$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa File: 3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa (raw, json) Hash identifier: 6pBpzLM6AsUWTi7HiPNltFuDwVz6aOh08vQSqO/jQ4w= Subject key identifier: 10:46:25:3F:E4:D3:36:0C:05:DA:8A:8E:35:AB:59:20:D6:91:AF:F0 Certificate issuer: /CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Certificate serial: 1302 Authority key identifier: BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:55:01 +0000 ROA not before: Tue 06 Jan 2026 17:14:26 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141013 IP address blocks: 103.125.244.0/24 maxlen: 24 116.89.245.0/24 maxlen: 24 2401:fdc0:10::/44 maxlen: 44 2401:fdc0:20::/44 maxlen: 44 2401:fdc0:30::/44 maxlen: 44 2401:fdc0:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4866 (0x1302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860, serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Validity Not Before: Jan 6 17:14:26 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47d74-31a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ac:bf:0d:12:23:d3:6a:22:8e:1b:46:a7:d6: 3f:19:85:7c:03:14:ff:30:87:cc:e6:a7:2a:ae:86: fb:48:0a:f2:51:82:b8:f2:bb:35:2b:c1:f2:5e:26: c5:58:97:a1:ad:86:dc:04:ba:4b:5f:a8:f5:dd:3b: c6:c2:f3:64:79:fc:7e:e1:6e:ec:e6:12:3b:4d:36: 30:c7:62:76:14:d2:3b:2e:2f:e3:fc:53:d7:0f:17: fa:3a:b3:08:67:61:d3:17:ba:32:8f:a2:6f:ad:51: 14:fc:53:ae:08:29:ef:76:04:a3:c3:f6:56:bb:4c: 9a:22:d1:a6:1c:f9:10:4a:83:f8:81:e9:76:aa:df: 8d:9e:b4:76:f1:06:3e:af:04:20:6b:7a:bb:ef:9c: 34:ec:85:e6:a3:ea:33:16:89:87:e0:ef:bb:00:26: c8:ae:63:32:2f:ce:11:91:97:86:e1:96:b1:84:47: b8:b6:48:c4:92:44:61:5f:f6:fd:8c:55:42:13:df: 25:77:6f:a5:7b:c9:9e:4d:db:18:c3:07:72:17:67: 08:58:61:22:1f:33:e0:e7:fb:f6:1e:98:fe:53:a8: 3e:fa:b1:43:71:e0:11:b0:ac:50:fc:e7:1e:ea:f7: 43:ae:2e:9a:91:90:00:a0:81:e0:c2:b2:63:d9:76: ec:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:46:25:3F:E4:D3:36:0C:05:DA:8A:8E:35:AB:59:20:D6:91:AF:F0 X509v3 Authority Key Identifier: keyid:BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.125.244.0/24 116.89.245.0/24 IPv6: 2401:fdc0:10::-2401:fdc0:3f:ffff:ffff:ffff:ffff:ffff 2401:fdc0:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 0f:64:62:e1:97:b3:d0:3a:72:b7:ee:74:dc:8e:4a:b0:5d:40: 62:86:cd:23:8c:fc:95:0b:14:c3:42:d5:61:38:f1:fe:f1:a7: cf:77:2d:b4:87:79:55:0c:a9:3b:95:cf:55:f0:71:d0:69:fa: fa:ae:d6:d8:4d:79:ae:d6:76:b2:51:ab:6d:8b:be:c9:e8:d0: f8:c2:17:91:1b:48:0d:0d:a8:6b:d7:a2:2a:ed:24:24:ab:54: 0c:33:57:ab:78:d5:e8:b3:40:ec:01:f8:a7:0d:83:fb:85:a6: cd:84:68:83:65:f5:50:f1:76:a4:98:59:88:30:97:08:ea:62: e0:01:eb:99:18:cc:e5:39:22:ad:75:0e:b5:59:ed:73:fb:39: a6:a3:da:d0:33:90:2b:b9:d3:c6:f1:d6:1e:9e:ce:aa:38:b0: 58:31:51:5e:c4:78:99:b9:8c:32:d3:2b:95:ed:50:62:a0:39: 62:7d:a4:96:d0:4c:d2:9b:6a:4c:e8:9a:b7:0f:40:8b:9b:ee: 75:fb:0e:ff:0f:87:38:61:3e:7f:ab:6a:fc:6d:a3:33:8e:5d: dd:8a:23:ff:32:95:ce:dc:6e:cd:6f:7f:e0:41:a1:e2:83:ea: 69:18:3e:22:38:c7:e3:20:d1:c2:c3:f8:eb:db:5d:3b:a9:5c: 33:38:14:93 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICEwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKEJDNTM2QzAwRjg1RjU5MDQxRDlDNEMyOTYxRjcyMjQy QkY2MEQ1MUUwHhcNMjYwMTA2MTcxNDI2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Q3NC0zMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi6y/DRIj02oijhtGp9Y/GYV8AxT/MIfM5qcqrob7SAryUYK48rs1K8HyXibF WJehrYbcBLpLX6j13TvGwvNkefx+4W7s5hI7TTYwx2J2FNI7Li/j/FPXDxf6OrMI Z2HTF7oyj6JvrVEU/FOuCCnvdgSjw/ZWu0yaItGmHPkQSoP4gel2qt+NnrR28QY+ rwQga3q775w07IXmo+ozFomH4O+7ACbIrmMyL84RkZeG4ZaxhEe4tkjEkkRhX/b9 jFVCE98ld2+le8meTdsYwwdyF2cIWGEiHzPg5/v2Hpj+U6g++rFDceARsKxQ/Oce 6vdDri6akZAAoIHgwrJj2XbsKQIDAQABo4ICijCCAoYwHQYDVR0OBBYEFBBGJT/k 0zYMBdqKjjWrWSDWka/wMB8GA1UdIwQYMBaAFLxTbAD4X1kEHZxMKWH3IkK/YNUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC9CNDAxQzk4MkU5 NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldRUWRuRXdwWWZjaVFyOWcx UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZGTnNBUGhmV1FRZG5Fd3BZZmNpUXI5ZzFSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ4NjAvQjQwMUM5ODJFOTcwMTFFOEIwMzU5MzU5QzRGOUFFMDIvM0E5QUQzQ0VE QUQ0MTFFQkIzNURBNTBBQzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODAS BAIAATAMAwQAZ330AwQAdFn1MCIEAgACMBwwEgMHBCQB/cAAEAMHBiQB/cAAAAMG ACQB/cD/MA0GCSqGSIb3DQEBCwUAA4IBAQAPZGLhl7PQOnK37nTcjkqwXUBihs0j jPyVCxTDQtVhOPH+8afPdy20h3lVDKk7lc9V8HHQafr6rtbYTXmu1nayUatti77J 6ND4wheRG0gNDahr16Iq7SQkq1QMM1ereNXos0DsAfinDYP7habNhGiDZfVQ8Xak mFmIMJcI6mLgAeuZGMzlOSKtdQ61We1z+zmmo9rQM5ArudPG8dYens6qOLBYMVFe xHiZuYwy0yuV7VBioDlifaSW0EzSm2pM6Jq3D0CLm+51+w7/D4c4YT5/q2r8baMz jl3diiP/MpXO3G7Nb3/gQaHig+ppGD4iOMfjINHCw/jr2107qVwzOBST -----END CERTIFICATE-----Generated at Mon Mar 2 10:03:55 2026 by rpki-client