$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa File: 31414558B0D511EFB17B942FC4F9AE02.roa (raw, json) Hash identifier: ROykPYM/LeczZs6fuaskuBijSjnFp8A1FgiccxUhw58= Subject key identifier: 06:50:F0:72:93:E0:21:87:70:DC:E0:82:AC:58:43:57:A5:45:BC:30 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 095D Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:01:31 +0000 ROA not before: Wed 26 Mar 2025 17:26:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133957 IP address blocks: 45.118.68.0/24 maxlen: 24 45.118.69.0/24 maxlen: 24 45.118.70.0/24 maxlen: 24 45.118.71.0/24 maxlen: 24 103.49.200.0/24 maxlen: 24 103.49.202.0/24 maxlen: 24 103.49.203.0/24 maxlen: 24 2402:1c80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Mar 26 17:26:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48d0a-1424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:10:ff:87:df:da:d5:b4:5d:32:e9:b8:56:a1: d6:b5:05:d4:d7:76:aa:3b:f3:3e:94:7a:89:54:58: 2b:b1:18:08:66:56:c0:7b:c9:27:df:b1:a5:16:15: f3:d7:3b:2e:97:38:ee:52:7f:1b:ce:cd:4e:19:75: 22:14:b7:6b:c5:9b:41:38:00:53:14:5b:aa:e2:22: 3d:4c:29:fa:19:bb:89:3d:49:7b:a7:85:64:58:eb: 93:c7:78:d3:b0:05:e6:0d:eb:39:87:d6:4f:2d:a8: 59:03:15:3d:7f:33:a4:df:71:4d:5f:ec:d9:b7:8b: 6c:82:7b:9f:68:93:96:3c:95:a2:71:2a:75:88:d6: 36:8d:1b:1a:17:0f:ca:99:3f:8a:85:59:29:87:2f: 1b:d6:3b:0a:3f:a5:f6:ff:0e:7d:02:77:5a:bf:9d: f9:1d:8f:42:ab:d2:fa:23:10:4f:b0:99:b8:d4:d1: 7e:ee:ba:6e:6a:38:4a:f7:c5:19:1e:e9:85:64:ed: b8:94:04:b5:a1:33:a4:ff:93:3c:d9:79:26:6a:93: 12:71:b2:3a:98:fc:d1:81:b5:c3:98:46:72:5c:ec: d5:0d:cd:42:bd:c9:51:2d:b3:4a:34:71:e5:a2:f3: 15:5d:3c:80:4b:51:a3:0e:29:97:55:61:b3:8c:0e: 16:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:50:F0:72:93:E0:21:87:70:DC:E0:82:AC:58:43:57:A5:45:BC:30 X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.68.0/22 103.49.200.0/24 103.49.202.0/23 IPv6: 2402:1c80::/32 Signature Algorithm: sha256WithRSAEncryption 2e:03:c4:c0:21:21:db:a6:1f:f0:15:96:ca:6b:c9:d0:06:d1: ef:f8:7b:65:50:fb:d3:78:46:b1:2e:11:ec:43:a2:d2:d0:88: 04:6b:7c:e2:34:0e:79:05:8f:90:ee:cc:23:8f:3a:83:28:41: 4e:71:fd:59:6b:0c:42:91:8a:6e:93:50:c5:39:d0:ca:9a:b6: 5a:17:42:a4:24:70:42:e0:71:b1:04:6e:9a:38:55:69:cf:a3: 24:f2:89:aa:9f:44:09:3e:45:cc:f5:8d:29:d8:f5:c9:37:c1: 79:80:6c:67:d4:40:e0:11:0c:1f:54:f2:a4:be:f2:3a:84:6d: cb:11:d2:9e:92:3d:d0:19:f0:c6:ed:b2:aa:3d:31:71:ac:5d: 8b:a8:14:d0:56:57:94:79:2a:18:f6:a2:d7:0e:ca:a7:bc:64: 1b:f0:e2:3e:0c:90:19:c9:53:16:e0:40:ea:37:5a:35:9b:45: d2:49:5a:50:d8:44:3f:2e:2d:3d:3c:3f:e7:e1:89:cf:52:94: af:b7:af:37:54:04:c0:04:16:72:2b:12:d9:c9:9c:5b:da:4c: 63:52:41:d4:06:d3:7f:c4:8f:4b:fd:77:6e:4a:ac:32:15:c0: 46:a5:cb:95:8d:2d:02:bb:0e:38:6d:75:cc:3b:f4:59:50:92: 3e:4b:c0:e4 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjUwMzI2MTcyNjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQwYS0xNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hD/h9/a1bRdMum4VqHWtQXU13aqO/M+lHqJVFgrsRgIZlbAe8kn37GlFhXz 1zsulzjuUn8bzs1OGXUiFLdrxZtBOABTFFuq4iI9TCn6GbuJPUl7p4VkWOuTx3jT sAXmDes5h9ZPLahZAxU9fzOk33FNX+zZt4tsgnufaJOWPJWicSp1iNY2jRsaFw/K mT+KhVkphy8b1jsKP6X2/w59Andav535HY9Cq9L6IxBPsJm41NF+7rpuajhK98UZ HumFZO24lAS1oTOk/5M82XkmapMScbI6mPzRgbXDmEZyXOzVDc1CvclRLbNKNHHl ovMVXTyAS1GjDimXVWGzjA4W3wIDAQABo4ICezCCAncwHQYDVR0OBBYEFAZQ8HKT 4CGHcNzggqxYQ1elRbwwMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNCMDkvM0IzNjdCQ0UzM0I3MTFFOUFEMEY1ODdBQzRGOUFFMDIvMzE0MTQ1NThC MEQ1MTFFRkIxN0I5NDJGQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLXZEAwQAZzHIAwQBZzHKMA0EAgACMAcDBQAkAhyAMA0GCSqGSIb3 DQEBCwUAA4IBAQAuA8TAISHbph/wFZbKa8nQBtHv+HtlUPvTeEaxLhHsQ6LS0IgE a3ziNA55BY+Q7swjjzqDKEFOcf1ZawxCkYpuk1DFOdDKmrZaF0KkJHBC4HGxBG6a OFVpz6Mk8omqn0QJPkXM9Y0p2PXJN8F5gGxn1EDgEQwfVPKkvvI6hG3LEdKekj3Q GfDG7bKqPTFxrF2LqBTQVleUeSoY9qLXDsqnvGQb8OI+DJAZyVMW4EDqN1o1m0XS SVpQ2EQ/Li09PD/n4YnPUpSvt683VATABBZyKxLZyZxb2kxjUkHUBtN/xI9L/Xdu SqwyFcBGpcuVjS0Cuw44bXXMO/RZUJI+S8Dk -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:23 2026 by rpki-client