$ rpki-client -vvf rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C60C2764185011F1A18A69DF283D8C67.roa File: C60C2764185011F1A18A69DF283D8C67.roa (raw, json) Hash identifier: I8olMC5CQ8v8CUELDXLaq2KV7YbR8LxPwnwv5RnxsQk= Subject key identifier: C0:FE:28:F6:44:57:D0:F9:C0:0F:94:53:A8:3B:05:9E:01:05:B5:B2 Certificate issuer: /CN=A9110DEC/serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Certificate serial: 0ADA Authority key identifier: B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C60C2764185011F1A18A69DF283D8C67.roa Signing time: Mon 09 Mar 2026 10:38:04 +0000 ROA not before: Mon 09 Mar 2026 10:38:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135590 IP address blocks: 103.95.208.0/23 maxlen: 23 103.95.208.0/24 maxlen: 24 103.95.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110DEC, serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Validity Not Before: Mar 9 10:38:04 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69aea30c-09fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:d4:74:fd:70:53:65:cd:b5:50:d6:2c:ed: 34:1c:96:8f:91:98:aa:a0:b0:12:32:9d:c0:de:3a: 15:a7:51:2e:f9:41:03:84:16:27:80:8c:6d:db:aa: d9:56:55:57:b6:62:e5:09:b6:4f:84:bd:49:c4:f8: e0:63:f6:17:04:06:53:4e:2d:ae:b5:56:7f:41:47: e9:79:72:43:c4:8d:a3:b6:6e:72:e9:71:d4:28:5b: 13:67:9d:f9:21:77:3c:0e:50:d0:c6:62:7d:bf:f1: 9e:d5:fe:29:f4:37:47:e5:62:fb:2a:f2:97:ed:5e: f5:b7:fa:2a:57:fd:8a:dd:66:14:02:6d:42:05:78: dd:83:5f:d2:cd:9c:07:96:6d:f9:57:2d:d8:2c:72: 31:9b:c7:3f:69:63:e1:51:d9:ed:f1:35:78:0d:0e: ec:31:6d:6e:43:ae:ff:85:61:fe:69:1f:3d:63:d0: 42:6c:58:d4:1a:c1:66:b9:47:6c:31:e6:32:c5:07: 40:72:83:4c:d7:7b:1a:1b:8c:cf:fc:e3:dd:fe:48: 61:5f:11:2b:c4:65:24:b0:3a:46:78:ea:27:c4:7a: 99:21:ad:5e:de:82:22:23:11:a7:fe:af:0d:c9:b2: 61:a9:94:25:57:56:ab:fb:04:9e:58:64:ee:34:42: 65:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FE:28:F6:44:57:D0:F9:C0:0F:94:53:A8:3B:05:9E:01:05:B5:B2 X509v3 Authority Key Identifier: keyid:B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/C60C2764185011F1A18A69DF283D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.95.208.0/23 Signature Algorithm: sha256WithRSAEncryption 30:51:62:7f:fa:85:88:92:a7:86:2e:f1:93:e7:3d:09:f6:ab: cf:29:8e:4d:7f:b1:17:44:a0:55:70:d8:a7:b8:9c:55:ea:d3: e9:ad:d7:f7:a9:df:41:65:74:a5:ba:8c:8c:fa:8c:05:3b:0a: 75:3e:60:6a:f5:81:d3:e0:5f:cf:2c:09:78:cc:2a:79:a7:24: 6b:39:97:b6:47:17:6e:41:8e:bc:cf:53:9c:ac:db:80:95:92: 3c:bc:ae:e1:e4:8a:df:f9:74:d9:a6:bc:0c:ba:dc:ef:ba:f9: 96:6a:a4:a6:b0:1c:09:5b:01:d0:0a:08:c9:3f:f5:29:36:03: c9:2d:a2:ac:f7:b5:18:2a:05:9c:9d:eb:e2:8a:f8:ee:c7:8a: 43:16:40:3c:be:fd:83:6b:bb:a1:cf:44:31:0f:7c:c5:ea:49: 94:76:da:5f:dd:5b:99:5e:ed:28:17:01:4d:e8:b0:9d:a1:bf: 85:2c:25:84:f6:d7:a7:f3:b4:a3:92:93:40:54:aa:0f:90:a8: 2f:ad:1a:97:97:55:ed:12:39:ff:3d:f1:4e:a0:04:3d:25:4a: 44:3f:c7:a4:5a:7e:3e:1a:37:2b:e2:db:32:5e:c7:89:cf:7d: 54:6d:5b:74:d5:ff:73:94:16:91:63:f8:44:b4:94:a7:9c:22: de:75:a3:45 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBERUMxMTAvBgNVBAUTKEI4RDkzNTA2QzhBNzkxRDFGOUZGQTVCNjdDMzg4MTZE REMwM0VFNkIwHhcNMjYwMzA5MTAzODA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFlYTMwYy0wOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3HUdP1wU2XNtVDWLO00HJaPkZiqoLASMp3A3joVp1Eu+UEDhBYngIxt26rZ VlVXtmLlCbZPhL1JxPjgY/YXBAZTTi2utVZ/QUfpeXJDxI2jtm5y6XHUKFsTZ535 IXc8DlDQxmJ9v/Ge1f4p9DdH5WL7KvKX7V71t/oqV/2K3WYUAm1CBXjdg1/SzZwH lm35Vy3YLHIxm8c/aWPhUdnt8TV4DQ7sMW1uQ67/hWH+aR89Y9BCbFjUGsFmuUds MeYyxQdAcoNM13saG4zP/OPd/khhXxErxGUksDpGeOonxHqZIa1e3oIiIxGn/q8N ybJhqZQlV1ar+wSeWGTuNEJlTwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMD+KPZE V9D5wA+UU6g7BZ4BBbWyMB8GA1UdIwQYMBaAFLjZNQbIp5HR+f+ltnw4gW3cA+5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMERFQy8xNzJEMEEyNDZC RUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtkSDVfNlcyZkRpQmJkd0Q3 bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOazFCc2lua2RINV82VzJmRGlCYmR3RDdtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBERUMvMTcyRDBBMjQ2QkVGMTFFQUEyNkE1RTIyQzRGOUFFMDIvQzYwQzI3NjQx ODUwMTFGMUExOEE2OURGMjgzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ1/QMA0GCSqGSIb3DQEBCwUAA4IBAQAwUWJ/+oWIkqeGLvGT5z0J 9qvPKY5Nf7EXRKBVcNinuJxV6tPprdf3qd9BZXSluoyM+owFOwp1PmBq9YHT4F/P LAl4zCp5pyRrOZe2RxduQY68z1OcrNuAlZI8vK7h5Irf+XTZprwMutzvuvmWaqSm sBwJWwHQCgjJP/UpNgPJLaKs97UYKgWcneviivjux4pDFkA8vv2Da7uhz0QxD3zF 6kmUdtpf3VuZXu0oFwFN6LCdob+FLCWE9ten87SjkpNAVKoPkKgvrRqXl1XtEjn/ PfFOoAQ9JUpEP8ekWn4+Gjcr4tsyXseJz31UbVt01f9zlBaRY/hEtJSnnCLedaNF -----END CERTIFICATE-----Generated at Thu Mar 26 14:00:03 2026 by rpki-client