$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa File: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (raw, json) Hash identifier: xCxlkxmn+IYoOztMvnfz1vMt3zyfROldaTyC72io/60= Subject key identifier: 99:D4:B7:90:BD:B2:96:55:35:AE:95:05:1B:3D:FA:5D:0F:AB:75:C9 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0362 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:03:49 +0000 ROA not before: Fri 01 Aug 2025 02:38:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138622 IP address blocks: 103.189.236.0/23 maxlen: 23 103.189.236.0/24 maxlen: 24 103.189.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Aug 1 02:38:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42b25-4189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:9c:5d:4d:0f:ce:5f:81:ac:8b:46:3a:69: eb:7f:c7:08:3a:35:ac:b9:2e:41:0a:ad:b2:00:89: 7e:cc:65:e8:b4:33:a7:33:26:3e:92:84:0b:bb:9b: 74:92:87:88:b8:07:fa:4f:6a:fa:20:d3:fd:ce:3f: 16:0e:f8:c1:02:42:69:2a:ad:8c:e9:28:8d:ce:e7: 0a:50:a2:5a:d8:93:12:da:9a:dc:c9:0a:c3:cb:e8: f6:20:1d:7b:14:b6:23:b7:50:64:e5:ea:0b:63:39: 58:27:da:a4:e9:30:8a:7b:dd:e7:5e:2f:15:b3:40: 66:8f:96:cf:58:d3:39:e5:26:e3:ad:38:0b:5e:f5: ad:0c:af:82:a3:f2:7d:da:a4:20:c1:d3:7d:1a:ff: e9:05:f2:9e:65:e8:6b:25:8a:d6:53:0f:68:1e:97: 34:a8:28:86:b0:e9:65:73:40:37:01:4e:26:1e:44: 07:f7:db:bd:34:2b:38:3f:ca:57:25:33:c5:ee:ee: d1:f1:b8:d6:8f:91:7d:eb:71:29:ea:d4:39:ac:0e: c5:d9:cd:6f:0c:ac:ca:aa:cc:60:de:a6:98:6f:9d: 0c:48:52:78:c2:b2:e3:c6:79:d8:73:12:bc:5c:a9: a0:bb:ac:6e:01:4e:16:11:5d:7d:10:3f:10:d3:b6: cf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D4:B7:90:BD:B2:96:55:35:AE:95:05:1B:3D:FA:5D:0F:AB:75:C9 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.236.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:57:d7:58:82:46:f6:48:2c:4b:06:6b:ba:be:2b:ca:3d:08: d3:57:9f:7e:43:99:db:ea:54:22:49:9a:b5:7a:e9:9b:d1:19: 21:16:77:69:25:78:f6:ac:94:9a:a5:25:f1:47:14:e1:2a:44: 5b:62:23:a1:e4:77:d6:64:92:d5:e4:0f:88:94:d7:45:31:e7: 9d:68:3f:6a:b9:4d:4a:2c:0a:da:65:0f:68:7f:76:f9:c9:bc: a2:de:f3:3b:32:9b:e9:27:d8:e8:5a:24:d5:e1:fe:c7:b5:5c: 30:f8:81:23:29:d9:b6:b2:8f:6a:de:8e:09:89:94:de:05:a3: 11:5f:04:48:d9:d6:8f:cb:59:db:a0:70:f8:53:22:84:85:be: 04:d9:92:31:25:cf:01:c8:2f:8d:c5:41:51:41:4e:9f:a4:43: 78:c8:9a:a5:c6:61:5f:db:4f:ff:ec:0d:65:ae:88:50:7a:68: c9:7b:4e:0b:c2:ed:48:9c:13:06:9f:f8:02:c7:32:b7:44:4b: 34:81:6c:5b:69:92:19:e6:ec:18:52:6a:31:ec:2c:bb:d7:66: c3:f8:08:e9:2a:a6:6b:67:13:16:02:80:29:24:61:12:fc:0d: 73:a8:09:f8:06:c0:5c:d8:7e:32:2e:1e:f6:d6:00:bd:2e:2e: d1:87:e8:05 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUwODAxMDIzODM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmIyNS00MTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk+cXU0Pzl+BrItGOmnrf8cIOjWsuS5BCq2yAIl+zGXotDOnMyY+koQLu5t0 koeIuAf6T2r6INP9zj8WDvjBAkJpKq2M6SiNzucKUKJa2JMS2prcyQrDy+j2IB17 FLYjt1Bk5eoLYzlYJ9qk6TCKe93nXi8Vs0Bmj5bPWNM55SbjrTgLXvWtDK+Co/J9 2qQgwdN9Gv/pBfKeZehrJYrWUw9oHpc0qCiGsOllc0A3AU4mHkQH99u9NCs4P8pX JTPF7u7R8bjWj5F963Ep6tQ5rA7F2c1vDKzKqsxg3qaYb50MSFJ4wrLjxnnYcxK8 XKmgu6xuAU4WEV19ED8Q07bPYQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJnUt5C9 spZVNa6VBRs9+l0Pq3XJMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCRTUvNjExQzUxMkNGMEYzMTFFQzg0QjI5QzgwQzRGOUFFMDIvNjI3QTY3NThE RjJBMTFFRUJDNDQwQzVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ73sMA0GCSqGSIb3DQEBCwUAA4IBAQBvV9dYgkb2SCxLBmu6vivK PQjTV59+Q5nb6lQiSZq1eumb0RkhFndpJXj2rJSapSXxRxThKkRbYiOh5HfWZJLV 5A+IlNdFMeedaD9quU1KLAraZQ9of3b5ybyi3vM7MpvpJ9joWiTV4f7HtVww+IEj Kdm2so9q3o4JiZTeBaMRXwRI2daPy1nboHD4UyKEhb4E2ZIxJc8ByC+NxUFRQU6f pEN4yJqlxmFf20//7A1lrohQemjJe04Lwu1InBMGn/gCxzK3REs0gWxbaZIZ5uwY Umox7Cy712bD+AjpKqZrZxMWAoApJGES/A1zqAn4BsBc2H4yLh721gC9Li7Rh+gF -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:01 2026 by rpki-client