$ rpki-client -vvf rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa File: 02E60C72F1E211EAA2361B34C4F9AE02.roa (raw, json) Hash identifier: vXizkXX4uU61p/l0v+YrNCHNxoiZ/r4tuplc9VPBF80= Subject key identifier: 49:31:3A:3D:F8:6C:69:AA:BF:85:48:07:A5:94:19:D4:7B:58:0B:B8 Certificate issuer: /CN=A9140467/serialNumber=B8C32FC4D7931AD4241407306A0B996AC8C99FEB Certificate serial: 0876 Authority key identifier: B8:C3:2F:C4:D7:93:1A:D4:24:14:07:30:6A:0B:99:6A:C8:C9:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:37:57 +0000 ROA not before: Wed 06 Aug 2025 09:59:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139036 IP address blocks: 103.138.190.0/23 maxlen: 24 2402:19a0::/32 maxlen: 32 2402:19a0::/48 maxlen: 48 2402:19a0:1::/48 maxlen: 48 2402:19a0:2::/48 maxlen: 48 2402:19a0:3::/48 maxlen: 48 2402:19a0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.crl rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2166 (0x876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140467, serialNumber=B8C32FC4D7931AD4241407306A0B996AC8C99FEB Validity Not Before: Aug 6 09:59:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fae5-cb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ea:6a:85:7b:3c:08:2c:e6:aa:68:b0:ff:4b: c5:12:43:a5:f5:c7:27:aa:ae:91:af:52:f7:c7:b0: 94:52:40:41:d0:aa:93:b7:2c:6e:e7:00:de:4f:59: 0c:31:45:76:47:45:b7:b5:4b:f7:a0:93:c3:68:a5: 4a:17:fa:7c:1f:4e:3b:9a:42:c4:22:4c:c9:a1:a3: f8:85:f2:67:6b:68:2d:4d:66:f8:33:a6:4e:06:dc: c8:48:26:fb:a7:26:b0:43:de:6d:4e:ca:c2:d6:45: 48:77:fa:53:fb:aa:48:cd:dd:37:db:77:a6:0d:d1: 1b:74:38:0f:5a:78:82:93:7f:a3:41:da:33:e1:5c: 98:e8:5a:aa:2e:64:e3:2c:98:f2:50:f0:81:a7:8a: 21:3b:84:53:8b:b4:ba:f1:99:ac:11:0b:e8:5d:69: e2:ed:78:ef:e2:ba:05:0c:d4:9d:f8:0c:67:b3:2e: 23:df:71:02:94:18:8e:11:27:9e:1c:e1:7a:8e:4d: 10:4a:c9:df:9e:c5:39:70:74:87:a9:b5:af:c8:62: f3:22:a5:be:99:b0:39:52:fa:bb:4b:bc:0f:d3:f8: ec:5d:21:78:5a:7c:0f:bd:c8:c3:cc:28:d3:ca:23: 1f:f1:00:50:69:3f:ce:71:65:c2:db:bb:2c:d6:79: 60:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:31:3A:3D:F8:6C:69:AA:BF:85:48:07:A5:94:19:D4:7B:58:0B:B8 X509v3 Authority Key Identifier: keyid:B8:C3:2F:C4:D7:93:1A:D4:24:14:07:30:6A:0B:99:6A:C8:C9:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.190.0/23 IPv6: 2402:19a0::/32 Signature Algorithm: sha256WithRSAEncryption 22:0f:d0:6a:34:67:df:48:b6:ce:a2:68:a5:58:e8:d5:6b:18: 