$ rpki-client -vvf rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/F67BB6E890AB11ECAB81252FC4F9AE02.roa File: F67BB6E890AB11ECAB81252FC4F9AE02.roa (raw, json) Hash identifier: BtadQwV18GLBMpeAn/QiK/BC2YkW1T5FUNpSz2TfLyU= Subject key identifier: 37:2B:A0:8A:E2:55:98:7E:3C:70:9B:4E:AD:65:88:A8:C6:B9:13:DB Certificate issuer: /CN=A9146BA1/serialNumber=A5611469D29E7BD3C85D3180B72732EAAB7AFB96 Certificate serial: 044C Authority key identifier: A5:61:14:69:D2:9E:7B:D3:C8:5D:31:80:B7:27:32:EA:AB:7A:FB:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pWEUadKee9PIXTGAtycy6qt6-5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/F67BB6E890AB11ECAB81252FC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:54:47 +0000 ROA not before: Thu 10 Jul 2025 20:50:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 148968 IP address blocks: 103.182.40.0/23 maxlen: 24 203.19.132.0/24 maxlen: 24 2400:5be0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/pWEUadKee9PIXTGAtycy6qt6-5Y.crl rsync://rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/pWEUadKee9PIXTGAtycy6qt6-5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pWEUadKee9PIXTGAtycy6qt6-5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146BA1, serialNumber=A5611469D29E7BD3C85D3180B72732EAAB7AFB96 Validity Not Before: Jul 10 20:50:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fed7-6b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8a:fa:c2:2d:8f:9b:77:4f:c0:37:6a:be:35: 14:e8:60:31:b8:bb:21:24:65:4c:7c:cf:0c:8a:f2: bb:aa:da:f8:ac:c7:94:aa:2e:f8:d7:a2:7d:f6:ec: eb:40:7c:5b:eb:0c:1b:3c:6f:7c:9b:71:b6:0a:60: 5d:e4:52:17:4b:88:89:3c:2c:79:84:6a:0e:64:36: c3:00:29:45:ed:ef:2e:35:bf:ed:39:af:72:38:b2: 7c:32:ab:cc:fc:94:95:5b:25:44:37:4f:f7:d8:ef: d4:ee:c6:bb:85:79:53:46:cd:49:ec:c1:65:fc:14: 8a:4f:aa:5e:9a:32:23:1e:22:10:8a:e2:2c:b8:05: ae:c2:5f:7f:19:dc:38:78:d6:78:b1:c0:9e:d8:e6: 16:03:d6:19:c3:39:6c:1f:47:8d:ef:e2:38:bf:59: 73:25:ec:dd:77:c2:40:11:5a:9c:92:a0:1d:25:9a: 27:54:da:fd:78:08:4f:35:2e:f1:68:f0:77:30:9c: 60:e8:02:26:01:4c:35:7c:aa:ad:0c:bc:c9:f8:44: 61:71:45:56:a3:93:f2:50:22:01:86:bc:38:7b:36: 96:48:ca:f9:7b:8f:c1:b4:b9:8e:e7:06:0b:1c:c7: 74:5f:44:73:29:56:bb:89:ec:5d:f3:a2:a9:18:ef: ce:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:2B:A0:8A:E2:55:98:7E:3C:70:9B:4E:AD:65:88:A8:C6:B9:13:DB X509v3 Authority Key Identifier: keyid:A5:61:14:69:D2:9E:7B:D3:C8:5D:31:80:B7:27:32:EA:AB:7A:FB:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/pWEUadKee9PIXTGAtycy6qt6-5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pWEUadKee9PIXTGAtycy6qt6-5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146BA1/63B4EA9890A911EC9765B22DC4F9AE02/F67BB6E890AB11ECAB81252FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.182.40.0/23 