$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa File: CF04BF60361B11EBA7A9147FC4F9AE02.roa (raw, json) Hash identifier: fk/W1zb1cQSt1C0ohwPVYOGDyKgbvSrZZwLZS5/al00= Subject key identifier: 9B:F2:83:CA:12:A3:A4:F9:E1:AA:7D:87:1B:FF:2C:37:E2:1C:C0:3C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D535 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:36:39 +0000 ROA not before: Thu 08 May 2025 16:14:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140206 IP address blocks: 103.159.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54581 (0xd535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:14:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bf77-b197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:16:f0:f3:77:d8:00:4c:e7:2e:62:e7:26:d4: 85:eb:e5:85:dd:a3:a9:8b:c0:1a:18:d3:01:7b:45: 38:61:ea:8e:f0:59:05:cf:02:45:b3:e9:0b:f2:56: 92:0f:20:1c:d1:93:3d:c2:ee:be:66:10:2b:8c:0d: 86:b0:d6:9b:f3:51:73:85:ae:17:4f:cc:48:78:38: e4:6f:c5:1d:7a:52:a0:96:53:7f:5b:78:aa:ef:e2: 3e:66:f1:2a:86:60:b4:0c:20:28:30:f8:c9:d7:5e: e9:35:9d:56:5b:71:14:18:99:c2:cc:15:26:c7:7b: df:ff:c0:b8:16:42:53:1a:4b:4a:73:49:45:58:25: 7b:88:58:d1:4d:da:d9:11:27:22:8c:ff:36:18:3d: 5a:d3:fc:a3:f2:94:ef:5b:55:e3:29:da:52:38:b7: 2b:b7:db:25:4f:fe:3f:15:c4:83:cf:95:51:91:b2: 26:b8:2a:3f:df:9c:9b:d4:2c:a4:01:56:54:6a:5d: f6:ce:0e:3c:af:ac:6a:98:06:e4:6f:38:98:d8:28: b4:44:0a:5d:68:cc:89:e0:4f:f5:89:f0:ab:78:62: d8:eb:3f:80:3b:c6:2f:49:4a:3d:76:51:a5:e6:21: 9f:7d:64:38:e2:37:51:a2:72:a7:b4:41:5b:ff:95: 22:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F2:83:CA:12:A3:A4:F9:E1:AA:7D:87:1B:FF:2C:37:E2:1C:C0:3C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.97.0/24 Signature Algorithm: sha256WithRSAEncryption 86:98:a1:93:44:18:e4:6f:3d:23:e6:4f:38:3f:e6:e9:ac:8d: 96:51:0c:72:47:88:ae:20:4e:c1:ec:0c:8d:79:ec:77:3c:af: 2f:9d:6f:77:d9:c8:83:0e:7c:9a:89:49:3d:89:18:f2:2a:78: 3d:de:92:7f:5b:67:db:43:6e:45:3d:82:f5:3e:b3:cc:f1:99: b5:04:2d:a1:2b:b8:d1:00:7f:f4:d0:c8:6c:a7:ea:72:d5:93: 50:65:60:b4:54:0b:f9:d8:14:00:b8:af:ea:6f:4b:e2:55:1e: f5:54:1c:63:29:b3:8d:eb:f7:1b:ed:f8:2e:08:78:cf:67:50: 8b:7e:0d:4f:99:a3:17:a8:d7:b6:39:f5:32:57:79:ad:68:aa: 7a:27:d4:9f:b8:ba:2d:45:72:f6:de:ae:ff:b7:c2:88:08:dc: d8:80:42:f4:3d:43:3c:46:2c:15:c8:74:59:f0:cb:0b:20:14: d7:3e:65:fa:9c:cc:60:0e:37:42:93:c3:fe:03:03:41:f7:14: 44:95:9c:e3:e6:c7:88:b3:f7:49:a9:75:aa:65:85:fc:9b:8c: 73:94:57:74:c9:9f:1e:63:50:3b:8d:04:7f:a1:c0:bd:b7:a0: 24:c4:90:bb:e0:d5:e1:9f:93:0f:d2:4e:5c:c5:3c:2c:e1:0c: 4f:31:33:09 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANU1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTQ1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmNzctYjE5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJMW8PN32ABM5y5i5ybUhevlhd2jqYvAGhjTAXtFOGHqjvBZBc8CRbPpC/JW kg8gHNGTPcLuvmYQK4wNhrDWm/NRc4WuF0/MSHg45G/FHXpSoJZTf1t4qu/iPmbx KoZgtAwgKDD4ydde6TWdVltxFBiZwswVJsd73//AuBZCUxpLSnNJRVgle4hY0U3a 2REnIoz/Nhg9WtP8o/KU71tV4ynaUji3K7fbJU/+PxXEg8+VUZGyJrgqP9+cm9Qs pAFWVGpd9s4OPK+sapgG5G84mNgotEQKXWjMieBP9Ynwq3hi2Os/gDvGL0lKPXZR peYhn31kOOI3UaJyp7RBW/+VIsUCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBSb8oPK EqOk+eGqfYcb/yw34hzAPDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NGMDRCRjYw MzYxQjExRUJBN0E5MTQ3RkM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGefYTANBgkqhkiG9w0BAQsFAAOCAQEAhpihk0QY5G89I+ZPOD/m 6ayNllEMckeIriBOwewMjXnsdzyvL51vd9nIgw58molJPYkY8ip4Pd6Sf1tn20Nu RT2C9T6zzPGZtQQtoSu40QB/9NDIbKfqctWTUGVgtFQL+dgUALiv6m9L4lUe9VQc Yymzjev3G+34Lgh4z2dQi34NT5mjF6jXtjn1Mld5rWiqeifUn7i6LUVy9t6u/7fC iAjc2IBC9D1DPEYsFch0WfDLCyAU1z5l+pzMYA43QpPD/gMDQfcURJWc4+bHiLP3 Sal1qmWF/JuMc5RXdMmfHmNQO40Ef6HAvbegJMSQu+DV4Z+TD9JOXMU8LOEMTzEz CQ== -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:41 2026 by rpki-client