$ rpki-client -vvf rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa File: 4911720A694F11ECB6F9B541C4F9AE02.roa (raw, json) Hash identifier: YOg+De6U92VPxm5L8zLh+xU3Hyxn+qThHc5VvTAihoU= Subject key identifier: F2:CC:F7:0A:9D:2D:8F:CC:4F:9B:D0:3F:82:66:6D:94:E4:DC:E6:5B Certificate issuer: /CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Certificate serial: 04E1 Authority key identifier: BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:01:59 +0000 ROA not before: Wed 01 Oct 2025 00:56:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146962 IP address blocks: 103.172.106.0/24 maxlen: 24 103.172.107.0/24 maxlen: 24 2407:d040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138C14, serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Validity Not Before: Oct 1 00:56:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a454e7-c96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7a:bd:11:d7:d7:67:ef:1c:13:0f:20:e2:ab: ad:4b:be:aa:96:ec:69:73:2a:77:c3:63:5a:2d:dc: d8:44:f4:f3:74:9d:25:f1:7d:e6:80:c9:52:0e:07: f7:79:f5:09:85:5e:59:a4:e4:99:84:3e:8f:41:aa: ab:d1:ee:55:62:bb:8f:af:db:de:9f:a8:55:ac:0f: 31:ee:85:81:7c:e1:63:28:c1:03:57:f2:56:38:b4: a3:ac:00:a2:ae:a8:bd:9f:da:37:a6:48:3e:d8:ce: d7:dc:57:4f:e4:04:bb:cd:51:e0:c3:97:d1:39:2f: b7:8a:3d:36:49:88:04:3d:e1:83:9f:20:9f:12:f0: 05:95:01:0c:35:15:c7:8b:8d:cf:b0:68:72:be:60: 5b:8f:26:16:6b:46:b9:7a:af:77:ab:ca:69:39:47: 90:92:c4:fd:7c:3f:40:d6:aa:89:5d:59:4d:1c:51: 65:b7:4d:ba:a9:f7:56:74:63:50:72:1b:4e:0e:fb: 49:50:08:1a:d4:29:a5:e2:c2:5f:dc:42:43:d5:20: 32:c5:81:9c:e0:d9:12:43:6d:5b:97:cf:43:cf:f3: f7:bf:93:39:52:12:d1:2e:cd:b5:64:4c:48:1f:ba: ac:41:d7:3d:3f:b5:d7:ff:74:61:29:09:35:4c:1d: 53:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CC:F7:0A:9D:2D:8F:CC:4F:9B:D0:3F:82:66:6D:94:E4:DC:E6:5B X509v3 Authority Key Identifier: keyid:BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.106.0/23 IPv6: 2407:d040::/32 Signature Algorithm: sha256WithRSAEncryption 76:a5:6a:df:4d:0c:bb:f7:b8:27:c0:e6:0d:a5:1e:7c:53:6e: a2:7a:d2:87:c7:8c:80:14:58:70:51:4a:29:c6:28:c7:4a:c7: 08:c4:12:2e:9a:d6:8e:29:da:ab:14:1c:37:d3:e3:24:61:b5: 68:96:48:fb:b3:a0:0f:f7:1b:7b:d5:af:5f:db:d9:14:ae:c5: 06:3a:34:de:2f:13:30:e6:4b:a2:36:a8:61:30:0a:11:00:06: c1:fd:a7:65:c4:79:99:35:c1:ee:0f:da:ba:5f:86:81:ff:d9: 32:a5:6d:ba:e1:ad:c3:b6:25:b2:d0:da:79:de:f6:56:03:58: f4:30:7b:d9:52:ae:42:17:3e:8f:4c:e9:90:52:64:b4:2a:2a: db:71:73:08:1b:62:d6:a6:47:d3:ab:f5:d9:c5:32:b1:dc:74: e1:cb:b6:8e:67:8a:0d:5d:38:48:71:97:d7:92:dc:72:67:68: f9:80:98:83:27:6e:e0:df:fe:1c:54:45:a9:fe:81:79:42:6c: cf:b3:0e:58:91:37:34:41:3a:31:16:89:71:3d:63:5f:04:c8: 6c:67:58:f9:f2:dd:f1:1e:8d:5b:a4:76:d2:81:36:13:cd:31: ec:e4:9a:0e:6f:58:57:5c:58:68:05:ba:b5:ed:b2:24:1a:16: b6:83:49:c2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhDMTQxMTAvBgNVBAUTKEJCMEU1NTAzNzlGRUEyODFBODgxQTY3NDc5Qjc3Qzg2 MDJEMDEzMTQwHhcNMjUxMDAxMDA1NjI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTRlNy1jOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnq9EdfXZ+8cEw8g4qutS76qluxpcyp3w2NaLdzYRPTzdJ0l8X3mgMlSDgf3 efUJhV5ZpOSZhD6PQaqr0e5VYruPr9ven6hVrA8x7oWBfOFjKMEDV/JWOLSjrACi rqi9n9o3pkg+2M7X3FdP5AS7zVHgw5fROS+3ij02SYgEPeGDnyCfEvAFlQEMNRXH i43PsGhyvmBbjyYWa0a5eq93q8ppOUeQksT9fD9A1qqJXVlNHFFlt026qfdWdGNQ chtODvtJUAga1Cml4sJf3EJD1SAyxYGc4NkSQ21bl89Dz/P3v5M5UhLRLs21ZExI H7qsQdc9P7XX/3RhKQk1TB1T/QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPLM9wqd LY/MT5vQP4JmbZTk3OZbMB8GA1UdIwQYMBaAFLsOVQN5/qKBqIGmdHm3fIYC0BMU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEMxNC8zRTRDNDYzMDVC QzQxMUVDOTYyNzkzNTRDNEY5QUUwMi91dzVWQTNuLW9vR29nYVowZWJkOGhnTFFF eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3NVZBM24tb29Hb2dhWjBlYmQ4aGdMUUV4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhDMTQvM0U0QzQ2MzA1QkM0MTFFQzk2Mjc5MzU0QzRGOUFFMDIvNDkxMTcyMEE2 OTRGMTFFQ0I2RjlCNTQxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6xqMA0EAgACMAcDBQAkB9BAMA0GCSqGSIb3DQEBCwUAA4IBAQB2 pWrfTQy797gnwOYNpR58U26ietKHx4yAFFhwUUopxijHSscIxBIumtaOKdqrFBw3 0+MkYbVolkj7s6AP9xt71a9f29kUrsUGOjTeLxMw5kuiNqhhMAoRAAbB/adlxHmZ NcHuD9q6X4aB/9kypW264a3DtiWy0Np53vZWA1j0MHvZUq5CFz6PTOmQUmS0Kirb cXMIG2LWpkfTq/XZxTKx3HThy7aOZ4oNXThIcZfXktxyZ2j5gJiDJ27g3/4cVEWp /oF5QmzPsw5YkTc0QToxFolxPWNfBMhsZ1j58t3xHo1bpHbSgTYTzTHs5JoOb1hX XFhoBbq17bIkGha2g0nC -----END CERTIFICATE-----Generated at Mon Mar 2 14:37:06 2026 by rpki-client