$ rpki-client -vvf rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa File: 2328656A840211EEB9348E11C4F9AE02.roa (raw, json) Hash identifier: AJ7U14HstgqbbA37ZAEyjfsIrPGL23cFMb8Jhil555M= Subject key identifier: 0C:22:07:AC:EC:59:D2:78:5A:30:82:43:78:91:B9:15:D3:17:8C:B7 Certificate issuer: /CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Certificate serial: 0DB5 Authority key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:51:04 +0000 ROA not before: Sun 02 Nov 2025 18:06:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 63989 IP address blocks: 103.131.64.0/24 maxlen: 24 103.131.65.0/24 maxlen: 24 103.131.66.0/24 maxlen: 24 103.131.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3509 (0xdb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135033, serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Validity Not Before: Nov 2 18:06:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44448-af85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:08:65:e3:52:ef:d5:85:34:32:22:f3:19:33: 63:38:82:b0:d7:41:5c:04:9f:36:ec:60:4c:2e:17: 91:b8:d0:3b:ae:1a:4d:9e:78:d4:d4:7d:2a:b5:2e: ec:9e:58:33:bb:cf:c3:6f:16:6d:47:51:de:2b:25: ed:06:b4:a9:cd:75:67:fd:56:21:4a:fe:a8:e1:06: 96:94:a5:e7:8a:dd:55:94:da:3c:65:cf:f3:e6:bd: 99:8e:2f:2f:d8:df:ab:d1:cf:62:83:5c:2d:8f:0b: c0:2d:77:ea:cf:6b:58:03:37:65:af:26:ce:21:a6: 92:1f:22:9a:30:12:e3:6b:3d:6b:a8:49:4a:40:63: cb:e8:b3:c0:21:2f:87:5a:7a:d9:7e:ff:ea:dd:7b: 0a:a3:88:9e:ad:79:51:b7:de:58:24:d1:51:4b:54: 9f:20:7b:fb:f2:27:00:b9:63:8d:65:10:12:a4:5d: bb:2e:43:b7:01:d6:d2:76:07:ae:b0:8b:67:84:58: b5:d8:7a:bc:95:34:7d:91:d8:51:b9:83:38:06:6a: da:06:5f:4a:1e:39:88:d0:a6:a8:71:7e:40:06:9c: c4:ae:78:44:8d:3c:93:94:68:51:47:ce:47:11:4b: 92:30:28:10:ba:ac:71:7f:eb:8c:c5:31:12:86:c7: 6a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:22:07:AC:EC:59:D2:78:5A:30:82:43:78:91:B9:15:D3:17:8C:B7 X509v3 Authority Key Identifier: keyid:0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.131.64.0/22 Signature Algorithm: sha256WithRSAEncryption b6:5c:ce:c7:8a:b4:05:0b:25:f3:26:3a:f1:ad:8c:d9:94:ad: 7c:5a:b8:cd:f9:47:29:0b:a9:fe:a0:1d:65:e0:b7:47:c5:38: 8e:98:41:b5:e1:86:92:b9:79:23:c3:78:37:15:25:12:aa:13: 68:89:32:69:62:ce:19:c4:97:34:75:bf:73:fa:cb:d1:da:ab: 34:e7:13:e3:a1:32:67:77:23:87:66:68:38:05:72:41:58:8a: 13:f9:3a:a1:e9:90:10:00:e0:d1:cd:d2:7b:b5:cf:90:de:25: 33:6c:9a:25:a0:8e:bc:74:c6:25:71:d3:7a:fe:18:ad:bd:6d: dc:70:fb:e8:79:d8:cb:62:c7:03:4d:e3:2f:c0:4c:b3:28:cc: c3:e2:23:c8:69:df:8e:0a:6a:7e:bd:d5:a5:73:c2:e0:0e:eb: e8:cd:cc:54:84:1b:65:e9:bd:6c:e9:27:0c:03:43:71:25:17: 39:6d:23:0e:56:be:a8:6c:11:9d:b0:98:60:e5:23:20:f6:45: 8e:0e:81:02:9f:1e:14:b0:4c:f8:81:1c:50:ce:ae:ce:46:59: 84:96:d9:45:4a:15:73:92:42:cf:28:af:9c:44:4c:a8:d9:2b: a1:62:ec:2b:4c:65:39:35:83:22:00:9e:96:43:fa:d6:c4:ea: d4:1a:b6:ed -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMzMxMTAvBgNVBAUTKDBERTU5NkNCMkM2MENCNzU3REI4RjQwRUI4NkYyNDc2 NTJDMTNBMzAwHhcNMjUxMTAyMTgwNjMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDQ0OC1hZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwhl41Lv1YU0MiLzGTNjOIKw10FcBJ827GBMLheRuNA7rhpNnnjU1H0qtS7s nlgzu8/DbxZtR1HeKyXtBrSpzXVn/VYhSv6o4QaWlKXnit1VlNo8Zc/z5r2Zji8v 2N+r0c9ig1wtjwvALXfqz2tYAzdlrybOIaaSHyKaMBLjaz1rqElKQGPL6LPAIS+H WnrZfv/q3XsKo4ierXlRt95YJNFRS1SfIHv78icAuWONZRASpF27LkO3AdbSdgeu sItnhFi12Hq8lTR9kdhRuYM4BmraBl9KHjmI0KaocX5ABpzErnhEjTyTlGhRR85H EUuSMCgQuqxxf+uMxTEShsdqRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAwiB6zs WdJ4WjCCQ3iRuRXTF4y3MB8GA1UdIwQYMBaAFA3llsssYMt1fbj0DrhvJHZSwTow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAzMy81RDAwQUU1MkRE NEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kzVjl1UFFPdUc4a2RsTEJP akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlV1d5eXhneTNWOXVQUU91RzhrZGxMQk9qQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMzMvNUQwMEFFNTJERDRDMTFFOUE2RDRCQjFEQzRGOUFFMDIvMjMyODY1NkE4 NDAyMTFFRUI5MzQ4RTExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4NAMA0GCSqGSIb3DQEBCwUAA4IBAQC2XM7HirQFCyXzJjrxrYzZ lK18WrjN+UcpC6n+oB1l4LdHxTiOmEG14YaSuXkjw3g3FSUSqhNoiTJpYs4ZxJc0 db9z+svR2qs05xPjoTJndyOHZmg4BXJBWIoT+Tqh6ZAQAODRzdJ7tc+Q3iUzbJol oI68dMYlcdN6/hitvW3ccPvoedjLYscDTeMvwEyzKMzD4iPIad+OCmp+vdWlc8Lg DuvozcxUhBtl6b1s6ScMA0NxJRc5bSMOVr6obBGdsJhg5SMg9kWODoECnx4UsEz4 gRxQzq7ORlmEltlFShVzkkLPKK+cREyo2SuhYuwrTGU5NYMiAJ6WQ/rWxOrUGrbt -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:15 2026 by rpki-client