$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa File: C4F05AA6144911EF85E2DC26C4F9AE02.roa (raw, json) Hash identifier: /NtrLnJuEAViuBe6uBD1zILIC3VQgyY0Q82ciLC1R7Y= Subject key identifier: 10:3E:43:F0:BF:94:23:0D:F2:A7:0B:0C:97:2E:56:3F:C2:ED:50:3E Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 2298 Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:39:37 +0000 ROA not before: Tue 06 May 2025 16:23:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132296 IP address blocks: 103.255.115.0/24 maxlen: 24 202.134.144.0/24 maxlen: 24 202.134.145.0/24 maxlen: 24 202.134.146.0/24 maxlen: 24 202.134.147.0/24 maxlen: 24 202.134.148.0/24 maxlen: 24 202.134.149.0/24 maxlen: 24 202.134.150.0/24 maxlen: 24 202.134.151.0/24 maxlen: 24 202.134.152.0/24 maxlen: 24 202.134.153.0/24 maxlen: 24 202.134.157.0/24 maxlen: 24 202.134.158.0/24 maxlen: 24 202.134.159.0/24 maxlen: 24 202.134.162.0/24 maxlen: 24 202.134.167.0/24 maxlen: 24 202.134.168.0/24 maxlen: 24 202.134.173.0/24 maxlen: 24 202.134.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8856 (0x2298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2, serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: May 6 16:23:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a44199-e69c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:28:60:20:72:18:11:55:c3:06:d6:88:8e: b0:d2:22:bb:38:7b:64:ed:47:07:42:77:24:f4:d9: 97:d3:8c:44:47:82:4d:85:80:20:a2:d4:0e:27:e6: 49:fb:db:e9:df:e5:f2:fa:b2:e9:e1:24:91:1e:a7: 4b:3f:b4:31:e0:8f:01:9f:0c:a3:7e:c9:c3:d5:64: 8b:76:b2:6e:89:df:de:d1:8c:33:65:a2:d8:7e:cf: 1e:37:61:3b:35:f3:b9:23:1e:69:d0:25:be:6a:dd: fd:e5:92:bb:91:9c:d8:3e:74:a8:19:35:96:26:d4: 36:d6:2f:e6:c4:e6:aa:cb:e2:d2:a9:0b:e1:80:01: 59:a2:ab:10:a4:b8:24:36:42:ca:51:f2:9c:d7:86: 56:3c:97:79:22:9c:b4:f8:87:ab:00:f0:51:7a:95: 7a:9b:2e:be:a8:5d:2a:3e:0e:d6:59:0b:7c:90:74: cb:e3:0a:32:93:82:ad:4b:19:5a:3a:c2:9c:df:b7: d3:4d:20:69:58:b0:63:46:16:7b:f9:ea:d0:e1:d7: 2b:ce:ea:c6:f3:eb:68:f2:d3:ba:0c:91:1d:55:75: af:4b:dd:22:94:ce:b7:80:3e:ff:0d:01:c7:46:34: 3d:eb:ef:b0:a3:77:55:cf:8d:6a:4b:6b:a8:c4:5f: 26:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3E:43:F0:BF:94:23:0D:F2:A7:0B:0C:97:2E:56:3F:C2:ED:50:3E X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.115.0/24 202.134.144.0-202.134.153.255 202.134.157.0-202.134.159.255 202.134.162.0/24 202.134.167.0-202.134.168.255 202.134.173.0-202.134.174.255 Signature Algorithm: sha256WithRSAEncryption 6b:fc:b3:7b:42:28:bc:fb:d5:85:dc:47:cd:85:12:09:76:ef: 09:d4:0a:fe:97:7f:95:ce:1c:50:ed:4d:d0:e0:92:c6:30:e0: 00:7b:bb:38:7b:f5:bd:00:55:ba:8d:81:89:3d:86:45:3c:c6: e9:a9:07:8a:4e:32:a0:23:9b:a8:b2:26:a4:e9:86:5b:36:9a: ff:23:7b:34:70:8c:06:ba:bc:85:7f:4c:a4:d3:fc:bf:4e:3a: f5:39:0f:bb:0a:6e:e7:3d:3d:3d:ec:db:6c:cd:0f:72:6b:2c: c2:da:62:04:82:93:c6:b5:eb:ac:1b:16:e0:4f:4c:9a:56:ad: fa:68:4a:91:bb:5f:7f:3c:e9:b2:45:64:3f:27:ad:a5:be:10: 19:1c:1f:0e:b8:69:4d:19:cb:51:cf:6f:f5:4f:18:ed:22:ba: 7f:58:2f:12:d4:dc:b2:84:5d:98:38:44:8a:23:4d:88:eb:fb: 5c:eb:96:2b:7d:e0:c9:cc:98:93:49:15:ca:17:fc:4d:a5:e8: 77:e5:14:7d:2e:c2:72:6d:b4:77:ba:4d:e1:ea:8d:17:08:f6: 9f:89:af:0f:93:93:4b:c6:60:e4:45:ac:cc:78:c9:09:26:ff: 29:60:c4:3a:cc:83:28:f1:79:f4:19:b0:94:30:8f:f5:e0:d6: 41:5c:e3:c5 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICIpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjUwNTA2MTYyMzM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDE5OS1lNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstooYCByGBFVwwbWiI6w0iK7OHtk7UcHQnck9NmX04xER4JNhYAgotQOJ+ZJ +9vp3+Xy+rLp4SSRHqdLP7Qx4I8BnwyjfsnD1WSLdrJuid/e0YwzZaLYfs8eN2E7 NfO5Ix5p0CW+at395ZK7kZzYPnSoGTWWJtQ21i/mxOaqy+LSqQvhgAFZoqsQpLgk NkLKUfKc14ZWPJd5Ipy0+IerAPBRepV6my6+qF0qPg7WWQt8kHTL4woyk4KtSxla OsKc37fTTSBpWLBjRhZ7+erQ4dcrzurG8+to8tO6DJEdVXWvS90ilM63gD7/DQHH RjQ96++wo3dVz41qS2uoxF8mrQIDAQABo4ICnjCCApowHQYDVR0OBBYEFBA+Q/C/ lCMN8qcLDJcuVj/C7VA+MB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQzRGMDVBQTYx NDQ5MTFFRjg1RTJEQzI2QzRGOUFFMDIucm9hMF0GCCsGAQUFBwEHAQH/BE4wTDBK BAIAATBEAwQAZ/9zMAwDBATKhpADBAHKhpgwDAMEAMqGnQMEBcqGgAMEAMqGojAM AwQAyoanAwQAyoaoMAwDBADKhq0DBADKhq4wDQYJKoZIhvcNAQELBQADggEBAGv8 s3tCKLz71YXcR82FEgl27wnUCv6Xf5XOHFDtTdDgksYw4AB7uzh79b0AVbqNgYk9 hkU8xumpB4pOMqAjm6iyJqTphls2mv8jezRwjAa6vIV/TKTT/L9OOvU5D7sKbuc9 PT3s22zND3JrLMLaYgSCk8a166wbFuBPTJpWrfpoSpG7X3886bJFZD8nraW+EBkc Hw64aU0Zy1HPb/VPGO0iun9YLxLU3LKEXZg4RIojTYjr+1zrlit94MnMmJNJFcoX /E2l6HflFH0uwnJttHe6TeHqjRcI9p+Jrw+Tk0vGYORFrMx4yQkm/ylgxDrMgyjx efQZsJQwj/Xg1kFc48U= -----END CERTIFICATE-----Generated at Mon Mar 2 05:33:58 2026 by rpki-client