$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa File: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (raw, json) Hash identifier: 4GtPeohLS8OTUPDc8RgozS35ewcE3lUXQAukx2eqQRw= Subject key identifier: 0B:FA:51:2C:C7:3C:38:99:A9:16:52:70:36:50:25:1F:C2:FE:BB:A7 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0CBE Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:44:20 +0000 ROA not before: Fri 12 Sep 2025 18:58:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136224 IP address blocks: 103.192.156.0/22 maxlen: 22 103.192.156.0/23 maxlen: 23 103.192.156.0/24 maxlen: 24 103.192.157.0/24 maxlen: 24 103.192.158.0/23 maxlen: 23 103.192.158.0/24 maxlen: 24 103.192.159.0/24 maxlen: 24 202.91.40.0/22 maxlen: 22 202.91.40.0/23 maxlen: 23 202.91.40.0/24 maxlen: 24 202.91.41.0/24 maxlen: 24 202.91.42.0/23 maxlen: 23 202.91.42.0/24 maxlen: 24 202.91.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Sep 12 18:58:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46ce4-6a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:30:25:cd:48:e6:d3:09:1f:92:c3:bf:a2:cf: ac:6e:22:c7:5e:08:26:89:bf:40:af:38:6d:49:cd: 92:64:96:15:3f:d2:7d:26:f2:61:02:2b:de:a2:00: ef:39:9e:b1:3b:0d:59:78:e2:8b:01:6b:f7:51:1b: fb:20:d5:39:aa:66:e5:1a:bc:8d:66:b4:40:fc:4d: a2:4a:5a:6e:ed:74:1b:d9:a2:e1:b3:1c:44:68:47: d2:a9:e7:c8:71:f5:e8:8a:94:50:67:d9:99:68:65: 29:ba:91:3c:e1:72:0a:c7:2e:e6:cc:12:af:cf:31: 24:2d:ff:73:f7:aa:40:b1:60:cb:fe:50:6a:37:f8: 14:8c:c8:22:37:46:e4:a0:ac:f1:3b:1c:95:84:55: 48:1a:1f:a6:2b:fa:a0:87:4a:af:dd:58:fd:cc:d5: 7b:47:2c:c6:9d:75:13:9f:79:c4:e5:37:1a:73:6e: 5d:85:c5:de:b0:94:7d:e3:9a:4f:fe:3f:43:d9:f9: 4a:44:bd:14:c4:31:40:cd:f6:8f:61:b9:e1:17:ab: 76:b3:22:cc:2a:a1:47:da:7b:bc:87:ed:63:c5:62: 1f:c7:e4:fc:df:35:7d:15:aa:23:a5:eb:4b:5a:b1: 73:ea:43:27:4e:03:b6:a9:b5:a3:3a:12:b2:af:2e: 23:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FA:51:2C:C7:3C:38:99:A9:16:52:70:36:50:25:1F:C2:FE:BB:A7 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 202.91.40.0/22 Signature Algorithm: sha256WithRSAEncryption 55:c9:01:96:81:b0:6a:57:24:82:1b:d9:15:d3:21:0d:b5:fa: 14:e2:af:bd:e6:2c:67:72:92:0f:41:b9:14:5f:e5:3a:ab:5a: f0:61:24:b8:90:0b:4f:b8:5a:0f:9b:e4:54:1f:ec:94:20:91: dc:8d:a0:73:d3:0a:fd:5f:7b:35:a2:ec:e4:10:3c:1d:82:66: b2:59:3d:76:e5:36:22:4d:96:d8:75:4d:53:66:0f:e3:70:be: a2:a4:4c:5d:52:b1:b0:a8:1a:0a:42:ad:75:8a:4d:a9:91:e6: f0:9e:bc:60:93:b8:dc:94:ff:d3:78:65:37:0c:41:8a:45:81: da:94:5c:0e:53:09:ac:5c:af:70:81:65:3c:7a:b7:bb:69:3d: 70:a5:d7:3f:cc:15:8c:0d:3d:08:ff:47:5b:50:ad:70:4a:ce: 53:df:88:b3:f8:1f:e1:4d:1b:e6:df:bb:3b:22:e9:9c:0c:61: 90:db:82:d9:e9:92:78:d3:35:b4:51:c0:31:95:85:5f:d6:b7: 22:03:40:9f:b8:1d:fc:88:c3:4a:85:ac:b1:52:4c:8a:ee:c3: a3:54:52:60:4a:c7:13:14:3e:c1:6b:8b:57:36:9c:1a:59:6b: c2:c7:d1:71:34:f3:a7:56:f9:0f:c4:73:cf:07:b3:5f:f8:57: 2d:e7:be:16 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwOTEyMTg1ODQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNlNC02YTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDAlzUjm0wkfksO/os+sbiLHXggmib9ArzhtSc2SZJYVP9J9JvJhAiveogDv OZ6xOw1ZeOKLAWv3URv7INU5qmblGryNZrRA/E2iSlpu7XQb2aLhsxxEaEfSqefI cfXoipRQZ9mZaGUpupE84XIKxy7mzBKvzzEkLf9z96pAsWDL/lBqN/gUjMgiN0bk oKzxOxyVhFVIGh+mK/qgh0qv3Vj9zNV7RyzGnXUTn3nE5Tcac25dhcXesJR945pP /j9D2flKRL0UxDFAzfaPYbnhF6t2syLMKqFH2nu8h+1jxWIfx+T83zV9FaojpetL WrFz6kMnTgO2qbWjOhKyry4jbwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAv6USzH PDiZqRZScDZQJR/C/runMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvRUYxNEREMzRC NkUyMTFFQUIzQkE5NTM2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ8CcAwQCylsoMA0GCSqGSIb3DQEBCwUAA4IBAQBVyQGWgbBqVySC G9kV0yENtfoU4q+95ixncpIPQbkUX+U6q1rwYSS4kAtPuFoPm+RUH+yUIJHcjaBz 0wr9X3s1ouzkEDwdgmayWT125TYiTZbYdU1TZg/jcL6ipExdUrGwqBoKQq11ik2p kebwnrxgk7jclP/TeGU3DEGKRYHalFwOUwmsXK9wgWU8ere7aT1wpdc/zBWMDT0I /0dbUK1wSs5T34iz+B/hTRvm37s7IumcDGGQ24LZ6ZJ40zW0UcAxlYVf1rciA0Cf uB38iMNKhayxUkyK7sOjVFJgSscTFD7Ba4tXNpwaWWvCx9FxNPOnVvkPxHPPB7Nf +Fct574W -----END CERTIFICATE-----Generated at Mon Mar 2 13:48:55 2026 by rpki-client