$ rpki-client -vvf rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa File: 46BEDD64662411EBADFEB364C4F9AE02.roa (raw, json) Hash identifier: YvchA+iLWK2KzcsGlB5LZ4NkqNmPfmKmRFBKloh/k0g= Subject key identifier: 0F:BA:F5:7D:06:DD:55:3B:76:C0:49:CD:49:0D:04:18:B3:C7:31:AC Certificate issuer: /CN=A9142BCC/serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Certificate serial: 1962 Authority key identifier: 02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:00:15 +0000 ROA not before: Tue 16 Dec 2025 17:14:04 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134732 IP address blocks: 59.153.100.0/22 maxlen: 24 103.119.100.0/22 maxlen: 22 103.119.100.0/23 maxlen: 24 103.119.102.0/24 maxlen: 24 103.119.103.0/24 maxlen: 24 103.198.136.0/22 maxlen: 24 2401:f40::/32 maxlen: 36 2401:f40:5::/48 maxlen: 48 2401:f40:8::/48 maxlen: 48 2401:f40:e::/48 maxlen: 48 2401:f40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6498 (0x1962) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142BCC, serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Validity Not Before: Dec 16 17:14:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47eaf-27b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:19:c2:25:d7:aa:34:41:1a:c7:92:c0:f2:31: d2:db:be:c3:ab:42:d8:0e:83:9d:b4:26:d3:c5:1d: 29:b8:f2:6f:b6:1e:82:bf:e1:84:1d:f9:d6:a7:03: f8:35:83:49:9b:71:3c:a9:7e:31:3f:b3:72:ff:4c: d1:34:23:7a:7b:86:11:c9:b0:26:50:0e:c8:e1:ae: bf:08:91:6c:f8:93:40:86:ad:ad:0f:f0:35:d1:9f: 3e:1f:7f:e1:40:8f:22:7f:4a:54:ac:51:ff:ac:ff: 86:47:bb:6b:e8:83:1a:a1:c4:0c:ae:ef:0d:7c:f1: e2:86:b5:b9:3f:ab:d2:0a:40:a9:4a:9d:dd:c8:40: c3:e4:8e:4e:9a:76:22:11:70:b6:5b:58:0c:2d:80: b4:04:bc:53:ce:72:15:91:b8:e2:33:b4:13:c8:97: 55:4a:4b:38:4f:7b:ac:57:12:37:7b:d3:8d:2b:90: 6c:eb:60:ca:cd:c8:a7:e8:4f:c6:b0:9b:c5:dd:e9: 80:14:69:09:bf:fb:7e:32:99:df:3e:da:69:52:b1: 42:7c:27:02:fa:95:fc:3b:12:0e:7c:e0:e5:c0:00: a0:06:dc:a6:8e:c7:0b:cb:d1:27:a8:4b:24:0c:a2: 6c:bb:01:c4:b2:10:81:62:c4:b2:f4:11:a6:12:97: 92:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BA:F5:7D:06:DD:55:3B:76:C0:49:CD:49:0D:04:18:B3:C7:31:AC X509v3 Authority Key Identifier: keyid:02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 59.153.100.0/22 103.119.100.0/22 103.198.136.0/22 IPv6: 2401:f40::/32 Signature Algorithm: sha256WithRSAEncryption ac:db:3e:b5:06:db:31:71:cb:d9:02:b9:a8:4e:01:13:69:4a: