$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa File: 49CEB44A28D111EDB364C870C4F9AE02.roa (raw, json) Hash identifier: jgvcwXfR1ytNtZnPkE0NS8oNTgn4AVeJN86S8AIpa0Q= Subject key identifier: 2F:E3:91:49:E7:74:9C:B4:21:22:3C:FF:DB:A4:CC:98:8A:93:4F:46 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 02FF Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa Signing time: Fri 19 Jun 2026 01:30:42 +0000 ROA not before: Fri 19 Jun 2026 01:30:42 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 56294 IP address blocks: 103.215.160.0/24 maxlen: 24 103.215.161.0/24 maxlen: 24 103.215.162.0/24 maxlen: 24 103.215.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 01:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Jun 19 01:30:42 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a349bc1-c01a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d1:68:cb:d6:5d:bd:a6:75:2e:f7:ab:ae:62: ee:e8:19:d9:c3:b3:b0:5a:79:26:e4:69:61:e0:ff: 09:60:c0:af:31:b7:f1:2f:05:46:3a:8c:a2:27:9a: 85:dd:07:c1:0e:ab:35:1d:66:11:43:28:83:79:63: 4b:ce:89:3e:5b:fc:d8:09:03:31:50:2b:10:77:f4: c2:b9:f2:e4:a7:cf:dc:6b:24:08:e8:86:3e:72:75: fb:0c:38:93:11:76:82:fa:1a:88:c4:95:9f:55:b6: 40:5b:17:d6:2c:32:d7:08:dd:81:f9:a7:f4:1a:e3: 3c:56:aa:8c:5a:b5:5c:e2:78:a3:61:3c:fb:33:d8: 3a:27:db:3a:35:29:85:ec:df:21:77:8d:62:16:71: 78:50:62:7d:08:91:a1:a1:8b:2e:01:70:17:aa:e1: 1d:e5:79:fd:be:cc:40:84:0c:ae:0a:aa:c2:78:39: 4b:06:38:d2:88:51:29:f7:ec:05:48:2d:01:2a:e6: ea:53:71:99:40:6c:c0:7b:aa:d9:a8:fb:b1:ac:e4: af:62:9c:06:10:f9:be:cf:7a:7e:62:b1:7a:a5:28: 35:c3:13:cf:14:c4:bc:38:99:36:ec:86:c8:e9:7d: e5:da:38:fa:a0:08:2c:96:0c:45:ca:3f:8e:19:f6: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E3:91:49:E7:74:9C:B4:21:22:3C:FF:DB:A4:CC:98:8A:93:4F:46 X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/49CEB44A28D111EDB364C870C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.215.160.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:d8:f9:14:67:cf:f9:0f:c7:44:7b:0c:4d:2a:b4:79:58:1f: 0c:38:26:3a:09:83:6b:cd:50:66:cf:c1:d2:d5:b8:91:6f:8b: cb:7f:6e:76:b5:b1:bf:be:52:f1:7a:94:19:0a:a5:a5:e0:35: 6c:7e:73:66:a5:2d:e9:5b:62:21:aa:fe:fc:4d:8e:e1:06:6c: fe:00:b2:78:6c:be:5e:6a:3c:a6:74:0d:50:5c:25:62:f2:a2: e6:bd:df:45:6a:d2:e3:4a:5b:92:4c:a1:72:70:74:cf:d3:09: 4b:b3:ec:74:df:fd:11:3c:1e:74:93:24:d4:18:dc:84:32:70: ae:74:f5:3d:c3:ed:34:bc:5d:40:75:9e:6d:8b:60:08:b2:72: 12:20:7c:03:06:1e:63:07:f4:ed:f8:cd:1f:a9:41:3d:35:7f: 14:ba:2e:a6:b0:f1:54:1a:13:51:ca:84:22:21:b8:f7:26:4b: 2f:45:9e:b5:f6:40:9c:5e:f6:b7:b1:e9:30:24:0d:b9:44:77: 1a:84:49:25:65:47:f8:f2:e3:4e:5d:46:e2:98:eb:b8:5b:d9: e9:68:4e:75:9b:32:a4:ae:dd:5c:aa:99:95:ef:35:ed:3a:54: c7:a3:3f:16:5f:56:6d:a6:30:fc:2e:56:63:bd:c5:78:1f:57: b0:f7:10:96 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjYwNjE5MDEzMDQyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTM0OWJjMS1jMDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNFoy9ZdvaZ1LverrmLu6BnZw7OwWnkm5Glh4P8JYMCvMbfxLwVGOoyiJ5qF 3QfBDqs1HWYRQyiDeWNLzok+W/zYCQMxUCsQd/TCufLkp8/cayQI6IY+cnX7DDiT EXaC+hqIxJWfVbZAWxfWLDLXCN2B+af0GuM8VqqMWrVc4nijYTz7M9g6J9s6NSmF 7N8hd41iFnF4UGJ9CJGhoYsuAXAXquEd5Xn9vsxAhAyuCqrCeDlLBjjSiFEp9+wF SC0BKubqU3GZQGzAe6rZqPuxrOSvYpwGEPm+z3p+YrF6pSg1wxPPFMS8OJk27IbI 6X3l2jj6oAgslgxFyj+OGfZRQwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC/jkUnn dJy0ISI8/9ukzJiKk09GMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMjgvNEJEQUVFREMyOENFMTFFREI2ODMzOTZFQzRGOUFFMDIvNDlDRUI0NEEy OEQxMTFFREIzNjRDODcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ9egMA0GCSqGSIb3DQEBCwUAA4IBAQA72PkUZ8/5D8dEewxNKrR5 WB8MOCY6CYNrzVBmz8HS1biRb4vLf252tbG/vlLxepQZCqWl4DVsfnNmpS3pW2Ih qv78TY7hBmz+ALJ4bL5eajymdA1QXCVi8qLmvd9FatLjSluSTKFycHTP0wlLs+x0 3/0RPB50kyTUGNyEMnCudPU9w+00vF1AdZ5ti2AIsnISIHwDBh5jB/Tt+M0fqUE9 NX8Uui6msPFUGhNRyoQiIbj3JksvRZ619kCcXva3sekwJA25RHcahEklZUf48uNO XUbimOu4W9npaE51mzKkrt1cqpmV7zXtOlTHoz8WX1ZtpjD8LlZjvcV4H1ew9xCW -----END CERTIFICATE-----Generated at Wed Jun 24 14:30:33 2026 by rpki-client