$ rpki-client -vvf rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa File: A3E98D0E22A911EB96014E82C4F9AE02.roa (raw, json) Hash identifier: Vx9CSg1xbwu8Z8j5boN4uWmjJECKQuxgQNUIUyPWiKQ= Subject key identifier: 3A:7F:90:25:2A:91:51:D3:C0:1B:C5:57:09:38:24:19:D8:83:3C:6F Certificate issuer: /CN=A9195FCB/serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Certificate serial: 07F8 Authority key identifier: E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:46:29 +0000 ROA not before: Wed 11 Feb 2026 14:32:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141398 IP address blocks: 103.158.62.0/23 maxlen: 23 103.158.62.0/24 maxlen: 24 103.158.63.0/24 maxlen: 24 2406:b240::/32 maxlen: 32 2406:b240:1000::/48 maxlen: 48 2406:b240:2000::/48 maxlen: 48 2406:b240:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195FCB, serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Validity Not Before: Feb 11 14:32:16 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46d65-31eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d3:d0:df:19:be:35:43:0d:da:2f:e4:91:40: 03:65:65:60:0d:e9:54:1b:47:0b:88:59:59:fb:b7: 44:a2:c5:ef:71:fc:ef:36:47:47:cb:b0:43:e1:29: 13:a5:80:92:24:10:01:e6:c6:e3:57:35:47:38:a4: ff:45:df:98:bc:c1:a1:d2:f7:97:ca:38:7a:cb:9a: ee:66:8e:ec:c5:4d:de:93:77:c7:ad:9c:e4:ba:0e: 09:6a:6e:ae:f2:7a:35:15:83:29:a1:2e:76:57:b7: 94:70:d4:ac:12:40:7b:ae:4d:61:17:62:82:73:4c: a7:b1:97:aa:e8:fb:c7:dc:8a:f8:01:db:ad:7e:43: 65:c3:2d:bd:52:1c:7c:23:84:ec:9d:d5:d9:db:91: 96:44:81:ff:3f:1e:40:a8:25:a3:5d:6b:0c:f7:59: 8f:d0:4b:58:dd:ca:10:de:52:51:9e:eb:02:fd:08: 37:db:69:8e:ac:9c:a0:6d:bf:e1:9e:45:aa:0b:c5: ac:70:e0:b7:cf:93:53:90:bd:6f:47:a8:bf:18:55: b1:bb:d7:c8:fe:37:85:d8:aa:61:66:5f:e5:7c:7a: 13:3c:2b:57:a7:48:24:37:03:b2:2b:1b:ea:01:a9: 4a:a4:27:1f:f0:73:9d:7d:21:cc:33:c2:ba:8c:cd: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7F:90:25:2A:91:51:D3:C0:1B:C5:57:09:38:24:19:D8:83:3C:6F X509v3 Authority Key Identifier: keyid:E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.62.0/23 IPv6: 2406:b240::/32 Signature Algorithm: sha256WithRSAEncryption 57:9d:73:e6:4e:5e:be:fc:7d:3f:48:5c:91:46:8d:05:a3:13: 2f:cb:57:c1:c3:bc:45:00:5d:23:b5:aa:13:ca:5a:be:32:12: 35:7d:96:62:b9:d1:6a:d4:5b:a8:4e:63:54:93:af:08:96:16: 7f:3c:d0:28:ef:50:43:44:78:e2:b1:14:6e:70:eb:7b:1d:1f: 66:6d:ff:0f:04:19:f9:e1:b1:f1:7c:e8:e7:fa:d1:4b:b1:4f: c3:26:fd:a0:c5:ef:09:12:1a:0d:fb:71:21:52:80:b0:fc:fd: 3d:7b:e3:71:1e:f9:18:0d:0a:6e:0b:fb:ac:8d:c6:e9:30:86: 85:59:5d:c4:16:b0:ba:d6:a2:b3:ae:21:34:9d:c5:ea:fa:31: a6:ee:37:8b:56:c4:8d:36:c7:65:20:bd:77:82:80:0b:61:ec: f0:62:c6:01:03:0e:57:5a:7b:86:3b:36:bb:ef:be:da:1c:00: 4d:b2:89:3f:23:81:8e:69:e2:3c:26:27:51:20:2b:00:a8:ae: e4:30:c9:ff:ed:33:f2:95:6e:fc:9a:fe:24:42:0d:e3:91:ed: 93:fe:d3:60:9a:38:d6:18:1e:2e:06:c9:87:37:76:0e:9b:cc: c3:26:22:83:7b:0b:f4:96:b3:f8:aa:10:f8:a0:8f:53:56:53: c7:e2:a0:ba -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGQ0IxMTAvBgNVBAUTKEU5NTEzNzFERTREQ0IxMDAyNTQ4NEQyRjE0RkRDREEy QzY0NTVCOTEwHhcNMjYwMjExMTQzMjE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQ2NS0zMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdPQ3xm+NUMN2i/kkUADZWVgDelUG0cLiFlZ+7dEosXvcfzvNkdHy7BD4SkT pYCSJBAB5sbjVzVHOKT/Rd+YvMGh0veXyjh6y5ruZo7sxU3ek3fHrZzkug4Jam6u 8no1FYMpoS52V7eUcNSsEkB7rk1hF2KCc0ynsZeq6PvH3Ir4AdutfkNlwy29Uhx8 I4TsndXZ25GWRIH/Px5AqCWjXWsM91mP0EtY3coQ3lJRnusC/Qg322mOrJygbb/h nkWqC8WscOC3z5NTkL1vR6i/GFWxu9fI/jeF2KphZl/lfHoTPCtXp0gkNwOyKxvq AalKpCcf8HOdfSHMM8K6jM0Q9wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDp/kCUq kVHTwBvFVwk4JBnYgzxvMB8GA1UdIwQYMBaAFOlRNx3k3LEAJUhNLxT9zaLGRVuR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUZDQi84ODBFNjM0MDIy QTcxMUVCQjQwNkNFN0NDNEY5QUUwMi82VkUzSGVUY3NRQWxTRTB2RlAzTm9zWkZX NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWRTNIZVRjc1FBbFNFMHZGUDNOb3NaRlc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVGQ0IvODgwRTYzNDAyMkE3MTFFQkI0MDZDRTdDQzRGOUFFMDIvQTNFOThEMEUy MkE5MTFFQjk2MDE0RTgyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ54+MA0EAgACMAcDBQAkBrJAMA0GCSqGSIb3DQEBCwUAA4IBAQBX nXPmTl6+/H0/SFyRRo0FoxMvy1fBw7xFAF0jtaoTylq+MhI1fZZiudFq1FuoTmNU k68IlhZ/PNAo71BDRHjisRRucOt7HR9mbf8PBBn54bHxfOjn+tFLsU/DJv2gxe8J EhoN+3EhUoCw/P09e+NxHvkYDQpuC/usjcbpMIaFWV3EFrC61qKzriE0ncXq+jGm 7jeLVsSNNsdlIL13goALYezwYsYBAw5XWnuGOza7777aHABNsok/I4GOaeI8JidR ICsAqK7kMMn/7TPylW78mv4kQg3jke2T/tNgmjjWGB4uBsmHN3YOm8zDJiKDewv0 lrP4qhD4oI9TVlPH4qC6 -----END CERTIFICATE-----Generated at Mon Mar 2 12:43:00 2026 by rpki-client