$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa File: 13C099EE366711F0B5877C84C4F9AE02.roa (raw, json) Hash identifier: gAfym6hfoPW5lreTFEqRc7a46jF6gekxCIRIP4eys1Q= Subject key identifier: 25:31:3B:87:69:BB:3D:00:DD:B2:AC:B3:A5:A1:05:D3:87:C6:21:20 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0E44 Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa Signing time: Thu 26 Mar 2026 18:22:42 +0000 ROA not before: Thu 26 Mar 2026 18:22:42 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138640 IP address blocks: 43.246.200.0/24 maxlen: 24 43.246.201.0/24 maxlen: 24 103.109.56.0/24 maxlen: 24 103.109.57.0/24 maxlen: 24 103.109.59.0/24 maxlen: 24 103.111.13.0/24 maxlen: 24 2402:76c0::/32 maxlen: 36 2402:76c0:f000::/48 maxlen: 48 2402:76c0:f001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:48:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847, serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Validity Not Before: Mar 26 18:22:42 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c57972-c704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:91:3a:a1:32:8f:fb:70:74:90:37:eb:55: 8e:98:22:18:3d:2f:10:8e:af:23:96:57:fe:d1:d3: ef:4f:37:9c:1f:fa:46:7c:67:24:33:65:0c:30:b2: db:45:ba:d7:e3:a5:f9:da:80:e3:2a:2d:74:03:3a: d5:97:de:87:5f:e6:91:51:49:54:94:e5:81:05:64: dc:fc:6b:a8:82:dc:13:c7:d6:ed:2d:b0:f0:cc:3e: 24:fb:7d:b8:bf:f1:ed:76:da:7c:b6:b4:89:97:f0: 93:7d:45:44:7f:3d:93:6d:1f:04:80:fd:e2:07:0f: 82:bb:5f:2e:43:88:d3:ca:9f:c8:ce:80:8b:ab:57: 4c:00:1d:90:52:86:b9:e9:60:e8:47:e7:99:6b:d5: fd:17:d4:ed:35:d4:0a:dc:6e:12:e6:f0:2f:f0:f6: 5d:fe:84:11:8f:8f:15:e5:14:46:a8:05:28:ba:f3: 94:2e:be:a2:38:73:7b:bd:33:00:48:db:00:b8:91: 19:06:da:d2:80:8f:15:65:e4:8b:b9:51:8e:bc:dd: fb:5b:a3:a3:d6:47:57:06:f8:40:13:4b:cb:2f:98: d6:ec:e9:6e:0e:6b:86:b1:55:aa:d6:51:95:17:bd: 31:ab:3e:4f:7c:65:12:26:f5:0f:6f:39:d8:56:3d: 30:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:31:3B:87:69:BB:3D:00:DD:B2:AC:B3:A5:A1:05:D3:87:C6:21:20 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/13C099EE366711F0B5877C84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.200.0/23 103.109.56.0/23 103.109.59.0/24 103.111.13.0/24 IPv6: 2402:76c0::/32 Signature Algorithm: sha256WithRSAEncryption 9e:22:88:0e:85:b2:9e:dc:44:b7:8c:ec:91:8e:de:bd:99:36: 7c:74:a9:ac:24:9a:c6:83:63:35:30:e1:16:81:37:eb:22:4b: 7c:3c:89:91:4f:00:54:bd:c9:30:f5:bb:cd:2c:ce:0d:8c:69: 66:3f:9c:1c:45:8a:86:7a:91:e6:5c:6c:97:7a:a0:66:e1:82: 6c:af:16:68:f8:b2:9b:fc:4c:80:d1:66:b1:27:39:b5:ae:54: f2:38:65:36:57:10:65:4c:9c:c6:a8:42:e8:f4:49:15:5b:72: de:53:0f:da:73:07:ca:29:91:db:59:c0:47:51:54:3f:c1:e0: 04:29:77:0d:54:5b:60:f8:2e:5f:60:e9:fa:21:1a:ab:d1:2a: 0f:1e:6f:73:4d:46:9c:aa:fb:70:d8:de:d3:22:95:90:05:bb: cf:65:28:61:3e:e3:b3:6d:fa:5a:78:f9:a7:bb:75:a0:70:43: 78:32:c4:3d:4e:9f:1d:99:68:3c:fd:79:a1:cd:cb:1d:d3:f7: 31:fd:35:01:72:94:ef:40:9d:3b:1b:e2:2f:ce:64:bd:6e:cb: ec:d4:f4:7d:bd:cb:98:b1:5a:70:5d:3f:5d:19:be:a2:57:96: 7e:da:b7:eb:d8:a6:0b:86:e9:db:93:12:87:1b:c5:e2:ae:d0: 4e:92:3e:79 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjYwMzI2MTgyMjQyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1Nzk3Mi1jNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVuROqEyj/twdJA361WOmCIYPS8Qjq8jllf+0dPvTzecH/pGfGckM2UMMLLb RbrX46X52oDjKi10AzrVl96HX+aRUUlUlOWBBWTc/GuogtwTx9btLbDwzD4k+324 v/Htdtp8trSJl/CTfUVEfz2TbR8EgP3iBw+Cu18uQ4jTyp/IzoCLq1dMAB2QUoa5 6WDoR+eZa9X9F9TtNdQK3G4S5vAv8PZd/oQRj48V5RRGqAUouvOULr6iOHN7vTMA SNsAuJEZBtrSgI8VZeSLuVGOvN37W6Oj1kdXBvhAE0vLL5jW7OluDmuGsVWq1lGV F70xqz5PfGUSJvUPbznYVj0wZQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFCUxO4dp uz0A3bKss6WhBdOHxiEgMB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg4NDcvRERGQkIwQjhENzgxMTFFOUI0MjNBQzRCQzRGOUFFMDIvMTNDMDk5RUUz NjY3MTFGMEI1ODc3Qzg0QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBK/bIAwQBZ204AwQAZ207AwQAZ28NMA0EAgACMAcDBQAkAnbAMA0G CSqGSIb3DQEBCwUAA4IBAQCeIogOhbKe3ES3jOyRjt69mTZ8dKmsJJrGg2M1MOEW gTfrIkt8PImRTwBUvckw9bvNLM4NjGlmP5wcRYqGepHmXGyXeqBm4YJsrxZo+LKb /EyA0WaxJzm1rlTyOGU2VxBlTJzGqELo9EkVW3LeUw/acwfKKZHbWcBHUVQ/weAE KXcNVFtg+C5fYOn6IRqr0SoPHm9zTUacqvtw2N7TIpWQBbvPZShhPuOzbfpaePmn u3WgcEN4MsQ9Tp8dmWg8/Xmhzcsd0/cx/TUBcpTvQJ07G+IvzmS9bsvs1PR9vcuY sVpwXT9dGb6iV5Z+2rfr2KYLhunbkxKHG8XirtBOkj55 -----END CERTIFICATE-----Generated at Fri Apr 17 14:24:19 2026 by rpki-client