$ rpki-client -vvf rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/9DBC04A4C03111F0BF336D44C4F9AE02.roa File: 9DBC04A4C03111F0BF336D44C4F9AE02.roa (raw, json) Hash identifier: tvE5Jolpx8UkjMKWhVQozMkKRe4EsitNFWalcpGE9V0= Subject key identifier: 62:7C:F6:C1:8B:98:00:4D:FA:47:CC:64:7B:DA:88:C9:8E:64:7D:62 Certificate issuer: /CN=A9150A9C/serialNumber=24B0FC18C1A7AFF53F83CAB26062535D2CC5EE6F Certificate serial: 40 Authority key identifier: 24:B0:FC:18:C1:A7:AF:F5:3F:83:CA:B2:60:62:53:5D:2C:C5:EE:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLD8GMGnr_U_g8qyYGJTXSzF7m8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/9DBC04A4C03111F0BF336D44C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:48:41 +0000 ROA not before: Tue 18 Nov 2025 14:23:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140711 IP address blocks: 103.152.18.0/23 maxlen: 23 103.152.18.0/24 maxlen: 24 103.152.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/JLD8GMGnr_U_g8qyYGJTXSzF7m8.crl rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/JLD8GMGnr_U_g8qyYGJTXSzF7m8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLD8GMGnr_U_g8qyYGJTXSzF7m8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150A9C, serialNumber=24B0FC18C1A7AFF53F83CAB26062535D2CC5EE6F Validity Not Before: Nov 18 14:23:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48a09-63c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a2:0f:53:73:bd:d8:86:cf:78:8a:60:9c:c2: 5b:fa:bd:96:d6:ad:aa:8a:ea:eb:86:27:f0:5e:65: 2e:7c:23:51:f0:8f:57:4a:85:db:1c:14:73:ef:a6: 5d:e2:c8:a1:4a:80:ad:40:aa:8f:7a:9e:98:e2:38: d9:2d:73:57:6b:3e:34:18:a3:81:93:c2:7a:3f:51: 47:de:8e:40:7b:79:fa:58:0f:13:21:90:c1:0f:73: 9b:c1:c0:ad:74:96:07:19:c7:d2:93:d1:42:89:af: 7b:8b:71:db:49:10:77:5c:46:87:91:3c:c2:61:04: 84:c0:d6:07:15:c0:9b:74:30:e8:7e:ab:3e:04:45: 92:c2:18:3f:c4:89:24:48:bb:18:b9:a2:12:69:bb: 6a:80:44:0a:cc:29:16:79:e3:72:4d:e6:4e:1c:b1: d1:e6:a5:6e:2e:b9:77:31:91:2d:aa:d4:4e:15:8c: c3:13:70:94:20:6b:ab:14:c9:6f:ba:1d:da:f2:ea: a1:ff:e3:38:9a:a3:98:af:ab:e2:4d:5e:d9:ee:fb: 23:43:4c:eb:a9:f6:40:57:e9:c3:d0:e6:64:39:6b: 88:94:69:98:94:0e:35:c8:31:10:da:53:62:52:0b: 77:54:5b:29:39:d0:60:bf:79:36:94:3b:2c:f4:39: 6a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7C:F6:C1:8B:98:00:4D:FA:47:CC:64:7B:DA:88:C9:8E:64:7D:62 X509v3 Authority Key Identifier: keyid:24:B0:FC:18:C1:A7:AF:F5:3F:83:CA:B2:60:62:53:5D:2C:C5:EE:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/JLD8GMGnr_U_g8qyYGJTXSzF7m8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLD8GMGnr_U_g8qyYGJTXSzF7m8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150A9C/2A29484CABA811EA95CE2C16C4F9AE02/9DBC04A4C03111F0BF336D44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.18.0/23 