$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa File: 31414558B0D511EFB17B942FC4F9AE02.roa (raw, json) Hash identifier: TPRC+7x5lgG5CgncwF7KDW3EDTJUB3LlrULYz9MveMM= Subject key identifier: C9:5A:50:E8:63:7C:10:87:F3:EA:07:76:E2:48:6C:64:67:06:9F:43 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 0975 Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa Signing time: Mon 06 Apr 2026 17:26:34 +0000 ROA not before: Mon 06 Apr 2026 17:26:34 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133957 IP address blocks: 45.118.68.0/24 maxlen: 24 45.118.69.0/24 maxlen: 24 45.118.70.0/24 maxlen: 24 45.118.71.0/24 maxlen: 24 103.49.200.0/24 maxlen: 24 103.49.202.0/24 maxlen: 24 103.49.203.0/24 maxlen: 24 2402:1c80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2421 (0x975) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Apr 6 17:26:34 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d3ecca-38f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:b5:69:ff:95:09:d6:9a:67:f5:95:0d:c8: 57:1d:79:dd:cd:b9:47:8a:d6:3a:16:bf:6e:6f:12: 89:98:c6:6e:2c:b6:03:33:1d:ca:de:51:57:eb:6a: 49:76:72:d0:2d:5f:1b:55:da:6c:30:03:0a:68:96: cb:dc:6a:05:c0:f8:06:c9:d4:e9:df:8e:8b:76:2d: 4f:57:ca:8d:55:68:88:d9:74:90:93:35:77:7a:bc: 9e:90:59:af:bb:b7:a7:24:be:df:ce:78:f8:d8:e7: a6:19:82:38:3f:95:a7:33:31:47:45:bc:98:42:48: 19:ee:6a:ca:48:8a:c6:ff:8a:3a:51:44:1d:41:0c: 5e:e4:05:16:84:0c:54:52:a2:02:17:3d:a1:21:69: 7a:74:02:66:8c:f4:fe:26:38:9c:af:06:10:f3:27: 66:47:84:75:a4:6e:e6:cc:cd:2f:be:1c:33:a5:e7: c2:7c:7d:19:3e:b2:eb:03:eb:51:fa:ea:21:ad:21: c8:c4:02:51:dd:7d:b8:25:9d:c4:63:e3:59:84:1d: 6f:b5:24:f0:e8:6d:d2:99:9e:65:a7:eb:8e:e8:cd: bf:98:41:2c:14:c7:54:8e:15:8b:31:8d:58:02:76: 07:64:42:51:2d:65:31:23:5c:33:70:01:96:31:a7: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5A:50:E8:63:7C:10:87:F3:EA:07:76:E2:48:6C:64:67:06:9F:43 X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/31414558B0D511EFB17B942FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.68.0/22 103.49.200.0/24 103.49.202.0/23 IPv6: 2402:1c80::/32 Signature Algorithm: sha256WithRSAEncryption 03:d1:e5:6b:78:d8:8f:a9:5a:01:90:67:39:c3:db:82:ce:fb: c4:21:d6:07:66:92:35:75:0c:04:6e:ca:3d:54:4a:03:46:14: 26:1a:92:90:59:ef:a5:58:73:15:6a:b4:6c:0d:25:8a:d9:ad: 43:3a:19:39:9e:32:e2:a8:c6:70:a5:08:af:9e:fc:19:56:5b: 6e:55:fb:22:b4:85:da:69:77:5c:40:b5:69:11:12:d2:e2:7a: ca:6a:80:94:40:c0:01:fd:6d:ec:0a:61:fe:ae:0e:3b:5c:bf: 26:47:0a:08:b4:33:c8:39:aa:b5:be:f0:9e:ad:c4:2f:97:e1: ce:16:de:78:13:46:ff:19:6f:c2:06:b3:f8:af:d9:38:1b:ef: 4d:f3:a4:85:c0:50:ad:4c:4c:90:63:68:42:1b:d8:a4:58:1f: 2e:b5:2f:ca:a3:ad:46:f3:69:61:92:1a:a2:e8:06:89:90:82: 9c:43:1a:ca:72:22:5b:49:1b:64:93:ab:27:5e:24:7d:38:c2: 2a:1f:c1:55:10:0c:0d:e5:47:2a:9d:67:fb:a6:ff:64:b7:eb: 38:cd:63:e4:37:ec:58:28:19:0d:90:35:26:0a:97:01:8e:3d: ce:dc:5c:e1:85:b8:3a:c0:0f:a2:0a:02:d7:f2:9e:06:89:4f: 3a:f8:3b:05 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjYwNDA2MTcyNjM0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQzZWNjYS0zOGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovS1af+VCdaaZ/WVDchXHXndzblHitY6Fr9ubxKJmMZuLLYDMx3K3lFX62pJ dnLQLV8bVdpsMAMKaJbL3GoFwPgGydTp346Ldi1PV8qNVWiI2XSQkzV3eryekFmv u7enJL7fznj42OemGYI4P5WnMzFHRbyYQkgZ7mrKSIrG/4o6UUQdQQxe5AUWhAxU UqICFz2hIWl6dAJmjPT+JjicrwYQ8ydmR4R1pG7mzM0vvhwzpefCfH0ZPrLrA+tR +uohrSHIxAJR3X24JZ3EY+NZhB1vtSTw6G3SmZ5lp+uO6M2/mEEsFMdUjhWLMY1Y AnYHZEJRLWUxI1wzcAGWMadySwIDAQABo4ICezCCAncwHQYDVR0OBBYEFMlaUOhj fBCH8+oHduJIbGRnBp9DMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNCMDkvM0IzNjdCQ0UzM0I3MTFFOUFEMEY1ODdBQzRGOUFFMDIvMzE0MTQ1NThC MEQ1MTFFRkIxN0I5NDJGQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLXZEAwQAZzHIAwQBZzHKMA0EAgACMAcDBQAkAhyAMA0GCSqGSIb3 DQEBCwUAA4IBAQAD0eVreNiPqVoBkGc5w9uCzvvEIdYHZpI1dQwEbso9VEoDRhQm GpKQWe+lWHMVarRsDSWK2a1DOhk5njLiqMZwpQivnvwZVltuVfsitIXaaXdcQLVp ERLS4nrKaoCUQMAB/W3sCmH+rg47XL8mRwoItDPIOaq1vvCercQvl+HOFt54E0b/ GW/CBrP4r9k4G+9N86SFwFCtTEyQY2hCG9ikWB8utS/Ko61G82lhkhqi6AaJkIKc QxrKciJbSRtkk6snXiR9OMIqH8FVEAwN5UcqnWf7pv9kt+s4zWPkN+xYKBkNkDUm CpcBjj3O3Fzhhbg6wA+iCgLX8p4GiU86+DsF -----END CERTIFICATE-----Generated at Fri Apr 17 14:05:09 2026 by rpki-client