$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa File: 2DB6F886286111E9BA245A71C4F9AE02.roa (raw, json) Hash identifier: zv7GfIY09Bk5QRI+ruOoctPMaKFJVRdn6Yb3uhIbOaY= Subject key identifier: 19:0A:18:26:83:A8:A6:52:AA:6A:29:2A:97:77:F5:4F:83:DE:59:12 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 1148 Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:47:36 +0000 ROA not before: Tue 16 Dec 2025 17:15:11 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138578 IP address blocks: 103.133.164.0/22 maxlen: 22 103.133.164.0/24 maxlen: 24 103.133.165.0/24 maxlen: 24 103.133.166.0/24 maxlen: 24 103.133.167.0/24 maxlen: 24 2404:50c0::/32 maxlen: 32 2404:50c0:bd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4424 (0x1148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948, serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Dec 16 17:15:11 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44378-411b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:18:c3:6d:9b:d3:fc:bf:3f:7d:e1:c0:ea: ad:5a:0a:1f:54:83:fa:3a:2a:91:cb:64:0e:e4:94: 83:6c:93:6c:16:30:f4:6f:31:44:88:f8:8c:75:b9: a7:26:13:50:fe:e5:41:cc:0b:d0:c4:18:6c:78:ce: 36:8d:7f:07:ce:e5:f8:cd:6f:28:b0:b2:ae:b6:56: 8d:61:57:c5:e2:f1:d8:ab:c2:ee:ee:5e:6d:57:8b: 0c:62:49:5f:02:0c:b1:88:67:5b:20:06:8f:71:f5: 63:59:d7:d8:ad:4c:b6:a5:9e:57:f3:a1:0e:69:8e: 02:1e:b3:8e:7f:d7:a1:af:8c:74:6e:15:d2:6d:4b: b0:62:10:b8:a1:b3:2b:3f:6f:3b:3d:28:d7:61:ae: 39:3a:72:95:af:4d:69:d1:2e:de:b2:5d:f6:df:bf: 7b:94:09:6f:d5:96:3a:83:e5:2a:a3:83:43:1d:da: e4:8d:b6:8d:f8:19:23:fc:ec:35:17:bd:15:ea:41: 35:ab:4b:c6:39:79:d0:30:79:aa:60:7b:9a:8d:42: ef:80:d5:75:8c:5a:d2:5d:b4:22:12:5c:d8:23:2d: f5:62:03:a8:a8:30:a3:05:34:39:0b:17:13:5d:29: 19:c9:9b:29:3d:f3:fa:60:a9:d5:45:a4:b9:db:bc: 8f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0A:18:26:83:A8:A6:52:AA:6A:29:2A:97:77:F5:4F:83:DE:59:12 X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.133.164.0/22 IPv6: 2404:50c0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:10:d4:33:7a:be:c8:88:a1:37:d0:a7:db:0e:67:8d:9b:bd: 7b:f5:e0:e0:20:8c:16:37:3e:6d:14:17:29:ea:58:d8:de:23: 4b:ff:97:6c:6b:4e:5e:df:dc:27:90:c8:e2:df:27:b3:76:fe: 7b:95:60:02:9a:4b:16:70:e9:65:15:a4:09:fb:20:b0:f4:84: ec:42:6d:08:4e:22:39:23:e2:e1:f8:76:7c:ff:ee:3c:5a:d3: ba:d9:1b:bd:af:ab:cc:83:f5:cd:fc:ec:44:3a:33:e8:47:40: a9:53:fd:14:f0:a3:26:71:6a:69:64:a1:f6:d8:f7:7c:95:22: 0d:79:54:0b:1f:1b:4a:78:1b:64:29:67:9b:08:57:6c:ee:ee: 70:1f:af:d1:7e:eb:9b:8e:e3:a4:75:39:98:1c:d6:d4:73:56: b0:fe:ab:e8:0a:3b:78:9b:e6:31:0a:fb:df:64:aa:6f:fc:2b: 7e:4a:6c:24:ce:13:7c:c3:6f:44:43:be:dd:59:ca:fe:c1:53: 44:6c:34:f5:1c:3f:62:9e:12:59:68:bc:1a:ca:83:65:34:40: 84:1a:3e:75:b7:03:c0:18:da:ca:69:ea:ef:ad:71:b5:d5:c9: 72:b4:36:95:a1:e5:57:91:f2:4d:33:0c:e8:cb:03:7a:a8:ea: af:f3:52:a1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjUxMjE2MTcxNTExWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM3OC00MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY8Yw22b0/y/P33hwOqtWgofVIP6OiqRy2QO5JSDbJNsFjD0bzFEiPiMdbmn JhNQ/uVBzAvQxBhseM42jX8HzuX4zW8osLKutlaNYVfF4vHYq8Lu7l5tV4sMYklf AgyxiGdbIAaPcfVjWdfYrUy2pZ5X86EOaY4CHrOOf9ehr4x0bhXSbUuwYhC4obMr P287PSjXYa45OnKVr01p0S7esl323797lAlv1ZY6g+Uqo4NDHdrkjbaN+Bkj/Ow1 F70V6kE1q0vGOXnQMHmqYHuajULvgNV1jFrSXbQiElzYIy31YgOoqDCjBTQ5CxcT XSkZyZspPfP6YKnVRaS527yPQwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFBkKGCaD qKZSqmopKpd39U+D3lkSMB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI5NDgvRUZBNThCRDYyN0YwMTFFOTg4NDY4QzFCQzRGOUFFMDIvMkRCNkY4ODYy ODYxMTFFOUJBMjQ1QTcxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4WkMA0EAgACMAcDBQAkBFDAMA0GCSqGSIb3DQEBCwUAA4IBAQA+ ENQzer7IiKE30KfbDmeNm7179eDgIIwWNz5tFBcp6ljY3iNL/5dsa05e39wnkMji 3yezdv57lWACmksWcOllFaQJ+yCw9ITsQm0ITiI5I+Lh+HZ8/+48WtO62Ru9r6vM g/XN/OxEOjPoR0CpU/0U8KMmcWppZKH22Pd8lSINeVQLHxtKeBtkKWebCFds7u5w H6/RfuubjuOkdTmYHNbUc1aw/qvoCjt4m+YxCvvfZKpv/Ct+SmwkzhN8w29EQ77d Wcr+wVNEbDT1HD9inhJZaLwayoNlNECEGj51twPAGNrKaervrXG11clytDaVoeVX kfJNMwzoywN6qOqv81Kh -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:32 2026 by rpki-client