$ rpki-client -vvf rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/D2E2417A2F7211EB80969C22C4F9AE02.roa File: D2E2417A2F7211EB80969C22C4F9AE02.roa (raw, json) Hash identifier: W2oe1fkkXvCKUmFxDXYKLpODEWrE80h3g1HTPAfKDWA= Subject key identifier: F5:27:86:08:C4:91:DC:59:C3:23:A6:36:3F:DE:14:D3:9F:AD:33:DC Certificate issuer: /CN=A918B591/serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Certificate serial: 07C9 Authority key identifier: E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/D2E2417A2F7211EB80969C22C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:41:30 +0000 ROA not before: Tue 08 Jul 2025 22:33:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140710 IP address blocks: 103.152.12.0/23 maxlen: 23 2001:df3:ec80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B591, serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Validity Not Before: Jul 8 22:33:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a409ca-11bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5a:b2:07:46:cc:00:e8:00:f0:70:e6:62:c7: 36:6e:56:0c:6b:1e:8a:67:f5:45:35:bb:5f:9c:34: 10:08:c3:00:48:5c:d6:7c:7c:43:de:e1:ed:c7:32: f7:ca:3f:7c:ee:e0:92:d1:6d:85:7f:e5:7d:59:2b: 39:8e:06:31:1e:21:55:df:91:7d:3c:88:ca:6f:e6: 0c:f1:28:98:76:14:97:ea:5c:83:dc:42:65:2a:30: f7:09:9a:8e:60:1e:81:b9:fc:ab:96:76:0a:cf:8d: 7d:dc:57:c0:7d:63:db:cb:71:c7:8b:8f:a4:e5:cc: 3c:b1:16:4a:63:2e:65:26:35:0b:db:e0:a5:3c:bd: 98:ee:43:f7:53:ae:b6:71:81:25:60:e4:32:d2:bb: 10:d2:78:9b:61:6d:78:59:51:ab:f0:9a:f5:0d:63: f0:04:73:16:a0:28:31:67:30:be:86:1a:99:2d:51: 21:0e:4f:7e:ad:02:da:bc:71:b2:a2:4b:3f:83:44: 7a:91:24:2c:0c:2c:2e:21:4f:23:4a:b5:0e:b5:a9: a9:6c:56:be:39:bf:50:b7:a1:f5:88:a4:7b:31:5b: 8b:03:d5:7b:6d:12:e6:18:af:28:45:08:72:9f:63: cb:06:21:25:02:62:bc:bd:43:17:64:fa:2b:92:83: bf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:27:86:08:C4:91:DC:59:C3:23:A6:36:3F:DE:14:D3:9F:AD:33:DC X509v3 Authority Key Identifier: keyid:E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/D2E2417A2F7211EB80969C22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.12.0/23 IPv6: 2001:df3:ec80::/48 Signature Algorithm: sha256WithRSAEncryption 53:22:ec:7e:81:82:24:eb:ff:e7:85:9c:18:20:4d:b8:0e:8f: d3:cc:58:68:57:c2:69:89:be:3a:d3:58:7c:d0:46:14:17:79: ff:34:5b:e9:3f:55:97:37:49:a6:28:ba:38:2f:ea:71:50:dd: 0a:0b:d1:fa:69:d2:fc:6d:08:08:f8:ee:e6:da:49:7a:b4:c1: 53:0b:01:57:15:39:2e:40:b3:0b:9f:d8:0e:26:41:a7:a9:68: 99:8b:f6:b2:66:7e:a0:10:0f:4b:84:03:61:ff:48:2c:a2:03: a3:85:51:ee:ba:48:39:3b:89:0c:fd:8c:c8:c6:ad:f4:25:13: 38:a1:17:15:42:38:97:02:6b:c9:9c:f8:f0:03:6f:b5:7a:71: c4:ad:fb:8c:5f:78:6e:28:3d:2b:06:9f:bd:9a:8b:5f:d6:70: 23:cc:6b:e3:71:3c:ba:07:f1:2c:8d:ed:48:59:06:2e:67:76: bc:30:43:92:10:a7:c4:64:d8:e1:35:67:88:6b:a4:6b:55:c3: 53:ab:f0:fb:30:8f:a1:e1:a1:4c:aa:7c:35:12:73:9d:ec:90: d7:d5:da:4f:93:7d:d2:ac:5d:d7:98:f6:83:a3:01:72:e3:1a: fa:71:1d:f1:88:2d:05:84:d1:8a:90:26:7f:d0:36:05:12:3e: 9e:a5:26:04 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1OTExMTAvBgNVBAUTKEUzQjhFQUIxQUU5MTZERjk1QTJENTVBRTdCQjdCQjc5 QTUwQjRBRTcwHhcNMjUwNzA4MjIzMzA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDljYS0xMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFqyB0bMAOgA8HDmYsc2blYMax6KZ/VFNbtfnDQQCMMASFzWfHxD3uHtxzL3 yj987uCS0W2Ff+V9WSs5jgYxHiFV35F9PIjKb+YM8SiYdhSX6lyD3EJlKjD3CZqO YB6BufyrlnYKz4193FfAfWPby3HHi4+k5cw8sRZKYy5lJjUL2+ClPL2Y7kP3U662 cYElYOQy0rsQ0nibYW14WVGr8Jr1DWPwBHMWoCgxZzC+hhqZLVEhDk9+rQLavHGy oks/g0R6kSQsDCwuIU8jSrUOtampbFa+Ob9Qt6H1iKR7MVuLA9V7bRLmGK8oRQhy n2PLBiElAmK8vUMXZPorkoO/ewIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPUnhgjE kdxZwyOmNj/eFNOfrTPcMB8GA1UdIwQYMBaAFOO46rGukW35Wi1Vrnu3u3mlC0rn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjU5MS9EMjMzQzY0NjJG NzExMUVCQjZFRDNFMjJDNEY5QUUwMi80N2pxc2E2UmJmbGFMVld1ZTdlN2VhVUxT dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ3anFzYTZSYmZsYUxWV3VlN2U3ZWFVTFN1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1OTEvRDIzM0M2NDYyRjcxMTFFQkI2RUQzRTIyQzRGOUFFMDIvRDJFMjQxN0Ey RjcyMTFFQjgwOTY5QzIyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5gMMA8EAgACMAkDBwAgAQ3z7IAwDQYJKoZIhvcNAQELBQADggEB AFMi7H6BgiTr/+eFnBggTbgOj9PMWGhXwmmJvjrTWHzQRhQXef80W+k/VZc3SaYo ujgv6nFQ3QoL0fpp0vxtCAj47ubaSXq0wVMLAVcVOS5Aswuf2A4mQaepaJmL9rJm fqAQD0uEA2H/SCyiA6OFUe66SDk7iQz9jMjGrfQlEzihFxVCOJcCa8mc+PADb7V6 ccSt+4xfeG4oPSsGn72ai1/WcCPMa+NxPLoH8SyN7UhZBi5ndrwwQ5IQp8Rk2OE1 Z4hrpGtVw1Or8Pswj6HhoUyqfDUSc53skNfV2k+TfdKsXdeY9oOjAXLjGvpxHfGI LQWE0YqQJn/QNgUSPp6lJgQ= -----END CERTIFICATE-----Generated at Mon Mar 2 16:25:33 2026 by rpki-client