$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa File: 2996029C591611EA86D2A42DC4F9AE02.roa (raw, json) Hash identifier: YdPahH5dD4zuJY8bYiwVpnXjRlbDVfqoQdod66sRqWI= Subject key identifier: 4F:0D:E5:47:AD:02:A2:4F:1A:17:12:BF:17:07:29:7A:00:25:C2:B4 Certificate issuer: /CN=A9154B7E/serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Certificate serial: 0A8A Authority key identifier: EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa Signing time: Wed 26 Mar 2025 19:29:57 +0000 ROA not before: Wed 26 Mar 2025 19:29:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132454 IP address blocks: 103.21.168.0/22 maxlen: 24 2400:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B7E, serialNumber=EAF152BD1DD470EF73A51D4B951D4FA0AA4CCD8E Validity Not Before: Mar 26 19:29:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e455b5-1035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:30:31:f9:f3:87:ec:b8:ed:0d:ca:0b:6e:6b: c4:73:01:0f:1f:02:f6:ef:e8:d7:39:2a:2d:74:ff: b1:c0:d3:94:b5:19:92:90:13:41:75:b5:e2:79:38: 09:5d:27:40:d4:cc:ac:42:23:b7:1d:07:f4:74:45: 41:3a:74:7d:b8:b5:84:1c:1d:55:40:bf:0b:9f:49: 65:c7:f1:49:d7:c6:ef:2f:de:42:b4:dd:df:b8:5c: 9a:f4:c8:26:2c:19:e7:94:08:6f:dc:16:5a:c1:72: b1:3e:4d:45:6f:82:d5:fa:2f:f2:59:b6:4e:df:07: c2:d3:a3:dd:05:ca:61:97:6c:de:41:de:f4:50:a1: 0c:b5:76:6d:4e:a5:ab:c5:89:9a:3c:23:cc:27:d9: cf:81:5e:17:d7:5a:75:54:59:c7:cc:7b:c7:94:ea: f9:60:91:ce:50:0e:62:10:b5:d0:29:cf:25:bc:a4: 36:91:f7:f9:74:c4:0f:88:17:22:80:77:c8:32:8b: 80:29:c2:d4:e1:23:01:2b:dd:fc:f7:a9:c6:98:c8: fe:8e:70:35:6a:35:f8:5c:68:17:65:9e:3d:79:4a: 23:f3:50:89:d6:68:e0:e8:73:0a:11:29:8f:1a:34: 88:22:1b:ff:23:57:21:df:c2:8b:1b:69:2e:89:2a: 10:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:0D:E5:47:AD:02:A2:4F:1A:17:12:BF:17:07:29:7A:00:25:C2:B4 X509v3 Authority Key Identifier: keyid:EA:F1:52:BD:1D:D4:70:EF:73:A5:1D:4B:95:1D:4F:A0:AA:4C:CD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/6vFSvR3UcO9zpR1LlR1PoKpMzY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6vFSvR3UcO9zpR1LlR1PoKpMzY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B7E/3F35C084591511EAB3F2A12CC4F9AE02/2996029C591611EA86D2A42DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.168.0/22 IPv6: 2400:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 26:33:e4:95:41:ec:21:7d:ed:da:7b:a2:f2:36:d8:c2:98:57: e9:36:e0:84:e6:2b:13:4c:39:42:a9:40:a2:41:94:f0:11:c9: 18:e2:9a:36:1c:0d:4a:6a:ff:e2:74:2b:e1:e7:20:5f:04:6d: 47:d7:b0:c9:5c:e4:3d:f0:19:6d:ee:6a:75:43:54:69:0a:6c: 25:29:b3:03:c2:f0:48:72:8a:c1:e9:1f:92:a2:fc:fe:3b:5d: de:7e:fb:a2:d8:35:97:b8:ca:9b:3c:87:62:b7:dc:66:d4:89: 9b:f8:dc:39:ac:4b:d3:65:10:37:96:68:2e:cd:70:2e:3b:99: e3:7a:d1:4d:fa:98:30:0b:3a:25:0c:5b:7a:d3:d2:bd:74:c0: 65:92:ad:94:d2:72:ea:78:9c:5d:5f:50:47:12:73:c0:18:c9: ee:c3:fa:68:22:05:d2:ad:65:cc:98:6e:c2:b3:92:0e:31:5d: 7f:6f:b6:3e:3a:ce:04:f8:5f:77:61:7a:48:d2:1a:53:c1:df: e0:6d:55:cb:79:db:93:9d:9d:d0:98:ea:f8:22:2d:5b:c4:2b: 59:42:45:1b:db:fc:62:13:d5:b7:3d:0b:1c:2d:dc:e8:4f:69: 00:6c:c9:62:70:b3:10:ff:d3:23:a3:5b:60:1f:40:66:0d:81: 73:8f:10:be -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCN0UxMTAvBgNVBAUTKEVBRjE1MkJEMURENDcwRUY3M0E1MUQ0Qjk1MUQ0RkEw QUE0Q0NEOEUwHhcNMjUwMzI2MTkyOTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NTViNS0xMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zAx+fOH7LjtDcoLbmvEcwEPHwL27+jXOSotdP+xwNOUtRmSkBNBdbXieTgJ XSdA1MysQiO3HQf0dEVBOnR9uLWEHB1VQL8Ln0llx/FJ18bvL95CtN3fuFya9Mgm LBnnlAhv3BZawXKxPk1Fb4LV+i/yWbZO3wfC06PdBcphl2zeQd70UKEMtXZtTqWr xYmaPCPMJ9nPgV4X11p1VFnHzHvHlOr5YJHOUA5iELXQKc8lvKQ2kff5dMQPiBci gHfIMouAKcLU4SMBK93896nGmMj+jnA1ajX4XGgXZZ49eUoj81CJ1mjg6HMKESmP GjSIIhv/I1ch38KLG2kuiSoQGQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE8N5Uet AqJPGhcSvxcHKXoAJcK0MB8GA1UdIwQYMBaAFOrxUr0d1HDvc6UdS5UdT6CqTM2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI3RS8zRjM1QzA4NDU5 MTUxMUVBQjNGMkExMkNDNEY5QUUwMi82dkZTdlIzVWNPOXpwUjFMbFIxUG9LcE16 WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ2RlN2UjNVY085enBSMUxsUjFQb0twTXpZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCN0UvM0YzNUMwODQ1OTE1MTFFQUIzRjJBMTJDQzRGOUFFMDIvMjk5NjAyOUM1 OTE2MTFFQTg2RDJBNDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFagwDQQCAAIwBwMFACQAioAwDQYJKoZIhvcNAQELBQAD ggEBACYz5JVB7CF97dp7ovI22MKYV+k24ITmKxNMOUKpQKJBlPARyRjimjYcDUpq /+J0K+HnIF8EbUfXsMlc5D3wGW3uanVDVGkKbCUpswPC8EhyisHpH5Ki/P47Xd5+ +6LYNZe4yps8h2K33GbUiZv43DmsS9NlEDeWaC7NcC47meN60U36mDALOiUMW3rT 0r10wGWSrZTScup4nF1fUEcSc8AYye7D+mgiBdKtZcyYbsKzkg4xXX9vtj46zgT4 X3dhekjSGlPB3+BtVct525OdndCY6vgiLVvEK1lCRRvb/GIT1bc9Cxwt3OhPaQBs yWJwsxD/0yOjW2AfQGYNgXOPEL4= -----END CERTIFICATE-----Generated at Wed Nov 5 17:06:40 2025 by rpki-client