$ rpki-client -vvf rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa File: B6A9D8EEB0F411E5BE86D757C4F9AE02.roa (raw, json) Hash identifier: 0nVh716qMxf5T71PANX2QzmNBRMbCGmc3vAqRWcki7Y= Subject key identifier: DF:02:F2:23:43:D4:F9:8C:A7:58:21:7B:49:BA:30:2E:8A:E3:AD:F6 Certificate issuer: /CN=A912359E/serialNumber=F993570AA0D5496EF5DEE7E906370E68FBDCCB84 Certificate serial: 24D4 Authority key identifier: F9:93:57:0A:A0:D5:49:6E:F5:DE:E7:E9:06:37:0E:68:FB:DC:CB:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:27:36 +0000 ROA not before: Sun 22 Jun 2025 16:14:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132267 IP address blocks: 103.9.136.0/24 maxlen: 24 103.9.137.0/24 maxlen: 24 103.9.138.0/24 maxlen: 24 103.9.139.0/24 maxlen: 24 163.53.140.0/24 maxlen: 24 163.53.141.0/24 maxlen: 24 163.53.142.0/24 maxlen: 24 2403:eb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.crl rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9428 (0x24d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912359E, serialNumber=F993570AA0D5496EF5DEE7E906370E68FBDCCB84 Validity Not Before: Jun 22 16:14:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a422a7-f10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ec:b5:22:1f:e4:5b:d4:a0:95:d7:ec:9e:88: 63:6e:a7:de:78:cc:b9:a3:85:85:c9:69:47:83:83: 20:84:e9:4c:d1:6d:77:99:fb:e8:f3:50:cd:b0:33: 64:f9:43:a1:b4:55:19:a9:85:a3:46:45:5a:47:36: 9a:bd:94:78:d9:4f:8f:80:c5:1d:d3:b8:bc:d0:90: d6:aa:2a:46:ad:0b:c5:42:81:1b:b2:59:47:cc:86: f9:78:6a:0b:2c:14:e4:82:fb:aa:50:34:32:6b:ac: 63:a1:07:07:56:c7:fd:4f:5a:e9:a7:34:bc:91:35: 18:86:b2:ec:d8:28:a0:1e:f8:4f:e4:9b:7a:98:36: 4b:8a:ea:f6:94:a2:e8:f0:74:79:f0:63:4c:da:31: 8c:f6:ac:97:62:ff:fc:9a:e3:98:39:34:c2:9b:ce: ed:cd:03:8d:30:46:63:d3:10:c2:ad:a5:db:96:0e: 22:64:4f:f9:6a:88:af:59:8c:b3:bf:b4:07:32:7a: 39:ff:ed:7a:0a:b3:ca:32:2e:60:1f:d5:f0:74:23: f0:0b:92:ed:38:c1:5b:e0:ba:26:83:17:48:ac:d6: 31:ae:f6:91:75:cf:34:f5:42:13:fd:76:8a:c0:b9: 39:6a:94:88:d0:ac:41:57:f6:91:44:f7:54:6b:4b: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:02:F2:23:43:D4:F9:8C:A7:58:21:7B:49:BA:30:2E:8A:E3:AD:F6 X509v3 Authority Key Identifier: keyid:F9:93:57:0A:A0:D5:49:6E:F5:DE:E7:E9:06:37:0E:68:FB:DC:CB:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/-ZNXCqDVSW713ufpBjcOaPvcy4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZNXCqDVSW713ufpBjcOaPvcy4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912359E/6F2B6552547C11E5971F3B48C4F9AE02/B6A9D8EEB0F411E5BE86D757C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.136.0/22 163.53.140.0-163.53.142.255 