$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa File: AEF266ECD34811EDAD96D95DC4F9AE02.roa (raw, json) Hash identifier: hl4G0niDRAkI8guzsrGAz/HUW/iq4sTuXVVyCv6WIqc= Subject key identifier: 09:B6:F1:A8:6C:82:D5:B8:31:26:14:A6:A5:CB:0A:8B:DD:85:CF:96 Certificate issuer: /CN=A914D2BF/serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Certificate serial: 022A Authority key identifier: E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:33:48 +0000 ROA not before: Mon 07 Apr 2025 03:08:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150315 IP address blocks: 103.99.132.0/24 maxlen: 24 103.99.133.0/24 maxlen: 24 2001:df2:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2BF, serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Validity Not Before: Apr 7 03:08:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3ddcc-1a0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a2:aa:5b:2c:0b:a3:56:f6:1a:58:02:ad:99: 33:19:f6:d9:42:1e:a0:8a:e3:d7:9d:8f:5d:c1:09: bf:3a:54:d0:a0:1d:19:57:23:ff:03:00:68:b0:04: 9a:cd:83:58:51:93:4b:b7:46:b0:59:fd:d6:13:ef: 0f:d9:29:ac:09:4f:16:0a:50:1c:7b:95:96:c7:3e: 50:2c:b0:8a:2b:78:5b:ae:29:99:db:c9:f8:70:e2: 68:10:c4:98:c5:f7:aa:40:d1:4a:57:ab:67:51:f1: 9c:72:29:b0:a0:c4:fb:f1:e3:73:c8:7e:0b:c7:71: ad:ec:cb:cb:fa:66:b2:d7:77:70:fa:6b:cc:e5:03: dc:b6:79:7b:c5:b2:f0:1a:e8:c8:70:b8:a6:2d:d6: a2:a4:6d:f0:82:9c:b0:89:66:77:ac:92:08:ee:40: ae:f3:63:fe:08:40:ec:7d:87:d2:32:5d:ae:d5:76: 6b:37:81:87:df:8d:87:12:61:e4:75:0b:ff:e5:9e: 33:be:9a:58:12:e1:9e:c5:5d:9b:7a:6a:e9:94:47: 20:79:eb:f0:2b:4b:ab:26:1d:c2:9e:65:b2:43:27: 88:7e:70:6d:4d:8f:22:f6:61:a4:2d:78:d4:c4:f4: bb:18:56:6c:0f:3f:27:6b:1a:8a:8f:30:ce:57:b3: 16:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B6:F1:A8:6C:82:D5:B8:31:26:14:A6:A5:CB:0A:8B:DD:85:CF:96 X509v3 Authority Key Identifier: keyid:E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.132.0/23 IPv6: 2001:df2:d40::/48 Signature Algorithm: sha256WithRSAEncryption 39:99:c5:17:dd:13:35:37:57:4c:77:d8:6a:5c:cf:20:74:a4: 7b:9d:64:fd:a2:35:1f:10:9d:2f:98:10:42:40:69:81:05:93: cf:7b:52:77:8c:2c:73:65:d5:f1:98:50:da:3f:d7:58:ca:bb: cc:1e:e5:07:03:21:22:ed:9f:fc:f2:5e:e1:b3:28:a9:22:1d: 99:75:f8:c3:3b:b3:d5:6e:70:f8:37:d1:75:0d:c6:89:07:5c: b7:b6:e9:94:ca:b0:22:fd:ae:c5:b1:87:98:0e:83:9a:e9:6e: 1f:ce:55:f6:79:45:f2:09:dc:72:fa:19:73:22:be:24:ee:31: 2c:e6:40:bf:09:e8:11:e4:c1:9b:f1:a3:60:48:45:6b:b9:c6: f8:d1:c1:e1:04:b6:fc:ea:04:dc:16:cb:56:d6:cd:b9:39:4d: d5:b2:15:a3:f5:da:1f:08:c3:05:a1:81:0d:a8:e3:6d:2f:ef: b1:60:42:97:82:03:7c:72:61:9e:f7:6a:c5:43:7c:81:e2:32: 5a:79:8f:c8:a4:bd:a2:07:b6:d5:3c:07:5a:c1:7f:d2:18:6c: 5a:c8:80:e5:19:cb:19:bb:0e:4e:27:91:0f:a7:c7:55:66:c3: f2:7f:0d:26:82:74:50:73:73:9f:8c:53:79:fe:29:4e:ee:cf: ac:5e:f9:94 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyQkYxMTAvBgNVBAUTKEU2QkIwM0FBNThBMEMyNzBFQjY2QjNFQUVCMjQwOEZG RkFCQTVFQzcwHhcNMjUwNDA3MDMwODQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGRjYy0xYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKKqWywLo1b2GlgCrZkzGfbZQh6giuPXnY9dwQm/OlTQoB0ZVyP/AwBosASa zYNYUZNLt0awWf3WE+8P2SmsCU8WClAce5WWxz5QLLCKK3hbrimZ28n4cOJoEMSY xfeqQNFKV6tnUfGccimwoMT78eNzyH4Lx3Gt7MvL+may13dw+mvM5QPctnl7xbLw GujIcLimLdaipG3wgpywiWZ3rJII7kCu82P+CEDsfYfSMl2u1XZrN4GH342HEmHk dQv/5Z4zvppYEuGexV2bemrplEcgeevwK0urJh3CnmWyQyeIfnBtTY8i9mGkLXjU xPS7GFZsDz8naxqKjzDOV7MWnwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAm28ahs gtW4MSYUpqXLCovdhc+WMB8GA1UdIwQYMBaAFOa7A6pYoMJw62az6uskCP/6ul7H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJCRi8yQTcxRTZCQ0Qz NDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3duRHJaclBxNnlRSV9fcTZY c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyc0RxbGlnd25EclpyUHE2eVFJX19xNlhzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQyQkYvMkE3MUU2QkNEMzQ0MTFFRDhFMkM1NDY0QzRGOUFFMDIvQUVGMjY2RUNE MzQ4MTFFREFEOTZEOTVEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ2OEMA8EAgACMAkDBwAgAQ3yDUAwDQYJKoZIhvcNAQELBQADggEB ADmZxRfdEzU3V0x32GpczyB0pHudZP2iNR8QnS+YEEJAaYEFk897UneMLHNl1fGY UNo/11jKu8we5QcDISLtn/zyXuGzKKkiHZl1+MM7s9VucPg30XUNxokHXLe26ZTK sCL9rsWxh5gOg5rpbh/OVfZ5RfIJ3HL6GXMiviTuMSzmQL8J6BHkwZvxo2BIRWu5 xvjRweEEtvzqBNwWy1bWzbk5TdWyFaP12h8IwwWhgQ2o420v77FgQpeCA3xyYZ73 asVDfIHiMlp5j8ikvaIHttU8B1rBf9IYbFrIgOUZyxm7Dk4nkQ+nx1Vmw/J/DSaC dFBzc5+MU3n+KU7uz6xe+ZQ= -----END CERTIFICATE-----Generated at Fri Mar 13 19:34:56 2026 by rpki-client