$ rpki-client -vvf rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/5672783CBA2111F08A546E86C4F9AE02.roa File: 5672783CBA2111F08A546E86C4F9AE02.roa (raw, json) Hash identifier: RKJiWEFRRxfC255nnKMBMyY+0j0SvD2OXb6aSU3b+vU= Subject key identifier: C0:68:2D:C3:3B:A5:1B:B6:96:89:3A:12:D2:C4:89:42:33:29:16:73 Certificate issuer: /CN=A9134C75/serialNumber=3C8FB5E0CCF7E105DFCCBB4C8F8359EF5A615F1F Certificate serial: 43 Authority key identifier: 3C:8F:B5:E0:CC:F7:E1:05:DF:CC:BB:4C:8F:83:59:EF:5A:61:5F:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PI-14Mz34QXfzLtMj4NZ71phXx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/5672783CBA2111F08A546E86C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:09:20 +0000 ROA not before: Fri 07 Nov 2025 03:42:22 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55902 IP address blocks: 43.249.244.0/22 maxlen: 22 43.249.244.0/24 maxlen: 24 43.249.245.0/24 maxlen: 24 43.249.246.0/24 maxlen: 24 43.249.247.0/24 maxlen: 24 103.31.12.0/22 maxlen: 22 103.31.12.0/24 maxlen: 24 103.31.13.0/24 maxlen: 24 103.31.14.0/24 maxlen: 24 103.31.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/PI-14Mz34QXfzLtMj4NZ71phXx8.crl rsync://rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/PI-14Mz34QXfzLtMj4NZ71phXx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PI-14Mz34QXfzLtMj4NZ71phXx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134C75, serialNumber=3C8FB5E0CCF7E105DFCCBB4C8F8359EF5A615F1F Validity Not Before: Nov 7 03:42:22 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d810-5c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9c:44:d6:7d:0a:ed:b5:fa:57:96:27:74:12: 59:a1:9c:c8:d8:a9:02:7a:6a:07:8f:63:af:f8:b5: 68:7a:56:4f:1b:0e:fd:10:36:28:9f:dd:80:82:4b: 40:52:4a:9e:1e:35:c6:a9:70:56:93:9c:50:18:bb: 40:4e:68:c5:05:ca:b7:bd:01:77:91:4f:47:00:52: 6c:5b:5a:ed:a0:a2:b7:f8:a2:78:0e:24:c6:98:13: 3c:59:46:73:ef:ef:ac:29:4a:b6:78:00:b8:2f:31: 0d:d1:0b:65:c2:87:6c:bb:11:9c:15:06:df:a8:66: 66:e5:b6:d5:82:3a:24:ca:d7:86:dd:7b:60:15:20: 60:3b:9a:b7:36:36:9a:07:13:0a:f9:59:f0:6a:0e: a7:41:2f:fa:4b:ed:47:9d:bc:7d:f0:54:7e:4b:33: 22:13:9c:2a:55:cb:6b:ec:fe:f3:64:b9:5f:0f:3b: f1:d5:4c:8d:d8:a0:33:9c:d9:31:f6:ca:bb:8d:be: ec:71:c4:d8:ba:fd:6a:bd:be:12:fc:fb:fa:74:89: 12:3c:69:e4:31:96:90:24:90:6c:8c:7b:55:68:a0: be:b0:0b:25:08:3f:85:9e:27:ad:a7:69:63:86:a3: fe:c4:6e:c9:3e:08:64:8f:d1:4c:31:de:d1:d1:f2: 6f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:68:2D:C3:3B:A5:1B:B6:96:89:3A:12:D2:C4:89:42:33:29:16:73 X509v3 Authority Key Identifier: