$ rpki-client -vvf rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa File: 8109A2E65EA111EA879CA66DC4F9AE02.roa (raw, json) Hash identifier: yqwaJ+NPPeOsoyLIscVacXzjHLr5veEPki/BMKI3KWE= Subject key identifier: C0:BD:A9:CC:97:DD:71:F3:5B:A8:A8:5A:3F:F4:C9:7F:17:4F:DD:5A Certificate issuer: /CN=A914397B/serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Certificate serial: 0B09 Authority key identifier: B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:28:04 +0000 ROA not before: Sun 30 Mar 2025 19:49:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135124 IP address blocks: 103.135.172.0/22 maxlen: 22 103.135.172.0/23 maxlen: 23 103.135.172.0/24 maxlen: 24 103.135.173.0/24 maxlen: 24 103.135.174.0/23 maxlen: 23 103.135.174.0/24 maxlen: 24 103.135.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914397B, serialNumber=B2BA4D275A498FB4646C7BC06E2623E16BE79058 Validity Not Before: Mar 30 19:49:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a406a4-5c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:04:16:b0:1e:1e:3b:62:cd:92:45:95:90: 30:38:2e:10:6c:67:25:84:30:b6:d8:85:09:fb:76: d5:7d:7b:1b:87:1e:20:1f:c8:3c:34:98:fc:fe:d6: 4e:65:7c:e6:a1:bd:5b:f3:d1:4d:7d:71:27:6b:5a: 9f:63:e8:91:86:31:a7:65:a5:55:58:9a:19:e7:de: fb:eb:d0:21:d7:61:ff:cf:14:54:17:67:dc:46:98: 13:f4:bb:ab:35:49:38:e5:4b:b4:da:3e:d7:a0:0d: f8:31:cf:e7:42:bd:33:82:f0:93:0a:a7:b5:69:c5: b2:2b:71:89:fb:36:ba:df:fc:cc:f3:e1:99:ae:a1: ea:d8:1d:99:a7:61:c1:72:5a:13:15:79:f9:78:49: 17:a4:9e:a5:12:fd:fd:56:36:f4:68:0b:e5:ed:8d: a0:91:d6:15:d3:f3:0d:76:e1:a1:89:45:ee:db:dc: 13:c6:c2:6e:20:33:8f:a1:a0:dc:60:73:e4:98:7d: 2e:d1:b3:2d:90:27:77:11:90:de:02:97:5d:90:a3: a6:6b:fc:10:cc:dd:5f:0e:47:47:11:2f:fb:8e:0e: eb:b9:11:49:3e:e4:42:49:68:aa:70:b5:e6:d6:4e: b1:95:82:ea:44:c1:4d:ce:1a:ec:e7:81:94:19:cd: 44:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BD:A9:CC:97:DD:71:F3:5B:A8:A8:5A:3F:F4:C9:7F:17:4F:DD:5A X509v3 Authority Key Identifier: keyid:B2:BA:4D:27:5A:49:8F:B4:64:6C:7B:C0:6E:26:23:E1:6B:E7:90:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/srpNJ1pJj7RkbHvAbiYj4WvnkFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/srpNJ1pJj7RkbHvAbiYj4WvnkFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914397B/0E0401A25EA011EA9A26466BC4F9AE02/8109A2E65EA111EA879CA66DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.172.0/22 Signature Algorithm: