$ rpki-client -vvf rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/1B2FD0247B3511F0AB5E9728C4F9AE02.roa File: 1B2FD0247B3511F0AB5E9728C4F9AE02.roa (raw, json) Hash identifier: Q1rC4uxku9zNUGZfldpV6C2HUrRjj+DFtRhXQLJUhNQ= Subject key identifier: 4A:22:FD:CA:C8:D6:A8:45:49:CB:E9:CC:B4:37:1A:B1:32:1E:86:38 Certificate issuer: /CN=A919A824/serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Certificate serial: 0ADE Authority key identifier: 61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/1B2FD0247B3511F0AB5E9728C4F9AE02.roa Signing time: Mon 30 Mar 2026 20:24:50 +0000 ROA not before: Mon 30 Mar 2026 20:24:50 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 136014 IP address blocks: 103.149.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A824, serialNumber=61E4017AFF4776713CFDC8205CC2FB2178462BA1 Validity Not Before: Mar 30 20:24:50 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cadc12-6c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5f:b0:25:56:76:d2:71:8d:81:75:56:1e:e0: 13:f7:ee:d3:ae:ba:e1:ae:cc:22:fb:02:eb:87:1e: ad:31:13:6a:eb:f4:19:d7:c7:17:28:bc:3e:69:bc: 41:96:c6:1b:f5:b6:45:d4:47:d9:43:1e:ef:df:b1: 0d:a3:9d:50:5f:24:11:5a:6b:f8:65:8e:ee:45:04: 66:9c:db:52:50:28:d8:9b:19:ce:1e:f0:bb:46:07: 51:01:e3:0f:62:68:c5:9e:5e:2c:97:ae:dc:1e:4a: ac:71:03:55:dd:d8:3e:d1:67:cb:65:29:03:ff:3f: ec:42:89:de:a4:2c:71:7e:a7:6a:b4:3b:0c:a1:99: 86:8a:2a:fa:e8:16:20:a2:83:36:18:f5:3c:00:2e: 53:95:c7:ff:d1:41:53:e1:28:7e:fb:e3:c8:6c:e3: 20:3b:85:8d:0c:c1:6f:89:8d:aa:3f:cd:b4:a6:41: 19:1d:5f:02:37:49:13:d7:01:23:19:fc:5a:c1:8e: 6a:8a:3c:96:ba:67:b3:40:54:a7:84:c2:15:cc:d9: 1b:8d:ce:b3:7a:1e:3c:03:d0:04:09:04:86:47:00: 22:bd:a8:f2:f1:44:6f:17:70:e8:c6:c1:89:db:8c: 7b:29:a4:b9:94:65:6b:ac:81:e0:0b:b3:58:c0:45: c8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:22:FD:CA:C8:D6:A8:45:49:CB:E9:CC:B4:37:1A:B1:32:1E:86:38 X509v3 Authority Key Identifier: keyid:61:E4:01:7A:FF:47:76:71:3C:FD:C8:20:5C:C2:FB:21:78:46:2B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/YeQBev9HdnE8_cggXML7IXhGK6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeQBev9HdnE8_cggXML7IXhGK6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A824/8BFF3BB46E7F11EA95EF1861C4F9AE02/1B2FD0247B3511F0AB5E9728C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.1.0/24 Signature Algorithm: sha256WithRSAEncryption