$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/47DA361A3F8F11EF8FA3802DC4F9AE02.roa File: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (raw, json) Hash identifier: q5FKevNzsmGawtE5NPpNF5JroMkuiRvFoRzrdCWxt1U= Subject key identifier: 52:36:A6:09:97:22:EC:67:BE:18:08:4C:15:E4:2B:EA:9A:63:CF:50 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 0284 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/47DA361A3F8F11EF8FA3802DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:14:47 +0000 ROA not before: Fri 24 Oct 2025 12:43:28 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133034 IP address blocks: 103.156.126.0/23 maxlen: 23 103.156.126.0/24 maxlen: 24 103.156.127.0/24 maxlen: 24 103.251.232.0/22 maxlen: 22 103.251.232.0/23 maxlen: 23 103.251.232.0/24 maxlen: 24 103.251.233.0/24 maxlen: 24 103.251.234.0/23 maxlen: 23 103.251.234.0/24 maxlen: 24 103.251.235.0/24 maxlen: 24 121.46.70.0/24 maxlen: 24 2400:a740::/32 maxlen: 32 2400:a740::/48 maxlen: 48 2400:a740:1::/48 maxlen: 48 2400:a740:2::/48 maxlen: 48 2400:a740:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Oct 24 12:43:28 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47407-7cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a9:72:c5:27:51:5e:aa:17:e1:d9:ff:10:26: 10:8a:98:ad:c1:2a:f4:50:52:22:dc:91:e1:30:74: 08:f4:ea:fc:3f:e5:19:10:3d:16:56:b9:ee:3a:14: 9b:f4:d3:68:bb:5b:22:cf:3a:84:c0:a4:d5:a9:f2: 96:c6:78:49:94:66:c0:d6:c1:43:67:99:ca:23:25: 51:45:a7:fa:5f:73:35:40:fb:5c:cf:20:fe:f2:45: 24:ba:f8:50:1b:16:01:0f:6a:0a:0a:5f:6c:3b:c6: 39:a4:c6:af:1e:11:46:b9:42:31:d0:1f:f3:de:dd: c7:01:8c:5c:33:33:3c:00:87:7d:e2:b5:e6:f6:80: a8:79:ec:e8:98:e7:f5:ba:ca:ff:d8:02:92:7a:bf: 65:05:8e:59:fb:b6:11:5d:e1:ce:4c:76:02:e0:bd: 53:ae:59:70:f7:a0:32:eb:3f:0c:d8:e1:5d:57:37: 0b:19:c1:a5:29:9a:29:fc:dc:ea:45:98:f5:57:83: b3:e6:74:34:e0:11:fe:57:ab:3f:aa:4b:53:ad:7e: 98:48:df:9f:cb:61:9d:d4:88:4c:f6:26:93:b2:2f: 66:33:7c:bc:f5:6f:2e:53:5f:57:29:93:4a:b6:8b: 94:17:d4:c8:3d:f9:a8:31:6b:0e:ad:33:ac:d7:fc: ff:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:36:A6:09:97:22:EC:67:BE:18:08:4C:15:E4:2B:EA:9A:63:CF:50 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/47DA361A3F8F11EF8FA3802DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.126.0/23 103.251.232.0/22 121.46.70.0/24 IPv6: 2400:a740::/32 Signature Algorithm: sha256WithRSAEncryption 7e:29:2d:d8:fe:4e:21:fe:de:59:28:72:f8:45:b3:b3:4f:da: 9d:8f:00:de:08:6e:18:05:3c:48:a5:c2:21:7b:f4:45:40:7f: 65:d0:21:55:b7:5f:62:24:c9:f0:94:d8:1d:15:2b:e9:84:ec: d4:37:09:5e:b5:f9:63:fd:e8:01:66:52:e3:62:d7:e6:34:30: 4b:f3:b6:d2:4a:df:3b:ea:c7:32:76:a2:93:5b:bb:2e:56:3c: 02:77:b8:14:77:99:f8:98:af:8f:37:06:c1:58:ef:cd:99:19: f0:a9:17:34:81:99:76:ac:c4:bd:5b:55:83:8d:80:bc:95:85: 67:2f:23:37:73:22:3f:3a:c0:3c:b7:dd:1f:f1:6a:92:6d:8b: b4:e5:d4:9d:a8:c0:9f:96:01:47:b5:9f:c3:f0:cd:54:5f:1f: f9:f2:3e:13:9d:d8:24:58:df:86:c0:4a:1c:50:0b:c2:11:73: 8d:40:1c:88:03:b1:7c:67:7f:3d:fd:a3:6b:9d:25:b9:fd:03: 14:c4:f8:15:68:79:a4:0a:c8:1f:a5:ba:fd:b8:84:00:cd:af: 23:ac:1a:49:50:a5:07:1d:88:67:22:29:92:b8:a1:cf:a1:45: 7f:ea:7c:bd:4a:55:d1:37:1c:1c:74:31:f1:73:10:85:7b:23: 32:7c:39:b3 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUxMDI0MTI0MzI4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQwNy03Y2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2alyxSdRXqoX4dn/ECYQipitwSr0UFIi3JHhMHQI9Or8P+UZED0WVrnuOhSb 9NNou1sizzqEwKTVqfKWxnhJlGbA1sFDZ5nKIyVRRaf6X3M1QPtczyD+8kUkuvhQ GxYBD2oKCl9sO8Y5pMavHhFGuUIx0B/z3t3HAYxcMzM8AId94rXm9oCoeezomOf1 usr/2AKSer9lBY5Z+7YRXeHOTHYC4L1Trllw96Ay6z8M2OFdVzcLGcGlKZop/Nzq RZj1V4Oz5nQ04BH+V6s/qktTrX6YSN+fy2Gd1IhM9iaTsi9mM3y89W8uU19XKZNK touUF9TIPfmoMWsOrTOs1/z/YwIDAQABo4ICezCCAncwHQYDVR0OBBYEFFI2pgmX IuxnvhgITBXkK+qaY89QMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBGRUYvQjAzNjNENjA2NEY1MTFFRDgyQjAzQzExQzRGOUFFMDIvNDdEQTM2MUEz RjhGMTFFRjhGQTM4MDJEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZ5x+AwQCZ/voAwQAeS5GMA0EAgACMAcDBQAkAKdAMA0GCSqGSIb3 DQEBCwUAA4IBAQB+KS3Y/k4h/t5ZKHL4RbOzT9qdjwDeCG4YBTxIpcIhe/RFQH9l 0CFVt19iJMnwlNgdFSvphOzUNwletflj/egBZlLjYtfmNDBL87bSSt876scydqKT W7suVjwCd7gUd5n4mK+PNwbBWO/NmRnwqRc0gZl2rMS9W1WDjYC8lYVnLyM3cyI/ OsA8t90f8WqSbYu05dSdqMCflgFHtZ/D8M1UXx/58j4TndgkWN+GwEocUAvCEXON QByIA7F8Z389/aNrnSW5/QMUxPgVaHmkCsgfpbr9uIQAza8jrBpJUKUHHYhnIimS uKHPoUV/6ny9SlXRNxwcdDHxcxCFeyMyfDmz -----END CERTIFICATE-----Generated at Thu Mar 26 11:56:25 2026 by rpki-client