sha256WithRSAEncryption 11:73:17:e7:1f:4e:99:9a:b4:12:bc:82:47:ae:67:b9:d5:5c: 71:ec:ce:46:a1:10:15:01:18:17:07:f4:49:6f:d6:a3:92:f8: 54:e0:1e:fe:21:44:2b:82:f8:88:69:e3:4c:31:bc:0d:aa:8d: 33:a3:a0:9d:bf:e9:6a:ed:b7:2a:17:28:a9:d3:59:9e:09:29: 2f:26:4b:92:44:20:06:59:e1:b0:ad:23:e8:05:b9:8b:5f:6f: 28:0a:31:7f:2d:99:29:49:f1:7a:aa:89:27:bb:92:56:b4:b8: a4:91:0e:1d:1f:5b:91:6c:22:95:33:43:90:11:7d:96:72:67: b4:fb:9f:e9:5c:7f:01:d8:a7:14:5b:ef:15:2a:ce:ff:c7:7b: 98:72:cc:b8:b6:6b:21:04:15:0b:b7:a1:af:fb:65:56:47:82: 5a:37:43:64:68:d8:59:2f:55:4d:a1:1f:cc:5e:a3:c8:c1:f3: 12:e1:3e:4a:a6:79:c2:02:d4:d6:70:a3:82:1d:a1:02:62:31: d0:e8:b4:34:30:c8:5b:72:5c:36:3a:48:88:a1:8b:c9:b2:2d: d8:dd:d7:96:3b:19:d7:e8:43:b6:2e:60:1e:0c:26:66:22:46: 68:bb:bd:94:67:e6:6a:08:2a:db:6f:c9:dc:7d:93:d6:9b:b6: 97:2d:03:0e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM5N0IxMTAvBgNVBAUTKEIyQkE0RDI3NUE0OThGQjQ2NDZDN0JDMDZFMjYyM0Ux NkJFNzkwNTgwHhcNMjUwMzMwMTk0OTQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZhNC01YzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfkEFrAeHjtizZJFlZAwOC4QbGclhDC22IUJ+3bVfXsbhx4gH8g8NJj8/tZO ZXzmob1b89FNfXEna1qfY+iRhjGnZaVVWJoZ597769Ah12H/zxRUF2fcRpgT9Lur NUk45Uu02j7XoA34Mc/nQr0zgvCTCqe1acWyK3GJ+za63/zM8+GZrqHq2B2Zp2HB cloTFXn5eEkXpJ6lEv39Vjb0aAvl7Y2gkdYV0/MNduGhiUXu29wTxsJuIDOPoaDc YHPkmH0u0bMtkCd3EZDeApddkKOma/wQzN1fDkdHES/7jg7ruRFJPuRCSWiqcLXm 1k6xlYLqRMFNzhrs54GUGc1EGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMC9qcyX 3XHzW6ioWj/0yX8XT91aMB8GA1UdIwQYMBaAFLK6TSdaSY+0ZGx7wG4mI+Fr55BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mzk3Qi8wRTA0MDFBMjVF QTAxMUVBOUEyNjQ2NkJDNEY5QUUwMi9zcnBOSjFwSmo3UmtiSHZBYmlZajRXdm5r RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NycE5KMXBKajdSa2JIdkFiaVlqNFd2bmtGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDM5N0IvMEUwNDAxQTI1RUEwMTFFQTlBMjY0NjZCQzRGOUFFMDIvODEwOUEyRTY1 RUExMTFFQTg3OUNBNjZEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4esMA0GCSqGSIb3DQEBCwUAA4IBAQARcxfnH06ZmrQSvIJHrme5 1Vxx7M5GoRAVARgXB/RJb9ajkvhU4B7+IUQrgviIaeNMMbwNqo0zo6Cdv+lq7bcq Fyip01meCSkvJkuSRCAGWeGwrSPoBbmLX28oCjF/LZkpSfF6qoknu5JWtLikkQ4d H1uRbCKVM0OQEX2Wcme0+5/pXH8B2KcUW+8VKs7/x3uYcsy4tmshBBULt6Gv+2VW R4JaN0NkaNhZL1VNoR/MXqPIwfMS4T5KpnnCAtTWcKOCHaECYjHQ6LQ0MMhbclw2 OkiIoYvJsi3Y3deWOxnX6EO2LmAeDCZmIkZou72UZ+ZqCCrbb8ncfZPWm7aXLQMO -----END CERTIFICATE-----Generated at Mon Mar 2 16:09:34 2026 by rpki-client