$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa File: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (raw, json) Hash identifier: ldho/4dcBhvMSFZNQSotx0OQwqa0gAe9if7fkQE4P7M= Subject key identifier: 05:D9:E5:9F:4D:BA:15:99:B9:13:7B:BF:D2:FC:3B:E7:D4:5E:9B:08 Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02A7 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:51:26 +0000 ROA not before: Thu 13 Nov 2025 16:13:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150334 IP address blocks: 103.14.169.0/24 maxlen: 24 2001:df1:55c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 13 16:13:02 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46e8e-2518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ca:a5:ec:4c:ac:68:46:54:e0:55:e6:9f:52: 5d:aa:7d:f3:c3:f7:d6:11:64:c6:bc:41:a6:b1:d1: a9:30:54:2e:25:74:19:35:41:1e:27:79:b9:13:8d: f6:e8:de:3e:03:3a:fe:bd:26:54:8a:d3:82:2a:9b: df:20:9e:f0:85:f6:40:ad:af:c1:dd:0d:c9:6b:c3: b7:73:9e:74:56:9a:a8:bf:eb:e8:e9:d9:1d:8a:92: b7:68:89:b9:64:45:ed:8a:56:80:1d:51:41:6f:00: 91:a7:c4:93:ee:1e:f3:c4:31:93:32:ac:42:56:7c: f2:ac:7b:58:67:72:78:bc:a4:8b:ab:84:9c:52:34: 0a:2b:65:fa:ac:43:94:51:20:14:59:fe:8d:23:9c: 38:d3:28:ad:d4:2f:0f:ad:de:d5:fc:2b:0e:13:a8: 84:fb:e3:10:87:7e:52:59:b5:42:18:8a:ed:49:07: 8b:fe:96:6c:37:1c:0e:89:2c:2e:78:46:d3:11:73: 0d:fd:33:51:ea:96:e8:71:95:3c:40:f6:37:08:82: 08:08:8f:14:ef:11:2b:18:d6:a9:90:a8:89:d9:1c: 9c:05:f7:79:33:12:99:00:52:5c:1c:3f:88:cb:1d: 34:37:b6:5a:70:89:f8:80:78:d5:4a:61:01:71:53: c1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D9:E5:9F:4D:BA:15:99:B9:13:7B:BF:D2:FC:3B:E7:D4:5E:9B:08 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.169.0/24 IPv6: 2001:df1:55c0::/48 Signature Algorithm: sha256WithRSAEncryption 2b:f8:09:b3:13:63:58:4c:a4:ee:6b:03:c1:0f:f4:12:fa:2e: 65:6b:aa:5e:56:22:eb:43:f8:4e:2b:9f:f0:fb:b2:e7:de:80: 12:c3:d6:db:43:e0:42:2e:cf:d7:fc:66:88:d9:26:36:4f:34: 6c:60:8c:6b:4f:05:8f:7c:13:d4:48:52:3d:9c:15:df:07:67: e9:ab:03:fd:41:cf:5e:98:0b:b9:f5:e5:8f:41:8a:d6:7d:8e: 3a:8a:04:4d:9d:3d:a2:43:8b:1f:ca:2f:51:53:4a:eb:7f:a8: d9:9a:9c:41:cb:e1:97:69:34:eb:64:e2:d1:a3:be:ea:2a:fc: e9:ac:cc:15:4b:8c:3f:64:ba:77:df:1a:47:51:79:ba:d1:09: 6d:68:16:25:ab:2f:24:16:e0:4b:96:b5:7a:8d:b6:8e:34:1f: 62:b0:8c:b0:a5:9c:7b:d2:3d:a0:e9:9b:c0:8f:f7:2c:ba:17: 89:a7:02:aa:f9:67:c3:e9:d5:d3:e7:e1:b4:ac:81:c3:06:13: 74:7f:10:b7:ec:9f:34:eb:e7:f7:7f:0d:3e:7c:f2:7f:91:be: 74:0a:99:75:61:45:ee:43:85:ec:b8:8e:a4:8e:f4:22:1d:63: 57:99:54:b5:cc:91:2f:53:8f:3b:68:69:6c:bd:d3:e0:fa:0d: d7:3c:11:60 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMTEzMTYxMzAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU4ZS0yNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9cql7EysaEZU4FXmn1Jdqn3zw/fWEWTGvEGmsdGpMFQuJXQZNUEeJ3m5E432 6N4+Azr+vSZUitOCKpvfIJ7whfZAra/B3Q3Ja8O3c550Vpqov+vo6dkdipK3aIm5 ZEXtilaAHVFBbwCRp8ST7h7zxDGTMqxCVnzyrHtYZ3J4vKSLq4ScUjQKK2X6rEOU USAUWf6NI5w40yit1C8Prd7V/CsOE6iE++MQh35SWbVCGIrtSQeL/pZsNxwOiSwu eEbTEXMN/TNR6pbocZU8QPY3CIIICI8U7xErGNapkKiJ2RycBfd5MxKZAFJcHD+I yx00N7ZacIn4gHjVSmEBcVPBSwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAXZ5Z9N uhWZuRN7v9L8O+fUXpsIMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDN0YvM0I3QkRBQkUzRkM3MTFFREFDOUIyMjFEQzRGOUFFMDIvQTBBOUQ3OThD MEFCMTFGMEIxQ0JEMTBGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZw6pMA8EAgACMAkDBwAgAQ3xVcAwDQYJKoZIhvcNAQELBQADggEB ACv4CbMTY1hMpO5rA8EP9BL6LmVrql5WIutD+E4rn/D7sufegBLD1ttD4EIuz9f8 ZojZJjZPNGxgjGtPBY98E9RIUj2cFd8HZ+mrA/1Bz16YC7n15Y9BitZ9jjqKBE2d PaJDix/KL1FTSut/qNmanEHL4ZdpNOtk4tGjvuoq/OmszBVLjD9kunffGkdRebrR CW1oFiWrLyQW4EuWtXqNto40H2KwjLClnHvSPaDpm8CP9yy6F4mnAqr5Z8Pp1dPn 4bSsgcMGE3R/ELfsnzTr5/d/DT588n+RvnQKmXVhRe5Dhey4jqSO9CIdY1eZVLXM kS9TjztoaWy90+D6Ddc8EWA= -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:50 2026 by rpki-client