$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa File: 2D0509BC078511ED87041524C4F9AE02.roa (raw, json) Hash identifier: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg= Subject key identifier: AF:7E:C8:59:1B:17:25:8B:BD:0B:50:50:90:10:E6:F4:1F:C7:F0:72 Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CD0 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:41:58 +0000 ROA not before: Wed 16 Jul 2025 18:58:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137834 IP address blocks: 103.115.118.0/23 maxlen: 23 103.115.118.0/24 maxlen: 24 103.115.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jul 16 18:58:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45036-43bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:55:49:40:6f:2d:4f:f5:1d:b4:d7:90:9a: 16:0a:d0:8e:ca:18:b7:0d:57:ff:c6:d6:f9:bc:95: 7f:37:48:b7:a3:71:57:5d:da:4a:d8:f0:a6:19:7d: f8:43:c5:93:63:2b:ab:ce:d2:3f:06:b6:dd:95:eb: a7:37:66:a6:a3:d8:6f:15:a9:66:5d:ae:c0:09:d6: be:56:2c:1f:40:8a:de:f5:a2:b3:21:f3:ce:71:17: c1:9c:b6:42:f5:fb:d3:51:0d:ea:44:63:cf:e6:fd: 71:d2:15:20:11:59:7c:36:78:2a:5b:e3:65:b1:e3: 36:fe:fb:e6:76:b0:63:d1:c2:b0:6c:8d:50:c6:6e: 1a:25:49:32:8d:bc:d7:04:14:b2:d4:86:aa:02:34: 7c:45:c1:24:d9:f7:c2:86:76:3e:cb:d5:dc:35:ec: 33:46:10:64:70:62:e5:16:ad:03:bc:be:29:b8:06: d0:f8:f3:9e:f5:eb:58:c1:71:5b:5e:86:32:09:9f: 54:1f:2a:27:d9:6c:03:22:b5:19:51:43:a4:02:3b: b6:4c:0e:06:bf:83:01:80:44:a1:c8:4c:1e:87:36: 6b:4a:bc:cc:91:52:67:5c:7b:ac:c3:d1:8d:b4:29: 37:0b:40:23:a0:5b:13:ce:7d:8f:10:d9:60:af:f1: 44:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7E:C8:59:1B:17:25:8B:BD:0B:50:50:90:10:E6:F4:1F:C7:F0:72 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.115.118.0/23 Signature Algorithm: sha256WithRSAEncryption 04:e2:c6:c3:98:13:24:f1:7e:8e:68:af:45:22:2b:c6:f8:c6: 02:d2:f0:94:8b:92:42:93:59:da:e1:d1:ea:22:c6:d1:fd:cb: c9:d5:00:a3:c1:0e:d5:4b:d0:c9:24:6b:95:81:77:17:a7:e6: cb:d4:15:de:77:0b:7c:f3:4d:9f:f3:f6:15:67:98:ec:66:0c: dc:e6:66:f9:10:03:ca:90:c3:47:77:8c:db:ad:9c:85:b4:8f: 9d:0c:7b:ce:85:60:ac:cc:32:48:8c:22:0d:58:08:ba:73:21: 2f:74:20:d7:d5:81:55:ad:34:d1:24:6c:b2:7e:10:0d:93:b6: 3c:cf:ec:07:eb:cf:1f:55:90:ba:47:93:77:34:99:ca:1d:56: 69:16:5f:f2:13:8c:53:1d:bb:9e:3c:4d:4d:be:f3:6a:74:d3: 7c:69:37:38:4d:65:8a:9f:31:58:52:de:e9:7a:6c:f7:04:2a: 7c:72:9a:85:4d:c9:08:a1:5c:21:c1:25:e8:71:e9:22:95:78: c2:d1:92:4f:3f:1f:b0:d8:5e:05:7f:10:24:c6:d8:2d:eb:34: b7:18:b5:4a:ee:76:f3:4f:20:85:dc:de:64:ba:f6:22:bf:b5: 2c:e8:83:51:5b:f8:53:b1:28:e9:d1:63:e7:71:73:97:98:df: aa:20:ad:9d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUwNzE2MTg1ODUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTAzNi00M2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLZVSUBvLU/1HbTXkJoWCtCOyhi3DVf/xtb5vJV/N0i3o3FXXdpK2PCmGX34 Q8WTYyurztI/BrbdleunN2amo9hvFalmXa7ACda+ViwfQIre9aKzIfPOcRfBnLZC 9fvTUQ3qRGPP5v1x0hUgEVl8NngqW+NlseM2/vvmdrBj0cKwbI1Qxm4aJUkyjbzX BBSy1IaqAjR8RcEk2ffChnY+y9XcNewzRhBkcGLlFq0DvL4puAbQ+POe9etYwXFb XoYyCZ9UHyon2WwDIrUZUUOkAju2TA4Gv4MBgEShyEwehzZrSrzMkVJnXHusw9GN tCk3C0AjoFsTzn2PENlgr/FE/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK9+yFkb FyWLvQtQUJAQ5vQfx/ByMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZFMkIvMjdFN0NBQTYwQzJEMTFFQUIwMjlEQjUzQzRGOUFFMDIvMkQwNTA5QkMw Nzg1MTFFRDg3MDQxNTI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3N2MA0GCSqGSIb3DQEBCwUAA4IBAQAE4sbDmBMk8X6OaK9FIivG +MYC0vCUi5JCk1na4dHqIsbR/cvJ1QCjwQ7VS9DJJGuVgXcXp+bL1BXedwt8802f 8/YVZ5jsZgzc5mb5EAPKkMNHd4zbrZyFtI+dDHvOhWCszDJIjCINWAi6cyEvdCDX 1YFVrTTRJGyyfhANk7Y8z+wH688fVZC6R5N3NJnKHVZpFl/yE4xTHbuePE1NvvNq dNN8aTc4TWWKnzFYUt7pemz3BCp8cpqFTckIoVwhwSXocekilXjC0ZJPPx+w2F4F fxAkxtgt6zS3GLVK7nbzTyCF3N5kuvYiv7Us6INRW/hTsSjp0WPncXOXmN+qIK2d -----END CERTIFICATE-----Generated at Sat Mar 14 08:56:14 2026 by rpki-client