$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa File: 4DF99E0E934311ED882FFE24C4F9AE02.roa (raw, json) Hash identifier: XwrzlM0letqZh+/RvWS8GdyBop29NFs5TR8e33g5dvY= Subject key identifier: C8:35:6C:05:49:10:92:3E:9B:4B:61:5C:BF:82:15:58:88:48:71:CF Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0B15 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:44:59 +0000 ROA not before: Thu 14 Aug 2025 19:59:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59362 IP address blocks: 103.92.216.0/23 maxlen: 24 103.92.218.0/23 maxlen: 24 123.253.97.0/24 maxlen: 24 123.253.98.0/24 maxlen: 24 123.253.99.0/24 maxlen: 24 2401:21c0::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D, serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Aug 14 19:59:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46d0b-ca14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fa:d9:66:f6:8b:0d:49:de:1e:24:ce:92:41: 3f:b5:d8:98:61:ac:34:31:43:d0:60:96:d8:c4:09: 64:7d:ac:16:87:5d:fb:ee:66:80:bc:2d:75:77:fa: 02:33:58:49:4a:71:dd:14:55:85:32:28:a2:55:7f: 03:43:41:7f:12:fc:6a:9a:7b:92:3e:36:a1:ec:e1: ec:40:c1:43:38:b4:ac:fc:20:74:e0:8a:eb:5c:e6: 23:e2:f2:a5:1e:42:db:fb:9d:cf:79:dd:a7:93:a5: 1a:57:06:e8:ab:b5:97:53:00:25:f2:e3:c4:93:9a: c4:4b:85:3c:3a:97:f8:3f:7d:96:bd:3b:39:f7:2e: 9d:7e:ff:88:38:2c:69:a9:a2:53:cb:30:b2:56:bd: 5e:09:32:14:db:a2:99:9d:35:2b:87:bc:a5:de:ee: df:de:cf:8a:9d:cd:6d:6d:90:c5:ed:1c:21:35:42: aa:f9:ec:77:9f:78:7d:e1:31:69:db:ef:b0:c1:d8: 80:f1:74:62:4f:c7:49:7d:4f:16:7f:6c:c2:c6:6f: f5:59:10:bf:12:1b:c1:ef:51:6c:26:f6:5b:31:f5: eb:e7:82:3f:d8:d4:e3:0a:aa:ae:c8:4d:6d:59:29: 5d:ce:2d:37:a9:66:14:c9:69:10:6f:0a:01:95:fb: dd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:35:6C:05:49:10:92:3E:9B:4B:61:5C:BF:82:15:58:88:48:71:CF X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.92.216.0/22 123.253.97.0-123.253.99.255 IPv6: 2401:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 06:98:74:4c:f6:27:12:39:b0:a9:fe:7d:e8:18:35:c6:52:94: ea:c8:02:42:22:da:7a:c9:da:a7:91:3c:49:7a:b2:fd:34:78: b1:67:6f:c4:c1:1b:8c:c8:1c:18:0c:f6:54:33:5d:86:19:3b: fb:bf:c2:67:b5:ff:76:5c:63:73:98:6f:46:8d:9c:9f:4e:4a: 9a:ac:93:3e:f0:3b:ed:97:0c:a0:74:2b:b4:63:27:f4:d1:1e: 4f:af:fe:3e:9f:0d:ef:1f:68:52:72:5b:ae:a8:45:f6:62:d8: 07:c0:50:be:d8:15:6f:57:94:22:4b:4e:b0:b8:65:00:75:b6: bd:0b:44:de:7d:78:9d:72:82:2b:e6:bd:f1:ea:80:47:26:ff: d7:f3:a0:53:ac:60:a1:99:ca:ab:c6:bf:1c:ee:7e:70:a5:65: b9:33:a0:af:a9:b7:39:05:2a:06:99:0d:8c:8b:75:5c:6e:89: 66:d7:4d:cb:c5:61:f9:0f:5e:48:be:dd:8f:31:f9:d0:b3:23: 27:fd:6a:ef:34:91:96:96:5d:83:21:9a:f1:e4:9e:5d:74:4f: 73:09:1d:f1:38:39:fe:fb:1d:88:8d:48:d0:c4:08:e4:8b:0f: 93:70:7e:56:0c:9d:dd:a8:6d:14:5d:d8:0f:0a:24:0a:4c:61: 78:cf:54:c2 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjUwODE0MTk1OTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQwYi1jYTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfrZZvaLDUneHiTOkkE/tdiYYaw0MUPQYJbYxAlkfawWh1377maAvC11d/oC M1hJSnHdFFWFMiiiVX8DQ0F/EvxqmnuSPjah7OHsQMFDOLSs/CB04IrrXOYj4vKl HkLb+53Ped2nk6UaVwboq7WXUwAl8uPEk5rES4U8Opf4P32WvTs59y6dfv+IOCxp qaJTyzCyVr1eCTIU26KZnTUrh7yl3u7f3s+Knc1tbZDF7RwhNUKq+ex3n3h94TFp 2++wwdiA8XRiT8dJfU8Wf2zCxm/1WRC/EhvB71FsJvZbMfXr54I/2NTjCqquyE1t WSldzi03qWYUyWkQbwoBlfvdwwIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFMg1bAVJ EJI+m0thXL+CFViISHHPMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvNERGOTlFMEU5 MzQzMTFFRDg4MkZGRTI0QzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAa BAIAATAUAwQCZ1zYMAwDBAB7/WEDBAJ7/WAwDQQCAAIwBwMFACQBIcAwDQYJKoZI hvcNAQELBQADggEBAAaYdEz2JxI5sKn+fegYNcZSlOrIAkIi2nrJ2qeRPEl6sv00 eLFnb8TBG4zIHBgM9lQzXYYZO/u/wme1/3ZcY3OYb0aNnJ9OSpqskz7wO+2XDKB0 K7RjJ/TRHk+v/j6fDe8faFJyW66oRfZi2AfAUL7YFW9XlCJLTrC4ZQB1tr0LRN59 eJ1ygivmvfHqgEcm/9fzoFOsYKGZyqvGvxzufnClZbkzoK+ptzkFKgaZDYyLdVxu iWbXTcvFYfkPXki+3Y8x+dCzIyf9au80kZaWXYMhmvHknl10T3MJHfE4Of77HYiN SNDECOSLD5NwflYMnd2obRRd2A8KJApMYXjPVMI= -----END CERTIFICATE-----Generated at Mon Mar 2 07:28:51 2026 by rpki-client