$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa File: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (raw, json) Hash identifier: rEWhYy1UCSjrp88bbpBi55rBTDmAa96ZWrodZhYuVDE= Subject key identifier: 38:83:4F:91:C7:73:1E:7B:A1:65:95:CB:C5:E9:D5:42:34:6F:6B:25 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 023E Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:52:58 +0000 ROA not before: Mon 03 Nov 2025 03:17:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 4851 IP address blocks: 103.74.217.0/24 maxlen: 24 103.74.218.0/23 maxlen: 23 103.194.229.0/24 maxlen: 24 103.206.187.0/24 maxlen: 24 2407:3280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836, serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Nov 3 03:17:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46ee9-0694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:0a:99:8c:e1:7d:d7:16:cf:2b:be:0d:cf: e1:89:16:d1:6f:53:e0:56:4f:87:1c:7d:4c:ad:0d: 53:f0:3b:ce:56:1b:cc:b5:e5:e9:e3:1e:e6:2f:ce: 52:2d:b9:7b:f9:72:cb:16:87:7b:e2:fa:1d:2b:2b: 37:8b:59:49:5a:1d:6c:49:e1:26:e3:87:d7:b0:04: ed:b5:6f:5b:9c:30:4e:9a:3f:34:31:5f:46:f6:75: 60:ed:b4:df:d6:32:78:a8:36:d3:ac:f9:98:ca:08: b2:81:a2:74:40:5f:95:02:e5:7e:6e:f4:46:9c:76: 73:03:56:2a:f6:e3:22:a6:8e:1b:c2:fc:c9:aa:9d: 58:bf:58:40:87:2e:87:46:f9:5b:53:1a:30:ce:24: 49:1e:62:b7:d2:08:f5:a2:5b:83:5f:41:cf:3f:ce: 96:e0:99:e0:fa:33:9e:1d:da:a7:0f:fd:d2:19:a1: ac:0b:ff:13:05:56:10:f1:d0:d1:10:f0:36:4e:5c: 01:eb:03:93:a1:a4:31:26:86:f4:be:46:70:c0:5c: cc:e2:6f:f7:2e:d3:6c:5c:0f:a4:a1:ff:a7:3f:b7: 07:69:ae:e4:74:f7:8a:be:bf:f9:9a:d6:c9:5d:ab: 35:df:87:f4:f3:7e:34:49:15:8a:9b:54:98:63:74: 41:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:83:4F:91:C7:73:1E:7B:A1:65:95:CB:C5:E9:D5:42:34:6F:6B:25 X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.74.217.0-103.74.219.255 103.194.229.0/24 103.206.187.0/24 IPv6: 2407:3280::/32 Signature Algorithm: sha256WithRSAEncryption 2c:b4:9b:f9:49:ff:9a:69:31:7d:48:1c:70:4d:3c:51:13:e0: 09:8c:c4:0d:d1:e2:23:12:7c:0e:9d:91:bb:56:01:57:88:08: e4:40:4b:2d:ef:fe:79:93:c1:e5:42:4e:38:55:ed:7d:91:78: 7d:36:3d:60:e3:4a:05:f6:4c:40:f6:ee:89:14:0d:82:87:41: ff:d7:d2:77:63:cb:10:c7:20:39:d2:cf:6b:b1:52:39:f8:83: ae:8e:01:b1:aa:2c:c4:a9:9e:47:a3:4d:a9:c3:dc:3c:97:47: 08:ca:ce:07:c8:fe:08:fe:60:8a:00:f9:fc:c9:84:35:1e:78: 83:71:a9:af:3f:f3:e9:fc:e9:81:94:09:be:11:f0:92:7f:48: fe:e5:65:0d:54:a2:ad:ff:cb:58:84:e4:15:c6:cd:ea:b1:b7: 43:c5:85:33:fc:0c:20:b8:3c:70:87:ad:4c:ed:0c:e1:a2:58: 58:56:c5:e4:f2:07:bc:f9:e2:4c:4a:9c:09:ed:ad:84:a5:16: 02:f8:ce:8c:48:5f:1b:f8:8f:f5:e8:8b:44:f5:f1:77:c6:49: 10:92:93:d3:fe:d2:d5:5d:2e:47:6c:97:fe:c6:a7:86:45:84: 22:1c:f5:ba:32:36:06:e4:db:83:7a:35:44:9a:04:94:86:e1: 0f:80:f8:43 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjUxMTAzMDMxNzI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmVlOS0wNjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiYKmYzhfdcWzyu+Dc/hiRbRb1PgVk+HHH1MrQ1T8DvOVhvMteXp4x7mL85S Lbl7+XLLFod74vodKys3i1lJWh1sSeEm44fXsATttW9bnDBOmj80MV9G9nVg7bTf 1jJ4qDbTrPmYygiygaJ0QF+VAuV+bvRGnHZzA1Yq9uMipo4bwvzJqp1Yv1hAhy6H RvlbUxowziRJHmK30gj1oluDX0HPP86W4Jng+jOeHdqnD/3SGaGsC/8TBVYQ8dDR EPA2TlwB6wOToaQxJob0vkZwwFzM4m/3LtNsXA+kof+nP7cHaa7kdPeKvr/5mtbJ Xas134f08340SRWKm1SYY3RB6QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFDiDT5HH cx57oWWVy8Xp1UI0b2slMB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE4MzYvRjFEQjFENDRGNEZCMTFFRDkzOEY5NDQ3QzRGOUFFMDIvNjNEQzVBQTZD Njc2MTFFRUIxMTI2QzcwQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaMAwDBABnStkDBAJnStgDBABnwuUDBABnzrswDQQCAAIwBwMFACQHMoAw DQYJKoZIhvcNAQELBQADggEBACy0m/lJ/5ppMX1IHHBNPFET4AmMxA3R4iMSfA6d kbtWAVeICORASy3v/nmTweVCTjhV7X2ReH02PWDjSgX2TED27okUDYKHQf/X0ndj yxDHIDnSz2uxUjn4g66OAbGqLMSpnkejTanD3DyXRwjKzgfI/gj+YIoA+fzJhDUe eINxqa8/8+n86YGUCb4R8JJ/SP7lZQ1Uoq3/y1iE5BXGzeqxt0PFhTP8DCC4PHCH rUztDOGiWFhWxeTyB7z54kxKnAntrYSlFgL4zoxIXxv4j/Xoi0T18XfGSRCSk9P+ 0tVdLkdsl/7Gp4ZFhCIc9boyNgbk24N6NUSaBJSG4Q+A+EM= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:06 2026 by rpki-client