$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa File: BBBF15C0C32E11ED82655C36C4F9AE02.roa (raw, json) Hash identifier: 6FmOXKqCW+QeYXBL7X+5R/m112cCBkg9czfAiHv9CIQ= Subject key identifier: 32:46:4C:14:58:C3:36:E3:6F:5E:43:16:BB:99:B3:41:F4:9E:5E:08 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DB09 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa Signing time: Sun 01 Mar 2026 23:06:32 +0000 ROA not before: Mon 09 Feb 2026 08:14:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133278 IP address blocks: 27.123.248.0/22 maxlen: 24 103.37.80.0/22 maxlen: 24 103.93.112.0/24 maxlen: 24 103.93.113.0/24 maxlen: 24 103.93.114.0/24 maxlen: 24 103.93.115.0/24 maxlen: 24 103.94.112.0/22 maxlen: 24 103.113.38.0/23 maxlen: 24 103.199.156.0/24 maxlen: 24 103.199.157.0/24 maxlen: 24 103.199.158.0/24 maxlen: 24 103.199.159.0/24 maxlen: 24 103.230.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56073 (0xdb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 9 08:14:38 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c678-560f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:85:e7:bc:2d:7f:c9:94:c1:12:0e:ac:08: d9:27:03:a4:df:50:7c:a0:9b:15:53:b0:c4:f3:48: ef:8e:17:e8:6f:56:30:fe:6e:45:3f:2f:8c:43:25: c0:c4:61:1e:df:12:ce:5c:19:d2:0c:33:1f:21:4e: 2e:a4:d9:db:21:2e:1a:e3:32:fb:23:3f:97:68:61: c0:e8:0a:f5:c2:22:db:17:ff:13:bc:35:76:e6:25: 3f:9c:67:25:a9:0f:d8:2c:c2:b0:3d:09:88:df:1c: 15:c4:07:cc:5f:90:48:82:c7:56:93:c9:3b:c7:14: f8:70:f7:8f:c6:fe:05:dd:50:8b:cf:36:b7:e5:60: 34:c4:5e:3f:cb:d4:48:0a:1e:34:fc:e0:b5:69:1c: af:e0:0c:38:f7:82:0c:0e:35:25:41:68:bd:dd:56: 20:b8:d0:90:f6:4e:ef:8b:50:25:f8:a6:8d:cf:87: 75:80:77:33:f8:0b:be:60:45:ba:36:20:af:c7:83: b2:40:a4:14:f9:12:65:20:34:b0:6d:b9:0d:9c:8a: bd:da:c1:ee:96:3b:10:a4:f5:ef:40:0e:0a:a2:70: df:d9:ee:44:dc:32:f8:52:aa:28:b3:78:ed:18:fc: f5:05:41:2c:b4:0a:c5:5c:93:32:cb:7e:7a:71:bd: cc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:46:4C:14:58:C3:36:E3:6F:5E:43:16:BB:99:B3:41:F4:9E:5E:08 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BBBF15C0C32E11ED82655C36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.123.248.0/22 103.37.80.0/22 103.93.112.0/22 103.94.112.0/22 103.113.38.0/23 103.199.156.0/22 103.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption 77:44:31:3e:5e:8c:50:3b:74:3b:40:97:a4:9d:e2:95:21:e0: df:af:16:a2:29:2f:9b:d0:47:bd:fb:49:95:c5:04:04:35:e7: cf:e0:5b:2e:7a:10:ff:21:21:f3:f6:12:28:d4:eb:e5:00:b0: 72:33:a9:07:c7:05:69:04:91:47:9b:ff:01:c0:3a:77:de:5d: ca:fe:ca:8a:37:9c:df:a0:21:28:28:a0:b2:83:64:57:bd:bd: c4:8c:fd:50:8b:a4:d3:de:90:dd:17:25:c6:d7:76:a8:01:f0: f7:df:de:81:d9:31:7d:db:69:c8:f9:02:89:d4:80:b8:63:ff: 15:9f:72:eb:cd:bb:d4:02:91:0e:f1:66:d4:4a:d2:80:2f:6f: 19:65:2f:bd:91:b5:58:9f:86:15:fd:2e:bc:8e:b6:d1:ae:66: 53:a1:76:3d:c5:e8:6d:24:d5:8c:9f:8a:ae:46:4a:59:93:6d: 98:0a:fe:9b:7a:4a:ad:e8:95:c2:ee:7e:07:9a:72:fc:58:2f: 65:57:a7:fc:c6:e7:22:dc:ab:69:de:9a:92:c5:b4:38:29:71: 1c:f6:dc:65:a2:7a:d0:fb:79:e2:30:2c:1c:9d:6b:e5:a6:b2: bd:d2:68:bd:7a:69:65:58:e6:c4:32:9f:85:12:9f:1d:63:82: 38:1e:10:4c -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIDANsJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDIwOTA4MTQzOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2NzgtNTYwZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL07hee8LX/JlMESDqwI2ScDpN9QfKCbFVOwxPNI744X6G9WMP5uRT8vjEMl wMRhHt8SzlwZ0gwzHyFOLqTZ2yEuGuMy+yM/l2hhwOgK9cIi2xf/E7w1duYlP5xn JakP2CzCsD0JiN8cFcQHzF+QSILHVpPJO8cU+HD3j8b+Bd1Qi882t+VgNMReP8vU SAoeNPzgtWkcr+AMOPeCDA41JUFovd1WILjQkPZO74tQJfimjc+HdYB3M/gLvmBF ujYgr8eDskCkFPkSZSA0sG25DZyKvdrB7pY7EKT170AOCqJw39nuRNwy+FKqKLN4 7Rj89QVBLLQKxVyTMst+enG9zEkCAwEAAaOCAoQwggKAMB0GA1UdDgQWBBQyRkwU WMM2429eQxa7mbNB9J5eCDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JCQkYxNUMw QzMyRTExRUQ4MjY1NUMzNkM0RjlBRTAyLnJvYTBDBggrBgEFBQcBBwEB/wQ0MDIw MAQCAAEwKgMEAht7+AMEAmclUAMEAmddcAMEAmdecAMEAWdxJgMEAmfHnAMEAmfm mDANBgkqhkiG9w0BAQsFAAOCAQEAd0QxPl6MUDt0O0CXpJ3ilSHg368Woikvm9BH vftJlcUEBDXnz+BbLnoQ/yEh8/YSKNTr5QCwcjOpB8cFaQSRR5v/AcA6d95dyv7K ijec36AhKCigsoNkV729xIz9UIuk096Q3Rclxtd2qAHw99/egdkxfdtpyPkCidSA uGP/FZ9y68271AKRDvFm1ErSgC9vGWUvvZG1WJ+GFf0uvI620a5mU6F2PcXobSTV jJ+KrkZKWZNtmAr+m3pKreiVwu5+B5py/FgvZVen/MbnItyrad6aksW0OClxHPbc ZaJ60Pt54jAsHJ1r5aayvdJovXppZVjmxDKfhRKfHWOCOB4QTA== -----END CERTIFICATE-----Generated at Mon Mar 2 13:38:29 2026 by rpki-client