:ab:79:f1:01:7c:87:c3:1f:43:b7:11:e5: 8e:1d:24:28:36:a5:54:db:97:c6:84:11:dc:f1:7f:e5:d2:eb: 67:b4:67:4a:43:94:dd:60:41:3b:e0:1a:57:6f:4b:20:38:41: 5e:bb:7c:59 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczMkYxMTAvBgNVBAUTKDFGQjRDM0M1Nzk2RjE0QjM5REY1MUVGQkE5REFEQUZE NUNFQkQwOUIwHhcNMjYwMTE0MjIxOTAyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE2My03ZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UzGPQ5LaZdvWJDOYGQQdihyDYEenJDmqdIjT6zRwfq0ZxEP32MIeQpl1F9e C8J537Y3iopyxBw95XFUJRQkzItwzNjSX00MYsukpTsI8JRxAgLlT3hJ8pu8cUOR h/M2fVcUN/f+s+Mavr4Ad+77OkHZ2TFM8TpLjL6tBVinftBd1YZbSHkLiar+WrNX lMHQ/lqjThNrAM9tzxeyv0HLdCegSKvzWfds814S8fUNkS//+n3apU+8PCBQ+4QW At5vmPig10JXuehArvkiL2jnlWRbw//UlBj5JS7AkrQs9UXGFLSimz7JisdxOcCv /HPodlZ2YBqumCDdTuZZsi2bhwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFL3J1JZa 7wNsKvWhS7NBOmIHcMojMB8GA1UdIwQYMBaAFB+0w8V5bxSznfUe+6na2v1c69Cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzMyRi8wNkI1NjE1MEQ5 MTcxMUVCODk5MThEN0RDNEY5QUUwMi9IN1REeFhsdkZMT2Q5Ujc3cWRyYV9WenIw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3VER4WGx2RkxPZDlSNzdxZHJhX1Z6cjBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczMkYvMDZCNTYxNTBEOTE3MTFFQjg5OTE4RDdEQzRGOUFFMDIvMkVGN0U5MTY4 RDI4MTFGMEIzQTgxNjY1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ5QOAwQBZ6EuMA0EAgACMAcDBQAkAingMA0GCSqGSIb3DQEBCwUA A4IBAQAqgw1SgF+iE2RuELHcH+3ux1EfGzB3gberhD+OYiykqL8ttERr87Uezs4k LIbdlT9PK4wyvUXjB2CyV0Wv7yGk/qtkoY1mGuTeoc++9Ip1LNVMNLgobg0FEHJE sbPX4+khIElwcQKSVVecYX1srPkgeuMdk6ABSXXagqqspprKuvuobqIXUnJw1uGa GLmmAe8yUeju5DZkU++uJvnDVBymxnw+fQYxgXTL8EU1rN4bvPqYeGIxxNHFC0bS HtkVYgNaRDMcI9MWBDWbWlSrefEBfIfDH0O3EeWOHSQoNqVU25fGhBHc8X/l0utn tGdKQ5TdYEE74BpXb0sgOEFeu3xZ -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:33 2026 by rpki-client