$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/46F4E81842B611F1BDBC0B88BD833773.roa File: 46F4E81842B611F1BDBC0B88BD833773.roa (raw, json) Hash identifier: bjvoF+HUltCMZqOM/EeOs1/NfOSmFvhkJtwfMjdbJBk= Subject key identifier: C9:CE:8A:5A:A5:10:19:BE:B3:B9:F0:B8:42:CB:61:69:0A:EE:FE:5A Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 099A Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/46F4E81842B611F1BDBC0B88BD833773.roa Signing time: Tue 28 Apr 2026 03:56:47 +0000 ROA not before: Tue 28 Apr 2026 03:56:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55707 IP address blocks: 103.1.108.0/22 maxlen: 24 103.23.104.0/23 maxlen: 24 103.23.106.0/23 maxlen: 24 163.47.252.0/22 maxlen: 24 203.31.114.0/23 maxlen: 24 223.25.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447, serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: Apr 28 03:56:47 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69f02fff-9887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6b:60:05:a7:52:a4:93:cd:ac:60:78:ce:b3: 23:31:bc:69:ba:b4:06:5f:12:e3:5f:6d:c5:81:78: 45:aa:07:d9:ab:37:3a:0a:a8:37:ca:1a:35:56:66: 6f:3b:91:07:f1:9f:ab:4a:75:b6:e3:a5:fa:3b:c3: b8:44:31:20:cc:29:93:ff:50:f0:31:ec:01:84:2f: 71:c7:ea:9a:3e:31:b7:4d:49:a3:eb:26:5a:b9:d9: 4f:0c:b5:89:0b:46:b5:4d:35:9a:13:2a:54:d1:84: 29:3b:b6:24:08:bf:a0:0c:ee:98:f1:e6:7f:f0:65: 69:62:56:7f:19:0b:0c:cb:d8:60:79:3e:d3:86:cd: 76:b6:ce:b4:f3:df:f0:1a:46:55:04:48:c6:30:4f: ea:76:01:1f:1f:69:31:a8:b8:40:34:e7:a4:70:8b: a2:63:79:4d:23:cb:c2:36:fb:7e:fa:91:db:9d:85: 10:78:79:2c:23:9c:c0:30:2e:b5:19:8c:67:d3:df: aa:ee:64:ef:a3:bf:2c:c5:30:04:4f:08:b5:a1:a5: d0:da:3d:61:66:d6:3a:7d:a6:d2:69:19:08:f2:d5: 0c:8f:fa:98:ae:51:f9:2a:37:58:d2:aa:50:5e:47: 75:0e:cc:0b:b4:8a:83:b7:25:c3:a8:01:ec:c0:9c: 4e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:CE:8A:5A:A5:10:19:BE:B3:B9:F0:B8:42:CB:61:69:0A:EE:FE:5A X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/46F4E81842B611F1BDBC0B88BD833773.roa sbgp-ipAddrBlock: critical IPv4: 103.1.108.0/22 103.23.104.0/22 163.47.252.0/22 203.31.114.0/23 223.25.112.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:c1:79:f2:38:f1:ef:a2:c1:0c:bf:d8:3e:50:fb:22:9f:de: 3b:53:b0:98:a4:aa:f9:08:aa:d4:4c:77:11:ef:bf:5a:99:63: 6c:47:e9:b2:92:b0:da:cd:f3:45:34:47:bb:27:b5:fc:60:07: ea:01:16:2a:11:17:1b:80:14:06:cc:1f:d0:57:11:6c:2d:7c: ba:68:aa:f3:d7:c0:39:aa:f8:83:9d:a9:25:4d:d3:e5:d3:57: d7:af:bf:6b:34:74:12:72:d9:bc:d2:da:96:bb:86:cc:9f:c3: af:a5:90:5e:a6:bc:de:01:de:2d:49:11:7e:40:20:97:f1:3e: e7:b7:d9:20:df:aa:6c:49:2b:f0:c4:bf:be:a1:de:67:42:9f: 52:ab:df:4c:13:4e:74:3d:dd:e9:1a:10:44:e0:f6:90:93:05: ff:87:41:6a:72:89:c3:02:ac:37:58:7e:0e:80:d2:7e:39:65: 02:3a:bf:d3:f5:18:a2:3c:22:83:49:08:e0:1f:f5:f6:24:6c: ce:f3:6a:08:fe:c9:ab:ba:ce:12:e3:6a:02:25:e3:3a:84:1d: 5d:cb:42:c8:03:2e:a5:15:18:22:c8:52:39:73:69:13:d3:eb: f7:81:e5:a2:0e:bf:cc:28:43:af:f6:46:ae:b6:76:46:92:cd: 99:11:c2:87 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjYwNDI4MDM1NjQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwMmZmZi05ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWtgBadSpJPNrGB4zrMjMbxpurQGXxLjX23FgXhFqgfZqzc6Cqg3yho1VmZv O5EH8Z+rSnW246X6O8O4RDEgzCmT/1DwMewBhC9xx+qaPjG3TUmj6yZaudlPDLWJ C0a1TTWaEypU0YQpO7YkCL+gDO6Y8eZ/8GVpYlZ/GQsMy9hgeT7Ths12ts6089/w GkZVBEjGME/qdgEfH2kxqLhANOekcIuiY3lNI8vCNvt++pHbnYUQeHksI5zAMC61 GYxn09+q7mTvo78sxTAETwi1oaXQ2j1hZtY6fabSaRkI8tUMj/qYrlH5KjdY0qpQ Xkd1DswLtIqDtyXDqAHswJxOAwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFMnOilql EBm+s7nwuELLYWkK7v5aMB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg0NDcvNENFQjNDM0NCMEZEMTFFQThBMDk5MjQyQzRGOUFFMDIvNDZGNEU4MTg0 MkI2MTFGMUJEQkMwQjg4QkQ4MzM3NzMucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZwFsAwQCZxdoAwQCoy/8AwQByx9yAwQD3xlwMA0GCSqGSIb3DQEB CwUAA4IBAQA+wXnyOPHvosEMv9g+UPsin947U7CYpKr5CKrUTHcR779amWNsR+my krDazfNFNEe7J7X8YAfqARYqERcbgBQGzB/QVxFsLXy6aKrz18A5qviDnaklTdPl 01fXr79rNHQSctm80tqWu4bMn8OvpZBeprzeAd4tSRF+QCCX8T7nt9kg36psSSvw xL++od5nQp9Sq99ME050Pd3pGhBE4PaQkwX/h0FqconDAqw3WH4OgNJ+OWUCOr/T 9RiiPCKDSQjgH/X2JGzO82oI/smrus4S42oCJeM6hB1dy0LIAy6lFRgiyFI5c2kT 0+v3geWiDr/MKEOv9kautnZGks2ZEcKH -----END CERTIFICATE-----Generated at Wed May 13 12:41:52 2026 by rpki-client