IPv6: 2403:eb00::/32 Signature Algorithm: sha256WithRSAEncryption a5:b9:5d:08:19:f3:51:03:01:cf:0b:e6:12:a6:1b:4a:df:b6: 97:ad:ce:44:4c:02:50:5a:ab:88:a4:64:2f:d5:a8:df:3d:b9: e7:bf:f2:d7:44:f1:c1:71:17:76:2a:85:1c:bc:fd:22:9a:a1: 66:e0:1c:49:c6:81:d4:29:f6:f4:88:85:d7:09:7a:5c:d4:f2: 38:ba:da:bf:52:70:a6:e7:b3:ea:f5:c0:8d:97:37:93:fb:c8: 7f:79:5f:e5:a5:2b:42:3f:68:59:47:45:ec:22:5c:a3:91:30: 40:30:43:eb:15:8a:b9:99:a5:5d:38:f0:4a:57:88:35:55:33: 00:0f:a5:ad:f7:3f:24:f5:0a:81:9a:9c:9d:e8:25:e3:4e:d0: 2f:19:1e:96:a8:a5:d6:b4:47:79:e9:c4:7a:04:74:2f:8b:dd: db:41:67:6e:08:8c:78:86:ba:a6:85:2d:5a:5c:10:92:92:79: 4f:d2:4f:6b:c3:cb:11:e7:36:36:64:d6:39:b1:a8:76:14:4c: f2:87:d6:bc:bf:91:01:f8:b0:dd:83:3d:36:28:7f:07:4f:2a: ea:4f:44:aa:d9:88:d9:a7:31:a3:29:1c:a7:e5:9b:9e:88:3b: 98:68:5b:b6:26:f1:e3:e9:a7:84:57:f6:f9:db:d0:70:53:df: 01:ad:ae:8d -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICJNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM1OUUxMTAvBgNVBAUTKEY5OTM1NzBBQTBENTQ5NkVGNURFRTdFOTA2MzcwRTY4 RkJEQ0NCODQwHhcNMjUwNjIyMTYxNDExWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjJhNy1mMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAley1Ih/kW9SgldfsnohjbqfeeMy5o4WFyWlHg4MghOlM0W13mfvo81DNsDNk +UOhtFUZqYWjRkVaRzaavZR42U+PgMUd07i80JDWqipGrQvFQoEbsllHzIb5eGoL LBTkgvuqUDQya6xjoQcHVsf9T1rppzS8kTUYhrLs2CigHvhP5Jt6mDZLiur2lKLo 8HR58GNM2jGM9qyXYv/8muOYOTTCm87tzQONMEZj0xDCraXblg4iZE/5aoivWYyz v7QHMno5/+16CrPKMi5gH9XwdCPwC5LtOMFb4LomgxdIrNYxrvaRdc809UIT/XaK wLk5apSI0KxBV/aRRPdUa0srGwIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFN8C8iND 1PmMp1ghe0m6MC6K4632MB8GA1UdIwQYMBaAFPmTVwqg1Ulu9d7n6QY3Dmj73MuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzU5RS82RjJCNjU1MjU0 N0MxMUU1OTcxRjNCNDhDNEY5QUUwMi8tWk5YQ3FEVlNXNzEzdWZwQmpjT2FQdmN5 NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1aTlhDcURWU1c3MTN1ZnBCamNPYVB2Y3k0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM1OUUvNkYyQjY1NTI1NDdDMTFFNTk3MUYzQjQ4QzRGOUFFMDIvQjZBOUQ4RUVC MEY0MTFFNUJFODZENzU3QzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAa BAIAATAUAwQCZwmIMAwDBAKjNYwDBACjNY4wDQQCAAIwBwMFACQD6wAwDQYJKoZI hvcNAQELBQADggEBAKW5XQgZ81EDAc8L5hKmG0rftpetzkRMAlBaq4ikZC/VqN89 uee/8tdE8cFxF3YqhRy8/SKaoWbgHEnGgdQp9vSIhdcJelzU8ji62r9ScKbns+r1 wI2XN5P7yH95X+WlK0I/aFlHRewiXKORMEAwQ+sVirmZpV048EpXiDVVMwAPpa33 PyT1CoGanJ3oJeNO0C8ZHpaopda0R3npxHoEdC+L3dtBZ24IjHiGuqaFLVpcEJKS eU/ST2vDyxHnNjZk1jmxqHYUTPKH1ry/kQH4sN2DPTYofwdPKupPRKrZiNmnMaMp HKflm56IO5hoW7Ym8ePpp4RX9vnb0HBT3wGtro0= -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:21 2026 by rpki-client