keyid:3C:8F:B5:E0:CC:F7:E1:05:DF:CC:BB:4C:8F:83:59:EF:5A:61:5F:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/PI-14Mz34QXfzLtMj4NZ71phXx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PI-14Mz34QXfzLtMj4NZ71phXx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134C75/0F82F584BA1F11F09D9E253CC4F9AE02/5672783CBA2111F08A546E86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.244.0/22 103.31.12.0/22 Signature Algorithm: sha256WithRSAEncryption 29:36:3e:2a:2c:9c:f2:87:ef:ae:44:af:ac:c5:ee:54:f1:48: ff:58:86:a0:a6:9e:19:d0:1d:7e:8f:1c:71:54:ac:6b:fa:8a: b3:11:cb:63:cb:88:53:3b:3b:55:c8:ae:2d:d3:db:3e:d8:fd: ea:be:7c:f1:f5:b2:b0:a3:5d:6e:7d:6d:0f:eb:3c:d1:8f:ad: 14:1b:ea:02:25:97:39:a3:7d:fc:cb:2d:a6:87:c6:7a:e4:ae: c9:d1:97:4b:d3:1f:61:a0:1a:56:2c:5f:a3:5a:b9:3a:8f:8d: 26:82:7b:6f:5c:f8:f8:1a:51:57:3b:40:1b:dc:00:bc:1f:85: 10:56:d1:db:72:e5:19:9f:13:ae:d7:58:7a:df:32:33:15:54: 21:b2:f7:b8:6f:3d:32:25:4e:a8:6b:ce:b5:b2:aa:29:6a:49: 85:7f:5f:c0:7f:ff:04:df:01:df:6a:d6:27:4b:fc:fb:f0:f9: a2:88:fa:a8:8f:90:d0:8b:69:4b:80:51:bb:c1:54:7f:f1:c7: a1:18:9b:b3:fc:75:ec:4b:86:fc:ca:e3:fc:9f:04:68:73:92: 27:5a:90:d0:cf:34:f2:d1:37:52:28:87:79:a7:91:a9:96:b1: 76:43:fd:91:dc:87:14:2c:da:19:e4:7e:7c:d9:8c:5f:14:f6: cb:54:87:42 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEM3NTExMC8GA1UEBRMoM0M4RkI1RTBDQ0Y3RTEwNURGQ0NCQjRDOEY4MzU5RUY1 QTYxNUYxRjAeFw0yNTExMDcwMzQyMjJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODEwLTVjOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWnETWfQrttfpXlid0ElmhnMjYqQJ6agePY6/4tWh6Vk8bDv0QNiif3YCCS0BS Sp4eNcapcFaTnFAYu0BOaMUFyre9AXeRT0cAUmxbWu2gorf4ongOJMaYEzxZRnPv 76wpSrZ4ALgvMQ3RC2XCh2y7EZwVBt+oZmblttWCOiTK14bde2AVIGA7mrc2NpoH Ewr5WfBqDqdBL/pL7UedvH3wVH5LMyITnCpVy2vs/vNkuV8PO/HVTI3YoDOc2TH2 yruNvuxxxNi6/Wq9vhL8+/p0iRI8aeQxlpAkkGyMe1VooL6wCyUIP4WeJ62naWOG o/7Ebsk+CGSP0Uwx3tHR8m9LAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUwGgtwzul G7aWiToS0sSJQjMpFnMwHwYDVR0jBBgwFoAUPI+14Mz34QXfzLtMj4NZ71phXx8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0Qzc1LzBGODJGNTg0QkEx RjExRjA5RDlFMjUzQ0M0RjlBRTAyL1BJLTE0TXozNFFYZnpMdE1qNE5aNzFwaFh4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUEktMTRNejM0UVhmekx0TWo0Tlo3MXBoWHg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEM3NS8wRjgyRjU4NEJBMUYxMUYwOUQ5RTI1M0NDNEY5QUUwMi81NjcyNzgzQ0JB MjExMUYwOEE1NDZFODZDNEY5QUUwMi5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAIr+fQDBAJnHwwwDQYJKoZIhvcNAQELBQADggEBACk2PiosnPKH765E r6zF7lTxSP9YhqCmnhnQHX6PHHFUrGv6irMRy2PLiFM7O1XIri3T2z7Y/eq+fPH1 srCjXW59bQ/rPNGPrRQb6gIllzmjffzLLaaHxnrkrsnRl0vTH2GgGlYsX6NauTqP jSaCe29c+PgaUVc7QBvcALwfhRBW0dty5RmfE67XWHrfMjMVVCGy97hvPTIlTqhr zrWyqilqSYV/X8B//wTfAd9q1idL/Pvw+aKI+qiPkNCLaUuAUbvBVH/xx6EYm7P8 dexLhvzK4/yfBGhzkidakNDPNPLRN1Ioh3mnkamWsXZD/ZHchxQs2hnkfnzZjF8U 9stUh0I= -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:11 2026 by rpki-client