$ rpki-client -vvf rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa File: 2DBBD9E2788D11EEA502B350C4F9AE02.roa (raw, json) Hash identifier: EEOuLVOFGIUAdOuI2tNMq9b7RGo51bkfuVm6Dgdj9UY= Subject key identifier: DE:6E:29:4A:C1:39:AB:5E:CB:6A:62:4A:E8:CB:D3:57:D6:9D:94:1D Certificate issuer: /CN=A919D08A/serialNumber=816A478D86E7E21BF3178510B8585325583430EE Certificate serial: 01B1 Authority key identifier: 81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:39:41 +0000 ROA not before: Wed 01 Nov 2023 08:03:45 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 151818 IP address blocks: 103.204.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.crl rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D08A, serialNumber=816A478D86E7E21BF3178510B8585325583430EE Validity Not Before: Nov 1 08:03:45 2023 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=69a3df2d-70f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fc:41:d5:27:7d:0a:3b:13:48:50:aa:85:14: 92:e9:7d:df:f3:57:87:f6:8b:89:c4:9e:87:80:c0: 5b:de:f4:1d:c9:4e:e0:45:33:e2:28:e1:63:b8:2a: 30:20:77:25:7c:5a:6f:52:34:10:c0:5c:1b:07:88: e7:09:ad:2e:59:33:b6:a1:41:6f:2c:24:59:3f:b6: f7:6a:b8:7a:a1:94:c5:75:5c:2f:58:af:9a:2d:89: f0:2b:fa:c1:3c:eb:e2:ba:f9:ca:d9:2d:0e:51:ec: cd:25:cf:00:13:c3:22:d2:11:ce:9b:39:83:57:c8: 41:75:fc:a6:7e:ed:88:43:e6:5a:44:9c:8d:1e:a3: 16:e6:fb:da:0f:d1:53:bd:85:cd:92:72:47:c8:1f: 78:28:0c:92:17:e6:90:65:a2:f4:6f:13:40:e0:d7: 3d:28:46:0c:48:7c:e0:da:91:62:3a:78:e4:2b:6d: c3:79:3a:a9:30:30:e5:bf:b0:8a:72:c6:c2:40:b5: f2:39:e3:05:86:92:ca:4b:19:30:a5:5c:e0:5a:f1: c6:78:6b:46:8b:d3:e0:4c:dc:b1:f6:52:d3:bc:08: 1d:c4:d1:57:9b:97:8d:48:ac:51:a1:89:78:97:25: b9:df:fb:4a:6a:b7:d5:72:4e:fd:d9:c1:7b:dc:9e: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6E:29:4A:C1:39:AB:5E:CB:6A:62:4A:E8:CB:D3:57:D6:9D:94:1D X509v3 Authority Key Identifier: keyid:81:6A:47:8D:86:E7:E2:1B:F3:17:85:10:B8:58:53:25:58:34:30:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/gWpHjYbn4hvzF4UQuFhTJVg0MO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gWpHjYbn4hvzF4UQuFhTJVg0MO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D08A/C0F4E864788A11EEB0692461C4F9AE02/2DBBD9E2788D11EEA502B350C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.40.0/23 Signature Algorithm: sha256WithRSAEncryption 89:40:e3:63:6e:29:a2:56:0d:42:bd:8d:32:b5:e4:f9:ed:17: e8:8f:53:c8:a4:2d:3f:df:93:82:28:f6:0e:54:4b:af:1e:d9: df:7c:52:fc:81:74:6b:68:a5:81:35:e3:a8:97:e8:9e:f6:56: 16:c1:17:26:dc:be:01:42:79:be:ee:c4:74:69:bd:4c:91:70: 28:88:60:48:90:8c:89:de:91:8a:ac:39:75:96:83:ab:5c:ef: c0:eb:b0:0c:a5:48:6f:77:d4:4b:97:15:71:60:d9:81:3a:3f: 68:83:1f:00:ed:b4:ff:63:2f:1d:cc:96:e0:ee:9c:da:0c:63: 18:91:75:91:76:fc:96:92:11:ef:83:a0:59:a7:f6:01:d8:38: b3:42:12:2f:28:58:d0:81:94:41:0b:cd:ad:89:4b:c3:55:04: c1:52:4b:0a:91:82:4f:61:b6:28:0c:bf:bf:52:09:72:eb:51: e4:4f:35:a0:d2:ef:82:8c:00:78:3b:1c:12:28:f7:08:e2:d5: c2:7c:cb:6b:f0:5b:82:5a:79:03:94:34:83:ad:99:89:15:3e: bf:47:f6:c6:7d:2e:ee:ba:09:0c:38:8f:df:7a:5a:df:db:e4: 8a:4d:5c:c9:15:00:8e:57:2b:91:39:f3:5a:75:01:12:88:fc: 2c:e3:62:81 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQwOEExMTAvBgNVBAUTKDgxNkE0NzhEODZFN0UyMUJGMzE3ODUxMEI4NTg1MzI1 NTgzNDMwRUUwHhcNMjMxMTAxMDgwMzQ1WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGYyZC03MGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PxB1Sd9CjsTSFCqhRSS6X3f81eH9ouJxJ6HgMBb3vQdyU7gRTPiKOFjuCow IHclfFpvUjQQwFwbB4jnCa0uWTO2oUFvLCRZP7b3arh6oZTFdVwvWK+aLYnwK/rB POviuvnK2S0OUezNJc8AE8Mi0hHOmzmDV8hBdfymfu2IQ+ZaRJyNHqMW5vvaD9FT vYXNknJHyB94KAySF+aQZaL0bxNA4Nc9KEYMSHzg2pFiOnjkK23DeTqpMDDlv7CK csbCQLXyOeMFhpLKSxkwpVzgWvHGeGtGi9PgTNyx9lLTvAgdxNFXm5eNSKxRoYl4 lyW53/tKarfVck792cF73J6zuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN5uKUrB Oatey2piSujL01fWnZQdMB8GA1UdIwQYMBaAFIFqR42G5+Ib8xeFELhYUyVYNDDu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDA4QS9DMEY0RTg2NDc4 OEExMUVFQjA2OTI0NjFDNEY5QUUwMi9nV3BIallibjRodnpGNFVRdUZoVEpWZzBN TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dXcEhqWWJuNGh2ekY0VVF1RmhUSlZnME1PNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQwOEEvQzBGNEU4NjQ3ODhBMTFFRUIwNjkyNDYxQzRGOUFFMDIvMkRCQkQ5RTI3 ODhEMTFFRUE1MDJCMzUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ8woMA0GCSqGSIb3DQEBCwUAA4IBAQCJQONjbimiVg1CvY0yteT5 7Rfoj1PIpC0/35OCKPYOVEuvHtnffFL8gXRraKWBNeOol+ie9lYWwRcm3L4BQnm+ 7sR0ab1MkXAoiGBIkIyJ3pGKrDl1loOrXO/A67AMpUhvd9RLlxVxYNmBOj9ogx8A 7bT/Yy8dzJbg7pzaDGMYkXWRdvyWkhHvg6BZp/YB2DizQhIvKFjQgZRBC82tiUvD VQTBUksKkYJPYbYoDL+/Ugly61HkTzWg0u+CjAB4OxwSKPcI4tXCfMtr8FuCWnkD lDSDrZmJFT6/R/bGfS7uugkMOI/felrf2+SKTVzJFQCOVyuROfNadQESiPws42KB -----END CERTIFICATE-----Generated at Mon Mar 2 13:19:51 2026 by rpki-client