$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa File: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (raw, json) Hash identifier: qK+khHCIuI//dPRwyz9oPvFPdzHoY4nUbkit8bRPNhA= Subject key identifier: D3:6E:66:86:83:BB:A6:58:0C:B9:1F:41:19:34:E0:F5:2C:7A:17:E7 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 01CB Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:21:23 +0000 ROA not before: Wed 29 Oct 2025 03:48:01 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151824 IP address blocks: 103.150.71.0/24 maxlen: 24 2001:df2:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Oct 29 03:48:01 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a41323-7b25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:95:b4:71:db:12:41:9e:c4:b7:37:a9:de:88: e9:ed:e6:4f:00:aa:81:d6:9f:0c:d6:0c:31:d5:1e: 3a:48:fd:0e:51:40:a7:24:b1:05:9b:0e:ca:3e:fc: 05:96:e1:60:d5:96:04:7e:83:21:85:fa:cb:89:b3: 7f:bb:2d:4b:10:78:06:74:b3:00:63:ef:c0:80:37: 18:11:07:ed:74:3c:85:65:8e:60:bb:e9:ca:39:a5: da:cf:fc:0f:25:4e:c9:a6:1b:a4:09:dc:60:f9:40: e3:ee:63:bc:a3:cc:ee:b7:70:ec:1e:01:f1:b6:af: dd:ce:84:e9:b4:29:2b:80:cc:13:5c:01:27:e2:69: 55:36:cd:97:05:71:26:bf:ae:28:76:b3:3b:61:75: 00:35:95:d9:af:60:02:4e:6a:aa:4f:b3:1a:3b:43: 4a:0f:16:94:5c:cc:d7:61:c5:4b:4b:39:8a:f9:8c: df:d8:90:19:ff:0b:53:5c:f1:9f:1b:4b:91:c9:28: fb:99:e7:5b:ee:13:bf:0d:62:c7:10:48:a1:4e:e9: 7d:64:62:02:56:b4:a9:6b:0b:25:a0:b4:1e:1f:ac: f0:be:29:1e:29:87:8d:0f:b7:20:d8:39:ed:6a:08: ef:f6:19:27:3d:ea:4b:c4:4d:dc:37:f9:9f:eb:5b: 4b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6E:66:86:83:BB:A6:58:0C:B9:1F:41:19:34:E0:F5:2C:7A:17:E7 X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.71.0/24 IPv6: 2001:df2:f540::/48 Signature Algorithm: sha256WithRSAEncryption 73:72:d0:c6:0d:6d:05:81:92:ce:33:0f:67:41:49:9a:b8:dd: d9:50:fd:6e:ae:5c:4a:ce:e8:4d:95:44:8d:a3:24:6a:4b:7a: d7:50:2e:ff:74:64:fe:56:7b:d5:7d:34:69:42:f1:42:50:88: a0:c7:d0:19:73:83:5c:84:ec:1a:16:3f:f8:6e:a8:ba:3d:79: 2a:64:b8:8a:4a:5c:a5:86:dd:fb:ca:db:f4:94:d2:bd:a6:5e: 66:e3:68:e0:ff:60:2c:60:da:ab:cf:f6:69:8c:4f:09:13:06: 74:12:f5:4d:8a:0d:7f:91:34:cb:b4:6f:f1:47:b6:08:f8:de: 8e:d0:63:8a:49:78:96:6b:a5:6a:83:84:8e:38:b4:07:e3:77: 71:aa:ef:0b:5b:6d:bb:a1:a3:77:e7:98:70:0e:18:68:23:16: 17:3f:f6:0b:b5:46:44:9d:3e:29:55:0c:c9:0e:5e:93:f7:0e: 54:f3:fc:83:50:55:03:14:d2:92:0e:1c:85:ea:7d:2d:67:91: c2:f8:22:eb:38:b4:79:d3:07:3c:73:26:9c:ab:0e:49:af:61: cc:b9:9e:67:99:a5:3f:79:6f:3a:f2:35:ac:e3:f6:2a:a5:a6: 45:c5:41:4b:4b:65:1a:5a:b8:92:79:db:a2:24:26:92:91:61: e5:5a:e5:a3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjUxMDI5MDM0ODAxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTMyMy03YjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZW0cdsSQZ7Etzep3ojp7eZPAKqB1p8M1gwx1R46SP0OUUCnJLEFmw7KPvwF luFg1ZYEfoMhhfrLibN/uy1LEHgGdLMAY+/AgDcYEQftdDyFZY5gu+nKOaXaz/wP JU7JphukCdxg+UDj7mO8o8zut3DsHgHxtq/dzoTptCkrgMwTXAEn4mlVNs2XBXEm v64odrM7YXUANZXZr2ACTmqqT7MaO0NKDxaUXMzXYcVLSzmK+Yzf2JAZ/wtTXPGf G0uRySj7medb7hO/DWLHEEihTul9ZGICVrSpawsloLQeH6zwvikeKYeND7cg2Dnt agjv9hknPepLxE3cN/mf61tLRQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNNuZoaD u6ZYDLkfQRk04PUsehfnMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQUEvMENBNzdDODI1QzQ3MTFFRUFBOUZFOTY2QzRGOUFFMDIvOEEzODlBQzI1 QzQ4MTFFRUJFMUNGMDZCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5ZHMA8EAgACMAkDBwAgAQ3y9UAwDQYJKoZIhvcNAQELBQADggEB AHNy0MYNbQWBks4zD2dBSZq43dlQ/W6uXErO6E2VRI2jJGpLetdQLv90ZP5We9V9 NGlC8UJQiKDH0Blzg1yE7BoWP/huqLo9eSpkuIpKXKWG3fvK2/SU0r2mXmbjaOD/ YCxg2qvP9mmMTwkTBnQS9U2KDX+RNMu0b/FHtgj43o7QY4pJeJZrpWqDhI44tAfj d3Gq7wtbbbuho3fnmHAOGGgjFhc/9gu1RkSdPilVDMkOXpP3DlTz/INQVQMU0pIO HIXqfS1nkcL4Ius4tHnTBzxzJpyrDkmvYcy5nmeZpT95bzryNazj9iqlpkXFQUtL ZRpauJJ526IkJpKRYeVa5aM= -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:24 2026 by rpki-client