$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa File: AD8187A41FF511ED8DD6D661C4F9AE02.roa (raw, json) Hash identifier: qLDoFJBL4tjU3a5+OgqcUODZnGFeDhknY5OqvsDbWxk= Subject key identifier: 33:08:2E:4E:E2:4C:FE:3E:A9:04:84:73:74:47:10:FB:5A:88:4C:44 Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Certificate serial: 2403 Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:53:38 +0000 ROA not before: Wed 28 Jan 2026 10:05:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 24016 IP address blocks: 103.197.164.0/22 maxlen: 24 115.84.128.0/19 maxlen: 24 202.21.176.0/20 maxlen: 24 220.158.220.0/22 maxlen: 24 2401:8300::/32 maxlen: 40 2401:8300:f000::/48 maxlen: 48 2401:8300:f001::/48 maxlen: 48 2401:8300:f002::/48 maxlen: 48 2401:8300:f003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9219 (0x2403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194D56, serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Validity Not Before: Jan 28 10:05:22 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46102-1b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:54:97:85:ef:78:3f:d8:31:b0:6a:54:2f:58: 55:38:95:c6:03:4d:4c:07:6a:69:b7:21:1a:e6:c6: c7:32:b6:06:11:19:09:de:8f:b5:7a:3d:1a:90:96: d2:cf:72:5e:cd:b7:6a:7a:a0:7e:97:f7:35:4d:dd: 8d:ae:c5:e9:20:c9:b8:5e:a9:18:6b:9b:ea:4a:c4: 45:d0:c9:37:b1:87:13:52:76:47:5f:6b:c2:9e:72: 85:c6:d8:1e:64:1b:28:21:4e:2d:44:7b:bf:80:de: 6e:12:6a:97:f3:7d:8a:6f:fe:0f:61:83:24:36:fc: d4:ce:00:2c:b4:53:75:44:3e:79:1d:a1:77:ac:53: d4:d1:c1:4a:56:61:d6:27:ba:ea:39:bb:d4:86:5c: 0d:80:98:71:1f:ae:8e:3b:f9:5b:fe:78:5c:98:57: e6:d1:3f:7e:6b:0a:be:40:d6:95:9d:9a:d0:d0:45: 55:d1:58:b4:b0:f6:62:51:61:cd:58:26:e2:82:b8: 6f:fe:46:bd:b7:a9:33:00:ae:9e:78:3e:01:c8:b8: 65:66:9f:7f:aa:e5:33:8c:44:93:26:b6:12:fa:cd: a7:c5:b7:d0:0a:51:10:dd:35:c7:8b:41:9f:66:2c: 55:45:f1:c9:2f:08:c6:7f:be:2a:d7:a1:76:30:51: d2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:08:2E:4E:E2:4C:FE:3E:A9:04:84:73:74:47:10:FB:5A:88:4C:44 X509v3 Authority Key Identifier: keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.197.164.0/22 115.84.128.0/19 202.21.176.0/20 220.158.220.0/22 IPv6: 2401:8300::/32 Signature Algorithm: sha256WithRSAEncryption 3d:51:17:10:21:45:c6:04:37:1d:e2:01:45:bb:95:cf:e0:04: e2:3c:2c:3e:43:dc:45:6e:bd:87:1b:f9:46:1e:8e:5b:e2:44: 21:5a:15:ca:ad:8e:25:fd:f3:1e:9b:de:87:c8:35:d5:48:ea: 62:b8:88:b1:1f:19:40:eb:c7:ed:ec:78:d1:6b:33:94:21:e7: f8:2e:0f:33:c1:eb:ff:80:3a:35:5c:82:11:80:b9:81:c5:94: f7:57:e8:8e:11:66:fa:c4:96:02:c4:45:94:93:54:49:0c:9c: 5a:7b:fb:d5:7f:99:53:ae:6e:75:57:ab:4a:7b:2d:ea:c7:ac: 9b:08:dc:a8:d7:53:aa:31:5a:13:81:a2:5d:59:ec:d1:c2:b2: 21:2a:93:72:f1:8a:e3:31:65:f8:e4:b7:7f:57:9a:0e:09:d1: 6d:a5:64:1b:aa:b1:8a:fa:c2:4b:bd:31:8c:22:81:64:af:20: 4e:3c:bd:41:28:54:1e:52:6a:0b:5a:30:4c:4d:26:76:7a:3a: c3:b6:20:2b:d7:82:ab:ef:81:fa:f7:a9:b5:07:76:91:13:46: 9d:1a:c1:b7:f1:73:78:78:a8:b0:ea:f7:b2:72:13:fb:a7:f8: b0:ba:3a:cd:1d:7f:28:60:32:43:19:00:a6:67:ba:bb:23:21: d0:4d:fe:23 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICJAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRENTYxMTAvBgNVBAUTKDdDNUI3NDE0RTNDQzgwNDA1OUJDQTg2Q0M1MTYzQTA3 NDNFNDFDODUwHhcNMjYwMTI4MTAwNTIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjEwMi0xYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVSXhe94P9gxsGpUL1hVOJXGA01MB2pptyEa5sbHMrYGERkJ3o+1ej0akJbS z3JezbdqeqB+l/c1Td2NrsXpIMm4XqkYa5vqSsRF0Mk3sYcTUnZHX2vCnnKFxtge ZBsoIU4tRHu/gN5uEmqX832Kb/4PYYMkNvzUzgAstFN1RD55HaF3rFPU0cFKVmHW J7rqObvUhlwNgJhxH66OO/lb/nhcmFfm0T9+awq+QNaVnZrQ0EVV0Vi0sPZiUWHN WCbigrhv/ka9t6kzAK6eeD4ByLhlZp9/quUzjESTJrYS+s2nxbfQClEQ3TXHi0Gf ZixVRfHJLwjGf74q16F2MFHSqQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFDMILk7i TP4+qQSEc3RHEPtaiExEMB8GA1UdIwQYMBaAFHxbdBTjzIBAWbyobMUWOgdD5ByF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEQ1Ni9FNUQ0MDdGRTg2 QjMxMUU1OThGMzdGMUFDNEY5QUUwMi9mRnQwRk9QTWdFQlp2S2hzeFJZNkIwUGtI SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGdDBGT1BNZ0VCWnZLaHN4Ulk2QjBQa0hJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRENTYvRTVENDA3RkU4NkIzMTFFNTk4RjM3RjFBQzRGOUFFMDIvQUQ4MTg3QTQx RkY1MTFFRDhERDZENjYxQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCZ8WkAwQFc1SAAwQEyhWwAwQC3J7cMA0EAgACMAcDBQAkAYMAMA0G CSqGSIb3DQEBCwUAA4IBAQA9URcQIUXGBDcd4gFFu5XP4ATiPCw+Q9xFbr2HG/lG Ho5b4kQhWhXKrY4l/fMem96HyDXVSOpiuIixHxlA68ft7HjRazOUIef4Lg8zwev/ gDo1XIIRgLmBxZT3V+iOEWb6xJYCxEWUk1RJDJxae/vVf5lTrm51V6tKey3qx6yb CNyo11OqMVoTgaJdWezRwrIhKpNy8YrjMWX45Ld/V5oOCdFtpWQbqrGK+sJLvTGM IoFkryBOPL1BKFQeUmoLWjBMTSZ2ejrDtiAr14Kr74H696m1B3aRE0adGsG38XN4 eKiw6veychP7p/iwujrNHX8oYDJDGQCmZ7q7IyHQTf4j -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:17 2026 by rpki-client