fe:9c:30:ee:f7:d9:55:b5:10:74:ca:4b:5f:85:21:0a:08:4b: 0e:bc:dd:e3:f2:e1:fb:35:46:a1:c8:0e:53:6b:51:33:ae:b5: 95:d7:98:f3:a5:3f:35:37:e0:80:24:52:25:08:8d:2a:f3:03: 74:85:9c:7d:f3:a2:0a:1e:96:c0:65:97:09:c5:2f:57:19:02: ba:7c:5e:25:42:3b:9e:2d:70:25:45:be:51:38:9a:0f:b6:03: 5f:61:41:e9:fb:b7:9f:de:76:f0:65:c2:be:f5:be:1b:68:d6: 36:01:f7:7e:fb:4d:32:f7:2a:7e:d1:1c:c5:b4:14:e0:bf:45: f1:87:01:49:0e:53:b2:bf:7a:75:4e:d6:4d:bf:0b:90:ea:be: 14:72:de:2e:7a:c1:8f:ea:bf:b4:ed:8d:3f:9b:78:e0:f7:a8: 53:1f:09:e6:de:f2:43:7e:2c:c1:ce:3f:91:99:09:8e:8b:eb: 84:72:b7:9d:b6:03:54:b7:8e:f6:40:ae:21:fc:73:63:92:cb: c3:95:3e:b1:1c:65:05:58:ec:27:05:14:63:97:7e:d1:8a:25: fe:1b:24:96:00:5b:71:50:47:d2:e4:3d:99:71:8d:75:2f:e5: 27:9d:39:e4 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICGWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJCQ0MxMTAvBgNVBAUTKDAyMDU1NkY5N0Q1NDU0MzREMkM4NTQxMjFEQzVEQzY0 NjM0QTY0QUMwHhcNMjUxMjE2MTcxNDA0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VhZi0yN2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hnCJdeqNEEax5LA8jHS277Dq0LYDoOdtCbTxR0puPJvth6Cv+GEHfnWpwP4 NYNJm3E8qX4xP7Ny/0zRNCN6e4YRybAmUA7I4a6/CJFs+JNAhq2tD/A10Z8+H3/h QI8if0pUrFH/rP+GR7tr6IMaocQMru8NfPHihrW5P6vSCkCpSp3dyEDD5I5OmnYi EXC2W1gMLYC0BLxTznIVkbjiM7QTyJdVSks4T3usVxI3e9ONK5Bs62DKzcin6E/G sJvF3emAFGkJv/t+MpnfPtppUrFCfCcC+pX8OxIOfODlwACgBtymjscLy9EnqEsk DKJsuwHEshCBYsSy9BGmEpeSEwIDAQABo4ICezCCAncwHQYDVR0OBBYEFA+69X0G 3VU7dsBJzUkNBBizxzGsMB8GA1UdIwQYMBaAFAIFVvl9VFQ00shUEh3F3GRjSmSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkJDQy84QTU2QzA5RTk4 M0UxMUU3QjQ3REU1N0FDNEY5QUUwMi9BZ1ZXLVgxVVZEVFN5RlFTSGNYY1pHTkta S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FnVlctWDFVVkRUU3lGUVNIY1hjWkdOS1pLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJCQ0MvOEE1NkMwOUU5ODNFMTFFN0I0N0RFNTdBQzRGOUFFMDIvNDZCRURENjQ2 NjI0MTFFQkFERkVCMzY0QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCO5lkAwQCZ3dkAwQCZ8aIMA0EAgACMAcDBQAkAQ9AMA0GCSqGSIb3 DQEBCwUAA4IBAQCs2z61BtsxccvZArmoTgETaUr+nDDu99lVtRB0yktfhSEKCEsO vN3j8uH7NUahyA5Ta1EzrrWV15jzpT81N+CAJFIlCI0q8wN0hZx986IKHpbAZZcJ xS9XGQK6fF4lQjueLXAlRb5ROJoPtgNfYUHp+7ef3nbwZcK+9b4baNY2Afd++00y 9yp+0RzFtBTgv0XxhwFJDlOyv3p1TtZNvwuQ6r4Uct4uesGP6r+07Y0/m3jg96hT Hwnm3vJDfizBzj+RmQmOi+uEcredtgNUt472QK4h/HNjksvDlT6xHGUFWOwnBRRj l37RiiX+GySWAFtxUEfS5D2ZcY11L+UnnTnk -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:59 2026 by rpki-client