$ rpki-client -vvf rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa File: 9888A21221DA11EBAA441F75C4F9AE02.roa (raw, json) Hash identifier: 3FuLmxDCD+MP2E5xN50Lj/x322ZG9I8Yf6S6pBk1v9I= Subject key identifier: B4:56:BE:E3:0D:12:A0:0D:8C:A9:40:FF:DE:DA:53:86:4B:07:90:92 Certificate issuer: /CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Certificate serial: 0CEE Authority key identifier: 5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:40:23 +0000 ROA not before: Wed 31 Dec 2025 18:16:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18013 IP address blocks: 103.145.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3310 (0xcee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BFDA, serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Validity Not Before: Dec 31 18:16:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47a06-1a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:02:fe:7b:7a:1e:95:91:8f:46:28:8c:1b: 49:8d:45:5c:16:6a:07:43:a4:2a:27:4c:a8:62:3a: 54:39:7f:09:21:41:65:bc:6c:6e:3d:80:7f:d8:c1: 1c:89:11:60:18:ce:56:aa:d0:f7:07:91:93:c7:28: 19:77:f8:f3:68:65:eb:dc:97:69:b4:19:e3:04:6e: b7:0b:8b:00:f5:07:0a:18:2d:0a:d3:4c:2a:5e:22: f6:3e:ec:e4:57:fa:79:a5:9e:37:78:17:34:ec:56: ad:55:dc:96:42:a5:0d:18:46:24:14:20:56:47:8e: d1:5e:3c:3a:41:52:d6:0e:6c:a7:22:0a:36:e8:12: d2:5a:03:e8:3a:41:52:eb:dd:a6:2e:94:cf:ed:f7: c5:84:ff:cb:11:58:80:40:af:a1:b5:b6:7e:55:b4: 19:d0:05:39:79:ed:2b:88:13:4d:e0:c1:c0:81:40: f9:42:b8:81:a8:47:3c:90:2a:56:a0:f9:33:34:a1: 9e:94:b3:3c:04:57:57:2e:0a:25:9b:3d:38:89:67: ca:01:e3:39:ed:74:d6:29:e0:15:89:84:71:92:3d: 1d:57:cf:5b:fe:de:97:07:ec:dd:a0:93:6e:1c:6f: 4f:10:26:74:b7:04:f4:75:e5:4a:d3:45:3a:03:7f: ef:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:56:BE:E3:0D:12:A0:0D:8C:A9:40:FF:DE:DA:53:86:4B:07:90:92 X509v3 Authority Key Identifier: keyid:5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.145.38.0/23 Signature Algorithm: sha256WithRSAEncryption 30:a5:7d:d5:bf:46:47:52:4a:c8:ab:60:57:4d:32:a1:04:ab: a4:60:0d:a1:4f:f6:89:57:80:75:f5:70:ce:ce:0d:08:d3:3a: ec:17:5d:b5:56:8c:e3:fe:9b:e0:a1:cb:f9:56:f8:3d:11:66: 9e:91:02:c5:8b:56:ba:83:5e:b8:d3:34:27:90:bb:83:45:00: a8:e3:b7:de:20:1c:a5:5e:f6:60:76:23:a7:a0:fc:ad:27:8f: 1d:1c:26:d4:93:67:e4:50:df:a3:e9:1c:75:44:cf:d3:01:cf: 82:cd:df:4e:35:92:57:6b:9b:3c:a8:7e:8d:52:fe:d1:35:f6: 69:c6:13:7d:e6:c1:26:3c:2d:33:95:a5:52:9f:b2:ab:71:b7: bf:47:ea:01:3d:a5:a2:af:ce:01:7c:86:fc:56:cb:5f:48:e5: 9c:ab:8a:14:56:36:e6:12:20:82:4b:6b:ad:7b:12:ea:68:f6: 67:61:9c:36:70:7e:a0:2a:0f:be:f0:10:90:d2:6b:28:6e:bf: 78:97:a9:26:6a:04:e2:ef:e5:99:56:3f:9c:dc:25:92:71:ed: d0:dd:2c:c6:22:28:61:40:b5:13:2e:4a:25:d6:e5:67:4a:9c: 8c:f3:3f:df:15:e9:9d:27:10:71:31:13:ff:43:a4:a4:d5:23: 3b:c0:e5:ea -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGREExMTAvBgNVBAUTKDVBQzc2MTVDNDU5Qjc4ODEwMzdENzVFNTY1MUE0Q0VD MzZGN0VGOTEwHhcNMjUxMjMxMTgxNjE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2EwNi0xYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPwC/nt6HpWRj0YojBtJjUVcFmoHQ6QqJ0yoYjpUOX8JIUFlvGxuPYB/2MEc iRFgGM5WqtD3B5GTxygZd/jzaGXr3JdptBnjBG63C4sA9QcKGC0K00wqXiL2Puzk V/p5pZ43eBc07FatVdyWQqUNGEYkFCBWR47RXjw6QVLWDmynIgo26BLSWgPoOkFS 692mLpTP7ffFhP/LEViAQK+htbZ+VbQZ0AU5ee0riBNN4MHAgUD5QriBqEc8kCpW oPkzNKGelLM8BFdXLgolmz04iWfKAeM57XTWKeAViYRxkj0dV89b/t6XB+zdoJNu HG9PECZ0twT0deVK00U6A3/vuQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLRWvuMN EqANjKlA/97aU4ZLB5CSMB8GA1UdIwQYMBaAFFrHYVxFm3iBA3115WUaTOw29++R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkZEQS82ODEyN0UyMDBG NEIxMUVBQURBMzc5NzdDNEY5QUUwMi9Xc2RoWEVXYmVJRURmWFhsWlJwTTdEYjM3 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzZGhYRVdiZUlFRGZYWGxaUnBNN0RiMzc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGREEvNjgxMjdFMjAwRjRCMTFFQUFEQTM3OTc3QzRGOUFFMDIvOTg4OEEyMTIy MURBMTFFQkFBNDQxRjc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5EmMA0GCSqGSIb3DQEBCwUAA4IBAQAwpX3Vv0ZHUkrIq2BXTTKh BKukYA2hT/aJV4B19XDOzg0I0zrsF121Vozj/pvgocv5Vvg9EWaekQLFi1a6g164 0zQnkLuDRQCo47feIBylXvZgdiOnoPytJ48dHCbUk2fkUN+j6Rx1RM/TAc+Czd9O NZJXa5s8qH6NUv7RNfZpxhN95sEmPC0zlaVSn7Krcbe/R+oBPaWir84BfIb8Vstf SOWcq4oUVjbmEiCCS2utexLqaPZnYZw2cH6gKg++8BCQ0msobr94l6kmagTi7+WZ Vj+c3CWSce3Q3SzGIihhQLUTLkol1uVnSpyM8z/fFemdJxBxMRP/Q6Sk1SM7wOXq -----END CERTIFICATE-----Generated at Thu Mar 12 22:47:05 2026 by rpki-client