$ rpki-client -vvf rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa File: AA2DE134C48A11E9804AA581C4F9AE02.roa (raw, json) Hash identifier: PQPrfwH4zNRubEyL3qDFQympgbgKDcaJUaFhnF7//uQ= Subject key identifier: 0C:64:C8:44:A5:0D:E0:11:FB:D1:23:95:68:67:84:FE:EC:6C:5C:AE Certificate issuer: /CN=A9184BE6/serialNumber=C51F7BFD945D007779B7F1FF425DBF27B9C2982E Certificate serial: 0E28 Authority key identifier: C5:1F:7B:FD:94:5D:00:77:79:B7:F1:FF:42:5D:BF:27:B9:C2:98:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:50 +0000 ROA not before: Wed 30 Jul 2025 18:27:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138907 IP address blocks: 103.136.254.0/24 maxlen: 24 103.142.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.crl rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3624 (0xe28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184BE6, serialNumber=C51F7BFD945D007779B7F1FF425DBF27B9C2982E Validity Not Before: Jul 30 18:27:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46e69-4fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:5e:65:9a:23:64:11:67:71:a0:64:73:aa:d5: fa:e2:bf:ca:b3:b8:54:f6:a3:33:5a:35:95:0f:5a: eb:ea:e5:ad:98:4b:24:32:b7:34:09:45:8f:b0:d8: 7d:19:0d:71:e3:32:ed:ab:17:a3:30:73:04:c3:30: c5:fd:71:c3:63:2a:4f:a3:2d:15:6c:12:b9:58:23: 0e:c3:f6:08:93:c0:e1:ce:6a:49:c4:25:a0:08:ff: 4b:64:01:63:f1:39:75:e9:1c:57:a0:d9:5c:4b:2f: bf:a4:46:f3:7d:00:8d:f3:4a:e6:c2:08:de:15:a5: c5:30:e3:39:86:a4:b8:30:13:11:0f:be:5b:91:05: 7d:5e:64:73:58:05:29:fa:77:db:8b:92:04:52:8d: d5:c8:cb:39:63:04:6e:7c:1a:f8:e9:e9:32:bc:54: 68:7e:78:97:5f:3e:7a:60:f1:25:85:fe:19:b0:9e: 4b:f7:06:e8:95:9a:7d:58:ad:c2:0c:81:e7:87:07: 0d:f3:fc:07:f2:af:53:1a:93:8b:97:93:f4:f4:75: 5f:9d:2a:62:f8:13:05:08:c1:a3:0e:9b:fd:e5:55: 2e:9b:75:72:21:71:d1:c4:db:a3:46:be:7b:dd:6f: 95:39:00:6b:45:6c:d0:a6:15:cf:d6:7d:5b:ad:ab: 7d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:64:C8:44:A5:0D:E0:11:FB:D1:23:95:68:67:84:FE:EC:6C:5C:AE X509v3 Authority Key Identifier: keyid:C5:1F:7B:FD:94:5D:00:77:79:B7:F1:FF:42:5D:BF:27:B9:C2:98:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xR97_ZRdAHd5t_H_Ql2_J7nCmC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184BE6/EE8BCAA4C48911E9BB8A9580C4F9AE02/AA2DE134C48A11E9804AA581C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.254.0/24 103.142.76.0/24 Signature Algorithm: sha256WithRSAEncryption