$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/C20F71E0992A11EEBDE4AF84C4F9AE02.roa File: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (raw, json) Hash identifier: ZBpZFHSjfj1bISXLZ4G9TvJh+gywnnw40Zr1cDFnGAA= Subject key identifier: F5:0C:49:CE:81:74:B0:65:D7:7B:8A:0A:5F:30:B3:48:0A:A8:98:D3 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 026F Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/C20F71E0992A11EEBDE4AF84C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:06:13 +0000 ROA not before: Thu 29 Jan 2026 01:22:09 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132831 IP address blocks: 103.54.78.0/24 maxlen: 24 103.54.79.0/24 maxlen: 24 103.124.187.0/24 maxlen: 24 103.134.118.0/24 maxlen: 24 103.134.119.0/24 maxlen: 24 103.242.126.0/24 maxlen: 24 103.242.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Jan 29 01:22:09 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a40f95-3fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:57:98:77:b5:ac:fb:0f:36:0f:c8:95:e9:98: 5a:bf:d6:a0:42:49:c5:0d:c4:21:9e:02:bd:ac:60: b0:fd:61:5e:77:a1:e0:96:22:dd:f3:d7:95:48:df: 85:80:f4:c2:97:0f:85:f7:51:21:60:79:23:fc:2b: a2:b5:01:54:1d:fe:78:5b:de:ca:ca:7c:51:3d:1b: 83:9e:13:1e:77:56:74:40:9e:9f:d3:3d:b5:b1:fa: b5:38:bd:76:73:be:98:c5:8b:fd:fd:80:06:b2:df: 74:c0:63:a3:17:d4:98:0d:41:97:ba:f3:97:09:6c: d5:cb:2a:59:5b:04:cc:36:6d:1e:83:bf:45:04:b2: 68:dd:ea:2e:05:a7:26:92:da:f3:b5:ba:40:5d:01: 6f:12:3b:57:c2:cc:d8:8a:e0:69:50:16:2e:db:12: a9:56:10:fe:c4:bd:50:ac:9c:ac:00:0a:8c:28:5e: 0d:ee:15:11:51:68:01:25:d9:91:12:1a:58:dc:88: e0:ca:22:6a:66:e3:c5:11:43:95:45:9a:c2:9d:63: be:8d:4b:28:1e:af:65:6b:84:d9:5d:59:7e:6a:0e: 97:82:c1:97:9b:2f:51:48:8c:6e:fd:99:2a:51:17: b3:8f:d5:da:e3:98:06:ef:9f:e0:13:98:8f:c2:28: 18:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0C:49:CE:81:74:B0:65:D7:7B:8A:0A:5F:30:B3:48:0A:A8:98:D3 X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/C20F71E0992A11EEBDE4AF84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.54.78.0/23 103.124.187.0/24 103.134.118.0/23 103.242.126.0/23 Signature Algorithm: sha256WithRSAEncryption 96:cf:53:83:46:0c:db:43:e0:2c:0f:fe:cd:bb:97:44:93:b7: 00:75:b5:f1:83:dd:77:90:a3:4a:af:d8:a8:ef:b1:d0:da:81: cf:b0:dd:7e:d7:2c:e5:4c:d5:cf:94:dc:bb:05:ca:c0:b8:e0: 98:c4:41:58:27:d0:b9:19:61:f8:67:e7:ca:35:5d:3a:bb:0d: 97:a4:87:0a:77:18:af:91:b7:37:fe:a9:58:d1:24:08:6d:60: 7f:cb:41:7a:c8:c8:5c:63:7b:d8:ef:84:1d:bb:38:55:c3:d4: 16:97:58:c2:d5:64:03:dc:2c:76:94:3a:bf:29:d5:94:73:76: 54:a4:13:2a:1a:c8:9e:34:15:18:8f:e8:4c:a5:62:da:9a:ec: 7a:9e:fe:17:b6:53:6f:31:41:bb:23:c5:c2:b4:f4:f6:19:66: 0d:cc:d0:f4:94:a2:8a:77:7a:4b:e0:5c:19:03:eb:be:cf:2a: 03:b2:61:dd:63:80:81:d0:a2:75:8e:58:d1:05:06:93:11:04: de:40:d5:86:86:ab:1b:5d:5d:9c:06:44:97:0b:cd:0c:ef:eb: 09:93:b3:8a:2b:8d:8b:88:ac:5c:87:7e:5e:3f:6a:37:9d:5c: 3b:17:a2:2b:36:43:f0:88:c5:1d:a8:43:ec:ce:14:90:70:19: 13:ec:bf:b3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjYwMTI5MDEyMjA5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGY5NS0zZmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVeYd7Ws+w82D8iV6Zhav9agQknFDcQhngK9rGCw/WFed6HgliLd89eVSN+F gPTClw+F91EhYHkj/CuitQFUHf54W97KynxRPRuDnhMed1Z0QJ6f0z21sfq1OL12 c76YxYv9/YAGst90wGOjF9SYDUGXuvOXCWzVyypZWwTMNm0eg79FBLJo3eouBacm ktrztbpAXQFvEjtXwszYiuBpUBYu2xKpVhD+xL1QrJysAAqMKF4N7hURUWgBJdmR EhpY3IjgyiJqZuPFEUOVRZrCnWO+jUsoHq9la4TZXVl+ag6XgsGXmy9RSIxu/Zkq URezj9Xa45gG75/gE5iPwigYlwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFPUMSc6B dLBl13uKCl8ws0gKqJjTMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJFQTIvMTUyNTM0MTQ4NTYzMTFFRDgyRkIxMDJEQzRGOUFFMDIvQzIwRjcxRTA5 OTJBMTFFRUJERTRBRjg0QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZzZOAwQAZ3y7AwQBZ4Z2AwQBZ/J+MA0GCSqGSIb3DQEBCwUAA4IB AQCWz1ODRgzbQ+AsD/7Nu5dEk7cAdbXxg913kKNKr9io77HQ2oHPsN1+1yzlTNXP lNy7BcrAuOCYxEFYJ9C5GWH4Z+fKNV06uw2XpIcKdxivkbc3/qlY0SQIbWB/y0F6 yMhcY3vY74QduzhVw9QWl1jC1WQD3Cx2lDq/KdWUc3ZUpBMqGsieNBUYj+hMpWLa mux6nv4XtlNvMUG7I8XCtPT2GWYNzND0lKKKd3pL4FwZA+u+zyoDsmHdY4CB0KJ1 jljRBQaTEQTeQNWGhqsbXV2cBkSXC80M7+sJk7OKK42LiKxch35eP2o3nVw7F6Ir NkPwiMUdqEPszhSQcBkT7L+z -----END CERTIFICATE-----Generated at Mon Mar 2 15:09:16 2026 by rpki-client