$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa File: 9AD04EAAD58A11EE9992494AC4F9AE02.roa (raw, json) Hash identifier: hL/ySclBGJtSUV6puP2byNzzoVBcmJfiT5H7TGRB+KQ= Subject key identifier: AE:EB:24:F7:B0:C2:5A:F5:71:CD:74:2F:D0:04:D1:2A:E2:DD:C3:A7 Certificate issuer: /CN=A9129AD6/serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Certificate serial: 2C45 Authority key identifier: A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:12:50 +0000 ROA not before: Wed 18 Jun 2025 15:32:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59365 IP address blocks: 103.231.228.0/24 maxlen: 24 103.231.229.0/24 maxlen: 24 103.231.230.0/24 maxlen: 24 103.231.231.0/24 maxlen: 24 157.119.48.0/22 maxlen: 24 2404:4b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11333 (0x2c45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129AD6, serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Validity Not Before: Jun 18 15:32:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40312-73f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:99:c6:36:2a:d0:33:fc:b3:d0:8c:b2:e6:fb: b4:3d:1f:dc:7a:60:14:36:0a:d9:60:41:c5:92:e3: 11:2a:42:62:6a:75:96:16:6b:51:f0:11:4b:57:58: a9:0c:95:7f:55:95:90:fc:d9:a4:f7:00:fe:c4:85: 31:0b:ec:06:99:a9:5c:ca:c4:3b:35:64:fa:1f:60: 56:ed:f4:c3:6b:0b:38:bf:41:80:5b:f7:9c:d1:3e: 37:ee:75:0f:9a:d9:a3:27:ea:ec:d4:2d:85:51:18: b2:c4:e7:cb:99:23:01:c3:aa:46:35:55:c6:7d:d5: da:12:0f:94:23:32:35:3b:0a:c3:a0:e3:3e:e1:02: 96:05:d5:cd:9e:50:19:d5:c4:9a:59:0c:74:97:e2: 38:c9:ab:43:06:2c:3b:f1:3c:60:46:55:c4:32:20: be:12:c0:aa:33:72:ac:a4:26:49:7c:ef:4e:a4:20: eb:77:72:ce:8a:34:68:6f:bb:c5:4a:fc:b1:1b:20: 8e:0f:d5:ed:8d:56:78:ab:45:0a:0d:1a:73:61:d5: e3:99:55:47:be:0f:78:e4:10:9e:2a:bb:c8:98:61: 7a:e6:31:8e:30:16:ee:7c:8b:19:b4:f9:88:6c:d0: 9b:2d:d1:34:65:c5:36:d1:9a:78:d1:64:18:c2:87: 59:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EB:24:F7:B0:C2:5A:F5:71:CD:74:2F:D0:04:D1:2A:E2:DD:C3:A7 X509v3 Authority Key Identifier: keyid:A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.228.0/22 157.119.48.0/22 IPv6: 2404:4b80::/32 Signature Algorithm: sha256WithRSAEncryption 28:84:27:4e:27:fd:07:04:b3:a3:75:2c:4f:17:d0:f8:79:cd: 40:4f:4f:51:f3:56:06:07:6b:50:6e:57:15:11:45:5f:ef:87: 44:7b:36:8e:5b:c3:f3:07:7e:b0:0c:e8:1f:90:00:16:25:4d: bc:bd:a2:a6:db:d7:d7:44:00:26:2a:ee:39:0f:02:dd:4f:e7: 0d:05:ed:3f:21:c9:ef:c4:e9:10:80:f8:3f:7a:4b:b9:d2:cc: b2:1f:35:25:36:b9:34:8f:72:79:51:d4:a0:c9:0b:8a:1b:44: fc:71:74:a0:db:12:b3:a7:3a:10:bc:1d:5e:cf:28:49:ae:3a: f5:39:1d:56:67:43:f7:92:33:89:d2:02:7a:06:06:0e:23:ae: 52:d0:41:5b:43:45:1a:c9:3b:b3:b2:8e:c6:ec:0e:ef:91:8c: 34:3c:02:a2:59:3c:38:f4:9f:27:75:c8:3d:5d:ac:7d:9c:90: f8:33:a8:ed:4d:36:c2:33:b2:08:0c:71:55:80:f1:27:70:4f: 90:49:61:4d:b0:a7:a8:38:3b:0f:be:f5:49:cf:a9:8c:a8:b3: e3:6a:d5:0a:0a:23:e8:c1:2b:29:12:fb:83:4a:af:8e:c3:57: e1:db:96:ea:ea:00:6a:d6:6c:4f:4c:e6:3d:8a:c4:ee:a2:d7: e2:9a:02:9c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICLEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlBRDYxMTAvBgNVBAUTKEE1QTZBOUVBQzFBQ0Y3NkU1NTJDNzhCREQ3OEJBNzRG RURERDNGRjkwHhcNMjUwNjE4MTUzMjU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDMxMi03M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpnGNirQM/yz0Iyy5vu0PR/cemAUNgrZYEHFkuMRKkJianWWFmtR8BFLV1ip DJV/VZWQ/Nmk9wD+xIUxC+wGmalcysQ7NWT6H2BW7fTDaws4v0GAW/ec0T437nUP mtmjJ+rs1C2FURiyxOfLmSMBw6pGNVXGfdXaEg+UIzI1OwrDoOM+4QKWBdXNnlAZ 1cSaWQx0l+I4yatDBiw78TxgRlXEMiC+EsCqM3KspCZJfO9OpCDrd3LOijRob7vF SvyxGyCOD9XtjVZ4q0UKDRpzYdXjmVVHvg945BCeKrvImGF65jGOMBbufIsZtPmI bNCbLdE0ZcU20Zp40WQYwodZZwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFK7rJPew wlr1cc10L9AE0Sri3cOnMB8GA1UdIwQYMBaAFKWmqerBrPduVSx4vdeLp0/t3T/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUFENi9ENjc3REM5NERG RDAxMUUzOTNEQjc5NUY1OTExRUEzMi9wYWFwNnNHczkyNVZMSGk5MTR1blQtM2RQ X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BhYXA2c0dzOTI1VkxIaTkxNHVuVC0zZFBfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlBRDYvRDY3N0RDOTRERkQwMTFFMzkzREI3OTVGNTkxMUVBMzIvOUFEMDRFQUFE NThBMTFFRTk5OTI0OTRBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ+fkAwQCnXcwMA0EAgACMAcDBQAkBEuAMA0GCSqGSIb3DQEBCwUA A4IBAQAohCdOJ/0HBLOjdSxPF9D4ec1AT09R81YGB2tQblcVEUVf74dEezaOW8Pz B36wDOgfkAAWJU28vaKm29fXRAAmKu45DwLdT+cNBe0/IcnvxOkQgPg/eku50syy HzUlNrk0j3J5UdSgyQuKG0T8cXSg2xKzpzoQvB1ezyhJrjr1OR1WZ0P3kjOJ0gJ6 BgYOI65S0EFbQ0UayTuzso7G7A7vkYw0PAKiWTw49J8ndcg9Xax9nJD4M6jtTTbC M7IIDHFVgPEncE+QSWFNsKeoODsPvvVJz6mMqLPjatUKCiPowSspEvuDSq+Ow1fh 25bq6gBq1mxPTOY9isTuotfimgKc -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:37 2026 by rpki-client