$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa File: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (raw, json) Hash identifier: AIiAPtcEdSGDtm5Xu/SA/2I+9nLKM1Ar3r+Ob3EnuAQ= Subject key identifier: F0:FF:16:4F:2A:64:9A:DE:FF:0F:C4:45:1C:61:C9:76:51:D3:35:2B Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 0426 Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:02:10 +0000 ROA not before: Thu 07 Aug 2025 01:36:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136803 IP address blocks: 103.95.148.0/22 maxlen: 22 103.95.148.0/24 maxlen: 24 103.95.149.0/24 maxlen: 24 103.95.150.0/24 maxlen: 24 103.95.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E, serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: Aug 7 01:36:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40ea2-0559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:dd:21:11:b7:ea:47:84:97:6c:e0:8b:9b:cf: 5b:b7:72:8e:ad:c2:93:99:04:e8:2e:6b:29:9b:50: 40:b6:a8:5f:29:3a:bb:ef:68:ac:7b:d7:67:7c:c8: 1a:8f:13:0f:39:af:d4:2b:e7:47:a7:76:98:7e:e1: 29:a3:72:48:7d:73:da:93:21:12:a2:1f:1b:7c:8c: 9f:f9:eb:b5:f6:38:4e:24:47:23:28:76:85:bb:ba: cc:a5:2e:dc:8d:1a:68:ea:4c:cb:e5:aa:de:ac:4f: 32:65:cb:de:00:e5:9e:ca:fb:71:e9:48:6b:99:f2: 55:6d:9c:4e:19:84:ec:c8:c8:40:33:8a:df:a2:80: a9:73:af:98:9a:14:b0:86:1c:5f:66:49:00:11:bc: 77:ac:e0:5f:6b:ba:ec:ae:d2:c0:65:b9:6d:69:9c: 97:2c:ba:f8:d8:66:da:43:ca:bd:76:56:5d:1b:f0: ff:8b:30:3c:b2:c9:1b:35:f4:67:d8:73:fe:9c:0c: 39:b4:84:4a:cc:81:46:af:af:95:42:e3:dc:e3:cd: 06:bc:62:66:29:23:a5:b2:52:d7:9e:8b:49:b5:16: d4:3f:9e:98:ad:03:a0:13:f9:01:23:b4:66:b6:4c: 7a:f8:d1:05:4e:6b:91:f9:3c:7a:2e:f9:5b:1c:73: b1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FF:16:4F:2A:64:9A:DE:FF:0F:C4:45:1C:61:C9:76:51:D3:35:2B X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/B775BD7A9EA911EC95EBD87CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.95.148.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:d5:95:3e:a1:5d:5a:a0:98:92:1b:4a:ba:16:cd:c7:bb:2b: e1:ea:bd:c0:bd:5d:30:0e:0f:3d:3c:0d:05:74:31:43:05:ce: 57:4a:48:53:67:46:a3:cf:55:a1:5c:93:1a:ea:60:46:3c:73: 29:73:1f:82:ea:3a:57:96:b9:5e:b9:0a:71:e0:db:f9:aa:fb: dd:07:4d:d4:29:e3:9f:b5:78:3f:bf:48:ff:34:53:dd:78:4d: 8e:57:b6:64:b3:0f:92:c9:9a:8d:43:0e:2f:8d:ba:86:ff:1e: 6d:f1:64:1b:5d:9f:27:2b:f9:da:3d:28:5e:41:f6:aa:2b:13: 9a:26:e9:01:39:8e:6a:0b:fe:53:ae:11:00:f8:b0:25:c7:d6: 81:47:92:de:79:71:0e:ac:b5:75:96:d6:3c:da:22:d6:c9:88: 7d:04:29:5d:34:0e:c1:65:d8:05:2e:0e:7c:1d:f0:5f:3f:b2: ff:49:ac:50:c4:b3:89:8e:7e:49:49:a1:db:76:75:70:05:b9: a8:cb:6c:9f:42:c5:cc:36:1d:bf:37:0c:6b:ad:19:6a:b6:b3: 74:bf:78:ec:d5:ae:08:fc:c9:21:c2:19:b9:20:f6:7f:10:86: 76:3d:a0:89:48:8d:22:3d:3e:a7:22:ce:9c:33:53:95:63:19: 86:54:d8:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjUwODA3MDEzNjE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGVhMi0wNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t0hEbfqR4SXbOCLm89bt3KOrcKTmQToLmspm1BAtqhfKTq772ise9dnfMga jxMPOa/UK+dHp3aYfuEpo3JIfXPakyESoh8bfIyf+eu19jhOJEcjKHaFu7rMpS7c jRpo6kzL5arerE8yZcveAOWeyvtx6UhrmfJVbZxOGYTsyMhAM4rfooCpc6+YmhSw hhxfZkkAEbx3rOBfa7rsrtLAZbltaZyXLLr42GbaQ8q9dlZdG/D/izA8sskbNfRn 2HP+nAw5tIRKzIFGr6+VQuPc480GvGJmKSOlslLXnotJtRbUP56YrQOgE/kBI7Rm tkx6+NEFTmuR+Tx6LvlbHHOx/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPD/Fk8q ZJre/w/ERRxhyXZR0zUrMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwMUUvQzVDNkYwNUU5RUE2MTFFQzhGQjAzNjU0QzRGOUFFMDIvQjc3NUJEN0E5 RUE5MTFFQzk1RUJEODdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ1+UMA0GCSqGSIb3DQEBCwUAA4IBAQBv1ZU+oV1aoJiSG0q6Fs3H uyvh6r3AvV0wDg89PA0FdDFDBc5XSkhTZ0ajz1WhXJMa6mBGPHMpcx+C6jpXlrle uQpx4Nv5qvvdB03UKeOftXg/v0j/NFPdeE2OV7Zksw+SyZqNQw4vjbqG/x5t8WQb XZ8nK/naPSheQfaqKxOaJukBOY5qC/5TrhEA+LAlx9aBR5LeeXEOrLV1ltY82iLW yYh9BCldNA7BZdgFLg58HfBfP7L/SaxQxLOJjn5JSaHbdnVwBbmoy2yfQsXMNh2/ NwxrrRlqtrN0v3js1a4I/Mkhwhm5IPZ/EIZ2PaCJSI0iPT6nIs6cM1OVYxmGVNga -----END CERTIFICATE-----Generated at Mon Mar 2 10:43:29 2026 by rpki-client