$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa File: E9056E5A520611E9ABE43055C4F9AE02.roa (raw, json) Hash identifier: i/vSA/o2tzhJc2uouR6N+I4uW3yyRdlQDMOU2dIkqu0= Subject key identifier: A4:D1:EA:0C:1E:DC:D2:AB:13:27:00:83:CA:16:99:47:25:DE:BD:41 Certificate issuer: /CN=A913F8BC/serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Certificate serial: 1078 Authority key identifier: 91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:48:44 +0000 ROA not before: Thu 10 Apr 2025 17:56:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56140 IP address blocks: 42.0.28.0/22 maxlen: 22 42.0.28.0/24 maxlen: 24 42.0.29.0/24 maxlen: 24 42.0.30.0/24 maxlen: 24 42.0.31.0/24 maxlen: 24 103.140.6.0/24 maxlen: 24 103.140.7.0/24 maxlen: 24 2407:c600::/32 maxlen: 32 2407:c600:1::/48 maxlen: 48 2407:c600:2::/48 maxlen: 48 2407:c600:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4216 (0x1078) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8BC, serialNumber=9137A89F4610DAE2C88C694DC952CE5835527079 Validity Not Before: Apr 10 17:56:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46dec-c531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:7c:ff:1c:62:4e:ce:ec:48:80:cf:cc:33: 5f:c0:d6:81:59:57:e8:c4:8f:1b:b8:b7:ca:73:b2: 98:24:aa:b9:bc:1d:b5:bc:39:a7:9f:22:ab:0a:f6: 54:29:44:32:f8:b9:cd:42:fe:c7:ee:65:81:25:44: bf:ce:da:ae:a8:b5:2e:af:6c:35:ee:bb:99:0a:0b: 41:9f:59:9d:2a:8e:b9:1a:83:aa:a1:eb:a3:3e:b2: e0:c6:b1:65:a3:f9:7e:47:5f:de:00:fc:16:d8:23: a0:2e:b2:bb:52:b6:eb:55:30:c3:c3:e0:6e:34:14: ff:c9:25:09:cf:ef:96:f5:85:07:b5:7f:4f:69:7b: 8b:bc:a3:2a:33:90:fa:d0:00:15:9c:d9:f4:60:cf: 23:13:32:a2:5f:62:14:28:9a:d4:54:23:66:03:0c: a1:97:8b:1f:48:1a:5d:22:0d:d6:7e:e5:eb:09:61: 10:cf:4b:c4:81:52:26:91:8e:aa:8d:c6:7e:5a:bd: be:7f:e7:23:de:3b:53:90:44:db:7f:e7:5e:35:a1: f4:c0:5e:54:ea:0a:d6:29:81:93:d2:ea:2b:85:59: ef:6a:34:58:78:1c:d9:d3:55:e4:19:3e:f9:ce:83: 8b:47:df:3f:84:b0:49:46:91:70:a2:6e:f2:2a:86: a4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D1:EA:0C:1E:DC:D2:AB:13:27:00:83:CA:16:99:47:25:DE:BD:41 X509v3 Authority Key Identifier: keyid:91:37:A8:9F:46:10:DA:E2:C8:8C:69:4D:C9:52:CE:58:35:52:70:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/kTeon0YQ2uLIjGlNyVLOWDVScHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTeon0YQ2uLIjGlNyVLOWDVScHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8BC/4E13F40C520611E98EFC3A54C4F9AE02/E9056E5A520611E9ABE43055C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 42.0.28.0/22 