$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/5BCC0548D99B11F09EC1D6B265D3641D.roa File: 5BCC0548D99B11F09EC1D6B265D3641D.roa (raw, json) Hash identifier: i1hjAVq1SO8VSzTZIbkDz7V88Ro0Peb6UK+LbxUnCTs= Subject key identifier: 1E:2A:06:8B:70:AE:8B:8A:E6:90:5B:D1:3F:E6:90:FF:52:5C:67:5F Certificate issuer: /CN=A9158E7B/serialNumber=BA394275C4FF8F8EF234749A36F2A1913927955B Certificate serial: 2C Authority key identifier: BA:39:42:75:C4:FF:8F:8E:F2:34:74:9A:36:F2:A1:91:39:27:95:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/5BCC0548D99B11F09EC1D6B265D3641D.roa Signing time: Sun 01 Mar 2026 05:53:36 +0000 ROA not before: Mon 15 Dec 2025 09:50:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152194 IP address blocks: 43.243.108.0/22 maxlen: 24 103.231.28.0/22 maxlen: 22 103.231.28.0/24 maxlen: 24 103.231.29.0/24 maxlen: 24 103.231.30.0/24 maxlen: 24 103.231.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.crl rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E7B, serialNumber=BA394275C4FF8F8EF234749A36F2A1913927955B Validity Not Before: Dec 15 09:50:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3d45f-23f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c7:46:64:11:d5:8f:46:f9:85:f7:02:e1:64: 8b:36:19:a8:8e:79:df:0e:7f:8a:bd:81:57:88:15: 2c:c9:ad:01:3c:55:8a:31:98:e3:66:22:21:1a:0a: 3f:40:07:4d:2c:28:8b:bc:aa:b1:e5:ae:d4:50:27: b6:28:34:8f:33:18:fa:83:f3:a0:51:8b:53:81:a5: 57:fa:4d:65:f2:e4:6b:94:ef:22:85:c0:4c:d5:02: c5:17:d4:f6:a4:99:e2:ba:10:d4:28:8b:f9:6c:3f: b7:06:40:d0:dd:40:7d:b3:ee:c2:2f:70:7b:0a:92: ba:46:a7:df:0d:57:21:5d:00:59:c1:78:8d:31:63: fb:ca:db:fc:71:5e:0d:26:45:34:37:4a:e2:b2:37: 6b:48:e7:1c:91:7e:6d:83:15:c2:46:dc:00:af:00: 35:3f:79:e1:94:6a:3e:d5:d7:19:b6:1f:ba:04:58: 1f:82:11:ae:cd:57:8a:62:6c:1e:e7:88:b1:2c:50: e2:f0:23:21:33:e0:f3:c0:7a:57:4c:c3:b8:a7:d3: 39:93:d8:b2:88:e8:8e:48:0f:00:ae:73:37:2c:82: 83:84:9d:f1:69:b8:4a:0f:46:03:86:33:69:f2:5b: 0c:69:06:af:7c:c4:ed:2a:0f:6f:3c:75:e2:b2:65: 40:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2A:06:8B:70:AE:8B:8A:E6:90:5B:D1:3F:E6:90:FF:52:5C:67:5F X509v3 Authority Key Identifier: keyid:BA:39:42:75:C4:FF:8F:8E:F2:34:74:9A:36:F2:A1:91:39:27:95:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/ujlCdcT_j47yNHSaNvKhkTknlVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujlCdcT_j47yNHSaNvKhkTknlVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E7B/511B3B1AD99A11F08D4938B065D3641D/5BCC0548D99B11F09EC1D6B265D3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.243.108.0/22 103.231.28.