$ rpki-client -vvf rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa File: CDB51BDC739411EEB8BAE858C4F9AE02.roa (raw, json) Hash identifier: wNyWzcRKJYqMachMShaQ5xH7ilqP4KvZkktUsCzRUfA= Subject key identifier: 6B:A2:B0:C9:9B:92:45:99:C3:6A:3C:81:82:8A:F4:3D:25:AA:E7:3F Certificate issuer: /CN=A9126996/serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E Certificate serial: 01C5 Authority key identifier: 62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:04:15 +0000 ROA not before: Fri 01 Aug 2025 05:42:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58511 IP address blocks: 103.22.144.0/22 maxlen: 22 2401:3900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.crl rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126996, serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E Validity Not Before: Aug 1 05:42:49 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4394f-4b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:df:66:65:6a:1f:cc:2f:91:ff:6b:67:ec:11: 23:02:52:72:b1:9d:54:79:3a:b3:74:3e:0d:53:bd: 14:fc:9d:6f:b9:19:b3:c7:54:c3:07:05:af:f3:39: c4:f9:98:57:6d:40:3f:9f:33:cd:66:8c:df:68:94: 44:3a:8f:61:a9:9c:67:1a:57:89:f6:9b:46:b5:ef: 42:ab:d4:42:7d:83:85:1b:1e:b0:ad:0e:4a:ee:61: 1a:64:3e:63:85:ab:1c:0f:36:99:ea:8a:b1:5e:5d: 0e:c4:a7:66:16:fc:4d:fc:62:71:06:83:fc:a8:53: 6c:7b:b3:96:09:4d:98:66:b6:fc:cb:c1:1c:de:fb: c5:a3:dc:91:6d:21:b8:a8:ea:21:f9:bd:f1:c2:c5: 3b:f6:7f:fb:db:74:e1:c2:00:8b:df:9d:00:c7:e7: 6b:80:14:e6:1f:05:02:84:ff:26:c3:d7:4c:5a:7c: 57:87:1c:e0:ad:86:22:6e:39:8b:6f:6c:84:58:86: f4:ee:96:99:a3:28:e8:68:a1:25:c6:e2:c4:af:f9: 2e:d1:8e:17:53:62:a8:e3:d9:1c:9b:8c:05:a1:9a: 1d:7a:54:ee:ea:e7:bd:83:06:b8:10:c5:8b:a5:2c: b5:3f:21:cb:86:e1:c6:17:17:98:4f:df:56:ba:c0: 48:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A2:B0:C9:9B:92:45:99:C3:6A:3C:81:82:8A:F4:3D:25:AA:E7:3F X509v3 Authority Key Identifier: keyid:62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.22.144.0/22 IPv6: 2401:3900::/32 Signature Algorithm: sha256WithRSAEncryption 3b:8e:f0:99:ee:af:b1:88:75:92:92:22:d0:5d:f9:19:d4:2b: 7a:1a:66:ec:41:d8:27:d1:a1:7d:9b:f0:a2:14:f5:a3:8d:3f: 7f:71:b8:da:5b:e4:66:56:84:0d:3c:de:0d:83:0f:e3:91:a9: d4:47:c2:f8:4e:d7:5b:4e:3e:cc:6d:5e:6e:f9:cb:65:09:7c: 7e:2d:d6:34:79:2f:2d:01:de:27:3a:22:b4:0f:47:24:95:bf: 65:f5:0d:70:35:3f:68:4c:83:16:93:aa:67:6e:04:90:cd:e5: 8a:cf:29:f3:12:96:86:d9:ad:35:72:12:29:34:4d:fb:b6:2d: ea:c3:d0:bf:ac:e6:19:21:f1:96:16:aa:65:89:a0:32:3a:16: 7f:6e:fa:ed:d8:81:dd:fd:83:b6:ce:97:54:11:1e:8c:e3:c2: d7:27:94:36:f1:ff:a4:09:9b:2c:d7:40:aa:3a:9a:38:0e:7c: 35:79:8a:c3:10:f8:a0:a8:f1:d6:f2:4b:d5:16:42:ac:b3:cb: 6f:05:74:c3:05:eb:4c:e2:ea:8f:a5:a2:cb:6a:8c:04:4b:39: 73:91:79:ec:dc:09:01:64:67:07:8b:9a:f6:f8:3c:f6:67:31: d3:e6:83:45:31:aa:48:26:10:f9:73:80:e9:28:51:e2:b1:4c: 5f:b4:bd:fa -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OTYxMTAvBgNVBAUTKDYyODNCRTlCMzFEMjkwMzZCOTY3QkZGN0I3RTcxQkFE RDUyOUE2NEUwHhcNMjUwODAxMDU0MjQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzk0Zi00Yjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1t9mZWofzC+R/2tn7BEjAlJysZ1UeTqzdD4NU70U/J1vuRmzx1TDBwWv8znE +ZhXbUA/nzPNZozfaJREOo9hqZxnGleJ9ptGte9Cq9RCfYOFGx6wrQ5K7mEaZD5j hascDzaZ6oqxXl0OxKdmFvxN/GJxBoP8qFNse7OWCU2YZrb8y8Ec3vvFo9yRbSG4 qOoh+b3xwsU79n/723ThwgCL350Ax+drgBTmHwUChP8mw9dMWnxXhxzgrYYibjmL b2yEWIb07paZoyjoaKElxuLEr/ku0Y4XU2Ko49kcm4wFoZodelTu6ue9gwa4EMWL pSy1PyHLhuHGFxeYT99WusBIvwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGuisMmb kkWZw2o8gYKK9D0lquc/MB8GA1UdIwQYMBaAFGKDvpsx0pA2uWe/97fnG63VKaZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk5Ni8xMjMxRkM2ODcz OTQxMUVFQTE3MDM4NERDNEY5QUUwMi9Zb08tbXpIU2tEYTVaN18zdC1jYnJkVXBw azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvTy1tekhTa0RhNVo3XzN0LWNicmRVcHBrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY5OTYvMTIzMUZDNjg3Mzk0MTFFRUExNzAzODREQzRGOUFFMDIvQ0RCNTFCREM3 Mzk0MTFFRUI4QkFFODU4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxaQMA0EAgACMAcDBQAkATkAMA0GCSqGSIb3DQEBCwUAA4IBAQA7 jvCZ7q+xiHWSkiLQXfkZ1Ct6GmbsQdgn0aF9m/CiFPWjjT9/cbjaW+RmVoQNPN4N gw/jkanUR8L4TtdbTj7MbV5u+ctlCXx+LdY0eS8tAd4nOiK0D0cklb9l9Q1wNT9o TIMWk6pnbgSQzeWKzynzEpaG2a01chIpNE37ti3qw9C/rOYZIfGWFqpliaAyOhZ/ bvrt2IHd/YO2zpdUER6M48LXJ5Q28f+kCZss10CqOpo4Dnw1eYrDEPigqPHW8kvV FkKss8tvBXTDBetM4uqPpaLLaowESzlzkXns3AkBZGcHi5r2+Dz2ZzHT5oNFMapI JhD5c4DpKFHisUxftL36 -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:43 2026 by rpki-client