8d:df:44:b8:d8:f9:77:f7:15:68:b8:7b:a7:cf:06:44:44:33: ef:57:66:92:15:7b:f4:8f:11:0c:f1:76:cf:b0:85:3c:95:ec: 44:15:29:1f:7b:44:4a:09:dc:8d:86:88:1d:b2:a1:ae:3a:8f: ca:56:18:40:97:a6:0e:ef:47:c6:0c:c9:db:fd:0b:61:fe:09: 4b:5d:02:c8:f3:07:35:c9:05:db:39:52:b7:a3:a6:68:f7:64: 92:15:5d:49:0e:67:cc:a2:87:9b:b1:cd:a4:7a:b2:9e:3f:14: f3:ad:a2:c5:19:c2:6e:88:93:85:e8:d7:15:08:f6:9b:46:a9: df:c8:68:ae:d0:ee:79:92:6f:a6:b4:eb:ca:f4:fc:8f:55:61: 2c:be:83:32:99:10:9b:dd:e0:3f:d2:6b:1d:b5:ca:4a:01:33: bd:46:ac:be:ab:e8:50:45:f6:7f:21:aa:a9:9e:9a:f0:7b:08: e9:aa:02:83:8e:a6:84:07:eb:0d:a1:06:e6:59:f6:5b:b9:e6: 72:56:7c:f3:ce:40:ca:67:24:b4:40:6d:27:57:49:2e:eb:f2: ba:06:b5:14:1d:85:5a:d0:a1:a5:a6:c9:b6:fe:d4:b3:05:aa: 5e:52:11:1a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA0NjcxMTAvBgNVBAUTKEI4QzMyRkM0RDc5MzFBRDQyNDE0MDczMDZBMEI5OTZB QzhDOTlGRUIwHhcNMjUwODA2MDk1OTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmFlNS1jYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+pqhXs8CCzmqmiw/0vFEkOl9ccnqq6Rr1L3x7CUUkBB0KqTtyxu5wDeT1kM MUV2R0W3tUv3oJPDaKVKF/p8H047mkLEIkzJoaP4hfJna2gtTWb4M6ZOBtzISCb7 pyawQ95tTsrC1kVId/pT+6pIzd0323emDdEbdDgPWniCk3+jQdoz4VyY6FqqLmTj LJjyUPCBp4ohO4RTi7S68ZmsEQvoXWni7Xjv4roFDNSd+Axnsy4j33EClBiOESee HOF6jk0QSsnfnsU5cHSHqbWvyGLzIqW+mbA5Uvq7S7wP0/jsXSF4WnwPvcjDzCjT yiMf8QBQaT/OcWXC27ss1nlgrQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEkxOj34 bGmqv4VIB6WUGdR7WAu4MB8GA1UdIwQYMBaAFLjDL8TXkxrUJBQHMGoLmWrIyZ/r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDQ2Ny85QUE5ODBENkYx RTAxMUVBOEQ0QTlFMzJDNEY5QUUwMi91TU12eE5lVEd0UWtGQWN3YWd1WmFzakpu LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNTXZ4TmVUR3RRa0ZBY3dhZ3VaYXNqSm4tcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA0NjcvOUFBOTgwRDZGMUUwMTFFQThENEE5RTMyQzRGOUFFMDIvMDJFNjBDNzJG MUUyMTFFQUEyMzYxQjM0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4q+MA0EAgACMAcDBQAkAhmgMA0GCSqGSIb3DQEBCwUAA4IBAQAi D9BqNGffSLbOomilWOjVaxiN30S42Pl39xVouHunzwZERDPvV2aSFXv0jxEM8XbP sIU8lexEFSkfe0RKCdyNhogdsqGuOo/KVhhAl6YO70fGDMnb/Qth/glLXQLI8wc1 yQXbOVK3o6Zo92SSFV1JDmfMooebsc2kerKePxTzraLFGcJuiJOF6NcVCPabRqnf yGiu0O55km+mtOvK9PyPVWEsvoMymRCb3eA/0msdtcpKATO9Rqy+q+hQRfZ/Iaqp nprwewjpqgKDjqaEB+sNoQbmWfZbueZyVnzzzkDKZyS0QG0nV0ku6/K6BrUUHYVa 0KGlpsm2/tSzBapeUhEa -----END CERTIFICATE-----Generated at Mon Mar 2 17:44:40 2026 by rpki-client