$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/4120F6A28F3011EEA61ACF62C4F9AE02.roa File: 4120F6A28F3011EEA61ACF62C4F9AE02.roa (raw, json) Hash identifier: FM4ptp8DHWnWQknRqiPyyvGNLdQePhBVHk3LAA9y/i4= Subject key identifier: 70:4A:F5:17:78:20:BB:CA:3B:5D:CA:77:7F:48:2E:6F:83:F3:E0:F6 Certificate issuer: /CN=A9179F22/serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Certificate serial: 01C0 Authority key identifier: FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/4120F6A28F3011EEA61ACF62C4F9AE02.roa Signing time: Fri 27 Feb 2026 03:22:56 +0000 ROA not before: Fri 27 Feb 2026 03:22:56 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 14618 IP address blocks: 103.150.252.0/24 maxlen: 24 202.74.46.0/24 maxlen: 24 2400:a4a0:1::/48 maxlen: 48 2400:a4a0:30::/48 maxlen: 48 2400:a4a0:40::/48 maxlen: 48 2400:a4a0:41::/48 maxlen: 48 2400:a4a0:42::/48 maxlen: 48 2400:a4a0:90::/48 maxlen: 48 2400:a4a0:100::/48 maxlen: 48 2400:a4a0:101::/48 maxlen: 48 2400:a4a0:115::/48 maxlen: 48 2400:a4a0:a100::/48 maxlen: 48 2400:a4a0:aaa2::/48 maxlen: 48 2400:a4a0:aaa3::/48 maxlen: 48 2400:a4a0:aaa4::/48 maxlen: 48 2400:a4a0:aaa5::/48 maxlen: 48 2400:a4a0:b100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F22, serialNumber=FCF753D346AAAB95AB14C6267515CDF13F80FBBB Validity Not Before: Feb 27 03:22:56 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a10e10-fa99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cc:89:4b:de:a0:a5:cf:01:31:2d:70:1a:58: b8:a9:bc:31:18:60:91:76:55:7b:d6:5e:f9:00:60: ca:f7:ed:82:7e:f0:6f:50:ee:de:e8:a7:8c:d2:ea: d6:14:57:92:66:63:7e:fa:52:66:bf:b1:c3:cf:dc: 34:d7:c9:61:1d:c4:1b:00:4e:7d:58:07:7d:51:d5: 08:1b:de:02:29:65:f0:b9:90:70:f9:a7:4f:52:21: de:6b:77:63:3e:fc:8a:4f:1c:3b:c4:df:8e:dd:24: 3b:5a:a3:d9:cd:07:4a:41:c2:e0:f2:f4:a9:9b:a6: f2:fa:d0:0a:52:9e:ca:b5:65:f4:c4:2e:c9:e7:d9: ee:1a:fc:8e:6c:0f:df:04:2a:69:e1:79:c4:b5:e8: e6:9f:9d:23:88:80:ff:c6:ec:6b:a6:ff:94:02:92: 18:d6:84:43:64:49:be:62:d4:7a:e6:44:a1:ed:c5: 68:52:62:f5:7b:a7:31:87:07:0c:67:de:e9:cf:47: 70:74:ef:b9:7e:c6:a7:11:91:fd:2f:b4:e1:41:b1: f9:c7:13:d5:37:e0:a7:e3:58:b8:01:f9:6e:67:c0: 6e:01:99:e5:a3:17:f8:62:f2:eb:13:22:26:d5:01: 7a:90:c4:f4:f3:62:93:e2:78:50:8a:ee:33:89:5c: f2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4A:F5:17:78:20:BB:CA:3B:5D:CA:77:7F:48:2E:6F:83:F3:E0:F6 X509v3 Authority Key Identifier: keyid:FC:F7:53:D3:46:AA:AB:95:AB:14:C6:26:75:15:CD:F1:3F:80:FB:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/_PdT00aqq5WrFMYmdRXN8T-A-7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_PdT00aqq5WrFMYmdRXN8T-A-7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F22/CF9BF5FE8F2F11EE9CBFD961C4F9AE02/4120F6A28F3011EEA61ACF62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.252.0/24 202.74.46.0/24 IPv6: 2400:a4a0:1::/48 