$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa File: 9AA539E6A82411EA996D5F41C4F9AE02.roa (raw, json) Hash identifier: i1dwOevc3k9bwU5TzewRLrZW6NUS+x25YAF0oiOhGhU= Subject key identifier: 2A:6F:4E:CE:39:14:D7:76:10:1C:D5:DE:00:0F:AB:16:79:F6:C6:20 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 0993 Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:50:53 +0000 ROA not before: Sat 22 Mar 2025 20:40:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140552 IP address blocks: 103.150.78.0/23 maxlen: 23 103.150.78.0/24 maxlen: 24 103.150.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2451 (0x993) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Mar 22 20:40:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4281d-e9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:08:8f:e7:04:4b:b4:d0:8f:cd:b0:a8:87:88: b8:a7:95:26:9c:fd:e6:ab:a5:a4:11:86:0b:0e:51: b0:bd:bc:c9:f4:02:e7:85:28:52:64:25:38:92:9f: cd:7a:c3:f5:5d:6e:fd:4b:83:9f:61:d3:1f:e3:a3: 7f:56:6f:5b:06:e3:ed:3e:aa:a0:bc:87:60:87:60: 1d:a8:c6:e3:89:34:cc:5a:9b:29:ad:15:df:a0:3a: 21:24:07:d0:b0:a4:46:69:6f:51:d5:31:ab:0c:fa: de:ad:6a:be:ef:81:27:95:5f:29:79:82:26:1c:5e: 94:0c:45:d6:cc:a0:e4:81:93:63:af:06:50:a8:56: da:55:ed:c7:24:1c:ae:5a:c0:73:d0:6b:3f:da:6e: 2d:76:3f:e4:c9:74:5b:1f:d3:54:c1:3c:f3:29:20: 74:5e:9b:df:6b:0c:17:c6:55:4e:59:e6:a4:2a:1f: 2e:6f:29:13:c2:60:97:26:4b:51:e0:53:30:f8:3d: 9a:43:e5:5b:1b:c4:73:fe:a3:7c:ff:d2:35:7d:98: 30:16:83:3f:b4:48:de:6f:9a:90:2a:88:31:a6:03: 88:85:6a:d2:44:3e:13:77:16:b3:6e:1f:dc:11:82: af:63:58:22:b1:74:33:6b:fc:8c:cf:7c:98:45:3d: 33:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6F:4E:CE:39:14:D7:76:10:1C:D5:DE:00:0F:AB:16:79:F6:C6:20 X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/9AA539E6A82411EA996D5F41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.78.0/23 Signature Algorithm: sha256WithRSAEncryption 23:27:8f:e3:14:45:30:94:8a:3b:70:d8:7f:01:69:10:eb:0a: 4d:6f:8a:4a:b7:d9:32:96:78:eb:fa:69:85:ed:b1:a7:6f:91: 9f:50:e3:d3:93:2e:96:cf:24:05:2a:22:37:6f:1b:fd:a9:e0: 10:7a:4a:51:4c:91:15:8b:15:8e:a1:f6:0a:6c:1e:fb:66:19: b4:c4:d1:71:db:fa:49:e0:48:ff:f0:15:2c:b2:04:ea:d8:99: b0:a5:30:f9:37:d3:8e:8e:7f:39:93:66:73:ea:63:e6:93:dc: 0c:cb:6b:a2:9b:f1:54:a4:21:3f:97:89:fa:7d:0c:89:6c:88: b8:ed:6b:5f:c8:7a:54:a0:c8:ee:16:55:c7:e3:44:b0:7c:d3: ff:ef:9a:f6:16:b7:cb:28:90:b9:35:2d:e0:b7:3b:63:9a:78: ef:8a:d4:c3:12:b0:3d:c3:d1:8e:a2:dd:c8:f6:51:2d:55:cc: d5:1d:53:b3:99:0b:c2:3c:f7:f8:dc:f0:f9:d3:ef:22:b1:6f: a4:82:9e:9a:90:82:0c:e4:f3:1d:96:04:64:e4:bb:67:b8:8c: 27:ee:23:d4:37:d6:9a:fa:48:20:99:c1:ff:9b:76:27:d5:2c: 54:8d:c4:c1:71:b0:88:1d:2c:ac:a7:6a:ca:2c:37:c5:57:24: 32:33:eb:de -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUwMzIyMjA0MDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjgxZC1lOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1giP5wRLtNCPzbCoh4i4p5UmnP3mq6WkEYYLDlGwvbzJ9ALnhShSZCU4kp/N esP1XW79S4OfYdMf46N/Vm9bBuPtPqqgvIdgh2AdqMbjiTTMWpsprRXfoDohJAfQ sKRGaW9R1TGrDPrerWq+74EnlV8peYImHF6UDEXWzKDkgZNjrwZQqFbaVe3HJByu WsBz0Gs/2m4tdj/kyXRbH9NUwTzzKSB0XpvfawwXxlVOWeakKh8ubykTwmCXJktR 4FMw+D2aQ+VbG8Rz/qN8/9I1fZgwFoM/tEjeb5qQKogxpgOIhWrSRD4Tdxazbh/c EYKvY1gisXQza/yMz3yYRT0z0wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCpvTs45 FNd2EBzV3gAPqxZ59sYgMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMzMTgvNjVCNjcxQjZBODIyMTFFQUFCQUEyRjE5QzRGOUFFMDIvOUFBNTM5RTZB ODI0MTFFQTk5NkQ1RjQxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5ZOMA0GCSqGSIb3DQEBCwUAA4IBAQAjJ4/jFEUwlIo7cNh/AWkQ 6wpNb4pKt9kylnjr+mmF7bGnb5GfUOPTky6WzyQFKiI3bxv9qeAQekpRTJEVixWO ofYKbB77Zhm0xNFx2/pJ4Ej/8BUssgTq2JmwpTD5N9OOjn85k2Zz6mPmk9wMy2ui m/FUpCE/l4n6fQyJbIi47WtfyHpUoMjuFlXH40SwfNP/75r2FrfLKJC5NS3gtztj mnjvitTDErA9w9GOot3I9lEtVczVHVOzmQvCPPf43PD50+8isW+kgp6akIIM5PMd lgRk5LtnuIwn7iPUN9aa+kggmcH/m3Yn1SxUjcTBcbCIHSysp2rKLDfFVyQyM+ve -----END CERTIFICATE-----Generated at Mon Mar 2 13:41:44 2026 by rpki-client