103.140.6.0/23 IPv6: 2407:c600::/32 Signature Algorithm: sha256WithRSAEncryption 18:da:42:2f:24:35:52:60:82:cc:4c:35:e1:1d:ab:03:3f:2c: 42:c5:e9:aa:4c:4a:c4:1d:bc:60:54:43:f5:3f:93:90:3d:52: 75:fb:97:c7:c6:7c:ee:1c:21:08:b3:66:94:23:02:0e:34:35: 6a:35:48:7c:cf:87:82:e2:69:32:79:c9:65:63:6d:dd:d6:71: 13:91:d7:db:77:a5:83:33:f3:00:60:17:f9:b5:62:51:3d:a1: 7f:3a:1d:8b:d0:f1:ec:86:e8:ce:a2:0a:36:4b:57:7a:74:27: 18:23:e5:87:7e:72:08:a7:a4:0f:37:a0:16:b3:ac:fe:65:f5: 47:eb:55:97:20:da:81:b1:a2:b4:b1:91:6e:38:29:8e:b6:f1: f6:1d:d5:eb:7f:98:05:96:41:d4:81:e4:1b:16:1a:a1:c4:36: 2c:40:e9:ec:94:dd:10:56:dd:82:8b:62:a1:83:33:74:a1:59: e4:a9:06:3f:74:ea:f1:b6:d2:93:9c:b0:07:86:a3:de:f6:48: 82:c1:b1:45:06:3b:20:f4:59:a4:b8:ee:2d:53:1b:9c:d6:a7: db:bd:88:75:66:4c:64:b6:9e:6e:fa:b1:92:6d:f1:93:66:24: fa:36:d4:e3:91:67:e9:e7:5e:c6:53:21:9f:d0:ad:a6:2b:9b: 61:11:0b:c8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QkMxMTAvBgNVBAUTKDkxMzdBODlGNDYxMERBRTJDODhDNjk0REM5NTJDRTU4 MzU1MjcwNzkwHhcNMjUwNDEwMTc1NjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmRlYy1jNTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEZ8/xxiTs7sSIDPzDNfwNaBWVfoxI8buLfKc7KYJKq5vB21vDmnnyKrCvZU KUQy+LnNQv7H7mWBJUS/ztquqLUur2w17ruZCgtBn1mdKo65GoOqoeujPrLgxrFl o/l+R1/eAPwW2COgLrK7UrbrVTDDw+BuNBT/ySUJz++W9YUHtX9PaXuLvKMqM5D6 0AAVnNn0YM8jEzKiX2IUKJrUVCNmAwyhl4sfSBpdIg3WfuXrCWEQz0vEgVImkY6q jcZ+Wr2+f+cj3jtTkETbf+deNaH0wF5U6grWKYGT0uorhVnvajRYeBzZ01XkGT75 zoOLR98/hLBJRpFwom7yKoakHwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKTR6gwe 3NKrEycAg8oWmUcl3r1BMB8GA1UdIwQYMBaAFJE3qJ9GENriyIxpTclSzlg1UnB5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCQy80RTEzRjQwQzUy MDYxMUU5OEVGQzNBNTRDNEY5QUUwMi9rVGVvbjBZUTJ1TElqR2xOeVZMT1dEVlNj SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUZW9uMFlRMnVMSWpHbE55VkxPV0RWU2NIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y4QkMvNEUxM0Y0MEM1MjA2MTFFOThFRkMzQTU0QzRGOUFFMDIvRTkwNTZFNUE1 MjA2MTFFOUFCRTQzMDU1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCKgAcAwQBZ4wGMA0EAgACMAcDBQAkB8YAMA0GCSqGSIb3DQEBCwUA A4IBAQAY2kIvJDVSYILMTDXhHasDPyxCxemqTErEHbxgVEP1P5OQPVJ1+5fHxnzu HCEIs2aUIwIONDVqNUh8z4eC4mkyecllY23d1nETkdfbd6WDM/MAYBf5tWJRPaF/ Oh2L0PHshujOogo2S1d6dCcYI+WHfnIIp6QPN6AWs6z+ZfVH61WXINqBsaK0sZFu OCmOtvH2HdXrf5gFlkHUgeQbFhqhxDYsQOnslN0QVt2Ci2KhgzN0oVnkqQY/dOrx ttKTnLAHhqPe9kiCwbFFBjsg9FmkuO4tUxuc1qfbvYh1Zkxktp5u+rGSbfGTZiT6 NtTjkWfp517GUyGf0K2mK5thEQvI -----END CERTIFICATE-----Generated at Mon Mar 2 09:23:17 2026 by rpki-client