2400:a4a0:30::/48 2400:a4a0:40::-2400:a4a0:42:ffff:ffff:ffff:ffff:ffff 2400:a4a0:90::/48 2400:a4a0:100::/47 2400:a4a0:115::/48 2400:a4a0:a100::/48 2400:a4a0:aaa2::-2400:a4a0:aaa5:ffff:ffff:ffff:ffff:ffff 2400:a4a0:b100::/48 Signature Algorithm: sha256WithRSAEncryption c2:c6:d1:3b:e8:be:f1:d7:b1:f1:f4:13:56:2a:25:2f:ec:f9: 2d:d0:ff:bb:d8:17:55:6b:a4:c0:b2:9a:93:68:42:bd:e5:33: 13:21:9a:63:10:4d:d8:ac:b5:92:a8:1b:5c:a5:58:86:27:94: d6:21:9b:13:83:04:83:02:bc:f2:d6:b4:80:1f:11:96:c4:a4: 36:10:d8:ce:44:d1:b3:8e:83:71:df:7d:18:f6:d5:dc:9e:17: 41:14:f9:5f:16:1f:8f:12:03:6b:85:f4:92:47:02:65:24:04: 93:95:c0:f9:53:5a:46:e4:01:ef:f5:84:59:5a:9d:55:79:32: b5:e6:3d:e5:9e:58:6d:70:00:cd:70:ce:b7:8a:05:e3:df:97: 95:17:4b:2d:c8:24:35:b9:d7:cd:13:0c:df:2a:4a:24:ea:57: 83:5a:a6:6b:02:16:57:40:0f:82:0c:6e:39:fd:2a:fa:66:83: 9c:52:94:c1:6b:de:75:86:d1:74:34:09:ba:51:21:bd:db:77: 16:f4:f8:88:5d:58:21:f8:00:43:e2:cb:95:b0:ab:ff:7e:51: 7e:3a:9f:17:9e:c2:99:a3:7f:5d:2b:5c:be:2f:df:7b:ad:28: aa:18:29:d7:6a:4a:ea:62:1d:27:ed:b0:57:d8:98:2f:5e:8a: d6:f7:1a:8b -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGMjIxMTAvBgNVBAUTKEZDRjc1M0QzNDZBQUFCOTVBQjE0QzYyNjc1MTVDREYx M0Y4MEZCQkIwHhcNMjYwMjI3MDMyMjU2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OWExMGUxMC1mYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMyJS96gpc8BMS1wGli4qbwxGGCRdlV71l75AGDK9+2CfvBvUO7e6KeM0urW FFeSZmN++lJmv7HDz9w018lhHcQbAE59WAd9UdUIG94CKWXwuZBw+adPUiHea3dj PvyKTxw7xN+O3SQ7WqPZzQdKQcLg8vSpm6by+tAKUp7KtWX0xC7J59nuGvyObA/f BCpp4XnEtejmn50jiID/xuxrpv+UApIY1oRDZEm+YtR65kSh7cVoUmL1e6cxhwcM Z97pz0dwdO+5fsanEZH9L7ThQbH5xxPVN+Cn41i4AfluZ8BuAZnloxf4YvLrEyIm 1QF6kMT082KT4nhQiu4ziVzyuQIDAQABo4IC2DCCAtQwHQYDVR0OBBYEFHBK9Rd4 ILvKO13Kd39ILm+D8+D2MB8GA1UdIwQYMBaAFPz3U9NGqquVqxTGJnUVzfE/gPu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUYyMi9DRjlCRjVGRThG MkYxMUVFOUNCRkQ5NjFDNEY5QUUwMi9fUGRUMDBhcXE1V3JGTVltZFJYTjhULUEt N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19QZFQwMGFxcTVXckZNWW1kUlhOOFQtQS03cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlGMjIvQ0Y5QkY1RkU4RjJGMTFFRTlDQkZEOTYxQzRGOUFFMDIvNDEyMEY2QTI4 RjMwMTFFRUE2MUFDRjYyQzRGOUFFMDIucm9hMIGWBggrBgEFBQcBBwEB/wSBhjCB gzASBAIAATAMAwQAZ5b8AwQAykouMG0EAgACMGcDBwAkAKSgAAEDBwAkAKSgADAw EgMHBiQApKAAQAMHACQApKAAQgMHACQApKAAkAMHASQApKABAAMHACQApKABFQMH ACQApKChADASAwcBJACkoKqiAwcBJACkoKqkAwcAJACkoLEAMA0GCSqGSIb3DQEB CwUAA4IBAQDCxtE76L7x17Hx9BNWKiUv7Pkt0P+72BdVa6TAspqTaEK95TMTIZpj EE3YrLWSqBtcpViGJ5TWIZsTgwSDArzy1rSAHxGWxKQ2ENjORNGzjoNx330Y9tXc nhdBFPlfFh+PEgNrhfSSRwJlJASTlcD5U1pG5AHv9YRZWp1VeTK15j3lnlhtcADN cM63igXj35eVF0styCQ1udfNEwzfKkok6leDWqZrAhZXQA+CDG45/Sr6ZoOcUpTB a951htF0NAm6USG923cW9PiIXVgh+ABD4suVsKv/flF+Op8XnsKZo39dK1y+L997 rSiqGCnXakrqYh0n7bBX2JgvXorW9xqL -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:50 2026 by rpki-client