203.19.132.0/24 IPv6: 2400:5be0::/32 Signature Algorithm: sha256WithRSAEncryption 34:4f:09:5d:27:1f:63:a3:58:15:6d:4b:02:bc:13:f6:f8:8c: 7d:f0:b5:4c:51:cd:16:fc:09:c2:26:54:f4:af:63:ae:10:8e: ca:5f:e2:42:e9:6d:15:fe:62:25:30:df:bd:f9:ed:6e:79:be: 82:67:bc:00:cf:44:03:70:b3:d8:95:2d:de:2c:46:39:37:11: e9:4b:cb:69:b5:fe:e2:a2:d8:26:a1:6d:a6:a6:0f:6c:b9:a2: 50:4e:46:26:4e:03:61:43:b4:04:69:64:80:30:ba:96:71:50: bc:e5:6a:14:a0:2c:bb:7f:51:ef:f8:d7:d3:56:72:69:f7:28: 43:77:f8:54:e0:41:8e:46:eb:88:88:46:58:b6:b5:74:35:27: 37:49:e8:52:fd:e9:ec:ca:f5:23:70:df:2c:dd:40:58:05:ad: 27:1d:4b:cb:0a:ab:c5:2d:cd:55:74:70:4c:b3:e6:aa:b0:82: 8c:25:89:19:5f:91:b3:de:e8:d4:db:9d:27:d6:b7:34:38:92: 0f:ff:43:58:94:e3:95:85:b2:dc:84:9f:12:e6:c0:db:80:fb: c4:d4:2d:ef:ee:72:ab:76:e9:c7:e4:c4:d2:a3:0a:a2:a2:49: 1b:18:8d:f9:f6:fe:5d:89:b2:d7:f5:b1:4c:a2:66:59:c4:84: 58:7f:47:d6 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCQTExMTAvBgNVBAUTKEE1NjExNDY5RDI5RTdCRDNDODVEMzE4MEI3MjczMkVB QUI3QUZCOTYwHhcNMjUwNzEwMjA1MDI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmVkNy02YjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ir6wi2Pm3dPwDdqvjUU6GAxuLshJGVMfM8MivK7qtr4rMeUqi7416J99uzr QHxb6wwbPG98m3G2CmBd5FIXS4iJPCx5hGoOZDbDAClF7e8uNb/tOa9yOLJ8MqvM /JSVWyVEN0/32O/U7sa7hXlTRs1J7MFl/BSKT6pemjIjHiIQiuIsuAWuwl9/Gdw4 eNZ4scCe2OYWA9YZwzlsH0eN7+I4v1lzJezdd8JAEVqckqAdJZonVNr9eAhPNS7x aPB3MJxg6AImAUw1fKqtDLzJ+ERhcUVWo5PyUCIBhrw4ezaWSMr5e4/BtLmO5wYL HMd0X0RzKVa7iexd86KpGO/O1QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDcroIri VZh+PHCbTq1liKjGuRPbMB8GA1UdIwQYMBaAFKVhFGnSnnvTyF0xgLcnMuqrevuW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkJBMS82M0I0RUE5ODkw QTkxMUVDOTc2NUIyMkRDNEY5QUUwMi9wV0VVYWRLZWU5UElYVEdBdHljeTZxdDYt NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BXRVVhZEtlZTlQSVhUR0F0eWN5NnF0Ni01WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCQTEvNjNCNEVBOTg5MEE5MTFFQzk3NjVCMjJEQzRGOUFFMDIvRjY3QkI2RTg5 MEFCMTFFQ0FCODEyNTJGQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ7YoAwQAyxOEMA0EAgACMAcDBQAkAFvgMA0GCSqGSIb3DQEBCwUA A4IBAQA0TwldJx9jo1gVbUsCvBP2+Ix98LVMUc0W/AnCJlT0r2OuEI7KX+JC6W0V /mIlMN+9+e1ueb6CZ7wAz0QDcLPYlS3eLEY5NxHpS8tptf7iotgmoW2mpg9suaJQ TkYmTgNhQ7QEaWSAMLqWcVC85WoUoCy7f1Hv+NfTVnJp9yhDd/hU4EGORuuIiEZY trV0NSc3SehS/ensyvUjcN8s3UBYBa0nHUvLCqvFLc1VdHBMs+aqsIKMJYkZX5Gz 3ujU250n1rc0OJIP/0NYlOOVhbLchJ8S5sDbgPvE1C3v7nKrdunH5MTSowqiokkb GI359v5dibLX9bFMomZZxIRYf0fW -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:04 2026 by rpki-client