$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa File: 39C6EF3688BF11EABC04973FC4F9AE02.roa (raw, json) Hash identifier: DsIwZYdi4SacKjdzdVQxI7lHNk1gpuA8TWHS7qF8ppc= Subject key identifier: 1C:08:25:D2:DA:A7:55:6C:D8:2E:2E:84:D2:32:F6:8C:31:EB:18:92 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1102 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:34:48 +0000 ROA not before: Tue 08 Jul 2025 17:56:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137945 IP address blocks: 203.9.40.0/24 maxlen: 24 203.9.41.0/24 maxlen: 24 203.9.42.0/24 maxlen: 24 203.9.43.0/24 maxlen: 24 203.9.44.0/24 maxlen: 24 203.9.45.0/24 maxlen: 24 203.9.46.0/24 maxlen: 24 203.9.47.0/24 maxlen: 24 2403:20c0:2::/48 maxlen: 48 2403:20c0:3::/48 maxlen: 48 2403:20c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4354 (0x1102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 8 17:56:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42457-f514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b5:8b:25:83:40:7c:a3:dd:d5:dd:c6:97:ea: e0:87:b1:6c:4a:45:63:c7:00:53:a7:7c:e9:01:3d: db:5c:79:b5:6e:84:f2:df:e4:ab:ad:0b:d7:b2:40: a6:a3:43:73:7c:54:bc:07:17:10:d5:e2:20:98:c2: 1a:3c:83:54:25:4c:71:38:a8:a0:c7:00:e9:43:fd: 00:c3:e8:e7:fc:fb:68:fe:71:e4:8c:1b:03:70:b5: 8b:33:e0:a8:eb:dc:59:a4:63:ce:cc:03:f4:7a:95: 74:65:ba:fa:05:90:ac:1e:12:6e:3d:cc:f6:51:9c: 55:ea:16:af:6b:6c:64:7e:8a:4f:27:93:08:7d:80: d8:d2:e6:5e:22:13:64:a2:b8:5a:24:28:62:ac:85: cf:5b:0f:56:ed:b8:c5:73:5d:1e:a0:db:dc:37:36: 98:14:27:8a:41:97:3f:fe:6a:d7:9b:83:2c:4f:6b: 55:a4:69:86:00:c4:c5:f0:f3:0e:bc:91:65:ee:d1: 09:35:cf:09:1a:0f:63:97:32:6e:41:57:5b:00:bf: 80:75:c2:82:64:b5:2f:3f:1b:bb:f5:c4:95:e4:71: 08:dc:1d:de:f7:1a:f5:37:c3:bd:f6:8f:50:23:41: a4:de:c3:3a:a1:00:3e:f9:35:e7:f3:4f:65:0a:5a: a0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:08:25:D2:DA:A7:55:6C:D8:2E:2E:84:D2:32:F6:8C:31:EB:18:92 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.9.40.0/21 IPv6: 2403:20c0:2::-2403:20c0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2f:f7:b4:2d:1d:eb:ef:cf:e0:8a:6a:4f:05:3b:70:31:a7:ff: 02:b4:12:e4:84:17:2a:a2:e7:4b:4d:e3:af:02:cf:fe:3a:7e: 0b:8f:de:a6:87:6c:63:76:19:78:7f:17:3d:a2:4e:38:27:df: 15:a6:0d:f7:b6:9e:14:79:20:6e:fb:11:82:68:13:36:5f:42: 34:bb:a8:cf:70:3a:84:0a:66:52:83:e4:e6:33:bb:1f:b1:62: 82:0c:04:ac:af:b5:ae:6f:ee:74:bd:96:a5:50:88:29:e0:8f: b9:51:e3:3f:79:29:e9:d6:3d:17:15:27:a2:af:df:9c:e4:38: d6:53:40:02:39:1d:fa:db:0b:69:91:0e:1c:53:44:38:73:7f: 33:04:7d:7d:83:e1:e5:cd:e7:1b:c3:11:2a:53:91:a5:8b:68: 5e:19:83:10:e4:10:9b:f2:90:e9:fa:d7:e8:53:41:ca:44:ad: 6f:b5:d6:03:65:47:65:3e:fb:2a:76:fc:6e:26:c4:7a:89:0c: 68:98:d4:41:f9:d6:f6:e4:34:0b:59:b3:f9:7b:a4:f5:be:d0: d5:84:b0:b7:7a:d5:5e:e0:9b:64:60:ce:96:0d:da:7e:4c:3a: 40:20:41:bf:f5:4a:e1:13:b2:c6:61:05:95:96:a8:b8:3d:fd: f3:3d:81:95 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICEQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNzA4MTc1NjIzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQ1Ny1mNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rWLJYNAfKPd1d3Gl+rgh7FsSkVjxwBTp3zpAT3bXHm1boTy3+SrrQvXskCm o0NzfFS8BxcQ1eIgmMIaPINUJUxxOKigxwDpQ/0Aw+jn/Pto/nHkjBsDcLWLM+Co 69xZpGPOzAP0epV0Zbr6BZCsHhJuPcz2UZxV6hava2xkfopPJ5MIfYDY0uZeIhNk orhaJChirIXPWw9W7bjFc10eoNvcNzaYFCeKQZc//mrXm4MsT2tVpGmGAMTF8PMO vJFl7tEJNc8JGg9jlzJuQVdbAL+AdcKCZLUvPxu79cSV5HEI3B3e9xr1N8O99o9Q I0Gk3sM6oQA++TXn809lClqgAwIDAQABo4ICfDCCAngwHQYDVR0OBBYEFBwIJdLa p1Vs2C4uhNIy9owx6xiSMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M5MUQvRDkwQ0Q4NzQzNTg0MTFFOTlBOTkwMjI4QzRGOUFFMDIvMzlDNkVGMzY4 OEJGMTFFQUJDMDQ5NzNGQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAM BAIAATAGAwQDywkoMBoEAgACMBQwEgMHASQDIMAAAgMHACQDIMAABDANBgkqhkiG 9w0BAQsFAAOCAQEAL/e0LR3r78/gimpPBTtwMaf/ArQS5IQXKqLnS03jrwLP/jp+ C4/epodsY3YZeH8XPaJOOCffFaYN97aeFHkgbvsRgmgTNl9CNLuoz3A6hApmUoPk 5jO7H7FiggwErK+1rm/udL2WpVCIKeCPuVHjP3kp6dY9FxUnoq/fnOQ41lNAAjkd +tsLaZEOHFNEOHN/MwR9fYPh5c3nG8MRKlORpYtoXhmDEOQQm/KQ6frX6FNBykSt b7XWA2VHZT77Knb8bibEeokMaJjUQfnW9uQ0C1mz+Xuk9b7Q1YSwt3rVXuCbZGDO lg3afkw6QCBBv/VK4ROyxmEFlZaouD398z2BlQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:49 2026 by rpki-client