bf:f2:cb:3e:4d:e5:7f:aa:d6:cb:68:ea:bf:38:b2:16:9d:84: 52:5b:4a:bd:8d:45:a6:f4:ce:cb:17:c7:ff:76:a6:a1:6a:e3: 4c:88:13:81:9c:ec:99:9e:09:3e:ae:6e:52:f4:d4:5b:93:5f: 25:5b:f3:aa:42:c6:6c:f4:81:a7:73:fa:dd:42:39:80:e6:7b: 93:e6:41:dd:79:b5:2c:b4:2b:25:8e:67:a7:3f:35:1e:34:81: ea:18:17:4c:8d:a0:da:62:fe:e9:e8:9d:1c:78:2a:a6:e0:01: 8f:40:da:31:72:6c:34:fa:f4:90:6d:f1:57:67:83:8b:80:55: b7:c9:c5:e9:b4:7d:40:0e:df:83:19:4d:1d:15:a0:45:2e:ce: a5:62:73:4a:8c:1a:74:02:e5:fc:29:eb:3f:ca:0c:89:72:8a: 71:a8:44:cd:0b:d5:ff:0c:7f:e2:6a:f9:9b:e1:ca:fe:b0:ef: 01:ca:eb:ae:79:72:ba:c4:ed:64:de:b3:ef:72:96:cd:5d:fc: 96:cd:37:d4:d7:84:a8:42:d8:78:05:53:11:b1:bc:ff:6f:b2: 9a:f1:86:46:c6:05:81:51:da:a1:5b:8d:8a:0d:68:15:bf:63: a4:90:6b:b0:13:4f:64:8f:15:fc:e8:d5:6b:86:e2:8e:6a:b2: 12:ad:6b:2b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRCRTYxMTAvBgNVBAUTKEM1MUY3QkZEOTQ1RDAwNzc3OUI3RjFGRjQyNURCRjI3 QjlDMjk4MkUwHhcNMjUwNzMwMTgyNzU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU2OS00ZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjF5lmiNkEWdxoGRzqtX64r/Ks7hU9qMzWjWVD1rr6uWtmEskMrc0CUWPsNh9 GQ1x4zLtqxejMHMEwzDF/XHDYypPoy0VbBK5WCMOw/YIk8DhzmpJxCWgCP9LZAFj 8Tl16RxXoNlcSy+/pEbzfQCN80rmwgjeFaXFMOM5hqS4MBMRD75bkQV9XmRzWAUp +nfbi5IEUo3VyMs5YwRufBr46ekyvFRofniXXz56YPElhf4ZsJ5L9wbolZp9WK3C DIHnhwcN8/wH8q9TGpOLl5P09HVfnSpi+BMFCMGjDpv95VUum3VyIXHRxNujRr57 3W+VOQBrRWzQphXP1n1brat94wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAxkyESl DeAR+9EjlWhnhP7sbFyuMB8GA1UdIwQYMBaAFMUfe/2UXQB3ebfx/0Jdvye5wpgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEJFNi9FRThCQ0FBNEM0 ODkxMUU5QkI4QTk1ODBDNEY5QUUwMi94Ujk3X1pSZEFIZDV0X0hfUWwyX0o3bkNt QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hSOTdfWlJkQUhkNXRfSF9RbDJfSjduQ21DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODRCRTYvRUU4QkNBQTRDNDg5MTFFOUJCOEE5NTgwQzRGOUFFMDIvQUEyREUxMzRD NDhBMTFFOTgwNEFBNTgxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ4j+AwQAZ45MMA0GCSqGSIb3DQEBCwUAA4IBAQC/8ss+TeV/qtbL aOq/OLIWnYRSW0q9jUWm9M7LF8f/dqahauNMiBOBnOyZngk+rm5S9NRbk18lW/Oq QsZs9IGnc/rdQjmA5nuT5kHdebUstCsljmenPzUeNIHqGBdMjaDaYv7p6J0ceCqm 4AGPQNoxcmw0+vSQbfFXZ4OLgFW3ycXptH1ADt+DGU0dFaBFLs6lYnNKjBp0AuX8 Kes/ygyJcopxqETNC9X/DH/iavmb4cr+sO8ByuuueXK6xO1k3rPvcpbNXfyWzTfU 14SoQth4BVMRsbz/b7Ka8YZGxgWBUdqhW42KDWgVv2OkkGuwE09kjxX86NVrhuKO arISrWsr -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:21 2026 by rpki-client