$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa File: 4A6D188450EA11EC8FF55B24C4F9AE02.roa (raw, json) Hash identifier: qLlqNwlaPLdL74Mt7s2Fed23RK/fRGvf/YX6d5A2kU8= Subject key identifier: 08:9D:41:AE:C4:79:B9:9E:47:EF:E0:E0:B0:71:CE:60:98:7B:FC:FA Certificate issuer: /CN=A9178EB0/serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Certificate serial: 08DC Authority key identifier: AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:25 +0000 ROA not before: Tue 18 Nov 2025 20:11:20 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9744 IP address blocks: 103.1.224.0/22 maxlen: 24 103.199.104.0/22 maxlen: 24 112.121.160.0/19 maxlen: 24 137.59.20.0/22 maxlen: 24 180.178.32.0/19 maxlen: 24 182.16.0.0/17 maxlen: 24 2406:8680::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0, serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Validity Not Before: Nov 18 20:11:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46a54-f5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:a8:37:a6:23:ec:09:c2:7c:35:7e:1e:99: 23:19:ba:a4:7b:3d:d2:51:9a:cc:c7:2e:81:90:5f: fd:e0:b6:29:d1:68:cf:41:46:67:ac:ee:0c:ba:0c: 07:21:0d:16:4a:1e:15:90:91:71:32:c7:1a:c1:48: 78:cb:a1:5c:f7:95:7b:9d:8a:35:8c:08:8d:fe:22: af:e3:04:9f:f0:d0:bc:93:4b:9e:32:d0:01:1b:bc: 1e:94:18:52:56:89:12:25:53:1f:d2:b2:b2:ec:d0: 09:63:ff:19:33:a3:08:3b:97:b9:02:04:64:8d:8c: 74:4f:ea:15:0c:5f:21:d2:00:6a:19:74:4a:49:92: fb:a7:1c:52:5e:26:db:cd:d8:7e:29:04:43:d6:c3: 90:5c:90:1f:7b:07:a0:d7:57:0a:8f:62:f2:e1:74: 83:7e:e8:9f:3e:f8:80:6f:57:f1:71:0b:79:a3:6c: 5e:a0:03:1e:49:36:d5:b0:1e:98:5e:8c:42:bf:7d: 1e:97:8e:57:e9:a0:bc:02:f9:55:5e:34:33:a5:9d: 33:fd:23:eb:96:68:c9:18:31:1b:c6:98:b6:47:b5: ef:ca:f9:d1:67:f8:c7:cb:06:ec:5e:ab:ed:53:b9: 35:e1:cf:f8:88:50:3e:7b:0d:f3:ab:c4:75:92:72: f7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9D:41:AE:C4:79:B9:9E:47:EF:E0:E0:B0:71:CE:60:98:7B:FC:FA X509v3 Authority Key Identifier: keyid:AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.1.224.0/22 103.199.104.0/22 112.121.160.0/19 137.59.20.0/22 180.178.32.0/19 182.16.0.0/17 IPv6: 2406:8680::/32 Signature Algorithm: sha256WithRSAEncryption 5f:8d:05:3c:98:e2:16:e7:1a:b9:99:d4:80:79:25:31:57:fe: 86:d6:6a:71:78:96:66:a0:27:88:40:30:20:52:6e:0c:17:fc: