$ rpki-client -vvf rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/33534662AF4511E9B648CE6AC4F9AE02.roa File: 33534662AF4511E9B648CE6AC4F9AE02.roa (raw, json) Hash identifier: 0rmIo24F/xivDkmp1ouEx05UaGse9AnbJguTIYYgkf8= Subject key identifier: FF:9D:E6:14:B4:B4:C4:C5:D7:9C:24:68:92:92:AA:11:B3:BD:EC:20 Certificate issuer: /CN=A9140F6E/serialNumber=EC0C482B2D97C28C896FAECD51F50E9B16257441 Certificate serial: 0E93 Authority key identifier: EC:0C:48:2B:2D:97:C2:8C:89:6F:AE:CD:51:F5:0E:9B:16:25:74:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AxIKy2XwoyJb67NUfUOmxYldEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/33534662AF4511E9B648CE6AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:37:08 +0000 ROA not before: Sat 02 Aug 2025 18:27:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135582 IP address blocks: 103.66.222.0/23 maxlen: 23 103.66.222.0/24 maxlen: 24 103.66.223.0/24 maxlen: 24 103.100.136.0/23 maxlen: 23 103.100.136.0/24 maxlen: 24 103.100.137.0/24 maxlen: 24 2402:61c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/7AxIKy2XwoyJb67NUfUOmxYldEE.crl rsync://rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/7AxIKy2XwoyJb67NUfUOmxYldEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AxIKy2XwoyJb67NUfUOmxYldEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3731 (0xe93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140F6E, serialNumber=EC0C482B2D97C28C896FAECD51F50E9B16257441 Validity Not Before: Aug 2 18:27:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a424e4-b54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:86:ee:da:21:d8:83:10:70:14:0c:32:3c: 14:d3:2f:87:29:39:15:d0:98:b8:9d:de:ea:50:e4: 9c:90:0d:50:fb:39:c9:1d:fe:44:e6:fe:7b:5e:48: 52:e8:f7:eb:c3:bf:08:b9:c3:1e:c9:d5:2f:e4:c6: 42:25:e8:6c:63:0f:72:15:13:99:a6:de:14:27:26: fb:a6:36:f1:ad:89:2f:2f:7e:55:7d:33:c1:f4:a7: 71:12:0f:09:95:57:2b:4e:b0:b6:0d:e0:c8:ff:56: 52:a8:f6:35:4c:0c:e4:2d:9e:3e:96:a5:8b:8b:81: 9a:31:d6:15:fa:b8:83:d9:bc:4f:6e:51:0f:4a:16: d2:74:0e:e7:88:93:c3:3b:86:c2:99:c5:48:a8:17: 11:33:16:72:5d:11:5d:58:25:da:f3:dc:7d:88:2e: 95:b6:90:2c:9f:1d:8e:0b:20:ce:e0:1b:87:d3:9a: d7:2a:ee:8e:09:c9:b0:93:c0:24:43:2c:f8:0b:35: da:61:a9:2e:fe:20:21:9c:a4:0f:53:e0:c5:cb:00: b5:6e:08:f5:bd:0b:d2:89:e1:e9:f7:98:f5:47:c8: 7a:f5:53:f8:61:13:cf:b4:05:57:e4:4a:96:2a:33: ab:11:29:89:5b:ee:a5:52:82:4c:c7:43:87:0e:26: 59:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:9D:E6:14:B4:B4:C4:C5:D7:9C:24:68:92:92:AA:11:B3:BD:EC:20 X509v3 Authority Key Identifier: