$ rpki-client -vvf rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa File: F13A6FB883D011E7948A8052C4F9AE02.roa (raw, json) Hash identifier: ndXV8WedcHGWm8XZYJPMRvdi8MWWV4BANrcCdmnyq7M= Subject key identifier: 4B:84:60:5F:DC:48:B0:3F:EC:FF:77:4F:59:5D:4E:04:5F:71:24:E7 Certificate issuer: /CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Certificate serial: 199A Authority key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:30:49 +0000 ROA not before: Tue 24 Jun 2025 16:26:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17882 IP address blocks: 43.242.240.0/24 maxlen: 24 43.242.241.0/24 maxlen: 24 43.242.242.0/24 maxlen: 24 43.242.243.0/24 maxlen: 24 103.26.192.0/24 maxlen: 24 103.26.193.0/24 maxlen: 24 103.26.194.0/24 maxlen: 24 103.26.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6554 (0x199a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119510, serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Validity Not Before: Jun 24 16:26:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42369-5c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:71:de:36:49:ad:a8:eb:95:23:01:96:64: 27:9b:2f:66:3b:da:7d:36:79:0d:ee:c5:f2:54:e2: f7:a1:99:50:b0:7d:e5:4a:29:6f:2e:43:16:c7:e9: d6:06:9c:67:b7:2f:f6:cc:27:f2:11:a2:03:c2:de: ba:12:8b:82:d3:ec:97:81:32:de:85:65:45:c9:26: 04:c3:5a:60:30:7a:b6:9d:b2:20:e8:91:f3:84:19: b0:a7:5c:b8:30:32:97:08:64:e2:f9:db:d4:3b:ff: fd:e8:23:39:fa:e2:39:02:8b:bf:5f:33:36:93:04: 8a:23:d9:0e:5a:d9:18:2e:7e:b9:d8:07:13:ab:02: d9:36:88:f3:52:63:36:fe:2a:82:d3:9d:66:99:aa: ac:45:8a:68:61:9c:87:54:e1:0c:15:54:bf:9f:cd: 65:09:60:95:a6:d0:c9:e1:85:19:7e:bf:03:0b:2b: 2c:12:6e:4d:2f:46:ee:2f:1d:e0:d3:82:ad:dc:8e: 33:e4:b4:2e:f5:2f:a8:23:f2:de:27:ab:4a:76:14: 14:b1:96:18:1f:ad:d9:e6:ff:f6:7c:63:7a:8b:27: 36:94:9e:4c:36:2e:89:71:87:ab:9b:4c:4e:f6:f0: e6:7c:70:6c:c7:44:14:95:0b:0b:00:c2:e3:f4:00: 07:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:84:60:5F:DC:48:B0:3F:EC:FF:77:4F:59:5D:4E:04:5F:71:24:E7 X509v3 Authority Key Identifier: keyid:8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.240.0/22 103.26.192.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:b6:e2:ca:11:35:42:85:f1:f9:bd:26:63:72:e7:47:94:bf: 73:85:ab:82:3a:4d:27:49:80:8d:c0:79:6e:e0:95:77:e7:06: ca:ca:93:e7:22:10:8e:5e:c0:83:7c:ac:3a:04:43:7f:78:e5: 7f:1d:c9:66:5d:90:6a:82:0a:ab:ba:a9:ab:2f:2f:24:25:e5: 65:52:67:04:60:d7:b8:ee:2e:cd:04:8e:b6:1e:34:24:5b:d7: 9b:f8:b6:d5:a8:d0:c5:eb:1d:b1:2e:15:f5:55:93:bc:e6:9c: 03:12:5f:16:a3:07:26:e4:b3:a2:3f:b7:93:63:3d:27:32:37: eb:cd:a4:f0:7a:cf:65:cd:bc:3c:77:e6:fe:a7:fd:d5:5f:8c: 11:42:10:87:ef:3d:84:e9:f4:4a:54:1e:7b:5c:88:e8:d0:bb: 43:3a:ce:e6:6c:de:84:3c:33:3c:f3:9d:22:a8:a4:aa:e2:de: 2f:54:40:b0:89:95:4b:19:9b:db:2f:c2:bb:ff:81:ac:b5:c8: d1:51:5a:9a:84:87:a9:c4:0b:4e:b4:1a:ec:98:f9:87:5d:6b: c1:3e:c8:05:81:a5:31:2f:34:62:8c:c3:a0:f1:e4:27:0a:f4: 0e:11:75:de:b7:70:c6:f1:25:6b:6e:36:b9:51:44:be:44:e0: 87:c6:1b:6a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1MTAxMTAvBgNVBAUTKDhCREY1MTE4OUExREJERjk2ODQzNEI1RTczNkFBOUFC RkQ0NTU2MUMwHhcNMjUwNjI0MTYyNjU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjM2OS01YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvypx3jZJrajrlSMBlmQnmy9mO9p9NnkN7sXyVOL3oZlQsH3lSilvLkMWx+nW Bpxnty/2zCfyEaIDwt66EouC0+yXgTLehWVFySYEw1pgMHq2nbIg6JHzhBmwp1y4 MDKXCGTi+dvUO//96CM5+uI5Aou/XzM2kwSKI9kOWtkYLn652AcTqwLZNojzUmM2 /iqC051mmaqsRYpoYZyHVOEMFVS/n81lCWCVptDJ4YUZfr8DCyssEm5NL0buLx3g 04Kt3I4z5LQu9S+oI/LeJ6tKdhQUsZYYH63Z5v/2fGN6iyc2lJ5MNi6JcYerm0xO 9vDmfHBsx0QUlQsLAMLj9AAHSQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEuEYF/c SLA/7P93T1ldTgRfcSTnMB8GA1UdIwQYMBaAFIvfURiaHb35aENLXnNqqav9RVYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTUxMC8wRERGNUIwODgz Q0YxMUU3ODM4RUE4NEVDNEY5QUUwMi9pOTlSR0pvZHZmbG9RMHRlYzJxcHFfMUZW aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5OVJHSm9kdmZsb1EwdGVjMnFwcV8xRlZody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk1MTAvMERERjVCMDg4M0NGMTFFNzgzOEVBODRFQzRGOUFFMDIvRjEzQTZGQjg4 M0QwMTFFNzk0OEE4MDUyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/LwAwQCZxrAMA0GCSqGSIb3DQEBCwUAA4IBAQALtuLKETVChfH5 vSZjcudHlL9zhauCOk0nSYCNwHlu4JV35wbKypPnIhCOXsCDfKw6BEN/eOV/Hclm XZBqggqruqmrLy8kJeVlUmcEYNe47i7NBI62HjQkW9eb+LbVqNDF6x2xLhX1VZO8 5pwDEl8Wowcm5LOiP7eTYz0nMjfrzaTwes9lzbw8d+b+p/3VX4wRQhCH7z2E6fRK VB57XIjo0LtDOs7mbN6EPDM8850iqKSq4t4vVECwiZVLGZvbL8K7/4GstcjRUVqa hIepxAtOtBrsmPmHXWvBPsgFgaUxLzRijMOg8eQnCvQOEXXet3DG8SVrbja5UUS+ ROCHxhtq -----END CERTIFICATE-----Generated at Thu Mar 26 12:58:12 2026 by rpki-client