$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa File: A1CB8D62C13411ECA5838429C4F9AE02.roa (raw, json) Hash identifier: Yt0TqJaTmIJd27cHaCbpte8qJaUobmzMaQoo+mme+Sg= Subject key identifier: 22:3C:16:EA:28:02:E4:EE:3D:A1:ED:6B:06:B5:6B:31:31:36:EF:BD Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 03CC Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:26:48 +0000 ROA not before: Sat 31 May 2025 01:46:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135163 IP address blocks: 103.186.156.0/24 maxlen: 24 2001:df0:ab40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 972 (0x3cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 31 01:46:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59018-c213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:1c:16:22:cf:87:86:7e:3e:61:72:b4:24: 00:69:9e:a9:06:dc:58:03:bf:27:28:35:e2:1f:64: fc:1b:61:d2:80:0d:2a:4a:b4:63:e9:fa:3d:37:cf: 18:e9:4a:be:fd:b7:9e:17:d3:82:63:14:4a:49:82: 0f:29:66:ed:55:da:fb:58:79:92:3f:4d:d8:36:87: a9:0a:a4:ff:cc:ab:a1:a4:bd:7d:31:3f:ab:5b:8a: b7:4c:a7:06:ff:50:7c:c2:c6:ea:ac:33:a7:bb:63: f0:8b:3e:52:57:5a:22:d9:02:47:fd:e4:3a:c2:dd: 96:d4:f4:00:22:b7:1d:f6:55:b1:27:58:fa:3f:1a: d8:58:79:f8:4d:10:9c:97:09:d6:eb:ae:ba:72:a1: 1b:87:7b:bb:69:d1:52:9a:7f:a3:d3:bc:b3:42:ae: 25:fb:84:7e:a9:46:34:ac:3e:80:20:16:ee:63:52: 5f:c1:e5:04:6c:82:36:63:38:64:ff:92:8a:ab:5e: 7a:98:5b:45:b8:73:74:cd:e1:df:43:eb:a8:6a:31: 48:5b:cb:cd:53:e5:74:41:ed:f3:b9:a4:b1:e5:54: 87:f8:6b:e1:e3:26:a2:d6:2a:dd:dd:71:ba:54:e5: 6f:7f:56:5c:7b:15:04:7a:d0:11:68:c9:3a:4c:da: fa:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:16:EA:28:02:E4:EE:3D:A1:ED:6B:06:B5:6B:31:31:36:EF:BD X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.156.0/24 IPv6: 2001:df0:ab40::/48 Signature Algorithm: sha256WithRSAEncryption 40:04:21:f9:0d:c1:12:9a:94:e6:51:bd:94:84:f7:ee:c5:ab: 4a:fb:9f:ab:3e:de:65:07:3e:1f:71:47:55:54:c0:ad:ee:7f: 34:cb:5e:02:ed:91:b9:fb:8f:f9:01:42:85:c1:0e:aa:18:e7: 51:8c:6e:40:79:1e:7b:e3:ce:03:b4:4e:3f:1a:cf:6a:c4:78: 51:23:5a:bd:36:3d:48:06:94:ba:a5:a8:9f:fa:a1:bc:af:83: b4:4a:c5:fc:df:5e:c8:79:e5:52:05:e1:64:ce:1b:98:6f:c1: 4d:49:7f:8e:3f:ee:cf:a7:c9:bb:e5:bc:e9:b3:15:69:88:77: bb:f0:c0:58:9e:4b:23:bb:30:f0:63:13:c2:f2:67:27:8c:f7: 38:c5:7f:51:e1:52:51:99:8b:3c:a3:fa:c2:dc:d8:4f:72:4b: 67:9d:7a:70:fc:15:19:84:c4:ad:0b:5b:25:5b:14:cb:05:48: 04:39:e2:69:87:4e:51:5e:16:b8:98:93:28:11:86:1d:d7:c2: d2:15:4c:0f:28:e0:b4:d7:89:74:aa:52:65:75:b4:c9:fb:35: 7d:cc:63:97:47:48:a2:b0:92:6b:86:6a:ec:23:7b:3e:4a:0e: 57:f8:2c:3b:c4:29:4c:f9:51:90:b1:2b:1b:0f:d2:06:95:b5: 0a:39:8e:62 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwNTMxMDE0NjQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTAxOC1jMjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1S4cFiLPh4Z+PmFytCQAaZ6pBtxYA78nKDXiH2T8G2HSgA0qSrRj6fo9N88Y 6Uq+/beeF9OCYxRKSYIPKWbtVdr7WHmSP03YNoepCqT/zKuhpL19MT+rW4q3TKcG /1B8wsbqrDOnu2Pwiz5SV1oi2QJH/eQ6wt2W1PQAIrcd9lWxJ1j6PxrYWHn4TRCc lwnW6666cqEbh3u7adFSmn+j07yzQq4l+4R+qUY0rD6AIBbuY1JfweUEbII2Yzhk /5KKq156mFtFuHN0zeHfQ+uoajFIW8vNU+V0Qe3zuaSx5VSH+Gvh4yai1ird3XG6 VOVvf1ZcexUEetARaMk6TNr6zQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCI8Fuoo AuTuPaHtawa1azExNu+9MB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAzOUIvOTlGNTQ0NzhDMTMxMTFFQzk2QjVFMDI1QzRGOUFFMDIvQTFDQjhENjJD MTM0MTFFQ0E1ODM4NDI5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ7qcMA8EAgACMAkDBwAgAQ3wq0AwDQYJKoZIhvcNAQELBQADggEB AEAEIfkNwRKalOZRvZSE9+7Fq0r7n6s+3mUHPh9xR1VUwK3ufzTLXgLtkbn7j/kB QoXBDqoY51GMbkB5HnvjzgO0Tj8az2rEeFEjWr02PUgGlLqlqJ/6obyvg7RKxfzf Xsh55VIF4WTOG5hvwU1Jf44/7s+nybvlvOmzFWmId7vwwFieSyO7MPBjE8LyZyeM 9zjFf1HhUlGZizyj+sLc2E9yS2edenD8FRmExK0LWyVbFMsFSAQ54mmHTlFeFriY kygRhh3XwtIVTA8o4LTXiXSqUmV1tMn7NX3MY5dHSKKwkmuGauwjez5KDlf4LDvE KUz5UZCxKxsP0gaVtQo5jmI= -----END CERTIFICATE-----Generated at Mon Mar 2 16:28:56 2026 by rpki-client