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:40:71:fe:d6:c4:4f:88:28:16:50:c2:f7:9e:21:e9:f3:66: 82:1a:96:1b:dc:87:db:df:24:37:d4:84:11:e7:e7:23:bb:3b: 71:62:36:41:5d:de:f6:87:7b:ca:32:a6:3a:81:cf:bf:a2:ae: 27:16:62:e6:c1:00:af:07:c4:d6:0f:17:2b:76:77:18:9d:34: a4:ec:49:66:36:07:4c:c8:a1:df:dc:1a:c8:35:37:9e:b9:1f: 19:9e:3a:dd:7f:cd:6b:4c:e0:d1:0a:75:e8:b2:ca:a0:a1:37: ec:1a:39:21:75:61:c5:c5:3d:01:65:d4:8e:a7:3d:4f:84:90: ae:b2:3d:a1:4a:05:d6:00:93:09:96:f9:a9:87:52:69:af:5d: dd:73:0d:5b:4b:f0:85:74:65:8a:e1:55:8c:2c:c0:87:ce:d4: 57:60:4f:cd:ae:60:ea:e7:64:ec:a4:56:11:2d:ce:00:22:92: ca:af:d3:53:39:d7:51:0a:65:7b:1a:c6:9e:6d:a6:e4:74:f2: 9d:0b:fa:ec:e0:7a:15:1e:c7:fd:b1:47:53:5b:a3:0c:f8:f3: f1:6e:44:a4:b3:46:fd:73:77:d3:29:5b:ac:37:ba:85:0b:e2: e4:87:e7:3c:80:62:51:85:65:17:83:b1:30:62:3e:14:f2:10: 75:b1:6e:2a -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEU3QjExMC8GA1UEBRMoQkEzOTQyNzVDNEZGOEY4RUYyMzQ3NDlBMzZGMkExOTEz OTI3OTU1QjAeFw0yNTEyMTUwOTUwMjBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDVmLTIzZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2x0ZkEdWPRvmF9wLhZIs2GaiOed8Of4q9gVeIFSzJrQE8VYoxmONmIiEaCj9A B00sKIu8qrHlrtRQJ7YoNI8zGPqD86BRi1OBpVf6TWXy5GuU7yKFwEzVAsUX1Pak meK6ENQoi/lsP7cGQNDdQH2z7sIvcHsKkrpGp98NVyFdAFnBeI0xY/vK2/xxXg0m RTQ3SuKyN2tI5xyRfm2DFcJG3ACvADU/eeGUaj7V1xm2H7oEWB+CEa7NV4pibB7n iLEsUOLwIyEz4PPAeldMw7in0zmT2LKI6I5IDwCuczcsgoOEnfFpuEoPRgOGM2ny WwxpBq98xO0qD288deKyZUCHAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUHioGi3Cu i4rmkFvRP+aQ/1JcZ18wHwYDVR0jBBgwFoAUujlCdcT/j47yNHSaNvKhkTknlVsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RTdCLzUxMUIzQjFBRDk5 QTExRjA4RDQ5MzhCMDY1RDM2NDFEL3VqbENkY1RfajQ3eU5IU2FOdktoa1RrbmxW cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWpsQ2RjVF9qNDd5TkhTYU52S2hrVGtubFZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU3Qi81MTFCM0IxQUQ5OUExMUYwOEQ0OTM4QjA2NUQzNjQxRC81QkNDMDU0OEQ5 OUIxMUYwOUVDMUQ2QjI2NUQzNjQxRC5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAIr82wDBAJn5xwwDQYJKoZIhvcNAQELBQADggEBAJtAcf7WxE+IKBZQ wveeIenzZoIalhvch9vfJDfUhBHn5yO7O3FiNkFd3vaHe8oypjqBz7+iricWYubB AK8HxNYPFyt2dxidNKTsSWY2B0zIod/cGsg1N565HxmeOt1/zWtM4NEKdeiyyqCh N+waOSF1YcXFPQFl1I6nPU+EkK6yPaFKBdYAkwmW+amHUmmvXd1zDVtL8IV0ZYrh VYwswIfO1FdgT82uYOrnZOykVhEtzgAiksqv01M511EKZXsaxp5tpuR08p0L+uzg ehUex/2xR1Nbowz48/FuRKSzRv1zd9MpW6w3uoUL4uSH5zyAYlGFZReDsTBiPhTy EHWxbio= -----END CERTIFICATE-----Generated at Mon Mar 2 06:31:52 2026 by rpki-client