$ rpki-client -vvf rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/2A1AD3BA9FE711EAAFA97B81C4F9AE02.roa File: 2A1AD3BA9FE711EAAFA97B81C4F9AE02.roa (raw, json) Hash identifier: pZwvBdoaPR7hFViJEv+Bxbp/Jlp7eJmoUNr0vXBOYdY= Subject key identifier: 2C:8F:01:AD:4E:B9:B6:46:5D:FF:12:E7:0B:28:27:62:E7:A0:B8:50 Certificate issuer: /CN=A918FF9D/serialNumber=A5FE5129D481ED1A00E55E99CE30E008B63D6CEE Certificate serial: 09BC Authority key identifier: A5:FE:51:29:D4:81:ED:1A:00:E5:5E:99:CE:30:E0:08:B6:3D:6C:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/2A1AD3BA9FE711EAAFA97B81C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:32:18 +0000 ROA not before: Mon 28 Apr 2025 21:00:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140669 IP address blocks: 103.151.182.0/23 maxlen: 23 103.151.182.0/24 maxlen: 24 103.151.183.0/24 maxlen: 24 2001:df3:d280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.crl rsync://rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2492 (0x9bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FF9D, serialNumber=A5FE5129D481ED1A00E55E99CE30E008B63D6CEE Validity Not Before: Apr 28 21:00:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a407a2-9172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b3:cb:3b:54:9f:a1:d3:21:89:7c:64:49:7d: ce:03:0e:48:35:05:6c:e8:bb:b3:28:43:1d:04:ff: 50:0e:35:3a:e9:d6:22:a7:11:b6:c9:ef:94:d8:92: ef:34:89:3b:ca:d5:db:39:92:9d:ba:4f:c8:22:31: 26:1f:91:ee:b9:91:62:c4:f8:e6:54:f2:6f:39:35: 98:03:ca:a0:10:63:1d:2a:82:29:39:a5:3d:df:40: 73:e4:9b:c0:4f:a7:65:83:a9:43:51:75:ba:cf:3e: 91:fc:e7:e6:5c:4e:66:62:2a:1c:e9:9e:2d:ee:08: a9:87:33:ab:b9:dc:f5:f7:1b:c2:c6:e3:8f:24:ba: 20:f6:5e:70:d5:e0:53:62:c0:17:7f:74:47:16:86: cb:78:ec:1c:cb:76:d3:20:9c:fc:17:38:04:78:a0: 1c:b5:09:2a:1f:7b:97:7e:c0:ca:50:47:30:c7:60: 75:d7:e0:ed:80:66:16:69:9f:14:cf:22:b3:f6:26: 25:5b:bb:b7:35:53:2c:f2:af:2e:e6:61:e5:08:81: 53:1c:4e:01:9d:60:6b:68:2c:08:49:d9:5e:df:66: bc:9f:ef:3b:60:36:e5:92:dd:2a:44:76:6b:9d:61: a0:a8:d3:40:b4:26:10:fa:1c:7e:37:d3:16:26:a6: a0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8F:01:AD:4E:B9:B6:46:5D:FF:12:E7:0B:28:27:62:E7:A0:B8:50 X509v3 Authority Key Identifier: keyid:A5:FE:51:29:D4:81:ED:1A:00:E5:5E:99:CE:30:E0:08:B6:3D:6C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pf5RKdSB7RoA5V6ZzjDgCLY9bO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FF9D/CF86D58A9FE511EABB863A80C4F9AE02/2A1AD3BA9FE711EAAFA97B81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.182.0/23 