$ rpki-client -vvf rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/9E8DB380B2C611EDBC366A1DC4F9AE02.roa File: 9E8DB380B2C611EDBC366A1DC4F9AE02.roa (raw, json) Hash identifier: zmCHc0q8afDD9aW0T21tFPCp1yZ3of0ogG66OtKOJow= Subject key identifier: 97:C8:1F:28:F4:47:DD:E3:3F:1D:E8:99:EB:CA:0A:7E:3F:66:AF:6B Certificate issuer: /CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Certificate serial: 023F Authority key identifier: BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/9E8DB380B2C611EDBC366A1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:31:52 +0000 ROA not before: Thu 27 Mar 2025 03:09:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150747 IP address blocks: 103.82.202.0/23 maxlen: 23 103.82.202.0/24 maxlen: 24 103.82.203.0/24 maxlen: 24 2001:df1:ec40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189122, serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Validity Not Before: Mar 27 03:09:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3dd58-3ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:19:52:c8:ca:23:9f:d8:7a:74:50:29:31: f9:d9:31:dd:cb:00:9c:30:c4:cf:4f:d0:4a:64:c1: 20:4a:4d:4e:0d:6d:29:3c:1e:1b:b5:06:55:36:6b: 2d:9c:fe:ad:c4:c4:03:ac:50:ec:e7:00:19:6c:f2: 43:39:9d:50:45:3e:4e:47:88:65:c3:6f:ab:82:07: de:40:3b:6b:3d:0b:bb:a7:09:36:bf:cf:69:bc:f5: 73:4c:46:a8:af:95:9c:23:fe:c0:2b:25:09:52:ca: 3d:ef:b4:2d:b5:d5:8d:e9:82:95:af:71:cd:86:b6: 8c:10:64:25:86:92:ae:0b:68:23:10:28:e8:3f:87: 32:05:5f:4c:74:e3:d1:5c:e5:fe:45:05:65:2c:b5: a2:b5:68:ce:3a:90:67:3c:c4:0e:e6:ad:3d:47:67: 98:21:35:5f:c4:99:07:db:9e:86:d0:88:f2:d3:36: b0:c3:be:e7:03:1d:8f:73:71:76:61:91:ee:b4:3e: 8c:ac:9a:4c:8d:43:9d:09:d0:c6:27:18:ba:0e:16: 46:c2:17:52:c0:39:e2:f4:e2:3f:f4:ba:9d:f8:73: 44:c5:70:1b:27:b4:2b:67:a4:bf:48:3c:aa:0a:7a: 1d:b8:9f:a0:a9:e8:ab:16:e4:3f:4d:a6:21:d6:25: d6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C8:1F:28:F4:47:DD:E3:3F:1D:E8:99:EB:CA:0A:7E:3F:66:AF:6B X509v3 Authority Key Identifier: keyid:BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/9E8DB380B2C611EDBC366A1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.202.0/23 IPv6: 2001:df1:ec40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:aa:85:9c:fc:f1:c0:15:87:ca:4f:fa:47:f1:03:c6:f2:39: cd:6f:5a:e8:28:bc:0b:67:7d:db:80:3c:12:d5:f4:33:9a:17: d7:4d:c3:05:69:43:c5:40:20:bd:c1:a9:ec:70:59:28:69:99: 8a:84:1d:9d:6d:83:89:09:ff:a2:60:9d:81:5a:7a:d4:e4:da: 8b:3e:68:d8:43:5a:bf:be:3f:df:cc:37:6c:f2:21:ac:1b:d5: d3:6a:e6:e6:a6:f4:12:a5:3b:dc:88:08:da:20:eb:13:7b:46: 78:00:3a:99:4c:75:09:3b:e7:60:21:e1:74:d7:47:cf:a7:a2: 8f:1a:48:51:7b:13:72:dd:41:54:f8:ea:eb:09:db:d9:f3:86: 9a:1b:71:c6:2b:f3:0a:48:50:0d:0d:79:4d:81:92:f7:63:d3: 46:60:5c:68:47:33:55:da:dd:68:42:1e:8a:8b:aa:8e:da:2d: aa:be:67:29:25:1a:1b:35:9b:80:b0:3e:e8:ec:42:ab:0f:8f: c8:81:c4:71:bd:88:ca:48:c4:9e:d6:92:ad:77:fd:8f:33:fb: 31:93:a8:78:79:c0:6e:c5:39:50:6b:76:0f:88:37:bb:6e:35: 72:87:f9:0d:1d:3e:be:51:72:75:fb:af:5e:e1:ed:d1:eb:c1: fa:99:8e:e2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMjIxMTAvBgNVBAUTKEJCNEZBRTg1NTQwQTVBRDlGOTNDQjQ4MkM0NUM5NTc2 RjUyQTNCRjQwHhcNMjUwMzI3MDMwOTM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGQ1OC0zYWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxoZUsjKI5/YenRQKTH52THdywCcMMTPT9BKZMEgSk1ODW0pPB4btQZVNmst nP6txMQDrFDs5wAZbPJDOZ1QRT5OR4hlw2+rggfeQDtrPQu7pwk2v89pvPVzTEao r5WcI/7AKyUJUso977QttdWN6YKVr3HNhraMEGQlhpKuC2gjECjoP4cyBV9MdOPR XOX+RQVlLLWitWjOOpBnPMQO5q09R2eYITVfxJkH256G0Ijy0zaww77nAx2Pc3F2 YZHutD6MrJpMjUOdCdDGJxi6DhZGwhdSwDni9OI/9Lqd+HNExXAbJ7QrZ6S/SDyq CnoduJ+gqeirFuQ/TaYh1iXWfQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJfIHyj0 R93jPx3omevKCn4/Zq9rMB8GA1UdIwQYMBaAFLtProVUClrZ+Ty0gsRclXb1Kjv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEyMi8wRkQ0RUY0RUFF RUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0bjVQTFNDeEZ5VmR2VXFP X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UwLXVoVlFLV3RuNVBMU0N4RnlWZHZVcU9fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxMjIvMEZENEVGNEVBRUVGMTFFREEyRTlCQzY4QzRGOUFFMDIvOUU4REIzODBC MkM2MTFFREJDMzY2QTFEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ1LKMA8EAgACMAkDBwAgAQ3x7EAwDQYJKoZIhvcNAQELBQADggEB AGqqhZz88cAVh8pP+kfxA8byOc1vWugovAtnfduAPBLV9DOaF9dNwwVpQ8VAIL3B qexwWShpmYqEHZ1tg4kJ/6JgnYFaetTk2os+aNhDWr++P9/MN2zyIawb1dNq5uam 9BKlO9yICNog6xN7RngAOplMdQk752Ah4XTXR8+noo8aSFF7E3LdQVT46usJ29nz hpobccYr8wpIUA0NeU2Bkvdj00ZgXGhHM1Xa3WhCHoqLqo7aLaq+ZyklGhs1m4Cw PujsQqsPj8iBxHG9iMpIxJ7Wkq13/Y8z+zGTqHh5wG7FOVBrdg+IN7tuNXKH+Q0d Pr5RcnX7r17h7dHrwfqZjuI= -----END CERTIFICATE-----Generated at Mon Mar 2 09:03:55 2026 by rpki-client