$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/1C9AB3F67D6711EA90858415C4F9AE02.roa File: 1C9AB3F67D6711EA90858415C4F9AE02.roa (raw, json) Hash identifier: 3EUvPkX0SOOlZadKwQdE/Ttb0l8oKRF3mN8x9otpD/E= Subject key identifier: A8:4A:17:5D:91:5A:41:6F:54:27:11:3D:69:11:5D:D0:87:99:32:CB Certificate issuer: /CN=A9140D7D/serialNumber=526442AA93DFF0C5139A617B0DE645B739E6BECD Certificate serial: 0A7A Authority key identifier: 52:64:42:AA:93:DF:F0:C5:13:9A:61:7B:0D:E6:45:B7:39:E6:BE:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UmRCqpPf8MUTmmF7DeZFtznmvs0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/1C9AB3F67D6711EA90858415C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:48:29 +0000 ROA not before: Fri 22 Aug 2025 19:59:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140544 IP address blocks: 103.150.56.0/23 maxlen: 23 103.150.56.0/24 maxlen: 24 103.150.57.0/24 maxlen: 24 2001:df3:5a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/UmRCqpPf8MUTmmF7DeZFtznmvs0.crl rsync://rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/UmRCqpPf8MUTmmF7DeZFtznmvs0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UmRCqpPf8MUTmmF7DeZFtznmvs0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D7D, serialNumber=526442AA93DFF0C5139A617B0DE645B739E6BECD Validity Not Before: Aug 22 19:59:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4278d-1eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e3:30:0b:e0:a5:c9:4a:b3:cc:ab:54:b8:3b: bf:90:a6:c0:40:cf:60:22:0d:b2:9f:6c:df:7a:98: 25:8b:8c:b2:77:f9:40:d6:db:e4:c5:f1:be:34:3f: 95:8f:8c:f9:a9:36:72:2a:b3:4a:fe:db:a1:8d:34: a6:ef:d3:31:33:a0:dd:4e:6d:ca:4b:67:43:1d:79: e5:fb:eb:13:05:ef:bf:b7:48:43:cb:1a:fc:4d:4c: d2:46:1b:14:fe:09:9f:09:78:1f:cb:bc:db:3a:91: b5:b6:79:05:2a:66:d9:5a:86:d4:b9:bb:df:fe:32: 22:32:1d:2f:1e:e0:c7:83:b0:7d:98:69:38:08:43: ff:b5:3a:7a:b9:b5:4d:4a:a7:c5:f2:67:88:d1:2b: d0:db:e2:1e:57:4c:37:d9:33:b8:ac:f8:d9:90:4b: 2e:85:57:23:be:9f:ba:f4:81:37:95:a2:5e:a4:23: 79:12:2e:d0:84:82:98:1f:00:29:2d:82:6d:be:02: e1:66:63:f6:7c:25:90:ca:ec:29:a2:a8:03:e7:c1: 49:1d:12:84:91:0c:2c:c3:22:09:af:1b:5a:57:d9: 08:4a:b6:ea:74:cb:ee:a0:b0:55:07:51:b3:7f:0a: c5:06:0d:ff:95:24:87:e4:38:aa:1e:45:2e:7d:53: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4A:17:5D:91:5A:41:6F:54:27:11:3D:69:11:5D:D0:87:99:32:CB X509v3 Authority Key Identifier: keyid:52:64:42:AA:93:DF:F0:C5:13:9A:61:7B:0D:E6:45:B7:39:E6:BE:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/UmRCqpPf8MUTmmF7DeZFtznmvs0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UmRCqpPf8MUTmmF7DeZFtznmvs0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D7D/716D2F367D6611EAB32B3B15C4F9AE02/1C9AB3F67D6711EA90858415C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.56.0/23 