$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa File: C08B939607D911EDA41A0B25C4F9AE02.roa (raw, json) Hash identifier: dOUSaI9g5O3UPIzWXNerGSVK+VaXaotoBCvxam9K91E= Subject key identifier: 52:59:5B:58:D8:D3:84:B0:03:81:B1:66:86:3A:37:94:55:AC:B0:03 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 060C Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa Signing time: Sun 01 Feb 2026 10:50:22 +0000 ROA not before: Sun 01 Feb 2026 10:50:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59117 IP address blocks: 103.135.208.0/22 maxlen: 24 103.204.13.0/24 maxlen: 24 125.3.192.0/21 maxlen: 21 222.167.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Feb 1 10:50:22 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=697f2fee-f86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:44:62:20:28:d1:cf:c3:c4:68:0c:9c:79: 50:16:b8:56:c6:5a:1e:d5:85:a3:a6:f4:6a:b0:07: a5:4b:ae:4a:57:1e:fb:b6:e7:4d:e7:e0:3f:b8:be: 38:d6:20:48:33:a0:71:fb:8e:74:32:37:bb:ad:5c: 19:1b:77:06:7a:8a:35:b0:0c:d2:39:42:b3:19:ab: 9b:63:92:19:46:32:8b:a8:3e:82:93:5b:b9:3f:3e: 78:b1:4a:65:e9:50:6c:8d:bf:5c:7b:c8:83:7c:07: d0:ac:3f:f6:05:1c:40:9d:14:31:ca:f8:33:13:eb: e8:47:fd:41:6c:f9:0b:66:45:4a:46:7c:75:19:50: fa:f7:c6:5a:f1:46:6f:94:14:f3:51:1f:a5:a5:3e: 33:b2:d1:be:fe:73:da:aa:ca:20:f0:5a:af:a7:ca: 19:70:9d:e6:58:1c:8e:26:13:91:86:01:29:58:6f: f3:27:23:33:f4:53:36:6e:dd:01:24:89:98:d2:b5: 52:35:a0:ca:05:76:0f:ce:eb:7d:21:37:ad:4d:b4: 7b:11:e0:bd:fb:96:e5:ea:55:c5:37:f5:c3:31:80: 2b:43:a6:da:e5:2f:ad:98:f8:58:7b:8a:49:28:e9: b4:6e:42:30:3f:e6:46:91:a4:9b:db:52:0d:45:34: 27:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:59:5B:58:D8:D3:84:B0:03:81:B1:66:86:3A:37:94:55:AC:B0:03 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 103.204.13.0/24 125.3.192.0/21 222.167.32.0/22 Signature Algorithm: sha256WithRSAEncryption 04:ae:2d:fb:b5:60:d2:18:1c:39:c0:3b:9c:fd:13:a5:12:bd: bf:54:e7:0b:96:5e:f3:ab:8e:43:30:f8:2b:c9:1b:cd:39:c3: 76:73:6c:1a:6b:93:65:b8:9f:21:40:5d:c2:de:1a:4f:c1:c0: f4:b6:ba:a5:2f:aa:39:53:35:24:3e:79:b8:21:dd:c4:95:ed: 86:cc:a6:04:2a:f5:8a:a1:19:80:cb:bd:62:67:22:4b:51:e3: 48:a3:17:c7:96:ac:1d:ae:4e:62:8b:33:c3:28:f2:2f:16:6e: 2e:54:68:50:ac:6a:8a:5d:18:37:91:cb:c3:e4:95:f4:60:7f: a9:ff:39:ec:c7:4d:5f:41:89:54:8b:f1:c8:7e:fe:08:7d:7c: 12:c8:d1:2a:40:bb:2e:55:3c:7a:62:b2:c9:b7:c9:bf:05:8a: be:65:4e:85:7d:7e:61:7d:3a:22:88:7f:0c:09:00:a3:e3:f7: 02:99:b6:32:d1:4c:d4:a6:c2:e6:f8:5b:13:59:15:23:bd:95: f1:59:66:da:77:88:42:a0:fa:50:9b:e1:f1:03:cf:31:99:c9: 49:e7:4e:05:e1:32:6a:d8:a3:98:be:8b:05:73:fc:5a:a5:0b: e9:6f:ff:08:da:1d:47:06:07:34:76:ec:6e:77:fd:59:a7:43: bf:60:36:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjYwMjAxMTA1MDIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdmMmZlZS1mODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF9EYiAo0c/DxGgMnHlQFrhWxloe1YWjpvRqsAelS65KVx77tudN5+A/uL44 1iBIM6Bx+450Mje7rVwZG3cGeoo1sAzSOUKzGaubY5IZRjKLqD6Ck1u5Pz54sUpl 6VBsjb9ce8iDfAfQrD/2BRxAnRQxyvgzE+voR/1BbPkLZkVKRnx1GVD698Za8UZv lBTzUR+lpT4zstG+/nPaqsog8Fqvp8oZcJ3mWByOJhORhgEpWG/zJyMz9FM2bt0B JImY0rVSNaDKBXYPzut9ITetTbR7EeC9+5bl6lXFN/XDMYArQ6ba5S+tmPhYe4pJ KOm0bkIwP+ZGkaSb21INRTQnYQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFJZW1jY 04SwA4GxZoY6N5RVrLADMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQzA4QjkzOTYw N0Q5MTFFREE0MUEwQjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnh9ADBABnzA0DBAN9A8ADBALepyAwDQYJKoZIhvcNAQEL BQADggEBAASuLfu1YNIYHDnAO5z9E6USvb9U5wuWXvOrjkMw+CvJG805w3ZzbBpr k2W4nyFAXcLeGk/BwPS2uqUvqjlTNSQ+ebgh3cSV7YbMpgQq9YqhGYDLvWJnIktR 40ijF8eWrB2uTmKLM8Mo8i8Wbi5UaFCsaopdGDeRy8PklfRgf6n/OezHTV9BiVSL 8ch+/gh9fBLI0SpAuy5VPHpissm3yb8Fir5lToV9fmF9OiKIfwwJAKPj9wKZtjLR TNSmwub4WxNZFSO9lfFZZtp3iEKg+lCb4fEDzzGZyUnnTgXhMmrYo5i+iwVz/Fql C+lv/wjaHUcGBzR27G53/VmnQ79gNmw= -----END CERTIFICATE-----Generated at Mon Mar 2 04:13:32 2026 by rpki-client