$ rpki-client -vvf rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/1F63D776D29011EDA849876CC4F9AE02.roa File: 1F63D776D29011EDA849876CC4F9AE02.roa (raw, json) Hash identifier: zHAD2aRjfS80FrmwnylIxolsBZEI+CFeAtlJuiT/1ns= Subject key identifier: B7:1C:B1:53:47:9A:A7:49:0F:88:EC:C0:12:CB:E3:88:1A:4C:9F:30 Certificate issuer: /CN=A9140B3F/serialNumber=A0FBFDE351597092B687ECC640EC85DC29F20173 Certificate serial: 0237 Authority key identifier: A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/1F63D776D29011EDA849876CC4F9AE02.roa Signing time: Sat 21 Mar 2026 02:37:08 +0000 ROA not before: Sat 21 Mar 2026 02:37:08 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 45352 IP address blocks: 36.255.140.0/24 maxlen: 24 36.255.141.0/24 maxlen: 24 36.255.142.0/23 maxlen: 23 103.209.156.0/22 maxlen: 22 103.209.156.0/23 maxlen: 24 103.209.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140B3F, serialNumber=A0FBFDE351597092B687ECC640EC85DC29F20173 Validity Not Before: Mar 21 02:37:08 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69be0454-3b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:a6:2c:f8:59:67:29:b2:33:a2:10:ac:ea: 20:52:cc:09:3c:50:62:ea:34:74:bc:ce:b6:6c:5f: c8:fe:1b:ca:e0:61:d7:a9:2d:0c:26:98:e0:bb:c0: 63:3e:03:20:2a:f0:50:2e:6e:08:d7:d1:e7:c3:ec: d6:34:9c:e1:47:26:b5:55:6c:6e:7a:9a:6a:d3:24: d2:84:2d:6b:46:a6:c1:31:1b:50:8b:df:3c:14:7e: 48:72:dd:e9:6c:90:8f:5d:03:46:4a:45:62:b2:d5: 2c:ab:f8:26:c4:d0:ad:26:8e:59:bf:1d:64:3c:53: af:b2:6d:ed:a4:d5:4e:59:ac:ae:fb:25:eb:fc:bf: 2c:b6:6d:c3:03:7c:9a:ce:bc:44:93:f0:5d:82:5a: 39:d2:c8:04:a0:9d:24:8c:db:55:1e:2d:71:c7:37: 60:ae:63:3f:41:bd:7a:31:8b:d5:fb:cb:de:b7:15: de:75:04:6c:02:41:c8:3e:00:ce:bc:3a:06:91:09: 29:e2:2b:de:42:4a:23:47:fb:9f:d8:60:64:87:6a: 0d:fb:4e:48:0f:fb:a6:46:a8:04:4c:d3:3a:dd:c2: 73:38:14:cd:51:d7:db:90:f1:a8:c1:cd:2b:27:4b: 4e:fb:0d:8b:e9:12:74:03:eb:db:35:5f:01:96:b5: ef:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1C:B1:53:47:9A:A7:49:0F:88:EC:C0:12:CB:E3:88:1A:4C:9F:30 X509v3 Authority Key Identifier: keyid:A0:FB:FD:E3:51:59:70:92:B6:87:EC:C6:40:EC:85:DC:29:F2:01:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/oPv941FZcJK2h-zGQOyF3CnyAXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPv941FZcJK2h-zGQOyF3CnyAXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140B3F/F8D72CDCD28C11EDBAE9EE6AC4F9AE02/1F63D776D29011EDA849876CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.140.0/22 