$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa File: ED8E5BC8CFD411EBA3172446C4F9AE02.roa (raw, json) Hash identifier: SW8NONF3BcPMwbTZ8+VDTqVbynqlWwj9uJVkA+cU2Rc= Subject key identifier: 62:56:A4:31:58:28:45:F6:A9:74:39:5E:55:A9:B3:23:37:3C:1B:89 Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 0809 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:53:07 +0000 ROA not before: Sat 04 Oct 2025 21:52:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45426 IP address blocks: 103.198.41.0/24 maxlen: 24 103.198.42.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F, serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Oct 4 21:52:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a452d2-f279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d4:fc:a1:45:5a:f8:40:69:95:85:6d:57:13: 88:74:08:0c:7a:b2:8c:1f:3f:93:e0:f9:6e:bd:35: b8:47:8d:f5:9a:39:c5:4b:ce:eb:f3:e9:4c:0c:7a: 26:3f:dc:5a:c6:9c:4e:bc:15:91:d6:8a:10:cc:3e: 0b:a7:43:1e:b0:9d:57:f8:fa:c9:74:27:9b:89:7c: 70:96:95:68:f4:ec:b9:be:f6:8d:7c:8e:93:cb:e5: 56:f5:75:a9:c0:e8:0e:1f:aa:fb:97:61:0c:75:28: c6:a7:26:c5:87:e6:33:49:3f:59:8a:b7:14:c7:e2: 55:cc:83:87:35:8b:12:64:11:8b:33:43:0a:bf:41: 97:f8:2a:08:4d:19:c2:a8:7d:38:f7:e2:3e:a4:42: d9:ab:1b:9d:09:c9:46:c3:51:65:a7:37:5d:6f:ec: bb:2b:c9:ab:b5:5d:a9:08:b5:b2:87:d4:a5:8c:a9: 9f:3a:0c:b7:ba:52:9c:b2:84:1e:f4:70:d5:91:e7: 4c:39:03:32:2d:4e:e5:30:44:9c:5d:dd:d3:5f:c5: 59:c5:54:49:0b:21:c1:c6:0c:58:1b:71:ca:94:d9: e9:6a:9c:87:e9:53:87:7e:44:d5:6e:ef:28:00:9c: 7f:b5:ae:8b:26:fd:19:ae:af:57:74:fb:19:87:97: 92:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:56:A4:31:58:28:45:F6:A9:74:39:5E:55:A9:B3:23:37:3C:1B:89 X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.41.0-103.198.42.255 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption 91:6e:43:31:8d:05:62:03:4d:e1:c8:98:7e:3b:b4:62:51:ca: 2f:7a:cb:fd:d0:93:6b:e2:1b:90:0c:b9:74:74:47:0f:4f:e4: 60:83:d4:2b:66:cb:51:5f:4e:91:dd:e1:0d:ce:81:37:42:d8: d3:20:6c:67:9b:26:76:bb:8c:eb:17:7e:46:7d:5a:85:95:a5: 9c:3a:22:b9:6e:87:fe:5b:56:85:6e:9d:9a:7f:2f:a3:e3:0c: 2e:e9:db:96:f2:20:a5:03:0e:b0:24:e6:1e:1d:f7:aa:f0:8f: 6c:90:4e:2b:28:b4:0f:39:6b:51:f6:88:94:f4:69:7c:3d:b1: f3:bc:34:8b:0e:a2:c6:9f:e4:b6:a9:d6:a2:68:98:19:dd:e8: 30:6a:ca:c4:28:83:52:7d:87:a8:c2:a7:f7:0f:41:e5:77:27: c9:80:d9:99:01:a8:49:45:62:e7:7d:7c:57:95:85:c7:c2:72: 7f:44:d4:b0:b2:0d:ab:f5:e0:5b:bb:da:54:13:92:84:45:60: e8:d8:8a:ef:7f:b9:67:29:05:65:94:e9:b8:e5:17:1e:38:30: ba:66:47:3d:52:10:83:c9:e7:e5:cc:f5:d7:be:e1:2c:ce:25: 70:df:bb:47:83:71:fa:e4:16:c0:59:bb:e2:32:b5:2e:22:5b: 4d:94:f2:8b -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjUxMDA0MjE1MjAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTJkMi1mMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNT8oUVa+EBplYVtVxOIdAgMerKMHz+T4PluvTW4R431mjnFS87r8+lMDHom P9xaxpxOvBWR1ooQzD4Lp0MesJ1X+PrJdCebiXxwlpVo9Oy5vvaNfI6Ty+VW9XWp wOgOH6r7l2EMdSjGpybFh+YzST9ZircUx+JVzIOHNYsSZBGLM0MKv0GX+CoITRnC qH049+I+pELZqxudCclGw1Flpzddb+y7K8mrtV2pCLWyh9SljKmfOgy3ulKcsoQe 9HDVkedMOQMyLU7lMEScXd3TX8VZxVRJCyHBxgxYG3HKlNnpapyH6VOHfkTVbu8o AJx/ta6LJv0Zrq9XdPsZh5eSQQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFGJWpDFY KEX2qXQ5XlWpsyM3PBuJMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvRUQ4RTVCQzhD RkQ0MTFFQkEzMTcyNDQ2QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBABnxikDBABnxioDBALKgfQwDQYJKoZIhvcNAQELBQADggEBAJFu QzGNBWIDTeHImH47tGJRyi96y/3Qk2viG5AMuXR0Rw9P5GCD1Ctmy1FfTpHd4Q3O gTdC2NMgbGebJna7jOsXfkZ9WoWVpZw6Irluh/5bVoVunZp/L6PjDC7p25byIKUD DrAk5h4d96rwj2yQTisotA85a1H2iJT0aXw9sfO8NIsOosaf5Lap1qJomBnd6DBq ysQog1J9h6jCp/cPQeV3J8mA2ZkBqElFYud9fFeVhcfCcn9E1LCyDav14Fu72lQT koRFYOjYiu9/uWcpBWWU6bjlFx44MLpmRz1SEIPJ5+XM9de+4SzOJXDfu0eDcfrk FsBZu+IytS4iW02U8os= -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:37 2026 by rpki-client