$ rpki-client -vvf rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa File: 84F992E67BB911EFA4CC334CC4F9AE02.roa (raw, json) Hash identifier: DQ2EWWNvJur5gY9nEelkhb/mOuJtvADqU6/d6zyG1vQ= Subject key identifier: CB:C7:D5:78:56:8D:5F:F0:83:10:41:04:E5:7E:91:78:9F:96:A7:E1 Certificate issuer: /CN=A915DAF1/serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Certificate serial: 07DE Authority key identifier: BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:46:01 +0000 ROA not before: Sun 02 Mar 2025 23:00:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18186 IP address blocks: 103.148.186.0/24 maxlen: 24 103.148.187.0/24 maxlen: 24 2001:df2:e380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 20:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DAF1, serialNumber=BB9F42CFCE388EDC4B29EA65DEB6162B256D2102 Validity Not Before: Mar 2 23:00:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a418e9-8ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:db:62:2c:b2:0a:24:a2:05:17:c8:36:d4:8d: cc:25:3d:40:ca:46:ae:43:eb:83:da:e5:cd:0f:4c: 7d:df:48:f1:c2:34:eb:19:0d:1d:c9:c9:4e:06:84: fa:ad:ce:d1:8d:1a:53:76:bb:d1:f9:6f:49:95:56: 5e:e1:63:55:5e:44:77:d1:40:f4:c8:e6:16:17:64: 83:0c:e1:d1:1b:b8:87:68:6d:86:f8:95:61:8d:2d: 73:90:d3:2b:64:89:f2:9e:c1:af:83:c4:23:79:5f: 16:22:eb:ae:aa:a8:99:a5:82:dc:42:f3:b7:23:ba: ca:b8:7d:34:bb:1e:6d:4f:3f:fa:a8:56:b6:f6:17: 1c:4d:1d:3e:9a:f7:50:9b:3c:f6:bc:20:3e:51:53: 90:62:94:db:8e:af:08:9c:61:7b:96:45:53:23:48: 27:a5:dd:02:e4:e7:33:80:25:98:97:a3:5a:87:a6: a4:1e:27:69:c2:c3:1c:da:0c:5d:0e:d3:9d:56:61: 8f:9c:ba:dc:2b:04:89:7a:0c:1e:51:99:a8:0b:b6: 5c:cd:0e:49:a1:7b:ae:55:f3:c6:01:2b:08:d6:f0: e6:e3:75:31:85:7e:04:b9:d5:e5:5e:fb:46:2e:bc: 32:f3:4c:16:67:60:51:49:2a:95:68:a4:e6:b0:c2: ed:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C7:D5:78:56:8D:5F:F0:83:10:41:04:E5:7E:91:78:9F:96:A7:E1 X509v3 Authority Key Identifier: keyid:BB:9F:42:CF:CE:38:8E:DC:4B:29:EA:65:DE:B6:16:2B:25:6D:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/u59Cz844jtxLKepl3rYWKyVtIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u59Cz844jtxLKepl3rYWKyVtIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DAF1/0B2B90A42D7511EB936E3458C4F9AE02/84F992E67BB911EFA4CC334CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.186.0/23 IPv6: 2001:df2:e380::/48 Signature Algorithm: sha256WithRSAEncryption 73:c3:06:0b:01:ea:c9:65:56:49:4e:17:4b:0a:15:a6:d9:db: 29:fa:d5:d9:2c:df:74:12:8c:a1:9e:91:27:02:54:24:26:b1: a8:da:c1:7e:4f:7f:50:f4:c8:45:da:13:61:c1:48:90:59:48: 58:8e:44:1c:dd:9e:6f:9c:4b:1b:40:77:ec:28:c1:b5:fc:09: 3f:d9:1f:6d:d6:d2:2a:f4:0d:cf:99:c2:ea:a1:33:d1:97:d1: c5:a4:d0:11:3c:68:b8:bb:82:fc:3b:c6:c2:f2:f7:6d:6c:13: 30:ea:e0:2d:07:d4:22:1f:79:ec:f6:aa:6d:95:60:61:78:ed: 7f:82:02:95:1d:59:42:d5:d1:59:7d:70:6a:b0:a1:81:0f:fe: 5b:9e:b9:6e:ad:9d:b9:3c:45:68:e9:03:d5:b4:e7:8a:04:fd: d2:0f:62:2a:9a:b8:4b:b2:6b:2d:b2:92:bf:b9:93:f3:f7:67: 78:25:ce:0a:8f:28:b8:88:39:82:72:67:be:35:bc:06:92:47: 28:f5:28:e8:75:11:5e:3b:74:ce:b4:20:34:7f:ed:8a:5f:e2: c6:20:33:63:bb:40:fe:3c:fa:57:6e:3f:7b:1a:eb:d1:c2:bb: b5:df:f9:9a:30:0d:e0:d6:4d:11:c4:da:99:dd:fe:dd:4e:95: f4:b5:5a:ed -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBRjExMTAvBgNVBAUTKEJCOUY0MkNGQ0UzODhFREM0QjI5RUE2NURFQjYxNjJC MjU2RDIxMDIwHhcNMjUwMzAyMjMwMDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MThlOS04YWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArttiLLIKJKIFF8g21I3MJT1AykauQ+uD2uXND0x930jxwjTrGQ0dyclOBoT6 rc7RjRpTdrvR+W9JlVZe4WNVXkR30UD0yOYWF2SDDOHRG7iHaG2G+JVhjS1zkNMr ZInynsGvg8QjeV8WIuuuqqiZpYLcQvO3I7rKuH00ux5tTz/6qFa29hccTR0+mvdQ mzz2vCA+UVOQYpTbjq8InGF7lkVTI0gnpd0C5OczgCWYl6Nah6akHidpwsMc2gxd DtOdVmGPnLrcKwSJegweUZmoC7ZczQ5JoXuuVfPGASsI1vDm43UxhX4EudXlXvtG Lrwy80wWZ2BRSSqVaKTmsMLteQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMvH1XhW jV/wgxBBBOV+kXiflqfhMB8GA1UdIwQYMBaAFLufQs/OOI7cSynqZd62FislbSEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REFGMS8wQjJCOTBBNDJE NzUxMUVCOTM2RTM0NThDNEY5QUUwMi91NTlDejg0NGp0eExLZXBsM3JZV0t5VnRJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1OUN6ODQ0anR4TEtlcGwzcllXS3lWdElRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBRjEvMEIyQjkwQTQyRDc1MTFFQjkzNkUzNDU4QzRGOUFFMDIvODRGOTkyRTY3 QkI5MTFFRkE0Q0MzMzRDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5S6MA8EAgACMAkDBwAgAQ3y44AwDQYJKoZIhvcNAQELBQADggEB AHPDBgsB6sllVklOF0sKFabZ2yn61dks33QSjKGekScCVCQmsajawX5Pf1D0yEXa E2HBSJBZSFiORBzdnm+cSxtAd+wowbX8CT/ZH23W0ir0Dc+ZwuqhM9GX0cWk0BE8 aLi7gvw7xsLy921sEzDq4C0H1CIfeez2qm2VYGF47X+CApUdWULV0Vl9cGqwoYEP /lueuW6tnbk8RWjpA9W054oE/dIPYiqauEuyay2ykr+5k/P3Z3glzgqPKLiIOYJy Z741vAaSRyj1KOh1EV47dM60IDR/7Ypf4sYgM2O7QP48+lduP3sa69HCu7Xf+Zow DeDWTRHE2pnd/t1OlfS1Wu0= -----END CERTIFICATE-----Generated at Thu Mar 5 14:07:07 2026 by rpki-client