$ rpki-client -vvf rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa File: D2588FA2D2C111E9B5D20B2AC4F9AE02.roa (raw, json) Hash identifier: RQcnUY2ghoOnBxEoKgojycXvIPQWfacqz6Xk8jibV5A= Subject key identifier: 14:04:50:30:7D:B3:D7:89:00:78:12:7B:E4:FD:D7:69:B9:B3:F6:40 Certificate issuer: /CN=A9180484/serialNumber=435BDF930304194A0869ADEE87A0B556C588F6F4 Certificate serial: 0DDF Authority key identifier: 43:5B:DF:93:03:04:19:4A:08:69:AD:EE:87:A0:B5:56:C5:88:F6:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:39:01 +0000 ROA not before: Thu 16 Oct 2025 18:56:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138204 IP address blocks: 103.122.45.0/24 maxlen: 24 103.141.232.0/24 maxlen: 24 2001:df6:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.crl rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3551 (0xddf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180484, serialNumber=435BDF930304194A0869ADEE87A0B556C588F6F4 Validity Not Before: Oct 16 18:56:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44f85-7cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b3:0b:14:af:3c:2a:75:24:9f:26:ef:d5:ce: 3c:47:7e:d6:b7:47:31:68:20:d1:6c:6e:35:23:a8: 51:16:17:0a:8b:47:b1:45:9c:26:fe:07:5e:56:d3: ba:8a:c6:95:01:51:a3:e6:c5:4b:1b:88:1c:44:f0: 57:4e:80:1b:f5:ad:77:f8:63:34:ae:31:c5:9a:7b: 1c:74:da:65:29:a2:58:8f:54:d2:bd:5b:46:17:48: 7f:83:2d:84:8b:bf:f2:b0:af:71:e6:b4:ac:d8:6e: 42:53:86:27:48:25:93:80:69:ef:0e:6d:21:7b:08: e3:68:8b:6b:b5:1a:f2:a6:02:60:32:f1:e7:f2:bd: a3:70:b4:e4:31:85:68:af:3f:37:f2:d6:1e:a0:f6: 01:f4:39:18:45:b3:89:3d:f8:77:95:22:8b:e3:c0: d5:ff:09:df:57:b6:ee:30:13:1a:71:a2:7c:21:10: 3d:11:1c:bc:b9:1c:c5:6a:0e:fd:93:70:af:fa:b5: aa:79:40:72:19:67:30:96:1d:42:7f:2f:22:30:48: cd:ac:00:3c:ed:ba:bd:a9:f0:86:2b:be:1f:0c:6a: 0a:4a:3e:8a:7e:51:ad:80:3d:6f:cc:56:d0:65:4f: c5:d5:c4:89:51:b4:1c:9e:94:4a:9a:c5:3a:e2:66: 32:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:04:50:30:7D:B3:D7:89:00:78:12:7B:E4:FD:D7:69:B9:B3:F6:40 X509v3 Authority Key Identifier: keyid:43:5B:DF:93:03:04:19:4A:08:69:AD:EE:87:A0:B5:56:C5:88:F6:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1vfkwMEGUoIaa3uh6C1VsWI9vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180484/6925BD8ED2C111E9A925CD29C4F9AE02/D2588FA2D2C111E9B5D20B2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.45.0/24 103.141.232.0/24 IPv6: 2001:df6:8b00::/48 Signature Algorithm: sha256WithRSAEncryption