Signature Algorithm: sha256WithRSAEncryption 94:19:13:12:08:98:37:4a:7c:43:db:0e:a1:91:13:b3:3a:ec: 2b:61:1f:19:7b:77:ba:61:b3:62:74:f1:f0:03:ac:c9:ae:99: c6:e3:da:25:02:a2:eb:4d:25:33:b0:41:3d:6d:6d:45:d6:37: 19:e6:41:09:d8:61:91:48:c1:6a:57:16:86:36:12:93:56:2a: ee:c0:92:74:15:88:97:fd:e3:bb:8c:ea:9b:dc:14:ec:38:82: 49:8b:f2:34:45:5e:6f:e4:a2:e1:93:d3:21:b9:3e:96:a5:71: 24:2b:e3:19:bc:d2:88:ef:b1:7c:8d:e2:66:86:d4:7c:e8:b9: 22:c4:30:10:5a:ba:c1:79:52:ad:f8:20:a0:f3:b0:c5:d7:50: 76:bb:6a:7a:b6:ca:c9:6f:34:59:6a:fc:a2:53:14:cb:c4:b4: 8c:da:5e:23:27:be:7d:4c:fe:ca:54:64:5f:95:3b:3d:6d:78: 83:21:9d:b4:94:f6:59:dd:53:cb:ea:8c:71:70:4c:26:ec:1a: c6:80:00:24:06:cf:04:04:ec:86:bc:e9:62:4e:a4:d0:05:2f: 6a:2c:31:1d:e7:18:d6:56:67:2d:a6:55:0a:7d:2d:9c:55:69: 1d:7d:c9:b5:98:e0:71:ef:3d:3b:01:0e:09:8a:24:80:96:49: 30:80:19:0f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MEE5QzExMC8GA1UEBRMoMjRCMEZDMThDMUE3QUZGNTNGODNDQUIyNjA2MjUzNUQy Q0M1RUU2RjAeFw0yNTExMTgxNDIzMTBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4YTA5LTYzYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClog9Tc73Yhs94imCcwlv6vZbWraqK6uuGJ/BeZS58I1Hwj1dKhdscFHPvpl3i yKFKgK1Aqo96npjiONktc1drPjQYo4GTwno/UUfejkB7efpYDxMhkMEPc5vBwK10 lgcZx9KT0UKJr3uLcdtJEHdcRoeRPMJhBITA1gcVwJt0MOh+qz4ERZLCGD/EiSRI uxi5ohJpu2qARArMKRZ543JN5k4csdHmpW4uuXcxkS2q1E4VjMMTcJQga6sUyW+6 Hdry6qH/4ziao5ivq+JNXtnu+yNDTOup9kBX6cPQ5mQ5a4iUaZiUDjXIMRDaU2JS C3dUWyk50GC/eTaUOyz0OWqJAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUYnz2wYuY AE36R8xke9qIyY5kfWIwHwYDVR0jBBgwFoAUJLD8GMGnr/U/g8qyYGJTXSzF7m8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUwQTlDLzJBMjk0ODRDQUJB ODExRUE5NUNFMkMxNkM0RjlBRTAyL0pMRDhHTUducl9VX2c4cXlZR0pUWFN6Rjdt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSkxEOEdNR25yX1VfZzhxeVlHSlRYU3pGN204LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEE5Qy8yQTI5NDg0Q0FCQTgxMUVBOTVDRTJDMTZDNEY5QUUwMi85REJDMDRBNEMw MzExMUYwQkYzMzZENDRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnmBIwDQYJKoZIhvcNAQELBQADggEBAJQZExIImDdKfEPbDqGRE7M6 7CthHxl7d7phs2J08fADrMmumcbj2iUCoutNJTOwQT1tbUXWNxnmQQnYYZFIwWpX FoY2EpNWKu7AknQViJf947uM6pvcFOw4gkmL8jRFXm/kouGT0yG5PpalcSQr4xm8 0ojvsXyN4maG1HzouSLEMBBausF5Uq34IKDzsMXXUHa7anq2yslvNFlq/KJTFMvE tIzaXiMnvn1M/spUZF+VOz1teIMhnbSU9lndU8vqjHFwTCbsGsaAACQGzwQE7Ia8 6WJOpNAFL2osMR3nGNZWZy2mVQp9LZxVaR19ybWY4HHvPTsBDgmKJICWSTCAGQ8= -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:15 2026 by rpki-client