$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa File: 2B1F9250FDA111F08BC1F4B75F6F56BC.roa (raw, json) Hash identifier: nnqJ8G7VjssukS+0G1GxoQBw1mxaaAbrJ8au5Om0Jj4= Subject key identifier: 03:AE:2F:16:4F:A0:EB:2F:0D:0E:A1:8D:94:81:BF:20:C0:30:FB:54 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: AE Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa Signing time: Sun 01 Mar 2026 13:32:21 +0000 ROA not before: Fri 30 Jan 2026 06:01:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140902 IP address blocks: 103.152.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jan 30 06:01:50 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a43fe5-c1d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8c:8f:6d:51:7f:c9:b8:d6:81:3e:1a:b3:f1: 1b:4d:1d:3e:35:e8:df:a6:4d:c8:e4:37:50:40:0c: e9:a7:ec:dc:23:01:53:2e:40:2b:cd:0b:d1:16:ae: ca:9d:2a:19:52:e7:0a:91:a2:b4:fd:c9:34:62:b5: cb:6d:2a:95:fa:7b:ae:77:c0:8a:44:b0:6d:00:98: c2:ba:cb:5b:0f:e4:c9:19:18:39:91:10:63:51:35: 60:8e:a9:b9:1b:08:66:48:2a:93:61:69:37:50:02: 14:01:ae:ea:7d:41:4a:ee:50:2a:4d:b7:f3:46:1d: 5d:b1:76:45:6d:5c:d8:12:cd:e8:0a:c9:3d:86:f1: ab:52:eb:25:28:27:a8:b7:96:a5:55:db:10:5e:67: 8c:55:93:35:54:79:e3:64:23:e6:3e:dc:ff:27:64: fe:bf:1c:e0:f8:34:99:33:ef:df:23:ed:c7:17:c7: 7c:11:9a:73:c8:8e:f5:e9:42:0b:7c:9c:66:9c:c5: 91:8a:a0:63:60:eb:b4:91:16:4f:d1:31:ca:76:0e: 73:86:cd:0c:8a:c9:a9:4c:b8:24:ed:5f:d7:6c:24: 35:9b:bc:9a:2d:04:06:45:b1:63:16:f7:ea:2e:aa: 24:d7:35:f9:b9:23:3c:18:3e:8d:9c:59:c0:0e:e1: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AE:2F:16:4F:A0:EB:2F:0D:0E:A1:8D:94:81:BF:20:C0:30:FB:54 X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.152.137.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ed:99:09:23:ad:03:6b:86:be:8a:5e:b5:82:6c:1a:aa:ef: 64:d6:b1:01:a2:c4:33:99:0e:bd:7b:f1:59:52:c6:3c:3e:26: 2b:a6:50:7a:bd:2f:d0:c9:dc:d2:16:c9:f1:88:1c:ba:d3:bf: c6:f3:e3:d4:03:1b:b3:ed:e2:4f:c6:08:1f:9c:ce:30:40:0c: 60:7a:24:97:1c:1a:97:9e:1e:95:47:16:9e:77:07:0b:fb:d0: c6:1c:9a:24:77:41:16:3c:1e:b9:5b:11:f7:94:f9:85:52:38: 2f:5e:f4:cc:8a:d1:ef:2d:e3:65:a7:70:52:14:f9:d4:f6:f2: 28:cb:ad:a9:34:d2:24:e7:8f:59:ea:74:26:00:08:37:c7:47: 5a:7e:f5:83:90:68:bf:df:9f:ac:e4:d5:21:7c:08:1e:c6:e8: 7c:32:a2:6e:43:e3:8d:99:cc:6f:67:56:1b:06:3b:85:e9:5f: 74:61:38:be:00:ad:35:fe:f8:83:dd:bc:a8:28:98:14:2f:49: 4b:1d:24:c6:db:db:ea:94:c4:12:87:18:30:3b:6a:60:0b:82: ea:ad:28:22:9d:47:93:6e:bd:71:eb:1d:b3:5b:1c:89:fc:b0: 48:8f:1b:b5:99:dd:4e:8e:b4:59:54:6f:4b:e9:ba:73:84:3a: 26:ad:48:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJFREUxMTAvBgNVBAUTKDlEQjI1OEMxNzBCMjMyMjk0RDg2M0Y2MEQyREMwMTIz Q0RBQUU3ODkwHhcNMjYwMTMwMDYwMTUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2ZlNS1jMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YyPbVF/ybjWgT4as/EbTR0+Nejfpk3I5DdQQAzpp+zcIwFTLkArzQvRFq7K nSoZUucKkaK0/ck0YrXLbSqV+nuud8CKRLBtAJjCustbD+TJGRg5kRBjUTVgjqm5 GwhmSCqTYWk3UAIUAa7qfUFK7lAqTbfzRh1dsXZFbVzYEs3oCsk9hvGrUuslKCeo t5alVdsQXmeMVZM1VHnjZCPmPtz/J2T+vxzg+DSZM+/fI+3HF8d8EZpzyI716UIL fJxmnMWRiqBjYOu0kRZP0THKdg5zhs0MismpTLgk7V/XbCQ1m7yaLQQGRbFjFvfq Lqok1zX5uSM8GD6NnFnADuFS3wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAOuLxZP oOsvDQ6hjZSBvyDAMPtUMB8GA1UdIwQYMBaAFJ2yWMFwsjIpTYY/YNLcASPNqueJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkVERS81NUNCMkUwNDFB QjQxMUYwODVERDY5NEFDNEY5QUUwMi9uYkpZd1hDeU1pbE5oajlnMHR3Qkk4MnE1 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJFREUvNTVDQjJFMDQxQUI0MTFGMDg1REQ2OTRBQzRGOUFFMDIvMkIxRjkyNTBG REExMTFGMDhCQzFGNEI3NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5iJMA0GCSqGSIb3DQEBCwUAA4IBAQAu7ZkJI60Da4a+il61gmwa qu9k1rEBosQzmQ69e/FZUsY8PiYrplB6vS/QydzSFsnxiBy607/G8+PUAxuz7eJP xggfnM4wQAxgeiSXHBqXnh6VRxaedwcL+9DGHJokd0EWPB65WxH3lPmFUjgvXvTM itHvLeNlp3BSFPnU9vIoy62pNNIk549Z6nQmAAg3x0dafvWDkGi/35+s5NUhfAge xuh8MqJuQ+ONmcxvZ1YbBjuF6V90YTi+AK01/viD3byoKJgUL0lLHSTG29vqlMQS hxgwO2pgC4LqrSginUeTbr1x6x2zWxyJ/LBIjxu1md1OjrRZVG9L6bpzhDomrUhz -----END CERTIFICATE-----Generated at Mon Mar 2 13:10:48 2026 by rpki-client