de:79:d2:7d:62:42:60:f7:fe:82:fa:4a:54:d8:26:a5:1c:cf: 41:ff:c0:c2:be:43:20:8f:b3:bd:12:5b:bc:30:69:0a:b2:92: a7:3a:91:24:43:7d:f4:32:10:62:e8:75:b6:33:59:eb:05:3a: 8e:24:b5:94:d8:1a:31:d6:ef:d1:fe:b3:f2:da:5b:b2:ff:4e: d0:3e:08:4a:b0:77:95:58:75:f6:81:47:21:2a:ed:2b:b4:96: b3:d4:5f:8e:79:1b:c9:0b:7f:f2:f6:4f:21:b8:63:e2:f5:8c: 4c:c6:4b:ec:e6:9c:13:f5:4a:ef:aa:5d:2a:62:8e:a0:9f:7d: 64:fc:87:fe:77:5a:9e:d9:e8:55:63:b8:b7:08:47:a6:b9:06: 58:f9:fd:25:5b:66:59:bc:15:5e:3a:19:f2:03:f5:15:57:04: 31:2d:56:03:8a:af:17:ab:4e:9b:54:2e:a5:4c:45:4b:89:db: 84:14:f5:ec:60:73:9c:d9:c0:13:ac:06:72:58:20:01:b0:ad: 80:28:9b:ab:11:27:85:9c:39:82:8f:71:43:de:08:7d:14:05: cc:59:df:97:1f:0c:fd:96:ac:d5:c1:20:44:17:29:59:d3:5f: 6c:f4:63:3c:6a:f2:1b:d1:63:1d:3b:c1:a6:d4:ca:1a:f6:9a: 2d:b4:be:f1 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA0ODQxMTAvBgNVBAUTKDQzNUJERjkzMDMwNDE5NEEwODY5QURFRTg3QTBCNTU2 QzU4OEY2RjQwHhcNMjUxMDE2MTg1NjUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGY4NS03Y2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrMLFK88KnUknybv1c48R37Wt0cxaCDRbG41I6hRFhcKi0exRZwm/gdeVtO6 isaVAVGj5sVLG4gcRPBXToAb9a13+GM0rjHFmnscdNplKaJYj1TSvVtGF0h/gy2E i7/ysK9x5rSs2G5CU4YnSCWTgGnvDm0hewjjaItrtRrypgJgMvHn8r2jcLTkMYVo rz838tYeoPYB9DkYRbOJPfh3lSKL48DV/wnfV7buMBMacaJ8IRA9ERy8uRzFag79 k3Cv+rWqeUByGWcwlh1Cfy8iMEjNrAA87bq9qfCGK74fDGoKSj6KflGtgD1vzFbQ ZU/F1cSJUbQcnpRKmsU64mYyLQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFBQEUDB9 s9eJAHgSe+T912m5s/ZAMB8GA1UdIwQYMBaAFENb35MDBBlKCGmt7oegtVbFiPb0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDQ4NC82OTI1QkQ4RUQy QzExMUU5QTkyNUNEMjlDNEY5QUUwMi9RMXZma3dNRUdVb0lhYTN1aDZDMVZzV0k5 dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExdmZrd01FR1VvSWFhM3VoNkMxVnNXSTl2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA0ODQvNjkyNUJEOEVEMkMxMTFFOUE5MjVDRDI5QzRGOUFFMDIvRDI1ODhGQTJE MkMxMTFFOUI1RDIwQjJBQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ3otAwQAZ43oMA8EAgACMAkDBwAgAQ32iwAwDQYJKoZIhvcNAQEL BQADggEBAN550n1iQmD3/oL6SlTYJqUcz0H/wMK+QyCPs70SW7wwaQqykqc6kSRD ffQyEGLodbYzWesFOo4ktZTYGjHW79H+s/LaW7L/TtA+CEqwd5VYdfaBRyEq7Su0 lrPUX455G8kLf/L2TyG4Y+L1jEzGS+zmnBP1Su+qXSpijqCffWT8h/53Wp7Z6FVj uLcIR6a5Blj5/SVbZlm8FV46GfID9RVXBDEtVgOKrxerTptULqVMRUuJ24QU9exg c5zZwBOsBnJYIAGwrYAom6sRJ4WcOYKPcUPeCH0UBcxZ35cfDP2WrNXBIEQXKVnT X2z0Yzxq8hvRYx07wabUyhr2mi20vvE= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:01 2026 by rpki-client