$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FC839D21D5411ED82593138C4F9AE02.roa File: 2FC839D21D5411ED82593138C4F9AE02.roa (raw, json) Hash identifier: Ijdg7+bYwLu2FZgAsYk0/5me0YlsUfS2EVMwbR6RgF4= Subject key identifier: BD:02:A2:C1:33:45:48:96:0B:A5:3A:69:B5:01:DE:0D:5D:14:CF:52 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D74D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FC839D21D5411ED82593138C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:20 +0000 ROA not before: Thu 08 May 2025 16:24:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150080 IP address blocks: 103.191.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55117 (0xd74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c270-c08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5a:8f:38:4e:7b:bd:71:4e:a6:4a:7d:d3:8e: 94:78:b0:36:88:d5:d2:6f:90:c6:90:8c:76:60:cf: 79:2c:0c:22:ae:04:bc:f6:d3:39:46:7b:a5:c9:d6: c0:03:b3:8e:6b:2e:db:8b:93:a6:67:c9:03:c2:75: c7:46:ab:31:90:e8:a0:73:a0:88:cd:82:a5:30:42: 06:63:35:db:ca:cf:ce:9a:27:c1:cc:7c:36:4a:4c: 03:a5:0f:78:e8:89:fc:63:cf:37:14:4b:f3:ff:90: d5:a1:84:5a:c2:27:c8:dd:af:85:68:e7:e2:f6:7d: ee:76:00:b4:e7:60:9b:dd:05:00:c2:5f:87:ee:12: 14:79:14:46:d4:73:1a:c3:f7:41:92:36:dd:21:8b: be:75:9d:31:c8:58:b4:d9:18:a3:b4:83:b9:63:8b: 94:55:01:18:ba:31:f3:59:5e:33:0d:e5:50:44:2e: a8:1c:58:a1:1a:c6:65:67:69:42:02:27:e5:0d:46: 1c:4c:8e:94:af:8b:2c:61:73:49:e7:48:e6:e1:c8: 59:3b:1c:3e:2a:5e:9b:1c:15:4b:a3:36:20:0b:aa: 66:f0:93:c0:16:9a:a6:45:be:4f:40:db:2b:c2:cc: 1f:82:ac:90:95:9f:51:fe:7c:20:d9:5a:c0:06:5c: a9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:02:A2:C1:33:45:48:96:0B:A5:3A:69:B5:01:DE:0D:5D:14:CF:52 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2FC839D21D5411ED82593138C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.191.95.0/24 Signature Algorithm: sha256WithRSAEncryption 01:87:e5:45:b1:66:3a:5f:1e:35:d6:fa:0c:0a:7e:8d:a3:f9: 59:df:d7:0c:49:9a:4f:14:b8:72:b7:42:b1:22:a8:20:1c:95: 73:8c:b7:ac:28:69:14:15:9f:51:88:bf:fb:80:fa:60:4f:64: 6d:2c:f0:15:41:63:b6:fc:ec:4b:52:bd:fc:c2:2b:13:8a:cb: f5:7d:18:f8:cd:48:a4:3f:bd:6c:5d:d0:7c:83:91:71:d0:93: 5a:77:e9:a4:c1:79:ff:28:3d:f3:d9:ef:4d:22:5b:ad:c7:70: f6:e6:8e:50:c5:3c:b6:66:16:15:00:e2:6f:fd:b1:7c:67:dc: b5:55:10:0e:22:59:e3:15:c7:47:aa:44:53:6d:c1:13:a5:d7: a1:20:e0:eb:33:5c:0b:e7:33:91:2e:d4:92:60:87:ff:3d:7f: 20:ee:bf:b6:02:f4:d1:f8:58:58:a0:6f:59:d5:c2:0d:3b:79: 14:0b:48:35:5c:87:3e:62:22:8a:26:24:dc:96:cb:db:d3:ce: f5:29:2f:11:e4:3b:fc:28:64:b7:91:19:e4:c5:65:59:49:f4: 18:bd:ad:da:2e:26:1f:3c:e8:04:3e:08:40:33:8e:cc:6d:62: 4a:4e:89:39:26:92:f6:f1:32:eb:60:0f:63:da:28:04:f2:2e: f7:61:5a:4e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANdNMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyNzAtYzA4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRajzhOe71xTqZKfdOOlHiwNojV0m+QxpCMdmDPeSwMIq4EvPbTOUZ7pcnW wAOzjmsu24uTpmfJA8J1x0arMZDooHOgiM2CpTBCBmM128rPzponwcx8NkpMA6UP eOiJ/GPPNxRL8/+Q1aGEWsInyN2vhWjn4vZ97nYAtOdgm90FAMJfh+4SFHkURtRz GsP3QZI23SGLvnWdMchYtNkYo7SDuWOLlFUBGLox81leMw3lUEQuqBxYoRrGZWdp QgIn5Q1GHEyOlK+LLGFzSedI5uHIWTscPipemxwVS6M2IAuqZvCTwBaapkW+T0Db K8LMH4KskJWfUf58INlawAZcqVkCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBS9AqLB M0VIlgulOmm1Ad4NXRTPUjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJGQzgzOUQy MUQ1NDExRUQ4MjU5MzEzOEM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe/XzANBgkqhkiG9w0BAQsFAAOCAQEAAYflRbFmOl8eNdb6DAp+ jaP5Wd/XDEmaTxS4crdCsSKoIByVc4y3rChpFBWfUYi/+4D6YE9kbSzwFUFjtvzs S1K9/MIrE4rL9X0Y+M1IpD+9bF3QfIORcdCTWnfppMF5/yg989nvTSJbrcdw9uaO UMU8tmYWFQDib/2xfGfctVUQDiJZ4xXHR6pEU23BE6XXoSDg6zNcC+czkS7UkmCH /z1/IO6/tgL00fhYWKBvWdXCDTt5FAtINVyHPmIiiiYk3JbL29PO9SkvEeQ7/Chk t5EZ5MVlWUn0GL2t2i4mHzzoBD4IQDOOzG1iSk6JOSaS9vEy62APY9ooBPIu92Fa Tg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:51 2026 by rpki-client