ab:5e:e4:06:38:51:e3:85:b2:32:c4:7e:35:f7:c0:3f:67:cd: b3:6a:59:2b:fe:08:10:95:2f:c5:33:3d:b3:77:7c:ce:9f:64: c9:fc:3e:1a:37:69:86:71:02:f5:00:3d:1e:bc:43:61:0f:0e: 0e:2c:2b:19:ef:2e:57:49:14:e3:41:41:84:7d:67:98:8e:2b: 5c:6c:a5:b4:d5:fa:52:23:16:bf:54:36:2a:55:50:db:1e:40: c8:2e:f0:84:b8:04:61:25:b9:d6:6e:8e:f5:68:76:19:1d:34: 01:f2:dc:9c:cb:50:cc:4f:73:59:12:09:d4:02:11:1d:52:45: c5:8d:21:e2:89:c9:c8:c4:de:2b:47:33:7e:af:0b:2e:36:31: 38:7f:17:f1:a0:60:89:14:9a:4a:4b:1f:a8:f7:38:cb:73:f3: 09:fc:74:b8:f4:5e:55:72:bf:c5:c1:df:48:31:91:52:e3:f1: aa:06:cd:c7:2c:ad:2a:a6:66:9c:38:90:04:2f:cc:34:92:83: 3d:c1:ce:ae:84:56:17:79:28:23:b2:10:43:45:8e:b8:59:4e: b3:9f:fd:5d:33:bd:75:08:39:df:e4:be:12:0a:d0:9a:88:7b: 1b:ed:68:07:3e:54:ec:65:6f:c7:0d:9c:0a:d6:11:8c:f0:82: 57:f6:e3:60 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4MjQxMTAvBgNVBAUTKDYxRTQwMTdBRkY0Nzc2NzEzQ0ZEQzgyMDVDQzJGQjIx Nzg0NjJCQTEwHhcNMjYwMzMwMjAyNDUwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhZGMxMi02YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF+wJVZ20nGNgXVWHuAT9+7Trrrhrswi+wLrhx6tMRNq6/QZ18cXKLw+abxB lsYb9bZF1EfZQx7v37ENo51QXyQRWmv4ZY7uRQRmnNtSUCjYmxnOHvC7RgdRAeMP YmjFnl4sl67cHkqscQNV3dg+0WfLZSkD/z/sQonepCxxfqdqtDsMoZmGiir66BYg ooM2GPU8AC5Tlcf/0UFT4Sh+++PIbOMgO4WNDMFviY2qP820pkEZHV8CN0kT1wEj GfxawY5qijyWumezQFSnhMIVzNkbjc6zeh48A9AECQSGRwAivajy8URvF3DoxsGJ 24x7KaS5lGVrrIHgC7NYwEXI6wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEoi/crI 1qhFScvpzLQ3GrEyHoY4MB8GA1UdIwQYMBaAFGHkAXr/R3ZxPP3IIFzC+yF4Riuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTgyNC84QkZGM0JCNDZF N0YxMUVBOTVFRjE4NjFDNEY5QUUwMi9ZZVFCZXY5SGRuRThfY2dnWE1MN0lYaEdL NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llUUJldjlIZG5FOF9jZ2dYTUw3SVhoR0s2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4MjQvOEJGRjNCQjQ2RTdGMTFFQTk1RUYxODYxQzRGOUFFMDIvMUIyRkQwMjQ3 QjM1MTFGMEFCNUU5NzI4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5UBMA0GCSqGSIb3DQEBCwUAA4IBAQCrXuQGOFHjhbIyxH4198A/ Z82zalkr/ggQlS/FMz2zd3zOn2TJ/D4aN2mGcQL1AD0evENhDw4OLCsZ7y5XSRTj QUGEfWeYjitcbKW01fpSIxa/VDYqVVDbHkDILvCEuARhJbnWbo71aHYZHTQB8tyc y1DMT3NZEgnUAhEdUkXFjSHiicnIxN4rRzN+rwsuNjE4fxfxoGCJFJpKSx+o9zjL c/MJ/HS49F5Vcr/Fwd9IMZFS4/GqBs3HLK0qpmacOJAEL8w0koM9wc6uhFYXeSgj shBDRY64WU6zn/1dM711CDnf5L4SCtCaiHsb7WgHPlTsZW/HDZwK1hGM8IJX9uNg -----END CERTIFICATE-----Generated at Mon Apr 6 10:30:56 2026 by rpki-client