IPv6: 2001:df3:5a80::/48 Signature Algorithm: sha256WithRSAEncryption 67:af:46:9b:8b:6a:9c:d3:a7:97:68:15:22:ce:e6:1b:bd:b1: fb:d8:51:fd:c2:36:a0:d8:d3:c2:be:22:e5:39:42:d7:5d:6f: b8:aa:ef:ff:54:0e:06:6a:77:82:2c:d1:15:bf:0e:16:df:96: 43:6d:77:de:22:e5:b4:9c:ac:41:61:48:a7:8b:45:6b:6a:8e: 90:55:14:15:2c:eb:b1:07:d8:61:da:8a:88:3a:5b:69:f2:0c: 41:f4:f8:1f:67:14:52:be:de:b2:8b:88:5f:07:86:ff:92:43: b9:0e:ef:e9:77:64:f5:8b:d5:5c:99:59:0a:e7:3a:33:b0:8d: ea:ba:9e:6e:30:4b:63:b0:69:d3:f8:0a:47:c3:af:bf:82:6a: 54:ef:e5:40:7c:9e:58:0f:44:58:6d:10:3f:ef:19:15:89:b1: f2:d5:21:4e:c0:71:2e:77:3c:f9:f8:30:c8:ab:32:30:9d:8c: fe:13:3d:f7:f7:fe:eb:86:71:93:c7:ee:77:ed:65:d0:c0:9c: 87:c4:81:e6:8e:ad:96:b2:c2:a6:39:18:2d:fd:c9:ad:45:50: 00:05:f6:89:0d:0b:e6:cf:33:95:8a:36:55:0e:f8:b2:1d:5f: ac:7b:4d:a2:8f:3b:8a:d4:b6:b2:c1:84:8c:26:a3:80:2f:b0: 9e:20:37:a5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBEN0QxMTAvBgNVBAUTKDUyNjQ0MkFBOTNERkYwQzUxMzlBNjE3QjBERTY0NUI3 MzlFNkJFQ0QwHhcNMjUwODIyMTk1OTQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjc4ZC0xZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi+MwC+ClyUqzzKtUuDu/kKbAQM9gIg2yn2zfepgli4yyd/lA1tvkxfG+ND+V j4z5qTZyKrNK/tuhjTSm79MxM6DdTm3KS2dDHXnl++sTBe+/t0hDyxr8TUzSRhsU /gmfCXgfy7zbOpG1tnkFKmbZWobUubvf/jIiMh0vHuDHg7B9mGk4CEP/tTp6ubVN SqfF8meI0SvQ2+IeV0w32TO4rPjZkEsuhVcjvp+69IE3laJepCN5Ei7QhIKYHwAp LYJtvgLhZmP2fCWQyuwpoqgD58FJHRKEkQwswyIJrxtaV9kISrbqdMvuoLBVB1Gz fwrFBg3/lSSH5DiqHkUufVMjjQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKhKF12R WkFvVCcRPWkRXdCHmTLLMB8GA1UdIwQYMBaAFFJkQqqT3/DFE5phew3mRbc55r7N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQ3RC83MTZEMkYzNjdE NjYxMUVBQjMyQjNCMTVDNEY5QUUwMi9VbVJDcXBQZjhNVVRtbUY3RGVaRnR6bm12 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VtUkNxcFBmOE1VVG1tRjdEZVpGdHpubXZzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBEN0QvNzE2RDJGMzY3RDY2MTFFQUIzMkIzQjE1QzRGOUFFMDIvMUM5QUIzRjY3 RDY3MTFFQTkwODU4NDE1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5Y4MA8EAgACMAkDBwAgAQ3zWoAwDQYJKoZIhvcNAQELBQADggEB AGevRpuLapzTp5doFSLO5hu9sfvYUf3CNqDY08K+IuU5Qtddb7iq7/9UDgZqd4Is 0RW/DhbflkNtd94i5bScrEFhSKeLRWtqjpBVFBUs67EH2GHaiog6W2nyDEH0+B9n FFK+3rKLiF8Hhv+SQ7kO7+l3ZPWL1VyZWQrnOjOwjeq6nm4wS2OwadP4CkfDr7+C alTv5UB8nlgPRFhtED/vGRWJsfLVIU7AcS53PPn4MMirMjCdjP4TPff3/uuGcZPH 7nftZdDAnIfEgeaOrZaywqY5GC39ya1FUAAF9okNC+bPM5WKNlUO+LIdX6x7TaKP O4rUtrLBhIwmo4AvsJ4gN6U= -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:44 2026 by rpki-client