$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa File: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (raw, json) Hash identifier: 7RkUtzQkZLY5YRqosDZQz/bCds6A9bzXj/NsapvbrFc= Subject key identifier: C8:C9:2C:F8:F0:16:AF:92:29:39:04:36:8F:43:02:3D:E7:18:78:AF Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: 024D Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa Signing time: Wed 21 Jan 2026 01:21:49 +0000 ROA not before: Wed 21 Jan 2026 01:21:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150685 IP address blocks: 103.55.240.0/24 maxlen: 24 103.55.241.0/24 maxlen: 24 2001:df1:b3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 01:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5, serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: Jan 21 01:21:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69702a2d-5644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:65:98:c9:db:c6:81:e4:b2:ae:cb:b5:39: 2b:d3:a5:f6:97:33:99:ae:ef:e2:f4:50:05:4c:b9: 5b:d1:79:c3:b5:36:e6:c3:49:43:2d:d5:1e:5e:7b: d5:85:36:17:51:b9:b6:70:21:40:ab:1f:61:8d:44: 30:49:c4:20:16:1e:32:75:51:37:ad:dc:73:4a:06: a4:32:e4:66:e9:b6:ce:87:7d:dd:ec:a6:31:c2:90: 27:f4:d1:d6:b9:a7:3e:cd:54:04:ca:70:30:00:6c: 03:d8:de:7d:f8:ae:d0:63:ca:8f:e5:7f:fb:79:2a: 3e:a3:50:07:1f:8e:22:9b:0d:85:8e:73:a5:53:cb: 09:5c:e1:11:e0:c8:99:36:9b:2b:20:85:ed:d8:35: 33:9b:67:bf:3d:6a:34:ac:92:bb:74:d4:13:c6:01: 4a:f2:35:55:0b:6d:67:bd:47:ee:28:d7:db:3c:ac: d2:ad:08:ae:9f:eb:c8:0f:7d:84:ac:06:38:0a:a7: 97:9f:a1:68:0a:d9:e9:b1:57:62:20:62:ea:40:8f: 75:3d:c4:24:b3:c6:2c:4e:f4:ce:17:04:18:b5:ba: d1:ae:15:87:e4:ca:e0:cb:b9:59:e9:9f:1d:8b:fc: 3e:1f:cf:b8:4b:16:8b:4c:15:1f:98:17:0e:10:d1: 9a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C9:2C:F8:F0:16:AF:92:29:39:04:36:8F:43:02:3D:E7:18:78:AF X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.240.0/23 IPv6: 2001:df1:b3c0::/48 Signature Algorithm: sha256WithRSAEncryption 7b:68:b1:37:fe:d2:ed:fc:9e:f1:fb:59:de:c4:09:96:d9:0e: 9a:11:58:26:13:d3:ed:b1:2c:09:0f:e4:57:2c:f8:43:7c:ef: 5d:92:ee:97:e7:3f:e4:bf:51:d1:18:00:f6:b9:b7:9e:53:dd: 4a:8e:d4:dc:54:b0:5e:6d:23:4b:34:8e:5f:61:67:5f:bf:9e: 47:c1:86:af:7e:00:2e:5a:f7:28:7c:e9:0e:d0:00:87:1e:82: 48:99:4f:a9:b2:94:e4:57:b7:2a:6e:44:53:88:60:46:04:17: 1d:46:c4:73:14:9a:0e:21:d7:49:ed:fa:a3:78:16:7a:b6:26: 05:f9:f6:9a:f4:38:88:03:15:05:81:bc:c7:0d:d5:78:0e:e3: 62:d0:40:41:a9:f2:a3:81:fa:4f:2f:de:7e:1d:ad:ae:d9:69: d6:a6:63:20:fa:52:b3:9d:57:a3:ab:c1:15:f5:a9:8c:aa:f8: 6c:24:de:3c:32:78:18:15:91:3c:5d:5c:41:cc:99:23:56:ae: 43:db:99:3d:86:14:09:80:59:09:8b:87:e1:57:f2:66:0c:23: 0e:9e:ac:46:50:19:47:31:d1:6f:16:7b:64:43:9b:ce:8c:58: 88:5a:44:7f:e4:56:b9:22:55:6d:d6:ff:6a:87:6f:3b:1f:59: 07:ac:fa:08 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjYwMTIxMDEyMTQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcwMmEyZC01NjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxdlmMnbxoHksq7LtTkr06X2lzOZru/i9FAFTLlb0XnDtTbmw0lDLdUeXnvV hTYXUbm2cCFAqx9hjUQwScQgFh4ydVE3rdxzSgakMuRm6bbOh33d7KYxwpAn9NHW uac+zVQEynAwAGwD2N59+K7QY8qP5X/7eSo+o1AHH44imw2FjnOlU8sJXOER4MiZ NpsrIIXt2DUzm2e/PWo0rJK7dNQTxgFK8jVVC21nvUfuKNfbPKzSrQiun+vID32E rAY4CqeXn6FoCtnpsVdiIGLqQI91PcQks8YsTvTOFwQYtbrRrhWH5Mrgy7lZ6Z8d i/w+H8+4SxaLTBUfmBcOENGaaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMjJLPjw Fq+SKTkENo9DAj3nGHivMB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBCRjUvNkZDNjQxMzQ3RkE5MTFFRDlBM0E0MjUyQzRGOUFFMDIvQjIyMzNGNkM3 RkFCMTFFRDgzNEQ4RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnN/AwDwQCAAIwCQMHACABDfGzwDANBgkqhkiG9w0BAQsF AAOCAQEAe2ixN/7S7fye8ftZ3sQJltkOmhFYJhPT7bEsCQ/kVyz4Q3zvXZLul+c/ 5L9R0RgA9rm3nlPdSo7U3FSwXm0jSzSOX2FnX7+eR8GGr34ALlr3KHzpDtAAhx6C SJlPqbKU5Fe3Km5EU4hgRgQXHUbEcxSaDiHXSe36o3gWerYmBfn2mvQ4iAMVBYG8 xw3VeA7jYtBAQanyo4H6Ty/efh2trtlp1qZjIPpSs51Xo6vBFfWpjKr4bCTePDJ4 GBWRPF1cQcyZI1auQ9uZPYYUCYBZCYuH4VfyZgwjDp6sRlAZRzHRbxZ7ZEObzoxY iFpEf+RWuSJVbdb/aodvOx9ZB6z6CA== -----END CERTIFICATE-----Generated at Fri Feb 20 00:11:50 2026 by rpki-client