$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa File: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (raw, json) Hash identifier: 3mYXKQGPTclvrVN59MFw/zfTsvZixKAABlHasf+SFZU= Subject key identifier: 84:A8:CE:8E:B8:5E:8D:E2:C7:0C:BA:1E:75:D1:78:C4:64:3F:B3:D6 Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 0991 Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:41:02 +0000 ROA not before: Mon 06 Oct 2025 20:52:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136566 IP address blocks: 103.20.120.0/24 maxlen: 24 2405:2500:5::/48 maxlen: 48 2405:2500:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2449 (0x991) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Oct 6 20:52:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45e0e-bbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ac:4d:11:3e:08:2e:77:15:2e:84:ba:37:b3: 16:da:f4:4c:c2:c9:3c:3f:bc:65:ed:83:1f:dd:8f: d9:ba:6d:d8:b1:7f:be:73:f7:a3:8c:64:91:04:57: ba:b7:85:98:26:92:33:20:7c:b9:5c:5d:40:bd:f8: ad:8f:64:b6:47:5a:3a:01:65:5f:09:84:b1:a5:16: 95:b8:65:4b:b0:56:b2:c9:f4:b0:d1:87:7a:6b:e3: 22:1e:98:c3:6c:af:c5:66:69:37:18:46:11:34:d6: 23:bc:45:1e:b7:c2:67:6f:4e:7b:d3:bc:6e:c6:8f: 31:b1:29:9c:8d:7c:eb:26:d6:30:4c:ca:00:92:c5: fc:5d:52:72:1e:dd:86:8d:0d:b8:26:1a:86:0a:b6: 70:6d:5b:6e:6c:10:d6:03:06:53:e2:5f:80:c3:84: 35:db:f9:96:b4:db:4f:8d:13:08:58:18:e7:e8:d8: f0:35:b0:4a:f3:21:cf:51:a9:62:d2:2b:0a:fa:02: 2a:de:e9:45:ae:65:1a:92:bc:f9:bf:51:5e:5d:5d: 77:53:f8:e4:b6:03:e9:c4:f7:ac:ae:b6:f7:0c:86: 21:55:8d:c9:2a:f0:a2:97:cd:31:89:d3:72:24:28: 58:2e:93:1a:98:4e:44:a6:76:0c:7e:cf:ee:8d:48: ed:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A8:CE:8E:B8:5E:8D:E2:C7:0C:BA:1E:75:D1:78:C4:64:3F:B3:D6 X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.20.120.0/24 IPv6: 2405:2500:5::/48 2405:2500:11::/48 Signature Algorithm: sha256WithRSAEncryption 8b:1c:72:e9:b3:cc:43:6b:69:94:bb:14:94:4b:a2:c9:44:a1: 29:9e:76:a7:a4:68:29:d5:a9:b2:ab:2a:ff:08:f5:3e:ea:3e: 81:7f:3a:c0:2d:98:79:8f:82:7f:9d:e7:0a:c9:29:a3:7a:92: 3a:f0:be:4d:7f:aa:f3:ad:4c:01:fb:60:8c:67:73:cf:b8:01: 31:5e:bb:ae:9c:e0:0a:1a:fe:5d:49:ba:af:5e:ff:5a:3e:71: 6d:fc:6a:20:65:a8:56:24:d2:ce:58:63:12:15:6f:30:5c:f0: 53:2c:f9:c0:fa:7b:c8:a8:bc:c0:80:7b:31:ff:a2:1d:fa:9f: 77:09:75:63:7d:21:48:22:a9:06:ab:e7:c4:9f:0e:25:27:d3: c8:e3:9b:92:98:0a:27:77:2a:8d:7b:08:e2:ec:bd:bc:e6:c7: 96:67:14:a1:0d:f8:6c:94:e9:d8:97:8d:0e:2f:b9:12:b8:6b: a2:55:8f:df:d9:02:25:0a:b9:9a:73:e5:5b:8e:d3:9f:18:d7: f5:23:ab:87:ff:e2:80:79:c0:d2:b8:57:8b:ba:84:20:09:2d: c3:70:fb:4b:f4:9d:8f:da:a4:0f:42:ef:7f:3b:b5:32:e2:ff: 08:6b:ab:94:a6:e4:81:43:67:5a:77:72:2a:af:43:45:f4:2c: 42:39:90:27 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjUxMDA2MjA1MjIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWUwZS1iYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaxNET4ILncVLoS6N7MW2vRMwsk8P7xl7YMf3Y/Zum3YsX++c/ejjGSRBFe6 t4WYJpIzIHy5XF1Avfitj2S2R1o6AWVfCYSxpRaVuGVLsFayyfSw0Yd6a+MiHpjD bK/FZmk3GEYRNNYjvEUet8Jnb05707xuxo8xsSmcjXzrJtYwTMoAksX8XVJyHt2G jQ24JhqGCrZwbVtubBDWAwZT4l+Aw4Q12/mWtNtPjRMIWBjn6NjwNbBK8yHPUali 0isK+gIq3ulFrmUakrz5v1FeXV13U/jktgPpxPesrrb3DIYhVY3JKvCil80xidNy JChYLpMamE5EpnYMfs/ujUjtZwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFISozo64 Xo3ixwy6HnXReMRkP7PWMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBBNTMvNzFCN0Q0NzBBQjRBMTFFQTg5RDE2MzU5QzRGOUFFMDIvRjM2QTBFMkVB QjRCMTFFQUEyQ0E1ODVCQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAZxR4MBgEAgACMBIDBwAkBSUAAAUDBwAkBSUAABEwDQYJKoZIhvcN AQELBQADggEBAIsccumzzENraZS7FJRLoslEoSmedqekaCnVqbKrKv8I9T7qPoF/ OsAtmHmPgn+d5wrJKaN6kjrwvk1/qvOtTAH7YIxnc8+4ATFeu66c4Aoa/l1Juq9e /1o+cW38aiBlqFYk0s5YYxIVbzBc8FMs+cD6e8iovMCAezH/oh36n3cJdWN9IUgi qQar58SfDiUn08jjm5KYCid3Ko17COLsvbzmx5ZnFKEN+GyU6diXjQ4vuRK4a6JV j9/ZAiUKuZpz5VuO058Y1/Ujq4f/4oB5wNK4V4u6hCAJLcNw+0v0nY/apA9C7387 tTLi/whrq5Sm5IFDZ1p3ciqvQ0X0LEI5kCc= -----END CERTIFICATE-----Generated at Mon Mar 2 11:57:33 2026 by rpki-client