keyid:EC:0C:48:2B:2D:97:C2:8C:89:6F:AE:CD:51:F5:0E:9B:16:25:74:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/7AxIKy2XwoyJb67NUfUOmxYldEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AxIKy2XwoyJb67NUfUOmxYldEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140F6E/D0E82DE0AF4311E9B3DFEE68C4F9AE02/33534662AF4511E9B648CE6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.222.0/23 103.100.136.0/23 IPv6: 2402:61c0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:ff:e4:f7:00:42:85:e1:2a:46:7b:91:66:f5:e8:71:b6:51: 8b:2c:86:de:0c:17:9d:22:3b:85:bf:16:05:fb:05:52:71:fb: d3:45:02:f9:0f:8f:e1:dc:a9:11:69:f7:df:f8:85:40:f3:a9: 3a:ad:ae:4d:ed:4d:fd:ff:1c:00:9e:f3:a4:ec:3f:18:36:ae: 47:d9:15:3a:46:58:42:8b:75:22:d6:43:0c:bf:aa:f3:9b:15: 9f:9c:a8:96:14:de:4a:16:81:c3:c9:bc:5e:f9:d0:a1:4b:32: ff:62:29:5b:9e:de:c4:60:62:05:48:ef:95:d6:67:54:0c:ec: c7:19:ba:27:a8:ba:73:a6:36:01:09:78:c6:a0:f3:b5:10:be: ac:38:c6:6f:28:b4:96:5a:42:9e:66:48:46:49:0c:68:8d:37: 6b:f7:97:af:2f:13:1a:39:66:31:76:34:b0:81:f8:53:b9:5a: e6:17:49:ae:39:eb:9c:9b:28:1d:21:76:f6:62:8c:9b:7e:53: 95:01:0a:3f:be:58:a4:78:8b:8b:a6:09:6f:97:44:44:37:a3: 9a:1a:f6:22:b6:be:e6:ab:4f:68:f0:84:e5:cd:29:f5:77:2b: 2a:d5:ca:c6:66:af:9a:cf:ee:1d:ec:be:33:9b:3d:2f:02:da: e3:ef:e7:21 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBGNkUxMTAvBgNVBAUTKEVDMEM0ODJCMkQ5N0MyOEM4OTZGQUVDRDUxRjUwRTlC MTYyNTc0NDEwHhcNMjUwODAyMTgyNzQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRlNC1iNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0qG7toh2IMQcBQMMjwU0y+HKTkV0Ji4nd7qUOSckA1Q+znJHf5E5v57XkhS 6Pfrw78IucMeydUv5MZCJehsYw9yFROZpt4UJyb7pjbxrYkvL35VfTPB9KdxEg8J lVcrTrC2DeDI/1ZSqPY1TAzkLZ4+lqWLi4GaMdYV+riD2bxPblEPShbSdA7niJPD O4bCmcVIqBcRMxZyXRFdWCXa89x9iC6VtpAsnx2OCyDO4BuH05rXKu6OCcmwk8Ak Qyz4CzXaYaku/iAhnKQPU+DFywC1bgj1vQvSieHp95j1R8h69VP4YRPPtAVX5EqW KjOrESmJW+6lUoJMx0OHDiZZEQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFP+d5hS0 tMTF15wkaJKSqhGzvewgMB8GA1UdIwQYMBaAFOwMSCstl8KMiW+uzVH1DpsWJXRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEY2RS9EMEU4MkRFMEFG NDMxMUU5QjNERkVFNjhDNEY5QUUwMi83QXhJS3kyWHdveUpiNjdOVWZVT214WWxk RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdBeElLeTJYd295SmI2N05VZlVPbXhZbGRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBGNkUvRDBFODJERTBBRjQzMTFFOUIzREZFRTY4QzRGOUFFMDIvMzM1MzQ2NjJB RjQ1MTFFOUI2NDhDRTZBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ0LeAwQBZ2SIMA0EAgACMAcDBQAkAmHAMA0GCSqGSIb3DQEBCwUA A4IBAQAO/+T3AEKF4SpGe5Fm9ehxtlGLLIbeDBedIjuFvxYF+wVScfvTRQL5D4/h 3KkRafff+IVA86k6ra5N7U39/xwAnvOk7D8YNq5H2RU6RlhCi3Ui1kMMv6rzmxWf nKiWFN5KFoHDybxe+dChSzL/Yilbnt7EYGIFSO+V1mdUDOzHGbonqLpzpjYBCXjG oPO1EL6sOMZvKLSWWkKeZkhGSQxojTdr95evLxMaOWYxdjSwgfhTuVrmF0muOeuc mygdIXb2YoybflOVAQo/vlikeIuLpglvl0REN6OaGvYitr7mq09o8ITlzSn1dysq 1crGZq+az+4d7L4zmz0vAtrj7+ch -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:18 2026 by rpki-client