103.209.156.0/22 Signature Algorithm: sha256WithRSAEncryption a5:46:f6:82:3d:6a:87:0b:14:e4:75:89:2b:ce:5f:32:34:52: 60:bc:d4:b7:ac:04:62:0b:6d:17:80:b7:c7:6b:a2:66:e5:22: ad:14:95:cd:e8:b7:29:cb:cc:61:50:7a:8c:d9:60:bc:0b:4f: 05:6c:4d:72:ed:87:d4:44:bb:cb:7a:4c:20:bb:53:e2:50:9d: cb:0b:a6:c4:60:a6:19:c6:07:8a:1d:d7:20:8b:86:53:7d:c1: d0:6f:2d:71:fd:6a:26:0e:f5:1f:33:cd:05:21:de:90:48:a7: 60:b4:13:02:5c:93:c4:12:78:7e:9f:81:fd:7c:0b:40:5e:4f: aa:e2:38:ca:5d:ad:ff:46:53:09:bf:f3:93:8e:bc:64:86:3d: 52:ed:1b:92:9d:3b:d9:ee:37:5e:e1:fe:44:4d:00:95:ff:e8: a9:cb:dd:86:86:05:1d:49:00:64:f6:81:ad:dc:e9:1f:70:0f: 2d:73:a8:76:75:81:50:7b:46:73:3d:bf:71:77:f2:9f:68:c3: 54:e4:86:c1:15:d2:37:52:c8:a7:de:c2:79:11:eb:f2:e3:38: b2:9f:3d:62:3f:55:00:a3:ed:59:b3:2e:a5:18:7c:92:67:45: 00:9b:e8:e7:ac:1c:87:00:be:0d:4a:1e:11:80:26:88:17:07: be:10:db:6a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCM0YxMTAvBgNVBAUTKEEwRkJGREUzNTE1OTcwOTJCNjg3RUNDNjQwRUM4NURD MjlGMjAxNzMwHhcNMjYwMzIxMDIzNzA4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJlMDQ1NC0zYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9GmLPhZZymyM6IQrOogUswJPFBi6jR0vM62bF/I/hvK4GHXqS0MJpjgu8Bj PgMgKvBQLm4I19Hnw+zWNJzhRya1VWxueppq0yTShC1rRqbBMRtQi988FH5Ict3p bJCPXQNGSkVistUsq/gmxNCtJo5Zvx1kPFOvsm3tpNVOWayu+yXr/L8stm3DA3ya zrxEk/Bdglo50sgEoJ0kjNtVHi1xxzdgrmM/Qb16MYvV+8vetxXedQRsAkHIPgDO vDoGkQkp4iveQkojR/uf2GBkh2oN+05ID/umRqgETNM63cJzOBTNUdfbkPGowc0r J0tO+w2L6RJ0A+vbNV8BlrXv3wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLccsVNH mqdJD4jswBLL44gaTJ8wMB8GA1UdIwQYMBaAFKD7/eNRWXCStofsxkDshdwp8gFz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEIzRi9GOEQ3MkNEQ0Qy OEMxMUVEQkFFOUVFNkFDNEY5QUUwMi9vUHY5NDFGWmNKSzJoLXpHUU95RjNDbnlB WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qdjk0MUZaY0pLMmgtekdRT3lGM0NueUFYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCM0YvRjhENzJDRENEMjhDMTFFREJBRTlFRTZBQzRGOUFFMDIvMUY2M0Q3NzZE MjkwMTFFREE4NDk4NzZDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCJP+MAwQCZ9GcMA0GCSqGSIb3DQEBCwUAA4IBAQClRvaCPWqHCxTk dYkrzl8yNFJgvNS3rARiC20XgLfHa6Jm5SKtFJXN6Lcpy8xhUHqM2WC8C08FbE1y 7YfURLvLekwgu1PiUJ3LC6bEYKYZxgeKHdcgi4ZTfcHQby1x/WomDvUfM80FId6Q SKdgtBMCXJPEEnh+n4H9fAtAXk+q4jjKXa3/RlMJv/OTjrxkhj1S7RuSnTvZ7jde 4f5ETQCV/+ipy92GhgUdSQBk9oGt3OkfcA8tc6h2dYFQe0ZzPb9xd/KfaMNU5IbB FdI3Usin3sJ5Eevy4ziynz1iP1UAo+1Zsy6lGHySZ0UAm+jnrByHAL4NSh4RgCaI Fwe+ENtq -----END CERTIFICATE-----Generated at Thu Mar 26 23:22:36 2026 by rpki-client