$ rpki-client -vvf rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa File: 3AA7BED6ECBA11EE8736F274C4F9AE02.roa (raw, json) Hash identifier: bytZ59Ia8ZFaLY4XNox1TiPwLTz6zD1b+H+2egXVeZ0= Subject key identifier: 1C:C8:A5:FC:AF:64:6B:FF:6C:7C:75:13:25:BA:A9:0F:AD:45:28:40 Certificate issuer: /CN=A9127E99/serialNumber=E2534D26C78C9701790996438C114108254776AA Certificate serial: 0272 Authority key identifier: E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:52:23 +0000 ROA not before: Tue 05 Aug 2025 03:11:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134218 IP address blocks: 103.234.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.crl rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127E99, serialNumber=E2534D26C78C9701790996438C114108254776AA Validity Not Before: Aug 5 03:11:03 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46ec7-e064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:98:f4:60:5a:9f:cc:ac:4f:fc:0d:2f:21:d7: a9:5d:bd:1c:c6:dd:45:e6:33:7a:ed:46:63:6d:d9: 06:d7:80:e2:91:78:d5:7d:54:d7:fe:15:cb:19:bf: a2:36:64:2b:b0:32:46:9d:0e:44:1a:03:69:98:25: 0e:ed:92:61:ae:9f:bf:3c:93:85:9b:e5:48:f1:2d: c8:ec:3e:22:c9:b7:73:1e:e4:19:0f:60:d0:7d:51: 8e:c7:33:7f:15:92:a3:72:b6:28:66:b8:c1:5a:01: b8:1c:37:c2:1d:66:5c:fc:f6:56:be:a4:51:97:7b: 12:47:52:c2:84:4e:30:31:fb:a4:d1:e8:9b:ba:e9: f2:97:81:41:2f:2b:f1:c2:59:a0:c1:8c:5e:51:93: 4c:f5:a2:91:51:b5:29:fa:6c:7c:28:da:cb:83:08: f1:84:3c:c7:43:c3:ba:e4:93:65:d4:64:b1:dc:54: 96:bf:18:f8:11:15:d1:b5:4e:df:7f:5b:24:aa:60: 2c:cd:a3:00:d1:a8:bd:43:0b:9b:f2:4c:ef:02:e2: 86:7b:65:62:e1:d6:a0:a7:a3:33:6e:96:d1:65:15: 86:32:35:92:f1:d3:78:95:48:42:da:a6:69:f1:e9: de:33:5f:0a:e3:84:43:5e:b5:f1:7e:2d:87:20:a6: a7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C8:A5:FC:AF:64:6B:FF:6C:7C:75:13:25:BA:A9:0F:AD:45:28:40 X509v3 Authority Key Identifier: keyid:E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/3AA7BED6ECBA11EE8736F274C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.109.0/24 Signature Algorithm: sha256WithRSAEncryption 96:9f:10:db:f6:d0:96:71:c4:8d:70:7a:e3:c0:e0:34:07:bd: 1a:dd:54:91:ed:e7:84:d2:99:61:8c:49:54:c5:23:5b:19:b2: de:b0:b2:da:07:08:b3:af:88:54:10:24:a3:62:79:10:06:91: 86:fa:7d:da:af:26:ce:c9:63:d4:84:ae:05:f2:ed:4b:85:8b: c9:3c:6f:9d:12:0b:60:15:73:96:52:0d:b0:92:cc:9c:c8:93: c9:92:ad:b3:05:58:96:34:80:a2:08:86:07:c6:08:49:74:9c: b0:1a:ed:2a:9a:16:17:fe:a4:5f:4b:ca:54:bc:6e:22:c4:9e: 60:d1:7c:10:0b:d8:fb:86:be:1d:3e:e2:0d:6e:27:cb:6c:9c: 0d:79:d8:9f:6f:f0:69:4a:f4:dc:cc:87:26:c3:cf:7c:3b:df: 36:cb:2b:b0:29:fa:15:d9:17:2d:0a:86:03:8c:5e:02:46:e1: 06:b3:1f:94:48:d6:70:6d:61:34:ec:16:23:0a:50:54:34:3b: be:7b:bb:40:1f:bd:07:12:7f:c5:4c:9e:6b:3c:dc:bd:e3:ed: ab:4f:e3:02:3d:2b:67:a6:39:d7:3f:ca:80:9c:f2:28:42:03: 99:80:56:24:af:61:e5:76:6d:dd:e6:27:32:62:23:eb:4b:5a: 70:45:8c:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFOTkxMTAvBgNVBAUTKEUyNTM0RDI2Qzc4Qzk3MDE3OTA5OTY0MzhDMTE0MTA4 MjU0Nzc2QUEwHhcNMjUwODA1MDMxMTAzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmVjNy1lMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Jj0YFqfzKxP/A0vIdepXb0cxt1F5jN67UZjbdkG14DikXjVfVTX/hXLGb+i NmQrsDJGnQ5EGgNpmCUO7ZJhrp+/PJOFm+VI8S3I7D4iybdzHuQZD2DQfVGOxzN/ FZKjcrYoZrjBWgG4HDfCHWZc/PZWvqRRl3sSR1LChE4wMfuk0eibuunyl4FBLyvx wlmgwYxeUZNM9aKRUbUp+mx8KNrLgwjxhDzHQ8O65JNl1GSx3FSWvxj4ERXRtU7f f1skqmAszaMA0ai9Qwub8kzvAuKGe2Vi4dagp6MzbpbRZRWGMjWS8dN4lUhC2qZp 8eneM18K44RDXrXxfi2HIKanSQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBzIpfyv ZGv/bHx1EyW6qQ+tRShAMB8GA1UdIwQYMBaAFOJTTSbHjJcBeQmWQ4wRQQglR3aq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0U5OS8wQUNFMTlCMDdB ODUxMUVEQUQ2OTI4ODdDNEY5QUUwMi80bE5OSnNlTWx3RjVDWlpEakJGQkNDVkhk cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRsTk5Kc2VNbHdGNUNaWkRqQkZCQ0NWSGRxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdFOTkvMEFDRTE5QjA3QTg1MTFFREFENjkyODg3QzRGOUFFMDIvM0FBN0JFRDZF Q0JBMTFFRTg3MzZGMjc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+ptMA0GCSqGSIb3DQEBCwUAA4IBAQCWnxDb9tCWccSNcHrjwOA0 B70a3VSR7eeE0plhjElUxSNbGbLesLLaBwizr4hUECSjYnkQBpGG+n3arybOyWPU hK4F8u1LhYvJPG+dEgtgFXOWUg2wksycyJPJkq2zBViWNICiCIYHxghJdJywGu0q mhYX/qRfS8pUvG4ixJ5g0XwQC9j7hr4dPuINbifLbJwNedifb/BpSvTczIcmw898 O982yyuwKfoV2RctCoYDjF4CRuEGsx+USNZwbWE07BYjClBUNDu+e7tAH70HEn/F TJ5rPNy94+2rT+MCPStnpjnXP8qAnPIoQgOZgFYkr2Hldm3d5icyYiPrS1pwRYyS -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:09 2026 by rpki-client