$ rpki-client -vvf rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa File: 2FD08C3244C511EAB6D6A36FC4F9AE02.roa (raw, json) Hash identifier: tgDOCbKwmjyp6bvMW7YcW8XxCX4tWOYG/agYINdY5ok= Subject key identifier: ED:78:32:F0:E9:8F:01:40:95:7D:24:6A:A8:76:E9:E2:54:B1:B3:76 Certificate issuer: /CN=A919DF6F/serialNumber=FDC6135515D5D015C9443BB4C59BCBFB6D0693D1 Certificate serial: 0BA1 Authority key identifier: FD:C6:13:55:15:D5:D0:15:C9:44:3B:B4:C5:9B:CB:FB:6D:06:93:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:44:29 +0000 ROA not before: Thu 22 Jan 2026 19:16:04 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 139928 IP address blocks: 103.147.110.0/23 maxlen: 23 103.147.110.0/24 maxlen: 24 103.147.111.0/24 maxlen: 24 2001:df2:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.crl rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2977 (0xba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DF6F, serialNumber=FDC6135515D5D015C9443BB4C59BCBFB6D0693D1 Validity Not Before: Jan 22 19:16:04 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a450cd-f37b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6d:74:36:b8:2e:b3:a3:87:1f:2d:c2:cf:33: 37:5f:48:5b:27:c0:ba:6b:32:50:7e:66:4b:9e:81: 14:36:f2:99:9e:be:5f:80:92:66:18:b4:72:18:b6: a1:1e:77:29:f1:85:5b:46:0e:c2:47:3b:f2:69:9e: d7:89:b5:97:bf:99:45:a6:d6:42:79:1d:a5:0f:64: dc:ca:01:9b:1f:9a:7c:50:d6:eb:de:1f:d8:01:aa: d5:e6:ca:30:ce:f7:3a:e2:e9:f4:75:c4:08:3b:8f: 9f:f2:b5:06:59:ec:45:69:eb:59:b5:ac:19:cf:28: 65:46:41:57:1d:15:bc:bf:70:ab:48:e0:75:bd:10: 07:24:ff:cb:45:7b:c0:fb:44:40:89:31:04:2d:c4: 29:61:ed:58:cb:d4:73:24:59:28:30:10:61:85:3b: 74:55:f8:b9:7a:78:33:79:30:92:34:50:c2:17:71: 59:e2:9d:ff:dc:f9:fe:e1:95:6c:64:42:29:c9:03: 8f:44:29:ba:6f:5e:c9:86:cb:95:6c:70:02:97:bd: 32:23:ec:a2:0e:74:9b:7c:32:b9:2a:e3:6b:66:75: 8b:08:6b:dc:ce:b3:35:b8:8c:3f:54:9f:0b:5a:88: f1:9c:28:87:da:5d:14:db:04:7e:cd:00:d5:ff:98: 13:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:78:32:F0:E9:8F:01:40:95:7D:24:6A:A8:76:E9:E2:54:B1:B3:76 X509v3 Authority Key Identifier: keyid:FD:C6:13:55:15:D5:D0:15:C9:44:3B:B4:C5:9B:CB:FB:6D:06:93:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/_cYTVRXV0BXJRDu0xZvL-20Gk9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_cYTVRXV0BXJRDu0xZvL-20Gk9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DF6F/DA40A8E8429811EAB7A22A12C4F9AE02/2FD08C3244C511EAB6D6A36FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.110.0/23 IPv6: 