$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa File: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (raw, json) Hash identifier: 1ZvrMdlGFQCTMD5ecs7oG/S3sWlG0zTg+VziefWYDWo= Subject key identifier: 0D:50:40:6D:D0:A3:D1:DF:F3:6B:1C:EC:C9:D9:7D:DC:74:6C:89:A4 Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 05C9 Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:50:36 +0000 ROA not before: Mon 02 Jun 2025 23:51:30 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139219 IP address blocks: 103.139.176.0/23 maxlen: 23 103.139.176.0/24 maxlen: 24 103.139.177.0/24 maxlen: 24 2400:1460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Jun 2 23:51:30 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fddc-560f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b6:f4:d7:8d:6c:34:a9:e1:ea:fa:f7:81:ca: 98:ff:a7:89:0a:9c:43:04:71:f8:0a:5e:43:ef:6f: 67:d8:a7:0d:b5:6a:19:97:46:2e:4b:92:43:86:95: c8:d4:03:cc:3b:52:0e:aa:01:3c:d4:90:98:e3:c6: a5:67:a5:97:22:a7:83:c2:c1:bf:e4:97:ce:49:dd: d0:e1:94:4a:df:85:e8:12:c5:20:3c:a0:03:4d:d3: 9f:60:48:8b:92:c6:9e:32:2f:ad:3b:1c:e7:0a:6e: 98:da:ed:cb:e0:37:a9:6f:d9:a7:54:8f:58:3c:0d: 39:39:18:23:cc:9d:f5:fc:d2:3e:ed:f2:24:02:d2: 1e:08:44:f5:dc:9d:96:0b:9b:7b:a1:a9:d4:44:70: 45:b4:0d:50:38:31:09:0f:20:14:82:b0:0c:ae:92: eb:76:82:45:01:7e:d7:52:03:fa:08:eb:10:b8:07: 6b:86:9c:ad:42:5c:c3:5a:89:0c:f5:3d:96:6f:dd: 8c:2f:0c:f5:01:c9:90:b7:61:ae:0d:5e:a1:d9:8b: f0:b6:ce:a1:7b:92:5f:f8:05:d4:93:a6:de:c1:0d: 63:bb:8b:9c:c4:c0:b4:9a:6a:b9:e2:0c:3f:33:d3: 3a:ea:af:d6:dc:6a:74:cb:db:c6:87:15:5d:ed:02: 4c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:50:40:6D:D0:A3:D1:DF:F3:6B:1C:EC:C9:D9:7D:DC:74:6C:89:A4 X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.176.0/23 IPv6: 2400:1460::/32 Signature Algorithm: sha256WithRSAEncryption 2e:f0:0a:b6:7f:a1:25:1c:64:85:37:0d:91:a9:64:ab:dd:59: 63:26:74:a7:6b:80:5f:0c:a8:0d:ff:d1:4e:09:ff:7e:a3:05: 53:ba:5b:8a:55:69:3c:3c:34:a9:76:25:b7:ea:3a:ec:80:cd: 1d:be:af:87:78:d8:bb:77:c0:07:3b:27:cf:ef:bb:5e:5d:31: 90:86:01:3a:d4:db:46:4a:b9:de:17:12:29:db:e2:92:e0:da: 5d:cd:bc:ba:c4:f3:a8:72:02:31:e3:66:9b:bc:1f:4a:33:af: 00:b0:38:02:fa:7a:99:01:70:0c:21:49:4e:9b:21:2d:0f:6f: e8:17:23:68:5e:f1:79:60:c8:28:9a:8c:2e:f8:66:a8:99:7c: 2e:af:c6:a2:eb:25:7b:34:05:46:ff:43:85:97:04:c8:6e:f4: 04:54:9a:00:30:39:6d:61:9c:c4:58:e2:bb:ce:7e:15:9e:9d: 93:19:f2:94:b0:67:c1:28:82:5a:dd:52:ab:f9:62:49:7f:d1: 78:46:4b:4c:bc:34:31:e8:f7:4e:99:79:1d:b4:58:89:73:a3: 3c:8c:88:87:79:27:5e:24:8b:5e:97:d8:8f:46:b2:7c:69:9c: 87:3c:2e:87:84:85:cd:6f:49:e9:59:e5:fa:3c:35:ef:3d:3d: 0b:84:96:67 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUwNjAyMjM1MTMwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmRkYy01NjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7b0141sNKnh6vr3gcqY/6eJCpxDBHH4Cl5D729n2KcNtWoZl0YuS5JDhpXI 1APMO1IOqgE81JCY48alZ6WXIqeDwsG/5JfOSd3Q4ZRK34XoEsUgPKADTdOfYEiL ksaeMi+tOxznCm6Y2u3L4Depb9mnVI9YPA05ORgjzJ31/NI+7fIkAtIeCET13J2W C5t7oanURHBFtA1QODEJDyAUgrAMrpLrdoJFAX7XUgP6COsQuAdrhpytQlzDWokM 9T2Wb92MLwz1AcmQt2GuDV6h2Yvwts6he5Jf+AXUk6bewQ1ju4ucxMC0mmq54gw/ M9M66q/W3Gp0y9vGhxVd7QJMOQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFA1QQG3Q o9Hf82sc7MnZfdx0bImkMB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFNDgvNTBFRkQ4NzZGOUQ0MTFFQjk3OTQ4MzExQzRGOUFFMDIvRDVGRkNCOTZG OUQ2MTFFQjhBOUZDRTM0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4uwMA0EAgACMAcDBQAkABRgMA0GCSqGSIb3DQEBCwUAA4IBAQAu 8Aq2f6ElHGSFNw2RqWSr3VljJnSna4BfDKgN/9FOCf9+owVTuluKVWk8PDSpdiW3 6jrsgM0dvq+HeNi7d8AHOyfP77teXTGQhgE61NtGSrneFxIp2+KS4Npdzby6xPOo cgIx42abvB9KM68AsDgC+nqZAXAMIUlOmyEtD2/oFyNoXvF5YMgomowu+GaomXwu r8ai6yV7NAVG/0OFlwTIbvQEVJoAMDltYZzEWOK7zn4Vnp2TGfKUsGfBKIJa3VKr +WJJf9F4RktMvDQx6PdOmXkdtFiJc6M8jIiHeSdeJItel9iPRrJ8aZyHPC6HhIXN b0npWeX6PDXvPT0LhJZn -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:55 2026 by rpki-client