ad:50:c2:67:37:23:d0:bf:e6:a8:84:c6:67:a2:ce:7e:4a:1b: cb:6e:29:c2:2d:b6:38:0c:2a:d1:d5:cb:bf:e8:ed:0c:76:58: c4:98:ae:bd:05:07:4d:16:b2:88:61:d3:56:fa:12:1d:3c:4f: 19:09:82:cb:2d:43:76:36:41:0b:5b:01:99:0f:76:0b:61:03: dc:10:e5:71:a3:d9:6d:a9:fa:05:2e:d4:cd:4d:b6:f2:9e:b6: 8a:d6:9a:9a:92:2f:36:fb:65:ad:53:4f:93:8b:98:73:c8:30: 8c:7b:88:1b:ac:3d:57:53:a5:89:08:cb:92:3a:f3:82:16:bb: 07:6c:a4:f6:b1:69:aa:be:a0:cf:7b:6a:6a:36:37:3a:1f:29: 79:7e:5c:34:18:ce:7b:70:3b:2b:30:71:60:43:7d:d1:36:51: b4:c5:af:13:29:ac:7d:d0:64:80:a8:47:12:d0:87:de:11:90: be:f6:ba:63:7b:04:2a:b0:fb:bd:b4:56:c3:d9:d5:29:af:fd: 4a:ea:47:5e:aa:0c:eb:88:09:05:c9:70:17:52:49:ee:dc:49: 59:d8:2f:31 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEFBQTYyREI0N0YwMTJCMjZERDg2OThFMkNDMzVERThG Mjk0Mzc3NjEwHhcNMjUxMTE4MjAxMTIwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE1NC1mNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvKoN6Yj7AnCfDV+HpkjGbqkez3SUZrMxy6BkF/94LYp0WjPQUZnrO4MugwH IQ0WSh4VkJFxMscawUh4y6Fc95V7nYo1jAiN/iKv4wSf8NC8k0ueMtABG7welBhS VokSJVMf0rKy7NAJY/8ZM6MIO5e5AgRkjYx0T+oVDF8h0gBqGXRKSZL7pxxSXibb zdh+KQRD1sOQXJAfeweg11cKj2Ly4XSDfuifPviAb1fxcQt5o2xeoAMeSTbVsB6Y XoxCv30el45X6aC8AvlVXjQzpZ0z/SPrlmjJGDEbxpi2R7XvyvnRZ/jHywbsXqvt U7k14c/4iFA+ew3zq8R1knL3jQIDAQABo4ICjTCCAokwHQYDVR0OBBYEFAidQa7E ebmeR+/g4LBxzmCYe/z6MB8GA1UdIwQYMBaAFKqmLbR/ASsm3YaY4sw13o8pQ3dh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC82NUQxREIyQ0RB RUExMUVBOTU4RUIzNUJDNEY5QUUwMi9xcVl0dEg4Qkt5YmRocGppekRYZWp5bERk MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxWXR0SDhCS3liZGhwaml6RFhlanlsRGQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQjAvNjVEMURCMkNEQUVBMTFFQTk1OEVCMzVCQzRGOUFFMDIvNEE2RDE4ODQ1 MEVBMTFFQzhGRjU1QjI0QzRGOUFFMDIucm9hMEwGCCsGAQUFBwEHAQH/BD0wOzAq BAIAATAkAwQCZwHgAwQCZ8doAwQFcHmgAwQCiTsUAwQFtLIgAwQHthAAMA0EAgAC MAcDBQAkBoaAMA0GCSqGSIb3DQEBCwUAA4IBAQBfjQU8mOIW5xq5mdSAeSUxV/6G 1mpxeJZmoCeIQDAgUm4MF/ytUMJnNyPQv+aohMZnos5+ShvLbinCLbY4DCrR1cu/ 6O0MdljEmK69BQdNFrKIYdNW+hIdPE8ZCYLLLUN2NkELWwGZD3YLYQPcEOVxo9lt qfoFLtTNTbbynraK1pqaki82+2WtU0+Ti5hzyDCMe4gbrD1XU6WJCMuSOvOCFrsH bKT2sWmqvqDPe2pqNjc6Hyl5flw0GM57cDsrMHFgQ33RNlG0xa8TKax90GSAqEcS 0IfeEZC+9rpjewQqsPu9tFbD2dUpr/1K6kdeqgzriAkFyXAXUknu3ElZ2C8x -----END CERTIFICATE-----Generated at Mon Mar 2 09:03:50 2026 by rpki-client