$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/E57F70C206C311F185D816DB103D8C67.roa File: E57F70C206C311F185D816DB103D8C67.roa (raw, json) Hash identifier: ldEkt8AnQQd4OxqJC4JbMV5PgPlGcaBYG25O0CezBnI= Subject key identifier: A6:99:1D:44:AC:38:8D:00:2F:C4:06:CA:51:DA:DA:65:8E:BD:75:1E Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 0462 Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/E57F70C206C311F185D816DB103D8C67.roa Signing time: Mon 02 Mar 2026 13:01:38 +0000 ROA not before: Tue 10 Feb 2026 21:03:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45345 IP address blocks: 43.245.212.0/23 maxlen: 24 103.29.152.0/23 maxlen: 23 103.29.152.0/24 maxlen: 24 103.29.153.0/24 maxlen: 24 103.29.154.0/24 maxlen: 24 103.29.155.0/24 maxlen: 24 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045, serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Feb 10 21:03:06 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58a32-26fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:fb:70:16:75:4e:49:6c:4b:f3:0e:aa:4f: 46:3d:bd:4b:79:fa:ac:5d:4b:21:65:c4:82:cb:c8: 4a:f6:0f:e8:9a:3d:da:53:cb:25:30:22:44:df:40: 2a:0c:a2:6b:ec:a4:b4:bb:f1:cd:b1:aa:8a:e2:6b: 50:44:74:6e:a2:98:05:7d:1d:aa:11:cd:42:e5:74: 51:71:61:36:66:b2:f8:fe:86:a2:17:5b:14:7e:2b: 20:c5:44:0b:45:7c:ef:d9:0a:8e:12:47:4d:70:10: 91:fc:8e:06:e9:47:86:6f:e0:45:f1:42:ba:3f:68: 55:e7:a3:1e:df:4f:3e:85:1a:52:d4:15:20:8f:bd: 27:12:67:4f:28:d9:66:5a:b1:10:5f:ab:fa:af:64: 21:bc:fe:82:63:3e:e1:86:08:dc:f6:b6:6f:dc:f1: 6c:76:8c:00:08:0f:87:9c:e6:b7:9a:17:61:44:09: c8:07:20:43:7e:a8:eb:06:6d:4b:1b:22:6f:4d:ea: df:0a:89:8f:28:01:b6:f4:4e:08:d3:f1:3b:7e:4e: c0:22:2e:3d:d5:3a:97:25:ad:90:b6:e5:27:65:62: 1c:39:c2:ce:ce:fd:9f:d1:26:a1:27:a1:c9:fc:f8: ce:11:25:b8:72:c5:dc:90:3a:ee:6f:87:32:25:19: 9a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:99:1D:44:AC:38:8D:00:2F:C4:06:CA:51:DA:DA:65:8E:BD:75:1E X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/E57F70C206C311F185D816DB103D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.245.212.0/23 103.29.152.0/22 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption 5b:e7:01:3d:32:93:58:4a:ff:06:45:da:49:08:ab:cf:55:cf: f9:dc:3f:ff:22:de:44:af:2e:18:79:b5:bf:4e:ff:b4:ff:db: 9c:72:44:94:b0:a5:ca:3c:0e:39:91:58:de:74:53:98:b4:47: fb:bf:d8:ca:5e:cb:f5:6d:d6:95:3a:f0:52:42:8d:f2:9a:f9: fb:7b:57:c6:37:75:41:f1:89:5b:03:2c:a6:b0:fe:2d:b1:b6: 75:be:5d:24:68:e7:8c:c6:f3:6c:a6:9e:c8:20:50:03:d1:89: 17:60:f8:f3:f3:be:09:67:51:55:21:84:bf:d9:97:47:7d:01: 42:4d:55:82:2c:dd:e5:35:82:af:35:c1:fd:46:22:8e:2c:0b: 5d:7a:a7:0a:dc:31:5b:2b:5e:a0:a0:13:20:57:d1:3b:e4:fe: 99:c8:c5:c9:b3:0f:a5:24:b8:71:1e:6b:59:17:72:2b:4c:a3: 4c:bb:1e:97:17:95:06:2a:ba:09:ff:8b:80:32:6c:73:87:b9: 7e:18:0b:76:9e:e6:f5:99:7a:fb:6f:e4:c8:50:d7:da:20:2d: 0f:4e:45:c8:0f:28:0c:8f:5b:8e:26:45:64:5e:74:36:1b:e8: cc:18:20:91:0b:9d:1c:3d:2c:98:c6:57:d8:5f:5f:0e:aa:32: f5:34:32:b0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjYwMjEwMjEwMzA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGEzMi0yNmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo77cBZ1TklsS/MOqk9GPb1LefqsXUshZcSCy8hK9g/omj3aU8slMCJE30Aq DKJr7KS0u/HNsaqK4mtQRHRuopgFfR2qEc1C5XRRcWE2ZrL4/oaiF1sUfisgxUQL RXzv2QqOEkdNcBCR/I4G6UeGb+BF8UK6P2hV56Me308+hRpS1BUgj70nEmdPKNlm WrEQX6v6r2QhvP6CYz7hhgjc9rZv3PFsdowACA+HnOa3mhdhRAnIByBDfqjrBm1L GyJvTerfComPKAG29E4I0/E7fk7AIi491TqXJa2QtuUnZWIcOcLOzv2f0SahJ6HJ /PjOESW4csXckDrub4cyJRma1QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKaZHUSs OI0AL8QGylHa2mWOvXUeMB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvRTU3RjcwQzIw NkMzMTFGMTg1RDgxNkRCMTAzRDhDNjcucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBK/XUAwQCZx2YMA0EAgACMAcDBQAkAa8AMA0GCSqGSIb3DQEBCwUA A4IBAQBb5wE9MpNYSv8GRdpJCKvPVc/53D//It5Ery4YebW/Tv+0/9ucckSUsKXK PA45kVjedFOYtEf7v9jKXsv1bdaVOvBSQo3ymvn7e1fGN3VB8YlbAyymsP4tsbZ1 vl0kaOeMxvNspp7IIFAD0YkXYPjz874JZ1FVIYS/2ZdHfQFCTVWCLN3lNYKvNcH9 RiKOLAtdeqcK3DFbK16goBMgV9E75P6ZyMXJsw+lJLhxHmtZF3IrTKNMux6XF5UG KroJ/4uAMmxzh7l+GAt2nub1mXr7b+TIUNfaIC0PTkXIDygMj1uOJkVkXnQ2G+jM GCCRC50cPSyYxlfYX18OqjL1NDKw -----END CERTIFICATE-----Generated at Mon Mar 2 23:51:48 2026 by rpki-client