$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AF22E83C2C1711EC817C5912C4F9AE02.roa File: AF22E83C2C1711EC817C5912C4F9AE02.roa (raw, json) Hash identifier: 5f9ml2EUZAGAD2c6U/Z9/PW0M3VyIhaGC3vHQZLyq8I= Subject key identifier: DF:DA:AE:E2:4E:70:05:84:B7:AC:2A:1B:FE:B4:53:9D:E6:5C:E4:7D Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0551 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AF22E83C2C1711EC817C5912C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:43:32 +0000 ROA not before: Fri 29 Aug 2025 00:16:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139204 IP address blocks: 103.170.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Aug 29 00:16:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43473-ba27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:7b:9e:8e:a0:d4:83:d1:e4:f1:58:ea:5b: e1:62:c9:e7:b8:ea:5e:30:e3:c5:26:67:ec:ff:38: be:a1:0f:63:06:b6:a9:3d:03:3d:66:af:ba:3d:75: e1:fc:31:b0:7c:29:8f:2d:cc:d6:d2:33:af:06:57: 6b:d3:f5:15:1b:94:93:8b:ba:e8:cf:1d:c7:91:d3: 87:97:87:0e:04:a8:0b:0f:26:9c:26:9c:8c:4a:59: 0b:1d:3d:fc:87:56:3f:79:f1:ec:0f:72:0b:f4:95: 8c:fc:03:20:0c:a5:bb:12:8d:75:f6:0c:50:2e:43: a2:c6:b1:b0:01:6c:0f:94:44:91:96:ca:f7:86:15: da:ec:e1:2e:43:42:6b:d7:a3:08:e4:57:36:d2:7f: 27:99:c3:b4:62:57:c3:82:9d:e5:32:fc:b3:de:06: c9:bf:d0:8c:73:26:8d:c3:ec:ec:0f:f7:35:d4:f3: da:78:d7:e8:31:1f:b5:64:d2:13:bf:b8:e9:6c:71: 6b:a1:31:cb:dc:18:c5:3c:f1:07:16:88:92:62:31: f5:94:ea:1a:11:75:84:82:43:66:81:91:24:41:ca: 67:cd:58:43:01:d9:c1:13:72:fe:30:14:42:c0:f9: b8:c1:7a:0e:a2:68:13:71:15:20:af:1b:c8:ea:56: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DA:AE:E2:4E:70:05:84:B7:AC:2A:1B:FE:B4:53:9D:E6:5C:E4:7D X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/AF22E83C2C1711EC817C5912C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.170.126.0/24 Signature Algorithm: sha256WithRSAEncryption b7:42:5c:de:28:04:ec:29:7b:f2:3c:15:03:d1:39:4c:8e:4e: 8f:18:25:31:e1:01:82:51:bc:bd:89:42:15:3c:c0:84:db:96: 32:e2:02:d8:46:be:0d:eb:e3:c8:06:84:90:bd:62:76:3f:12: 3d:cf:a8:45:2e:18:72:d7:b2:11:9f:68:b6:46:53:99:f1:9a: ab:72:c1:32:30:9a:8a:71:ae:33:81:fe:da:8d:39:4d:da:88: a4:11:21:43:61:f2:7f:0e:21:95:06:a4:9b:db:a9:7b:e3:7a: 8a:b7:a7:69:3e:22:36:e9:d4:dc:75:48:57:78:cc:e9:8f:48: 60:d6:4b:b8:8e:cc:51:5a:11:e6:ba:da:49:7f:06:dd:ad:6f: 38:1e:aa:a6:47:f8:77:bf:e6:b2:28:27:d1:48:0d:59:90:30: fc:4c:25:97:c0:83:13:e4:6a:cd:37:a7:57:db:95:65:7e:8f: a0:b6:ad:18:db:30:56:28:20:af:ef:27:a3:36:77:5a:66:2b: 11:3b:98:2b:0f:ed:99:cb:df:45:ce:c8:83:e6:ac:b4:d5:94: c1:66:d4:1e:16:cf:c5:0f:31:9e:07:9e:be:45:a9:ab:69:4e: b6:03:6b:fd:2a:05:03:95:dc:19:26:46:df:bf:50:7d:d6:49: f2:83:aa:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwODI5MDAxNjU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzQ3My1iYTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZp7no6g1IPR5PFY6lvhYsnnuOpeMOPFJmfs/zi+oQ9jBrapPQM9Zq+6PXXh /DGwfCmPLczW0jOvBldr0/UVG5STi7rozx3HkdOHl4cOBKgLDyacJpyMSlkLHT38 h1Y/efHsD3IL9JWM/AMgDKW7Eo119gxQLkOixrGwAWwPlESRlsr3hhXa7OEuQ0Jr 16MI5Fc20n8nmcO0YlfDgp3lMvyz3gbJv9CMcyaNw+zsD/c11PPaeNfoMR+1ZNIT v7jpbHFroTHL3BjFPPEHFoiSYjH1lOoaEXWEgkNmgZEkQcpnzVhDAdnBE3L+MBRC wPm4wXoOomgTcRUgrxvI6lZiSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN/aruJO cAWEt6wqG/60U53mXOR9MB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlDRUYvQzQwMTlEMjQyQzEzMTFFQ0I0NTgwODQyQzRGOUFFMDIvQUYyMkU4M0My QzE3MTFFQzgxN0M1OTEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6p+MA0GCSqGSIb3DQEBCwUAA4IBAQC3QlzeKATsKXvyPBUD0TlM jk6PGCUx4QGCUby9iUIVPMCE25Yy4gLYRr4N6+PIBoSQvWJ2PxI9z6hFLhhy17IR n2i2RlOZ8ZqrcsEyMJqKca4zgf7ajTlN2oikESFDYfJ/DiGVBqSb26l743qKt6dp PiI26dTcdUhXeMzpj0hg1ku4jsxRWhHmutpJfwbdrW84HqqmR/h3v+ayKCfRSA1Z kDD8TCWXwIMT5GrNN6dX25Vlfo+gtq0Y2zBWKCCv7yejNndaZisRO5grD+2Zy99F zsiD5qy01ZTBZtQeFs/FDzGeB56+RamraU62A2v9KgUDldwZJkbfv1B91knyg6qT -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:26 2026 by rpki-client