$ rpki-client -vvf rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/CDB922F074AF11EFA0B26646C4F9AE02.roa File: CDB922F074AF11EFA0B26646C4F9AE02.roa (raw, json) Hash identifier: WWBACUh4p1PPK9KcHPTTQfFx5ubcC8J0wopYYr+Csh8= Subject key identifier: AE:CB:05:79:58:3D:39:EB:E3:9C:97:72:8D:4B:57:7F:78:01:58:1C Certificate issuer: /CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Certificate serial: 0137 Authority key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/CDB922F074AF11EFA0B26646C4F9AE02.roa Signing time: Sun 03 May 2026 06:37:53 +0000 ROA not before: Sun 03 May 2026 06:37:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132300 IP address blocks: 103.212.36.0/22 maxlen: 22 103.212.36.0/24 maxlen: 24 103.212.37.0/24 maxlen: 24 103.212.38.0/24 maxlen: 24 103.212.39.0/24 maxlen: 24 139.5.144.0/24 maxlen: 24 139.5.145.0/24 maxlen: 24 139.5.146.0/24 maxlen: 24 139.5.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133F6B, serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Validity Not Before: May 3 06:37:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f6ed41-aeb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ac:b3:02:68:04:cb:6a:79:0a:10:52:dd:d2: ee:01:71:95:eb:d5:27:a8:59:42:7b:e2:30:b4:44: fa:0c:44:30:f0:f5:4b:24:60:9f:0e:12:86:f4:59: 71:be:3a:13:ec:23:2e:62:db:64:54:d6:1c:36:87: 0f:be:5b:b5:63:b8:e2:ef:ef:0f:d9:e6:dc:79:52: 11:f2:4f:dd:1c:94:3c:92:35:2e:32:0f:95:2e:4c: 88:eb:c9:22:a0:03:cb:62:1e:26:bc:99:84:c6:b6: e5:f8:55:32:63:81:a7:bf:20:fc:9e:59:91:95:4d: c8:68:73:09:dd:1b:d9:a7:53:c6:95:4d:91:fe:3d: 90:3e:8d:bd:c0:3e:69:2c:72:b6:77:fa:15:66:b2: e2:1a:24:38:b9:fc:9a:f7:32:8e:85:a8:99:45:ec: 9c:f2:9f:86:2e:ea:43:31:ea:4e:ea:f2:8b:ae:73: 26:80:79:f9:94:1c:75:62:48:2d:1e:3f:51:0f:b5: 47:8b:c7:a4:da:57:8c:0c:df:b3:0d:96:42:ee:ba: bd:ac:de:47:d0:be:63:e2:68:7b:92:c2:88:f3:ff: 98:49:7a:f0:a6:99:10:95:44:1e:2d:1c:42:fe:8d: 6c:c7:b9:ad:70:f8:8d:ac:8d:b3:64:a3:ee:01:58: 5f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CB:05:79:58:3D:39:EB:E3:9C:97:72:8D:4B:57:7F:78:01:58:1C X509v3 Authority Key Identifier: keyid:34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/CDB922F074AF11EFA0B26646C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.36.0/22 139.5.144.0/22 Signature Algorithm: sha256WithRSAEncryption 79:fb:09:bf:2e:38:65:36:91:f6:42:6b:e1:85:87:69:f7:21: 98:de:bf:f3:7c:51:9a:9c:70:7b:84:29:97:6a:2a:ec:78:f9: 42:4c:fe:04:58:0e:74:78:87:d2:f1:71:55:69:f0:4e:bc:56: f5:d0:b5:b6:09:c9:fd:cb:0b:89:ac:ae:4e:13:8b:46:dd:8e: bf:7f:b7:c4:99:85:04:40:d3:07:a5:53:bd:83:c7:01:47:34: ca:b7:3f:8d:1a:f2:3b:51:f7:64:78:89:10:16:35:b3:a3:3a: 46:5e:7f:2f:82:52:ad:04:da:17:75:2e:f1:f4:93:22:43:22: 8b:ee:f7:f7:b2:97:ac:6d:9f:6b:d8:9e:0c:b7:96:55:24:13: e4:5d:5e:8d:0b:23:d0:88:06:3c:ad:b6:e0:3d:63:f2:70:b5: 9a:5e:db:b0:1f:f5:2d:64:98:8e:b0:2a:28:c1:9b:8e:66:b1: 07:58:1e:3f:97:0a:ae:e1:c2:74:ca:8c:ce:09:12:42:92:af: 0f:81:cc:29:4f:fd:27:ec:bc:50:13:25:ea:df:76:5c:95:45: d4:e1:ff:e5:14:0c:33:c9:d1:ce:c0:ed:35:ca:0c:94:2e:36: 6b:ce:02:09:ad:1f:12:8f:e3:37:58:b3:4a:31:60:f7:34:b6: ff:40:b8:32 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNGNkIxMTAvBgNVBAUTKDM0RDdCRDYxNDM5NkFFNDQ1MTcwRTA1OEUwQUVEQ0VC QUQ0OTQwNUYwHhcNMjYwNTAzMDYzNzUzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2ZWQ0MS1hZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqyzAmgEy2p5ChBS3dLuAXGV69UnqFlCe+IwtET6DEQw8PVLJGCfDhKG9Flx vjoT7CMuYttkVNYcNocPvlu1Y7ji7+8P2ebceVIR8k/dHJQ8kjUuMg+VLkyI68ki oAPLYh4mvJmExrbl+FUyY4GnvyD8nlmRlU3IaHMJ3RvZp1PGlU2R/j2QPo29wD5p LHK2d/oVZrLiGiQ4ufya9zKOhaiZReyc8p+GLupDMepO6vKLrnMmgHn5lBx1Ykgt Hj9RD7VHi8ek2leMDN+zDZZC7rq9rN5H0L5j4mh7ksKI8/+YSXrwppkQlUQeLRxC /o1sx7mtcPiNrI2zZKPuAVhfiwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFK7LBXlY PTnr45yXco1LV394AVgcMB8GA1UdIwQYMBaAFDTXvWFDlq5EUXDgWOCu3OutSUBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0Y2Qi85ODUyOTMzRTc0 QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3JrUlJjT0JZNEs3YzY2MUpR RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZTlZVU9XcmtSUmNPQlk0SzdjNjYxSlFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNGNkIvOTg1MjkzM0U3NEE2MTFFRkFCNEIwNTNDQzRGOUFFMDIvQ0RCOTIyRjA3 NEFGMTFFRkEwQjI2NjQ2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9QkAwQCiwWQMA0GCSqGSIb3DQEBCwUAA4IBAQB5+wm/LjhlNpH2 QmvhhYdp9yGY3r/zfFGanHB7hCmXairsePlCTP4EWA50eIfS8XFVafBOvFb10LW2 Ccn9ywuJrK5OE4tG3Y6/f7fEmYUEQNMHpVO9g8cBRzTKtz+NGvI7UfdkeIkQFjWz ozpGXn8vglKtBNoXdS7x9JMiQyKL7vf3spesbZ9r2J4Mt5ZVJBPkXV6NCyPQiAY8 rbbgPWPycLWaXtuwH/UtZJiOsCoowZuOZrEHWB4/lwqu4cJ0yozOCRJCkq8Pgcwp T/0n7LxQEyXq33ZclUXU4f/lFAwzydHOwO01ygyULjZrzgIJrR8Sj+M3WLNKMWD3 NLb/QLgy -----END CERTIFICATE-----Generated at Wed May 13 09:31:29 2026 by rpki-client