$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa File: 13C099EE366711F0B5877C84C4F9AE02.roa (raw, json) Hash identifier: McIgsASpGkGyxbUUg/oDEhbFGdsxWQYiizXWy8fJF2Q= Subject key identifier: 75:4C:97:5A:98:8A:63:20:39:A0:CA:6E:2D:97:A0:26:75:D2:88:F9 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0E30 Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:39:22 +0000 ROA not before: Wed 21 May 2025 17:18:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 43.246.200.0/24 maxlen: 24 43.246.201.0/24 maxlen: 24 103.109.56.0/24 maxlen: 24 103.109.57.0/24 maxlen: 24 103.109.59.0/24 maxlen: 24 103.111.13.0/24 maxlen: 24 2402:76c0::/32 maxlen: 36 2402:76c0:f000::/48 maxlen: 48 2402:76c0:f001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3632 (0xe30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847, serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Validity Not Before: May 21 17:18:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44f9a-9c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:08:24:f9:f9:8d:57:da:f3:09:ad:da:bd:54: dd:4e:9b:79:40:bc:c0:5d:50:37:07:8a:4b:84:7b: 85:16:a1:4e:1f:b2:21:bf:62:94:68:5e:05:e7:ac: 64:1a:3f:a0:60:6f:fc:82:b9:b5:77:85:1f:d0:5e: 27:54:4c:bb:46:67:44:da:88:74:a4:0f:f6:e4:91: 3d:cf:d1:fb:58:f2:48:cd:84:17:ca:da:70:6a:d6: 43:42:e5:40:7f:8c:d1:86:8d:8e:2a:99:8f:8f:d3: 43:f2:b9:cf:1f:c9:f9:4e:3d:a8:9e:1c:5d:4e:ac: be:d3:50:1a:fb:a4:f4:e7:00:0c:d1:2e:d9:5d:b0: 89:8f:f4:b3:be:35:a5:26:e3:57:24:7f:47:b7:89: b7:94:85:bf:1e:fb:17:2a:10:9b:32:8e:8e:76:6f: eb:c6:83:3c:a2:85:7f:fc:c2:40:b7:f5:5a:fb:a2: ba:3f:b0:0c:35:e4:fa:9f:76:57:5c:fa:b8:4e:b4: aa:8b:5e:16:b0:8e:5f:1c:79:80:2f:14:31:08:90: e9:d2:2c:8b:78:07:e7:19:e0:73:1f:d1:c1:e4:a5: 7b:87:3b:95:29:db:49:01:44:e1:06:e1:ac:95:77: 6a:4b:f4:1d:cb:1f:cd:c4:90:50:a3:e6:50:9f:07: a0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4C:97:5A:98:8A:63:20:39:A0:CA:6E:2D:97:A0:26:75:D2:88:F9 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.200.0/23 103.109.56.0/23 103.109.59.0/24 103.111.13.0/24 IPv6: 2402:76c0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:01:b4:5a:5c:a4:c3:af:77:66:72:5b:30:30:03:26:e9:b8: e0:e5:0a:ae:f9:ba:b7:45:1c:00:14:5e:8f:27:9b:23:0e:db: 58:12:67:b7:55:2c:f5:63:85:4d:92:6e:87:73:42:1e:c5:f1: d7:33:64:17:38:25:05:4f:71:b1:df:3e:06:81:bd:a3:58:bd: 21:03:df:6a:ba:70:12:dd:ac:92:73:64:74:2e:b7:31:84:42: 26:f8:59:35:3a:1b:e3:21:81:72:f6:ea:8a:72:03:22:2c:30: 02:c2:b3:12:23:ef:22:b4:11:88:e8:d8:0e:ef:40:33:bb:27: e1:6c:c4:28:08:4a:d3:eb:87:ca:a3:a2:00:54:e9:b7:39:11: fb:cb:63:a5:fe:89:cb:c9:ee:c8:49:0c:de:07:6c:16:f6:72: 1e:fc:45:53:bc:e8:3a:da:6b:ba:7f:76:ec:3d:06:b8:21:b1: f5:60:97:db:40:02:c6:40:11:9d:1b:f8:21:09:c7:26:2d:2e: 8c:30:79:3a:e9:af:67:9b:7e:9e:c3:55:a7:47:99:21:ab:f8: a0:0a:a6:b1:88:fe:21:90:12:8d:bd:05:79:eb:48:96:6c:c3: f2:f4:a9:c7:e2:34:ba:9b:ae:ff:bc:ee:0c:71:b3:cb:31:f5: 69:ae:73:ad -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjUwNTIxMTcxODIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGY5YS05YzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Agk+fmNV9rzCa3avVTdTpt5QLzAXVA3B4pLhHuFFqFOH7Ihv2KUaF4F56xk Gj+gYG/8grm1d4Uf0F4nVEy7RmdE2oh0pA/25JE9z9H7WPJIzYQXytpwatZDQuVA f4zRho2OKpmPj9ND8rnPH8n5Tj2onhxdTqy+01Aa+6T05wAM0S7ZXbCJj/SzvjWl JuNXJH9Ht4m3lIW/HvsXKhCbMo6Odm/rxoM8ooV//MJAt/Va+6K6P7AMNeT6n3ZX XPq4TrSqi14WsI5fHHmALxQxCJDp0iyLeAfnGeBzH9HB5KV7hzuVKdtJAUThBuGs lXdqS/Qdyx/NxJBQo+ZQnwegzwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFHVMl1qY imMgOaDKbi2XoCZ10oj5MB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg4NDcvRERGQkIwQjhENzgxMTFFOUI0MjNBQzRCQzRGOUFFMDIvMTNDMDk5RUUz NjY3MTFGMEI1ODc3Qzg0QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBK/bIAwQBZ204AwQAZ207AwQAZ28NMA0EAgACMAcDBQAkAnbAMA0G CSqGSIb3DQEBCwUAA4IBAQANAbRaXKTDr3dmclswMAMm6bjg5Qqu+bq3RRwAFF6P J5sjDttYEme3VSz1Y4VNkm6Hc0IexfHXM2QXOCUFT3Gx3z4Ggb2jWL0hA99qunAS 3aySc2R0LrcxhEIm+Fk1OhvjIYFy9uqKcgMiLDACwrMSI+8itBGI6NgO70Azuyfh bMQoCErT64fKo6IAVOm3ORH7y2Ol/onLye7ISQzeB2wW9nIe/EVTvOg62mu6f3bs PQa4IbH1YJfbQALGQBGdG/ghCccmLS6MMHk66a9nm36ew1WnR5khq/igCqaxiP4h kBKNvQV560iWbMPy9KnH4jS6m67/vO4McbPLMfVprnOt -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:36 2026 by rpki-client