2001:df2:9380::/48 Signature Algorithm: sha256WithRSAEncryption 69:19:f7:d8:81:db:d7:39:bb:8c:aa:0d:44:88:4a:64:73:b0: 4c:76:32:20:35:a9:52:54:73:27:92:02:3b:6a:27:3f:ee:66: 87:3a:13:34:0d:6c:86:5c:c6:d7:d9:c8:f2:c2:32:65:a7:3b: 15:86:64:9d:6a:e1:11:59:24:2e:8e:db:b5:85:d7:78:3e:57: f8:e5:55:98:a7:9a:f8:38:e6:55:13:2b:da:6d:9e:93:94:61: a7:98:d6:e9:0b:87:19:f8:61:65:af:01:75:f9:83:35:2e:0a: 08:f2:ce:fc:8e:87:ca:d2:18:25:ad:63:01:99:9c:83:07:a4: b8:17:21:7a:33:b8:3b:48:5e:e0:ff:fd:ce:e3:c9:d0:d2:cb: 37:01:0d:78:00:d7:52:d3:8f:a9:ad:84:66:63:55:8a:74:1b: 33:53:5b:d6:de:dd:90:9b:15:03:97:23:fb:c9:c8:62:1d:c4: d6:69:42:1d:02:26:32:4b:8a:c7:a3:3f:7e:c6:3f:dc:9c:54: 69:63:73:67:11:1e:2a:25:f4:35:0d:47:f6:34:ec:5b:ed:a4: b9:f0:a9:0b:e5:02:ff:00:7e:cf:47:25:18:e0:e9:e6:0c:83: 00:e9:c7:b0:1a:bb:7c:d2:ca:12:2e:5b:30:da:c9:5a:cf:a0: 1e:53:3c:b1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURGNkYxMTAvBgNVBAUTKEZEQzYxMzU1MTVENUQwMTVDOTQ0M0JCNEM1OUJDQkZC NkQwNjkzRDEwHhcNMjYwMTIyMTkxNjA0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTBjZC1mMzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmm10Nrgus6OHHy3CzzM3X0hbJ8C6azJQfmZLnoEUNvKZnr5fgJJmGLRyGLah Hncp8YVbRg7CRzvyaZ7XibWXv5lFptZCeR2lD2TcygGbH5p8UNbr3h/YAarV5sow zvc64un0dcQIO4+f8rUGWexFaetZtawZzyhlRkFXHRW8v3CrSOB1vRAHJP/LRXvA +0RAiTEELcQpYe1Yy9RzJFkoMBBhhTt0Vfi5engzeTCSNFDCF3FZ4p3/3Pn+4ZVs ZEIpyQOPRCm6b17JhsuVbHACl70yI+yiDnSbfDK5KuNrZnWLCGvczrM1uIw/VJ8L WojxnCiH2l0U2wR+zQDV/5gTPQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFO14MvDp jwFAlX0kaqh26eJUsbN2MB8GA1UdIwQYMBaAFP3GE1UV1dAVyUQ7tMWby/ttBpPR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REY2Ri9EQTQwQThFODQy OTgxMUVBQjdBMjJBMTJDNEY5QUUwMi9fY1lUVlJYVjBCWEpSRHUweFp2TC0yMEdr OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19jWVRWUlhWMEJYSlJEdTB4WnZMLTIwR2s5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURGNkYvREE0MEE4RTg0Mjk4MTFFQUI3QTIyQTEyQzRGOUFFMDIvMkZEMDhDMzI0 NEM1MTFFQUI2RDZBMzZGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5NuMA8EAgACMAkDBwAgAQ3yk4AwDQYJKoZIhvcNAQELBQADggEB AGkZ99iB29c5u4yqDUSISmRzsEx2MiA1qVJUcyeSAjtqJz/uZoc6EzQNbIZcxtfZ yPLCMmWnOxWGZJ1q4RFZJC6O27WF13g+V/jlVZinmvg45lUTK9ptnpOUYaeY1ukL hxn4YWWvAXX5gzUuCgjyzvyOh8rSGCWtYwGZnIMHpLgXIXozuDtIXuD//c7jydDS yzcBDXgA11LTj6mthGZjVYp0GzNTW9be3ZCbFQOXI/vJyGIdxNZpQh0CJjJLisej P37GP9ycVGljc2cRHiol9DUNR/Y07FvtpLnwqQvlAv8Afs9HJRjg6eYMgwDpx7Aa u3zSyhIuWzDayVrPoB5TPLE= -----END CERTIFICATE-----Generated at Mon Mar 2 14:02:39 2026 by rpki-client