$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa File: 0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa (raw, json) Hash identifier: LprT5cim2RrsHbGQk7NGd6J/lGXNUlFqt+FKrUc9WWA= Subject key identifier: 78:CE:1E:F3:12:4A:C9:5D:C9:E3:57:6D:15:DC:68:18:04:A5:C2:43 Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Certificate serial: 1764 Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:15:09 +0000 ROA not before: Wed 30 Apr 2025 16:55:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132513 IP address blocks: 103.228.252.0/24 maxlen: 24 141.164.101.0/24 maxlen: 24 141.164.102.0/24 maxlen: 24 2400:c180:19::/48 maxlen: 48 2400:c180:20::/48 maxlen: 48 2400:c180:21::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5988 (0x1764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Validity Not Before: Apr 30 16:55:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42dcc-2ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1b:36:54:9c:20:5a:8d:7d:85:78:e4:98:06: 6d:eb:60:7f:67:f0:46:2a:53:d2:44:55:34:dc:6b: 69:7f:7b:08:77:15:c9:8f:da:8b:04:83:03:da:09: 4b:1d:96:43:5d:d3:1c:74:3a:5b:5c:58:1b:1a:7a: 29:9d:69:4c:22:40:c4:17:7c:ce:b0:41:d5:5c:b9: 62:c9:2e:dd:69:d5:b1:79:40:c2:06:ff:09:5f:bc: 86:a3:b1:04:af:dd:e0:24:0c:71:a8:47:86:16:b4: 85:e4:8f:7d:8f:15:c6:72:23:5f:d4:3b:45:a9:76: d8:d5:59:7e:6b:89:fb:35:57:a5:2b:87:96:ed:83: e9:4e:2b:f5:e7:4a:46:b3:fa:12:3f:28:43:44:ca: e4:3c:0b:91:9d:49:c0:c1:ce:3c:27:ab:ac:36:b4: 54:a4:79:bd:39:ae:ca:ac:6f:62:e8:61:0c:52:59: 83:e0:fc:da:85:14:35:7a:b5:cb:98:bd:ed:74:72: 36:d3:a0:51:f3:6a:10:45:f3:35:23:e9:69:cd:10: 2c:1e:e7:af:61:3d:d2:b0:c6:e8:4d:df:ec:43:ad: 76:4f:98:7e:f6:45:35:ed:6c:ea:e8:97:a7:c9:b0: b1:f2:4a:59:ba:67:b0:5b:87:59:a1:6d:ee:f5:54: 78:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CE:1E:F3:12:4A:C9:5D:C9:E3:57:6D:15:DC:68:18:04:A5:C2:43 X509v3 Authority Key Identifier: keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.228.252.0/24 141.164.101.0-141.164.102.255 IPv6: 2400:c180:19::/48 2400:c180:20::/47 Signature Algorithm: sha256WithRSAEncryption 59:de:d0:ea:b7:29:e9:1f:3b:8e:27:d3:a2:eb:06:41:1c:1d: cf:5a:d1:20:75:d2:92:67:30:a8:e5:cd:f1:8e:8a:ad:23:0c: 60:eb:a8:b1:ac:d9:82:2a:8e:94:69:32:38:2e:bd:2f:2a:d5: b3:5c:1a:a9:62:66:dc:b6:ed:e1:51:18:1f:24:d8:c5:f8:98: 3c:fc:fb:04:79:aa:15:2d:16:f9:c3:d8:30:44:b6:56:00:22: 35:8d:90:1a:d0:0d:40:c9:9d:d2:e5:ac:33:40:a8:b2:d8:aa: 3e:4d:4f:6a:24:53:d1:86:5d:ed:ec:35:21:b6:bd:f2:75:54: e2:6d:a4:46:e3:ef:17:dd:41:6e:57:3f:7c:47:d3:e7:bd:cd: 38:f9:6f:95:e8:b4:36:d4:86:fd:bc:69:c6:36:a5:fd:50:3e: f2:42:88:09:9b:48:f0:60:97:cc:7a:b3:81:53:9a:8a:44:48: 43:9d:b9:82:96:bc:ff:10:f7:e7:53:04:62:b4:d8:81:c4:34: fa:e2:af:89:a6:97:26:93:b1:33:ac:d0:df:9f:e3:f6:4a:4f: 7f:ef:63:99:75:fe:6f:c8:b6:3a:4f:dc:4e:33:f6:4c:7f:5b: 86:ef:77:70:3f:18:41:da:b9:85:02:ec:f4:78:2e:f1:a4:8b: 24:7c:7d:5e -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICF2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQ1NEJGMzk5QkUxQjY1OUIxMzIzMTRCODIxOTMzQTIw QkEzOEI5NkEwHhcNMjUwNDMwMTY1NTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmRjYy0yZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhs2VJwgWo19hXjkmAZt62B/Z/BGKlPSRFU03Gtpf3sIdxXJj9qLBIMD2glL HZZDXdMcdDpbXFgbGnopnWlMIkDEF3zOsEHVXLliyS7dadWxeUDCBv8JX7yGo7EE r93gJAxxqEeGFrSF5I99jxXGciNf1DtFqXbY1Vl+a4n7NVelK4eW7YPpTiv150pG s/oSPyhDRMrkPAuRnUnAwc48J6usNrRUpHm9Oa7KrG9i6GEMUlmD4PzahRQ1erXL mL3tdHI206BR82oQRfM1I+lpzRAsHuevYT3SsMboTd/sQ612T5h+9kU17Wzq6Jen ybCx8kpZumewW4dZoW3u9VR4swIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFHjOHvMS SsldyeNXbRXcaBgEpcJDMB8GA1UdIwQYMBaAFNVL85m+G2WbEyMUuCGTOiC6OLlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC9BMTA4N0QzNjAw RUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpac1RJeFM0SVpNNklMbzR1 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFVdnptYjRiWlpzVEl4UzRJWk02SUxvNHVXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNFMzgvQTEwODdEMzYwMEVBMTFFOEJDOTNCMTZCQzRGOUFFMDIvMEYyQUYwRjBB RkRBMTFFQUFFRDFDMDY2QzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjAa BAIAATAUAwQAZ+T8MAwDBACNpGUDBACNpGYwGAQCAAIwEgMHACQAwYAAGQMHASQA wYAAIDANBgkqhkiG9w0BAQsFAAOCAQEAWd7Q6rcp6R87jifTousGQRwdz1rRIHXS kmcwqOXN8Y6KrSMMYOuosazZgiqOlGkyOC69LyrVs1waqWJm3Lbt4VEYHyTYxfiY PPz7BHmqFS0W+cPYMES2VgAiNY2QGtANQMmd0uWsM0CostiqPk1PaiRT0YZd7ew1 Iba98nVU4m2kRuPvF91Bblc/fEfT573NOPlvlei0NtSG/bxpxjal/VA+8kKICZtI 8GCXzHqzgVOaikRIQ525gpa8/xD351MEYrTYgcQ0+uKviaaXJpOxM6zQ35/j9kpP f+9jmXX+b8i2Ok/cTjP2TH9bhu93cD8YQdq5hQLs9Hgu8aSLJHx9Xg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:58 2026 by rpki-client