$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa File: 2C9AF3A2659411EDA3257D0AC4F9AE02.roa (raw, json) Hash identifier: Rlwd9V0UyAZ+wngxzGsVfDnfL9HwwVlxbBwY31cYYjQ= Subject key identifier: 4A:42:D1:96:2C:F7:FD:DA:F1:39:3E:CC:F4:A9:AD:5B:8A:FF:72:05 Certificate issuer: /CN=A9142A1D/serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Certificate serial: 06CE Authority key identifier: 47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:03 +0000 ROA not before: Tue 06 Jan 2026 22:18:19 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 139076 IP address blocks: 103.146.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A1D, serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Validity Not Before: Jan 6 22:18:19 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46af3-f961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:22:db:6a:d0:6e:18:e8:49:41:3b:4a:b7:87: 5b:91:8d:6e:d7:5e:00:d5:60:80:93:9e:37:5a:b6: e7:c8:52:08:87:42:06:73:0f:fe:81:59:43:48:1f: 38:5b:ef:48:cb:9b:0e:db:9b:0e:2e:38:f7:7c:c7: 8c:0a:88:25:86:30:51:f4:31:de:cb:4e:2c:17:fb: d2:a5:f8:eb:b7:86:b7:83:3f:c2:b4:2c:67:53:7c: f6:a6:8a:96:36:ad:54:8c:f0:56:2a:ad:27:a0:ce: e6:ec:f3:2f:93:7b:a7:c7:b9:24:a6:5f:06:ea:55: 6a:43:24:66:ee:31:d9:cc:55:4e:ff:e5:ff:5b:d4: 89:f5:48:d1:40:38:76:3a:49:11:2c:92:76:df:7e: df:e4:ca:63:9b:1d:c6:28:54:ed:13:77:b4:26:ac: bb:58:6e:1d:96:5b:bc:cd:72:71:e3:6a:21:e5:5a: ac:0b:f7:dd:96:5e:b7:38:64:09:11:86:44:e7:30: 79:89:04:e9:93:41:e6:61:8a:dc:a6:d1:7f:f7:23: 7d:ba:6d:85:e5:9f:d1:81:c4:24:64:96:1f:9a:ba: cc:89:ce:b6:b9:b1:18:53:cf:c0:89:58:86:3f:46: f2:a3:92:d6:9a:9c:99:91:b8:11:5c:33:03:a6:2a: da:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:42:D1:96:2C:F7:FD:DA:F1:39:3E:CC:F4:A9:AD:5B:8A:FF:72:05 X509v3 Authority Key Identifier: keyid:47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.146.78.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:79:c0:6e:67:ae:14:0e:e8:67:dd:22:20:19:25:3f:5d:b2: 57:d1:c8:9c:e0:9c:c4:96:ca:f0:3c:c7:d6:9b:f6:43:90:11: eb:35:38:ba:ad:ee:30:7a:db:b7:87:13:e6:94:8c:50:aa:48: 21:cb:26:5c:4a:55:7a:80:84:50:d4:00:d9:4c:3d:99:fe:b4: c8:b6:22:97:a8:41:fb:50:20:a0:8e:c8:ee:71:0c:6c:a5:fa: 25:fb:89:8d:3a:80:e6:7d:ac:4a:98:cb:8c:e3:19:75:3f:b5: 66:f7:43:b4:8c:95:15:bb:73:38:cf:f1:18:56:75:be:4c:e7: b9:07:63:00:7e:aa:de:9e:d5:a8:5d:2d:46:4e:f8:b2:7c:5b: 99:c4:1a:f2:00:41:8c:07:3b:68:a6:f5:19:57:ab:9c:ed:98: cd:2c:22:91:22:a6:43:44:fa:e9:c4:03:91:91:d1:57:b3:90: 57:c9:52:de:6c:4f:43:6f:a1:11:9b:45:a3:44:c2:ce:77:f1: 7c:ff:dc:42:46:23:17:00:36:29:e1:ec:cd:57:1c:31:f4:50: 4c:31:c7:ef:70:c0:d4:3c:ef:23:29:f7:1c:bf:87:33:fd:ea: 5e:42:d6:56:5e:c9:1a:90:62:3f:90:63:19:b8:07:f3:95:2f: 0f:3a:e8:3b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMUQxMTAvBgNVBAUTKDQ3Q0JFRjcwQkQ1NUI5NTMzMzMxQjhCQ0MyRTk4Mjk1 NjNBMkNFOTQwHhcNMjYwMTA2MjIxODE5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmFmMy1mOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyLbatBuGOhJQTtKt4dbkY1u114A1WCAk543WrbnyFIIh0IGcw/+gVlDSB84 W+9Iy5sO25sOLjj3fMeMCoglhjBR9DHey04sF/vSpfjrt4a3gz/CtCxnU3z2poqW Nq1UjPBWKq0noM7m7PMvk3unx7kkpl8G6lVqQyRm7jHZzFVO/+X/W9SJ9UjRQDh2 OkkRLJJ2337f5Mpjmx3GKFTtE3e0Jqy7WG4dllu8zXJx42oh5VqsC/fdll63OGQJ EYZE5zB5iQTpk0HmYYrcptF/9yN9um2F5Z/RgcQkZJYfmrrMic62ubEYU8/AiViG P0byo5LWmpyZkbgRXDMDpirauwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEpC0ZYs 9/3a8Tk+zPSprVuK/3IFMB8GA1UdIwQYMBaAFEfL73C9VblTMzG4vMLpgpVjos6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkExRC80NTRCQ0RBNDlF OTQxMUVCQkM4MERGMjBDNEY5QUUwMi9SOHZ2Y0wxVnVWTXpNYmk4d3VtQ2xXT2l6 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I4dnZjTDFWdVZNek1iaTh3dW1DbFdPaXpwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBMUQvNDU0QkNEQTQ5RTk0MTFFQkJDODBERjIwQzRGOUFFMDIvMkM5QUYzQTI2 NTk0MTFFREEzMjU3RDBBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5JOMA0GCSqGSIb3DQEBCwUAA4IBAQB8ecBuZ64UDuhn3SIgGSU/ XbJX0cic4JzElsrwPMfWm/ZDkBHrNTi6re4wetu3hxPmlIxQqkghyyZcSlV6gIRQ 1ADZTD2Z/rTItiKXqEH7UCCgjsjucQxspfol+4mNOoDmfaxKmMuM4xl1P7Vm90O0 jJUVu3M4z/EYVnW+TOe5B2MAfqrentWoXS1GTviyfFuZxBryAEGMBztopvUZV6uc 7ZjNLCKRIqZDRPrpxAORkdFXs5BXyVLebE9Db6ERm0WjRMLOd/F8/9xCRiMXADYp 4ezNVxwx9FBMMcfvcMDUPO8jKfccv4cz/epeQtZWXskakGI/kGMZuAfzlS8POug7 -----END CERTIFICATE-----Generated at Mon Mar 2 08:03:06 2026 by rpki-client