$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C9B06ECCD7A411EF9AB81933C4F9AE02.roa File: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (raw, json) Hash identifier: vmkU+Wc2xpDQMgPam/mAe6kA8brCuJz9cHHqu3MmaNY= Subject key identifier: 5C:36:55:3A:F4:4C:69:7E:CA:FB:DA:0B:72:34:A2:6B:F0:DE:86:E8 Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: D9 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C9B06ECCD7A411EF9AB81933C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:27:52 +0000 ROA not before: Tue 23 Dec 2025 05:26:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4049 IP address blocks: 103.144.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Dec 23 05:26:27 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43ed7-55f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8d:cb:d7:9b:69:0f:82:ab:e2:ac:bf:bc:c4: e8:f1:90:e9:b5:56:45:2c:df:28:d2:53:b9:23:10: 41:b0:e5:32:60:43:73:e1:ed:93:6c:4a:c0:e8:0f: 0b:8c:57:5c:8c:e7:8f:0c:57:fb:1f:7d:c2:ee:dd: 6c:84:61:5c:88:45:53:b9:17:b9:42:27:39:f1:4e: 22:6a:c9:ee:29:ae:58:48:73:da:fe:a7:4c:b7:e6: b3:14:c2:42:d3:12:1b:bd:3c:0f:bc:a3:f0:55:9f: 8e:39:01:3c:a5:78:77:1f:0c:9b:5c:e7:fc:e2:ae: 9f:6d:82:cb:06:4b:13:f3:e4:f9:26:e7:b9:51:17: 0a:7b:1a:8d:04:3e:bc:64:65:b8:86:0f:8f:a4:54: f6:20:ff:ae:0e:67:00:d6:75:aa:71:16:c5:ea:32: 61:92:56:ac:cf:9b:17:0d:1f:67:e9:57:a4:03:e0: f4:bd:88:83:95:fd:8c:46:45:5c:7e:8e:e4:0c:e0: 25:f7:a8:a7:67:58:37:7c:98:52:67:7a:17:94:80: 88:c7:83:a8:9e:21:1f:4e:10:6f:3c:f5:77:61:62: cd:9b:32:c6:48:ee:ae:ae:bf:b5:ae:81:34:11:be: d4:af:69:c8:38:c7:c6:e9:91:09:db:5d:39:f5:56: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:36:55:3A:F4:4C:69:7E:CA:FB:DA:0B:72:34:A2:6B:F0:DE:86:E8 X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C9B06ECCD7A411EF9AB81933C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.125.0/24 Signature Algorithm: sha256WithRSAEncryption 30:02:32:9a:5b:64:b4:5e:b3:6a:78:32:74:f8:75:4c:24:50: 46:50:53:6b:9f:8d:d7:6c:9a:be:6b:d2:7d:ba:94:4d:c7:0a: 00:2f:ab:2a:67:9a:c7:d8:61:98:aa:3b:44:9c:43:5d:94:d7: 0b:3b:a7:68:2a:9e:72:3c:5a:6e:89:2a:de:b5:20:f0:1c:b8: 10:fd:da:c5:ee:97:0a:af:2e:4c:6a:7f:bb:80:d6:bd:4d:f6: ed:ed:b1:1c:0a:b4:00:a7:d3:e7:71:bb:45:81:da:95:d7:39: 1a:19:9d:f2:f9:c0:d5:7e:cb:38:88:c3:81:01:33:ad:95:44: e0:b6:12:5f:35:c0:69:4a:e5:42:ea:07:71:d5:be:01:ec:78: da:6c:e0:73:5d:87:8b:cc:b7:f2:43:67:e7:11:d8:d1:f7:e8: 5a:27:17:8e:38:d2:10:f7:8d:58:a2:ba:57:44:5a:32:3a:62: 72:28:4d:37:76:08:63:ba:72:33:58:1d:76:2c:75:8a:c4:a1: c1:9e:d8:f2:fa:97:99:5e:b6:58:4d:2a:99:65:0a:61:c5:d7: 41:e1:15:10:f3:4c:31:e4:60:f5:64:0d:d3:72:d0:3b:2c:e7: 0e:38:7f:a3:28:1a:74:c4:89:9b:22:9f:ec:73:a1:d1:89:79: aa:88:33:04 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NzYxMTAvBgNVBAUTKDE4OTFENTRDRUY2QTkwQzIzMkZDQTg5MUUzOTlGOTc4 Mzg2NzExRUUwHhcNMjUxMjIzMDUyNjI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2VkNy01NWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I3L15tpD4Kr4qy/vMTo8ZDptVZFLN8o0lO5IxBBsOUyYENz4e2TbErA6A8L jFdcjOePDFf7H33C7t1shGFciEVTuRe5Qic58U4iasnuKa5YSHPa/qdMt+azFMJC 0xIbvTwPvKPwVZ+OOQE8pXh3HwybXOf84q6fbYLLBksT8+T5Jue5URcKexqNBD68 ZGW4hg+PpFT2IP+uDmcA1nWqcRbF6jJhklasz5sXDR9n6VekA+D0vYiDlf2MRkVc fo7kDOAl96inZ1g3fJhSZ3oXlICIx4OoniEfThBvPPV3YWLNmzLGSO6urr+1roE0 Eb7Ur2nIOMfG6ZEJ21059Vb9vQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFw2VTr0 TGl+yvvaC3I0omvw3oboMB8GA1UdIwQYMBaAFBiR1UzvapDCMvyokeOZ+Xg4ZxHu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU3Ni8yREU5NEE5QUQ3 QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtNSXlfS2lSNDVuNWVEaG5F ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1NzYvMkRFOTRBOUFEN0E0MTFFRjk2NEQ2RDdDQzRGOUFFMDIvQzlCMDZFQ0NE N0E0MTFFRjlBQjgxOTMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5B9MA0GCSqGSIb3DQEBCwUAA4IBAQAwAjKaW2S0XrNqeDJ0+HVM JFBGUFNrn43XbJq+a9J9upRNxwoAL6sqZ5rH2GGYqjtEnENdlNcLO6doKp5yPFpu iSretSDwHLgQ/drF7pcKry5Man+7gNa9Tfbt7bEcCrQAp9PncbtFgdqV1zkaGZ3y +cDVfss4iMOBATOtlUTgthJfNcBpSuVC6gdx1b4B7HjabOBzXYeLzLfyQ2fnEdjR 9+haJxeOONIQ941YorpXRFoyOmJyKE03dghjunIzWB12LHWKxKHBntjy+peZXrZY TSqZZQphxddB4RUQ80wx5GD1ZA3TctA7LOcOOH+jKBp0xImbIp/sc6HRiXmqiDME -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:05 2026 by rpki-client