$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa File: C0A21C70A4A711EA835CCA70C4F9AE02.roa (raw, json) Hash identifier: GefkuCVL5QikekTXf83Gvk/uklG0VM+rKHaD3lTs1U4= Subject key identifier: 31:CF:AB:C0:8F:4E:1B:58:40:73:52:A4:33:D6:32:E5:B0:36:4B:D2 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 09A4 Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:32:40 +0000 ROA not before: Sat 26 Apr 2025 20:30:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9381 IP address blocks: 103.234.220.0/24 maxlen: 24 150.129.34.0/24 maxlen: 24 150.129.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2468 (0x9a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Apr 26 20:30:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a407b7-6732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d5:9a:4d:7d:ee:1e:46:67:38:93:a0:6b:b4: 4b:99:23:2c:03:24:5a:3d:72:96:b7:12:9f:76:b1: d7:8d:28:d8:48:34:43:dc:12:af:55:21:8c:5a:8d: 0d:be:7b:21:69:74:24:b0:dd:1b:86:4e:6f:76:f0: 5b:87:41:03:74:54:51:33:12:dd:d8:04:8b:cc:5e: 3e:c0:06:bd:ef:2c:cc:ce:96:1a:0c:05:74:d7:c3: b3:21:80:20:ae:00:a2:8f:35:19:99:1b:5b:e8:43: 42:18:04:40:74:a9:d9:7f:16:a1:89:3f:c8:a5:fc: 97:be:5e:93:de:e3:f1:e5:67:25:2d:d8:f2:08:c7: 92:de:0b:91:11:7c:55:ba:fe:62:fe:07:5e:17:a8: cb:95:4b:2b:51:36:e5:8f:b4:17:93:61:62:e2:6a: 52:73:df:74:7f:b3:9a:eb:8b:5f:ff:35:d2:b5:0c: f0:16:5a:0a:3f:da:03:bb:7b:32:5b:87:6a:b1:99: d6:2a:2a:6a:6e:31:69:72:25:c2:3c:2b:0d:83:d3: 69:16:97:e9:77:b6:99:d4:8f:89:3a:83:a5:1b:94: 46:31:24:13:13:96:3f:b2:b4:be:f4:f2:ff:73:b9: b5:29:9a:ca:02:1a:7d:62:49:c5:4f:93:3c:0c:ca: b7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CF:AB:C0:8F:4E:1B:58:40:73:52:A4:33:D6:32:E5:B0:36:4B:D2 X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.220.0/24 150.129.34.0/23 Signature Algorithm: sha256WithRSAEncryption 36:6a:b3:49:c7:e9:3d:5a:1f:a9:ed:a9:de:df:c5:b2:b2:94: ce:cd:9e:58:bd:10:4c:6c:aa:60:a6:30:83:9b:76:b8:3b:79: da:d9:1d:34:a4:71:23:37:b4:0b:53:57:b2:a8:3b:a3:c6:1e: ce:84:76:ee:06:d5:38:63:67:3f:2b:b4:e4:96:01:a6:62:9f: 2d:e4:e5:f3:14:d4:66:b8:53:8a:11:d5:86:f0:3b:8c:c8:7d: 79:ae:f0:de:34:10:3b:e8:6b:75:cc:ae:11:fc:7d:4e:d3:e6: 69:b4:1a:9f:48:56:42:15:15:63:c9:bc:d6:78:4d:d3:b5:94: 23:84:b2:a8:a6:0f:c3:67:c0:c2:38:ad:5f:7e:d7:f9:8b:a1: cc:4d:0f:02:4d:aa:47:fc:8f:a5:83:59:16:c5:ce:f9:e4:a5: 18:af:2c:10:3b:20:e0:77:06:49:0e:3a:71:c6:98:37:07:25: 46:22:11:e9:ea:5b:82:a6:1e:cd:dd:09:93:ff:a4:cf:98:69: 1a:9c:67:db:64:fc:bb:18:83:3c:fa:ea:5b:4e:ba:e9:12:7b: 2d:80:82:9c:94:a1:fc:a9:0f:a7:fe:de:03:95:ef:90:7d:61: 12:9c:4c:26:b8:82:12:c6:81:0c:17:87:74:a0:d9:fa:35:0e: 0a:7e:75:7f -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUwNDI2MjAzMDAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdiNy02NzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tWaTX3uHkZnOJOga7RLmSMsAyRaPXKWtxKfdrHXjSjYSDRD3BKvVSGMWo0N vnshaXQksN0bhk5vdvBbh0EDdFRRMxLd2ASLzF4+wAa97yzMzpYaDAV018OzIYAg rgCijzUZmRtb6ENCGARAdKnZfxahiT/IpfyXvl6T3uPx5WclLdjyCMeS3guREXxV uv5i/gdeF6jLlUsrUTblj7QXk2Fi4mpSc990f7Oa64tf/zXStQzwFloKP9oDu3sy W4dqsZnWKipqbjFpciXCPCsNg9NpFpfpd7aZ1I+JOoOlG5RGMSQTE5Y/srS+9PL/ c7m1KZrKAhp9YknFT5M8DMq3jQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDHPq8CP ThtYQHNSpDPWMuWwNkvSMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU2MDQvQkNFQzZDNUVBNEEwMTFFQThGQkFCNDVEQzRGOUFFMDIvQzBBMjFDNzBB NEE3MTFFQTgzNUNDQTcwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ+rcAwQBloEiMA0GCSqGSIb3DQEBCwUAA4IBAQA2arNJx+k9Wh+p 7ane38WyspTOzZ5YvRBMbKpgpjCDm3a4O3na2R00pHEjN7QLU1eyqDujxh7OhHbu BtU4Y2c/K7TklgGmYp8t5OXzFNRmuFOKEdWG8DuMyH15rvDeNBA76Gt1zK4R/H1O 0+ZptBqfSFZCFRVjybzWeE3TtZQjhLKopg/DZ8DCOK1fftf5i6HMTQ8CTapH/I+l g1kWxc755KUYrywQOyDgdwZJDjpxxpg3ByVGIhHp6luCph7N3QmT/6TPmGkanGfb ZPy7GIM8+upbTrrpEnstgIKclKH8qQ+n/t4Dle+QfWESnEwmuIISxoEMF4d0oNn6 NQ4KfnV/ -----END CERTIFICATE-----Generated at Mon Mar 2 02:25:41 2026 by rpki-client