$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa File: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (raw, json) Hash identifier: e4kOFF05o5VdluZF/kOk4uZ8x60T66NPK/E1N2Z8lgI= Subject key identifier: 46:9B:4E:26:E5:B4:95:D4:BD:D6:E1:0D:16:71:EA:9D:F9:F0:F1:D5 Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0DDC Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:21:55 +0000 ROA not before: Mon 26 May 2025 18:30:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137566 IP address blocks: 103.113.176.0/22 maxlen: 24 2402:cec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3548 (0xddc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2, serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: May 26 18:30:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40533-afc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7a:c5:3e:a2:59:c5:f5:6e:a2:3a:3d:66:41: 81:f6:e9:15:be:f0:89:31:7b:91:7f:c9:73:96:29: b1:76:ab:d9:a4:f5:64:5b:59:12:77:c5:27:80:8c: 41:3c:17:b4:5e:a9:9c:3a:94:46:78:2f:0f:d5:45: 28:c4:79:2b:45:8e:2e:37:82:50:7c:e1:f5:c2:cf: bc:20:75:9f:0a:08:19:6a:7e:25:e8:f6:bd:24:bd: d2:20:d1:b7:b6:10:cf:2a:0e:37:d1:ef:4a:9f:56: 6d:9f:29:b2:72:66:08:06:a1:78:5c:60:1e:4b:74: 45:01:cf:e6:26:71:14:9e:4b:22:9f:52:6b:71:0f: e7:8e:ff:80:20:fc:4d:93:f8:76:54:34:72:52:40: d7:95:e3:72:1d:ea:e0:5b:d9:6d:32:37:7b:14:56: a3:be:bd:fe:71:02:3d:d2:8c:94:cf:23:41:47:7c: 5e:54:dd:97:ec:a7:fc:c4:1d:df:c0:10:4a:08:c1: ea:fb:d2:bd:30:ef:dc:fd:1e:48:3b:a3:21:26:1c: c6:1a:3e:9f:3d:97:8c:8c:60:8c:0f:97:11:41:42: 00:78:a0:31:ef:3d:f1:d3:23:93:05:69:43:21:84: db:55:3e:07:fe:08:be:2b:bd:23:68:5e:ab:b6:0d: 74:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:9B:4E:26:E5:B4:95:D4:BD:D6:E1:0D:16:71:EA:9D:F9:F0:F1:D5 X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.113.176.0/22 IPv6: 2402:cec0::/32 Signature Algorithm: sha256WithRSAEncryption a0:91:7c:7e:2c:68:86:16:a8:26:9c:27:56:c8:ab:db:0e:67: 43:38:4c:8e:84:3f:a8:61:07:a5:a4:9e:42:8f:48:92:06:e1: 25:aa:a8:78:84:7b:3b:a2:b0:9c:05:8b:56:6f:ad:7b:50:b7: 0e:c1:82:ed:9d:ce:67:a4:12:43:56:24:59:28:13:06:a4:7b: f2:26:2c:79:bf:f0:fa:80:b5:42:52:5d:3f:60:36:fc:04:53: b6:aa:49:9b:bb:ad:0f:c9:1d:f4:e4:61:66:3e:c9:eb:c3:b0: d5:d9:1e:13:ce:2f:7f:a9:6c:d1:08:92:bc:de:31:9d:59:c8: 76:ca:3e:72:65:bb:9d:5e:b4:bb:26:4e:81:d1:39:e2:c2:26: 04:49:4b:d2:0f:f5:3d:3b:f0:2b:05:c7:7f:e9:d4:39:40:7a: 01:85:5c:07:b7:c2:f0:14:c9:48:dc:7c:56:fc:6b:c2:1b:b2: 3b:1d:4b:31:f0:85:01:15:b6:81:67:97:8b:11:93:ac:9a:14: 69:79:1c:37:2b:1d:58:09:57:04:84:4e:71:94:1b:39:c3:c7: 75:44:87:29:28:a7:9b:00:4b:7b:92:ea:02:9a:c6:50:d5:d7: 40:ca:94:87:0a:4e:73:21:80:76:3f:e7:e4:a6:13:07:74:40: e7:6e:74:3b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjUwNTI2MTgzMDE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDUzMy1hZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHrFPqJZxfVuojo9ZkGB9ukVvvCJMXuRf8lzlimxdqvZpPVkW1kSd8UngIxB PBe0XqmcOpRGeC8P1UUoxHkrRY4uN4JQfOH1ws+8IHWfCggZan4l6Pa9JL3SING3 thDPKg430e9Kn1ZtnymycmYIBqF4XGAeS3RFAc/mJnEUnksin1JrcQ/njv+AIPxN k/h2VDRyUkDXleNyHergW9ltMjd7FFajvr3+cQI90oyUzyNBR3xeVN2X7Kf8xB3f wBBKCMHq+9K9MO/c/R5IO6MhJhzGGj6fPZeMjGCMD5cRQUIAeKAx7z3x0yOTBWlD IYTbVT4H/gi+K70jaF6rtg10vQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEabTibl tJXUvdbhDRZx6p358PHVMB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFRjIvQjY0NDFFQjZEMkJEMTFFOTlBMUQ0QjFEQzRGOUFFMDIvMTIxNEVFNDBE MkJGMTFFOUE3RjRFRjFGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3GwMA0EAgACMAcDBQAkAs7AMA0GCSqGSIb3DQEBCwUAA4IBAQCg kXx+LGiGFqgmnCdWyKvbDmdDOEyOhD+oYQelpJ5Cj0iSBuElqqh4hHs7orCcBYtW b617ULcOwYLtnc5npBJDViRZKBMGpHvyJix5v/D6gLVCUl0/YDb8BFO2qkmbu60P yR305GFmPsnrw7DV2R4Tzi9/qWzRCJK83jGdWch2yj5yZbudXrS7Jk6B0TniwiYE SUvSD/U9O/ArBcd/6dQ5QHoBhVwHt8LwFMlI3HxW/GvCG7I7HUsx8IUBFbaBZ5eL EZOsmhRpeRw3Kx1YCVcEhE5xlBs5w8d1RIcpKKebAEt7kuoCmsZQ1ddAypSHCk5z IYB2P+fkphMHdEDnbnQ7 -----END CERTIFICATE-----Generated at Mon Mar 2 09:41:43 2026 by rpki-client