$ rpki-client -vvf rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa File: 2D55C84C25CE11F0A36ACB18C4F9AE02.roa (raw, json) Hash identifier: ubJqUF2IGrFRV6LySQWZVQd1AO/BSkWfNqfrHnBZLZc= Subject key identifier: 1B:EE:D3:74:11:BB:29:2F:C7:E4:32:8B:63:40:69:98:EC:D1:2B:19 Certificate issuer: /CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Certificate serial: 01BA Authority key identifier: 5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:41:48 +0000 ROA not before: Wed 25 Jun 2025 04:14:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138346 IP address blocks: 103.188.136.0/23 maxlen: 23 103.188.136.0/24 maxlen: 24 103.188.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122DC4, serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Validity Not Before: Jun 25 04:14:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3dfac-baf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:b9:03:0b:d8:3f:bb:7b:94:a5:fc:67:d0: d0:cb:12:ba:51:54:9b:2a:69:4f:d1:86:a1:bd:f9: 7c:04:15:c4:bf:4b:98:07:e7:07:02:fa:57:28:a1: ce:19:c0:e1:84:90:94:f5:3f:0c:90:42:6d:05:b1: e4:14:9e:1f:16:1b:7f:b9:57:a3:72:ab:f2:c1:16: 83:a5:b9:7c:3e:d3:ab:40:2c:ca:33:11:d6:16:58: 94:a5:e0:ec:bb:7a:f0:7d:16:f5:42:a5:b1:74:ba: 52:ac:df:98:e8:8a:b1:72:09:f4:5d:70:24:55:1e: 2d:2c:30:6a:5d:5d:eb:ed:ea:a2:e3:b0:46:83:00: ed:a9:6f:af:a0:1c:b2:1b:fa:4e:01:80:2a:37:a9: c0:08:1b:3f:d1:29:24:0b:59:f3:57:02:c2:44:96: 78:24:08:1b:9c:15:e5:5e:17:a3:44:55:50:ef:3c: af:4e:f7:09:f6:89:05:c2:9d:7b:60:bc:c1:4f:1d: 6d:2d:21:f8:4b:9b:b0:3e:8b:69:76:8a:38:b5:8e: 39:04:4c:6f:e2:cb:c9:28:10:cc:59:8d:a8:65:0b: 53:56:08:ed:5b:23:5c:29:91:b7:a6:8b:18:da:94: 72:3b:cb:44:40:e2:86:f9:47:c8:60:e8:c6:2b:de: d3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EE:D3:74:11:BB:29:2F:C7:E4:32:8B:63:40:69:98:EC:D1:2B:19 X509v3 Authority Key Identifier: keyid:5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/2D55C84C25CE11F0A36ACB18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.188.136.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:40:bf:66:a6:39:e2:d6:3d:29:98:eb:01:88:f1:c9:81:cb: 51:34:9f:00:15:9f:3e:a3:8f:5b:ff:5a:c2:d2:dd:1e:c8:f6: 24:90:bf:15:43:9e:12:0b:9f:e4:1c:09:e1:27:d6:8f:07:01: 69:49:77:83:0e:f3:91:74:67:26:a2:8b:a9:c0:63:e7:19:c2: a8:cb:ef:02:63:5c:36:05:17:04:97:35:5a:96:39:59:11:95: 4f:ef:2c:a4:a6:34:5d:9c:b9:95:6d:89:3a:0f:ff:3f:e8:df: 04:86:d8:a6:2a:3e:cb:3a:8c:c1:c5:79:5c:49:85:c4:a0:1b: 0e:f5:9b:50:67:7b:ff:bc:18:68:ea:f3:2f:8c:0b:77:cc:79: b8:31:84:a2:88:e6:9d:43:31:57:6d:f2:1d:62:0d:61:61:50: 7f:e1:74:9d:ca:c4:2f:a0:d8:38:d3:a9:71:84:39:e8:5b:6b: fc:16:1a:fe:64:7d:08:b4:68:cb:71:a7:08:d2:e9:32:cb:f7: e3:2e:15:04:f9:7a:f6:7a:da:9b:36:4d:f7:bd:72:ef:4b:df: 08:95:77:ef:7f:31:72:ca:95:6d:4b:c0:b6:dd:cf:e1:d8:55: 40:95:bb:1f:d9:e9:63:8d:24:02:f6:48:e5:cb:fb:c0:fa:89: 14:c4:e6:51 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEQzQxMTAvBgNVBAUTKDVCNDMwMEZFNDlBRUUwRTQxNUNDNjE5NzZDMDJCNUI5 QzAyMDRBQUQwHhcNMjUwNjI1MDQxNDI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGZhYy1iYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnim5AwvYP7t7lKX8Z9DQyxK6UVSbKmlP0Yahvfl8BBXEv0uYB+cHAvpXKKHO GcDhhJCU9T8MkEJtBbHkFJ4fFht/uVejcqvywRaDpbl8PtOrQCzKMxHWFliUpeDs u3rwfRb1QqWxdLpSrN+Y6Iqxcgn0XXAkVR4tLDBqXV3r7eqi47BGgwDtqW+voByy G/pOAYAqN6nACBs/0SkkC1nzVwLCRJZ4JAgbnBXlXhejRFVQ7zyvTvcJ9okFwp17 YLzBTx1tLSH4S5uwPotpdoo4tY45BExv4svJKBDMWY2oZQtTVgjtWyNcKZG3posY 2pRyO8tEQOKG+UfIYOjGK97TuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBvu03QR uykvx+Qyi2NAaZjs0SsZMB8GA1UdIwQYMBaAFFtDAP5JruDkFcxhl2wCtbnAIEqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkRDNC81QkVERDA1NEIz MTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9XME1BX2ttdTRPUVZ6R0dYYkFLMXVjQWdT cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cwTUFfa211NE9RVnpHR1hiQUsxdWNBZ1NxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJEQzQvNUJFREQwNTRCMzE2MTFFRUE4QkNDNjI0QzRGOUFFMDIvMkQ1NUM4NEMy NUNFMTFGMEEzNkFDQjE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7yIMA0GCSqGSIb3DQEBCwUAA4IBAQAvQL9mpjni1j0pmOsBiPHJ gctRNJ8AFZ8+o49b/1rC0t0eyPYkkL8VQ54SC5/kHAnhJ9aPBwFpSXeDDvORdGcm ooupwGPnGcKoy+8CY1w2BRcElzValjlZEZVP7yykpjRdnLmVbYk6D/8/6N8Ehtim Kj7LOozBxXlcSYXEoBsO9ZtQZ3v/vBho6vMvjAt3zHm4MYSiiOadQzFXbfIdYg1h YVB/4XSdysQvoNg406lxhDnoW2v8Fhr+ZH0ItGjLcacI0ukyy/fjLhUE+Xr2etqb Nk33vXLvS98IlXfvfzFyypVtS8C23c/h2FVAlbsf2eljjSQC9kjly/vA+okUxOZR -----END CERTIFICATE-----Generated at Thu Mar 26 09:20:55 2026 by rpki-client