IPv6: 2001:df3:d280::/48 Signature Algorithm: sha256WithRSAEncryption c8:e9:1a:bd:fe:2f:7a:f0:8b:d3:70:8f:ee:12:90:f5:57:ae: 31:b9:97:58:62:ff:3e:4e:76:7e:11:fc:d2:1d:3f:ec:f2:05: c5:73:73:47:5c:0a:94:72:af:fe:04:e3:bc:2f:73:41:af:05: d8:18:2e:4a:7f:66:c4:19:f2:7c:af:b4:b4:50:32:72:04:ac: 77:91:dd:46:1f:7e:1e:f6:61:54:69:75:2e:bb:fd:a1:29:6a: 84:1d:d6:5b:74:a6:dc:7b:81:bb:75:15:f6:3e:0c:1a:f0:c5: 75:99:e2:34:c2:51:27:ef:b4:63:b7:e8:b6:c1:48:58:53:fc: 1a:41:ff:0e:f4:7d:21:17:83:fd:89:61:8f:ba:05:74:f2:7f: 5d:04:49:dd:f2:72:cd:9a:ba:7e:5c:ec:fa:c6:20:1a:a3:07: 21:6f:f9:c6:8c:d1:ae:db:73:36:3e:40:e4:95:9d:f1:ee:da: bf:ed:ee:02:50:89:86:7c:2c:e8:5f:fc:d7:8d:95:bf:e6:e7: 67:36:ba:62:ca:44:e8:9c:f8:9b:97:46:3a:41:0e:3c:b9:3a: 7b:ac:22:c2:15:a5:d0:8b:7d:6e:39:b5:d8:2c:32:56:2f:c7: f7:5e:43:c2:64:2e:68:b8:d7:d4:79:5a:84:2b:7a:f5:bc:1d: 72:e3:9a:84 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGOUQxMTAvBgNVBAUTKEE1RkU1MTI5RDQ4MUVEMUEwMEU1NUU5OUNFMzBFMDA4 QjYzRDZDRUUwHhcNMjUwNDI4MjEwMDE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdhMi05MTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjrPLO1SfodMhiXxkSX3OAw5INQVs6LuzKEMdBP9QDjU66dYipxG2ye+U2JLv NIk7ytXbOZKduk/IIjEmH5HuuZFixPjmVPJvOTWYA8qgEGMdKoIpOaU930Bz5JvA T6dlg6lDUXW6zz6R/OfmXE5mYioc6Z4t7giphzOrudz19xvCxuOPJLog9l5w1eBT YsAXf3RHFobLeOwcy3bTIJz8FzgEeKActQkqH3uXfsDKUEcwx2B11+DtgGYWaZ8U zyKz9iYlW7u3NVMs8q8u5mHlCIFTHE4BnWBraCwISdle32a8n+87YDblkt0qRHZr nWGgqNNAtCYQ+hx+N9MWJqagFwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCyPAa1O ubZGXf8S5wsoJ2LnoLhQMB8GA1UdIwQYMBaAFKX+USnUge0aAOVemc4w4Ai2PWzu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkY5RC9DRjg2RDU4QTlG RTUxMUVBQkI4NjNBODBDNEY5QUUwMi9wZjVSS2RTQjdSb0E1VjZaempEZ0NMWTli TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmNVJLZFNCN1JvQTVWNlp6akRnQ0xZOWJPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZGOUQvQ0Y4NkQ1OEE5RkU1MTFFQUJCODYzQTgwQzRGOUFFMDIvMkExQUQzQkE5 RkU3MTFFQUFGQTk3QjgxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5e2MA8EAgACMAkDBwAgAQ3z0oAwDQYJKoZIhvcNAQELBQADggEB AMjpGr3+L3rwi9Nwj+4SkPVXrjG5l1hi/z5Odn4R/NIdP+zyBcVzc0dcCpRyr/4E 47wvc0GvBdgYLkp/ZsQZ8nyvtLRQMnIErHeR3UYffh72YVRpdS67/aEpaoQd1lt0 ptx7gbt1FfY+DBrwxXWZ4jTCUSfvtGO36LbBSFhT/BpB/w70fSEXg/2JYY+6BXTy f10ESd3ycs2aun5c7PrGIBqjByFv+caM0a7bczY+QOSVnfHu2r/t7gJQiYZ8LOhf /NeNlb/m52c2umLKROic+JuXRjpBDjy5OnusIsIVpdCLfW45tdgsMlYvx/deQ8Jk Lmi419R5WoQrevW8HXLjmoQ= -----END CERTIFICATE-----Generated at Mon Mar 2 12:36:31 2026 by rpki-client