$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa File: B922DB22E84211EA918B8F09C4F9AE02.roa (raw, json) Hash identifier: LfIFl6rYWrXVoxcyn0clPS9g9F++NUROBoNirluuY6Y= Subject key identifier: 9F:E7:9D:E4:FD:1D:1D:08:B9:CC:20:2A:3B:DE:3A:AF:98:8D:10:76 Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E98 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:37:12 +0000 ROA not before: Thu 22 May 2025 18:21:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132757 IP address blocks: 103.215.224.0/22 maxlen: 24 157.119.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3736 (0xe98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: May 22 18:21:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a424e8-c59c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:93:bc:91:56:5b:23:95:15:29:af:21:9c: 5d:e4:34:b0:e3:ea:3d:da:bd:6b:b5:31:09:b7:f5: 2d:32:fd:0b:fa:ca:25:76:f4:58:b0:a2:88:43:c6: 61:34:a9:93:52:6a:47:8f:7f:a4:ec:9c:0f:b1:c0: 26:67:4c:b1:ed:1b:63:1a:96:2f:13:b9:84:31:ba: 29:36:37:e1:88:bc:12:cc:4d:63:bb:c2:68:20:8f: 5a:69:5b:39:56:ec:16:97:bc:7c:fd:19:ab:72:0d: 6b:0e:ff:fc:f0:b4:06:6d:6a:b8:b6:72:d5:a4:1e: 27:81:dd:bc:dd:5b:94:08:48:93:b7:57:78:82:46: 50:d7:7d:94:0f:ec:98:7c:58:08:43:55:ea:67:4b: e7:a5:7c:31:a8:86:f4:5c:31:cf:37:27:95:2a:8b: 92:6f:df:3b:6a:53:f5:f7:30:c0:3e:9a:33:a3:e0: 79:bd:88:b5:7e:47:9e:6a:b0:75:22:cd:f8:4a:ac: 62:e8:a3:e2:cc:dd:22:87:15:ee:c8:fb:25:89:e8: b7:3c:f2:b9:b6:a0:cc:6c:ba:75:13:9a:a1:b5:e8: a5:bf:44:0a:43:7f:3c:de:98:11:17:87:ce:99:28: 40:06:c2:40:9d:16:47:2a:bd:88:04:2d:8c:4c:1d: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E7:9D:E4:FD:1D:1D:08:B9:CC:20:2A:3B:DE:3A:AF:98:8D:10:76 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.215.224.0/22 157.119.104.0/22 Signature Algorithm: sha256WithRSAEncryption 26:c3:39:33:35:3b:8b:e5:9b:49:13:fa:87:5f:46:e9:0e:7a: 81:06:d4:e9:76:a5:8a:a5:2f:21:6e:6e:5e:af:48:65:40:ca: e5:09:45:58:65:0a:dc:71:72:40:b3:11:72:c7:b6:bf:1c:16: 61:f0:68:4b:5b:4b:4c:a3:5d:7d:28:d1:60:be:fb:b1:cb:10: 91:e6:66:49:2d:b3:b7:5b:af:c1:ca:13:f4:9f:b2:1b:57:78: 1e:fd:56:e9:61:ec:eb:54:67:21:1a:15:eb:26:36:d3:d4:d6: bb:a7:a9:61:23:45:a6:fc:de:a1:8c:87:dc:10:ab:d4:83:b5: 58:e5:c0:5c:ee:93:8b:55:1e:68:b7:b2:69:4b:ff:38:8f:09: 2d:48:7c:0d:73:20:67:1a:1d:d3:d1:29:61:ab:37:fa:59:fe: c2:22:e8:30:82:2c:a1:92:d2:0a:06:1e:bc:0c:a0:28:6c:fa: df:5b:05:da:8a:7f:09:36:06:25:fb:ef:8f:04:a2:53:ec:ed: c1:cf:f3:a6:c0:ae:e0:a8:e3:75:65:70:7d:7c:70:c2:f7:24: d6:41:dd:54:3d:7e:30:6d:0a:e8:e1:70:24:ac:88:97:91:f1: b7:50:f4:29:29:68:d7:03:11:3d:38:40:9f:c5:fa:af:21:d0: ee:81:81:c1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwNTIyMTgyMTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRlOC1jNTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X6TvJFWWyOVFSmvIZxd5DSw4+o92r1rtTEJt/UtMv0L+soldvRYsKKIQ8Zh NKmTUmpHj3+k7JwPscAmZ0yx7RtjGpYvE7mEMbopNjfhiLwSzE1ju8JoII9aaVs5 VuwWl7x8/Rmrcg1rDv/88LQGbWq4tnLVpB4ngd283VuUCEiTt1d4gkZQ132UD+yY fFgIQ1XqZ0vnpXwxqIb0XDHPNyeVKouSb987alP19zDAPpozo+B5vYi1fkeearB1 Is34Sqxi6KPizN0ihxXuyPsliei3PPK5tqDMbLp1E5qhteilv0QKQ3883pgRF4fO mShABsJAnRZHKr2IBC2MTB0pTQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJ/nneT9 HR0IucwgKjveOq+YjRB2MB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFERjQvRjQxRDFDMThCMzhFMTFFOTg2MjgyQjczQzRGOUFFMDIvQjkyMkRCMjJF ODQyMTFFQTkxOEI4RjA5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9fgAwQCnXdoMA0GCSqGSIb3DQEBCwUAA4IBAQAmwzkzNTuL5ZtJ E/qHX0bpDnqBBtTpdqWKpS8hbm5er0hlQMrlCUVYZQrccXJAsxFyx7a/HBZh8GhL W0tMo119KNFgvvuxyxCR5mZJLbO3W6/ByhP0n7IbV3ge/VbpYezrVGchGhXrJjbT 1Na7p6lhI0Wm/N6hjIfcEKvUg7VY5cBc7pOLVR5ot7JpS/84jwktSHwNcyBnGh3T 0Slhqzf6Wf7CIugwgiyhktIKBh68DKAobPrfWwXain8JNgYl+++PBKJT7O3Bz/Om wK7gqON1ZXB9fHDC9yTWQd1UPX4wbQro4XAkrIiXkfG3UPQpKWjXAxE9OECfxfqv IdDugYHB -----END CERTIFICATE-----Generated at Mon Mar 2 09:16:43 2026 by rpki-client