$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/EA8F3FAE6F8611F0BA25F244C4F9AE02.roa File: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (raw, json) Hash identifier: I3945a68aAj4Bezh1bF6xRl/WpfQZcBM/2Xudp6szlE= Subject key identifier: 14:0C:DE:20:A7:7D:F9:75:4D:7E:E6:A4:F1:2B:07:0F:65:E7:7F:98 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 0433 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/EA8F3FAE6F8611F0BA25F244C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:50:42 +0000 ROA not before: Sat 08 Nov 2025 23:15:41 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 149173 IP address blocks: 103.177.206.0/24 maxlen: 24 103.177.207.0/24 maxlen: 24 2402:1ca0::/33 maxlen: 41 2402:1ca0:8000::/33 maxlen: 41 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Nov 8 23:15:41 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43622-b26b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:58:74:aa:ac:82:70:f2:fa:df:a0:37:96: 54:03:f8:67:21:7a:d4:f1:7b:0c:94:a8:55:e0:be: d7:6f:fe:62:59:af:a2:4f:07:45:c6:64:9c:6e:e0: 12:20:ab:61:00:b2:7c:48:53:c8:45:4b:3f:b0:68: fe:e3:6d:e5:ce:82:2d:e3:2e:a5:bf:00:c5:af:61: 39:d5:df:0a:8a:f4:13:a6:21:b6:19:5f:9e:c1:d3: f4:20:9d:14:41:75:ff:c2:22:9a:2e:cc:44:33:a4: 67:67:6a:02:19:e8:be:f3:3b:33:73:e4:d2:32:f7: 63:5c:d4:f0:34:94:b3:2d:2c:31:71:a6:93:52:e5: 90:30:41:76:4f:aa:31:51:80:21:dc:b0:02:7a:f9: a2:ee:31:86:01:2e:04:53:fc:0a:71:a3:51:02:04: 7b:9f:b1:89:6f:10:01:98:72:c2:2a:68:77:1b:e1: f0:7c:29:29:90:67:f6:52:2b:04:3f:d8:92:44:a0: 99:8a:d3:d5:f4:40:08:3d:f1:35:ff:65:7a:e1:6c: 84:f2:8e:88:37:bf:e3:43:79:11:bd:54:03:e4:51: 3c:08:b8:1f:ba:2b:7c:46:7a:7b:16:86:88:13:c0: 38:9a:46:66:c0:bb:2a:d5:f8:f2:49:5e:90:ae:7d: f3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0C:DE:20:A7:7D:F9:75:4D:7E:E6:A4:F1:2B:07:0F:65:E7:7F:98 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/EA8F3FAE6F8611F0BA25F244C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.177.206.0/23 IPv6: 2402:1ca0::/32 Signature Algorithm: sha256WithRSAEncryption 87:fd:81:6e:af:8a:51:97:d0:33:12:f5:75:9c:3a:f4:d5:77: b8:b9:5d:34:cf:84:ee:1c:d1:43:d2:d2:79:92:a0:55:24:a1: c5:5f:7d:e6:60:41:04:58:27:9c:58:57:8f:77:7a:d4:aa:bb: 65:8b:71:28:34:c2:42:74:e6:de:10:ca:46:5e:36:60:89:c9: 2c:16:6d:ce:f0:1e:20:f4:a3:0b:75:da:1f:0a:ba:f1:48:c1: d2:39:14:6a:c6:ae:1e:4a:37:0c:01:11:b2:62:52:a1:3e:19: e2:23:13:a3:71:a0:49:78:40:69:16:96:bc:bb:72:ae:2d:e6: 7e:a8:71:69:14:09:d1:76:64:0d:d7:97:94:b0:63:ac:fd:5c: 76:42:f7:55:9b:c9:f4:93:d3:e1:49:c2:57:f7:e9:88:1a:62: 04:3f:29:39:a2:d8:4d:2b:75:dc:93:39:f6:cb:a1:dd:f1:5e: c3:b2:a5:f7:2a:f6:19:61:47:48:f6:ee:85:22:4c:db:b5:38: 0f:e1:54:2d:90:8d:dd:56:9d:5b:a9:d9:5c:e9:d3:1a:45:bf: 24:4b:0d:68:c0:5f:7e:da:d4:64:25:28:98:61:f5:30:aa:ce: 8a:c6:c8:47:cc:e9:9a:bf:5c:25:0c:da:38:d6:37:94:c9:e5: 72:4d:dc:ee -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUxMTA4MjMxNTQxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzYyMi1iMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRhYdKqsgnDy+t+gN5ZUA/hnIXrU8XsMlKhV4L7Xb/5iWa+iTwdFxmScbuAS IKthALJ8SFPIRUs/sGj+423lzoIt4y6lvwDFr2E51d8KivQTpiG2GV+ewdP0IJ0U QXX/wiKaLsxEM6RnZ2oCGei+8zszc+TSMvdjXNTwNJSzLSwxcaaTUuWQMEF2T6ox UYAh3LACevmi7jGGAS4EU/wKcaNRAgR7n7GJbxABmHLCKmh3G+HwfCkpkGf2UisE P9iSRKCZitPV9EAIPfE1/2V64WyE8o6IN7/jQ3kRvVQD5FE8CLgfuit8Rnp7FoaI E8A4mkZmwLsq1fjySV6Qrn3zWQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFBQM3iCn ffl1TX7mpPErBw9l53+YMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdCMzkvQTc1OTlEN0FBMDM1MTFFQzgyMjU1RDNBQzRGOUFFMDIvRUE4RjNGQUU2 Rjg2MTFGMEJBMjVGMjQ0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7HOMA0EAgACMAcDBQAkAhygMA0GCSqGSIb3DQEBCwUAA4IBAQCH /YFur4pRl9AzEvV1nDr01Xe4uV00z4TuHNFD0tJ5kqBVJKHFX33mYEEEWCecWFeP d3rUqrtli3EoNMJCdObeEMpGXjZgicksFm3O8B4g9KMLddofCrrxSMHSORRqxq4e SjcMARGyYlKhPhniIxOjcaBJeEBpFpa8u3KuLeZ+qHFpFAnRdmQN15eUsGOs/Vx2 QvdVm8n0k9PhScJX9+mIGmIEPyk5othNK3Xckzn2y6Hd8V7DsqX3KvYZYUdI9u6F IkzbtTgP4VQtkI3dVp1bqdlc6dMaRb8kSw1owF9+2tRkJSiYYfUwqs6KxshHzOma v1wlDNo41jeUyeVyTdzu -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:32 2026 by rpki-client