$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/359388D8006511F1AA0FA34B566F56BC.roa File: 359388D8006511F1AA0FA34B566F56BC.roa (raw, json) Hash identifier: ZOtwRxhmupTieRo9qgJrLBkzO+gTqGzLiKJz701clvc= Subject key identifier: 73:16:23:20:9F:A9:CE:C7:EF:5B:5E:61:9B:DC:22:9F:53:E9:34:96 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 09CA Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/359388D8006511F1AA0FA34B566F56BC.roa Signing time: Sun 01 Mar 2026 16:32:08 +0000 ROA not before: Mon 02 Feb 2026 18:30:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139351 IP address blocks: 103.141.158.0/24 maxlen: 24 103.141.159.0/24 maxlen: 24 2400:17a0::/48 maxlen: 48 2400:17a0:1::/48 maxlen: 48 2400:17a0:2::/48 maxlen: 48 2400:17a0:3::/48 maxlen: 48 2400:17a0:4::/48 maxlen: 48 2400:17a0:5::/48 maxlen: 48 2400:17a0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Feb 2 18:30:12 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46a08-e5e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:7c:15:d1:8a:eb:90:7d:ce:1d:d3:dc:2b:7c: d4:c5:5e:1e:64:39:03:16:dd:b5:86:28:3c:40:c2: 0f:12:58:7f:19:fc:ae:68:05:8f:6c:83:d8:bc:ed: 46:e3:54:1f:89:60:5f:b1:88:fb:e7:bf:48:72:7c: 36:b0:1d:c3:aa:1e:c2:36:1f:f2:cf:d4:22:49:85: f3:18:fb:10:51:cb:02:b7:ca:ab:e2:2b:35:5f:ae: ef:a1:81:71:9e:7e:54:34:ef:6b:04:75:a9:d5:0c: dd:f3:30:8b:7f:9b:c5:97:81:64:cf:bb:b3:36:e2: 7d:fc:a5:f8:3b:8b:1a:81:19:eb:c5:cd:ce:76:d6: c6:32:35:60:e9:2b:ae:9c:16:79:1d:db:c7:23:d5: 4c:94:6a:f8:65:7f:e3:d4:d8:9d:70:c0:2d:5d:72: 2c:c9:80:fd:62:9c:fe:a9:fb:b6:61:7e:5f:88:e8: 41:33:4b:d0:14:9a:54:e5:65:06:eb:7d:34:03:50: 57:db:8a:8a:d1:3b:11:86:9d:6a:64:a1:d4:e8:71: 8c:94:76:38:14:33:83:2a:6c:a4:f7:df:43:1a:81: 0f:f5:15:7d:4c:74:71:94:16:82:36:2a:7e:e1:7b: 8e:d1:e3:ba:ee:04:29:d7:f1:c9:23:36:65:af:5f: 95:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:16:23:20:9F:A9:CE:C7:EF:5B:5E:61:9B:DC:22:9F:53:E9:34:96 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/359388D8006511F1AA0FA34B566F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.141.158.0/23 IPv6: 2400:17a0::-2400:17a0:5:ffff:ffff:ffff:ffff:ffff 2400:17a0:9::/48 Signature Algorithm: sha256WithRSAEncryption 15:e2:7c:7b:56:ee:e5:1a:15:f1:68:c2:3c:57:a0:02:f3:8f: 74:e7:3b:cb:77:73:02:bb:47:21:91:92:27:39:7c:4e:97:29: 55:19:d2:f9:63:4f:ef:9a:cb:59:f0:74:83:32:4e:10:24:fa: e2:6f:0a:0a:40:89:e2:4d:5c:f9:4f:e7:98:9d:05:50:aa:eb: 24:46:2c:b3:50:39:ab:3c:97:0c:bd:19:28:4e:34:e3:bc:27: fc:2d:d2:eb:a1:68:c6:f0:18:24:96:b0:c7:86:c7:8f:ed:71: 26:04:84:92:6e:7b:c2:e1:6e:21:73:b9:57:21:9c:02:19:07: 78:67:b2:ed:e1:c0:31:60:da:1f:28:6a:13:cd:06:55:6a:d4: 04:79:91:69:bb:e6:e4:76:06:2d:0b:a3:bd:c1:c0:a0:03:f7: 65:53:bc:79:c4:36:53:01:af:5e:ba:f7:39:44:09:86:b7:a4: 62:73:cb:28:12:05:94:99:ae:65:da:78:35:98:99:d8:4a:92: 79:67:ec:ff:09:e5:a8:4c:51:5f:50:4d:88:90:fd:a8:0a:9e: af:41:51:05:fd:36:3b:ae:27:af:b1:55:e2:f2:07:21:47:02: fb:f5:a7:aa:14:40:bf:56:98:5f:fc:84:06:4f:6c:5b:ff:4f: 01:30:1a:32 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjYwMjAyMTgzMDEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmEwOC1lNWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjXwV0YrrkH3OHdPcK3zUxV4eZDkDFt21hig8QMIPElh/GfyuaAWPbIPYvO1G 41QfiWBfsYj7579Icnw2sB3Dqh7CNh/yz9QiSYXzGPsQUcsCt8qr4is1X67voYFx nn5UNO9rBHWp1Qzd8zCLf5vFl4Fkz7uzNuJ9/KX4O4sagRnrxc3OdtbGMjVg6Suu nBZ5HdvHI9VMlGr4ZX/j1NidcMAtXXIsyYD9Ypz+qfu2YX5fiOhBM0vQFJpU5WUG 6300A1BX24qK0TsRhp1qZKHU6HGMlHY4FDODKmyk999DGoEP9RV9THRxlBaCNip+ 4XuO0eO67gQp1/HJIzZlr1+VHQIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFHMWIyCf qc7H71teYZvcIp9T6TSWMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJCQzkvODNGRjlGRUNBQTgxMTFFQUI0MkEwNDMzQzRGOUFFMDIvMzU5Mzg4RDgw MDY1MTFGMUFBMEZBMzRCNTY2RjU2QkMucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAM BAIAATAGAwQBZ42eMCEEAgACMBswEAMFBSQAF6ADBwEkABegAAQDBwAkABegAAkw DQYJKoZIhvcNAQELBQADggEBABXifHtW7uUaFfFowjxXoALzj3TnO8t3cwK7RyGR kic5fE6XKVUZ0vljT++ay1nwdIMyThAk+uJvCgpAieJNXPlP55idBVCq6yRGLLNQ Oas8lwy9GShONOO8J/wt0uuhaMbwGCSWsMeGx4/tcSYEhJJue8LhbiFzuVchnAIZ B3hnsu3hwDFg2h8oahPNBlVq1AR5kWm75uR2Bi0Lo73BwKAD92VTvHnENlMBr166 9zlECYa3pGJzyygSBZSZrmXaeDWYmdhKknln7P8J5ahMUV9QTYiQ/agKnq9BUQX9 NjuuJ6+xVeLyByFHAvv1p6oUQL9WmF/8hAZPbFv/TwEwGjI= -----END CERTIFICATE-----Generated at Fri Mar 27 00:08:48 2026 by rpki-client