$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa File: B523DAE68C9211EABC682867C4F9AE02.roa (raw, json) Hash identifier: 6j7bxqHzx1dI1kYE2+5kVsCKoZs1p0M+vne2lqDu34U= Subject key identifier: A8:8B:80:CA:E9:C3:B7:15:07:CD:49:A0:65:6B:4C:73:E5:69:C3:8B Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0DAD Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:38:18 +0000 ROA not before: Fri 04 Jul 2025 18:27:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63991 IP address blocks: 103.58.144.0/23 maxlen: 24 103.127.62.0/23 maxlen: 24 2405:55c0::/32 maxlen: 32 2405:55c0::/48 maxlen: 48 2405:55c0:3c::/48 maxlen: 48 2405:55c0:3f::/48 maxlen: 48 2405:55c0:54::/48 maxlen: 48 2405:55c0:55::/48 maxlen: 48 2405:55c0:80::/48 maxlen: 48 2405:55c0:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3501 (0xdad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Jul 4 18:27:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4252a-188c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:f6:d7:52:45:7f:c2:03:f5:df:c7:03:02: c4:3b:4e:84:fa:1b:fc:73:df:d9:36:97:7e:f8:d8: 3b:38:11:90:5e:18:5f:6f:ba:51:c5:49:a5:4d:d1: 16:af:54:be:c7:63:66:7e:21:af:5e:f2:0c:54:c9: 37:e5:26:25:6b:77:4a:01:e6:ab:e8:55:63:29:af: e8:6f:0e:3e:ae:ef:2b:fa:a1:13:f6:3a:ae:3d:c7: 8a:0c:fb:32:b6:7c:ce:f5:20:6c:da:d4:dc:5d:f7: c0:9b:b6:8c:ff:ce:d7:34:40:05:1e:88:a3:07:ed: 81:7a:ee:47:0e:19:eb:5b:eb:dc:50:59:24:77:70: 47:79:e4:b1:70:d3:60:07:eb:f7:ff:59:37:c6:9a: 45:83:85:84:43:d7:d4:f4:80:fd:da:ab:7a:63:da: 35:0b:99:de:31:1c:a7:ed:e3:6a:8e:e8:a8:89:b4: 8d:7b:2a:5e:03:dc:3f:11:5f:4b:68:76:23:36:9f: 45:e1:80:00:ca:70:62:ea:b3:b3:ca:a6:4c:15:b7: 74:4c:d4:a6:ab:d8:7a:fc:de:03:8f:ba:eb:17:d6: 58:89:ae:93:b2:b9:ad:dd:6e:6f:54:bc:a0:ae:70: 41:37:0a:ef:d7:9b:72:b7:da:53:3f:25:cd:f0:4a: ae:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8B:80:CA:E9:C3:B7:15:07:CD:49:A0:65:6B:4C:73:E5:69:C3:8B X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.58.144.0/23 103.127.62.0/23 IPv6: 2405:55c0::/32 Signature Algorithm: sha256WithRSAEncryption 67:ce:91:d6:81:c2:4e:8c:ec:24:7a:68:25:2b:03:2c:58:1e: 0f:63:12:63:aa:98:66:0a:16:8e:8c:23:54:9c:73:77:6e:af: c5:9a:8c:12:51:b9:f0:f0:dd:a4:40:c1:db:07:97:3b:8a:9c: 46:ab:19:8d:6f:a1:1b:8a:aa:c2:fc:4f:2a:38:09:ed:e6:d6: 14:4c:f9:a3:79:d2:e4:50:ae:bd:18:3d:f6:c7:90:27:03:94: 96:27:17:73:21:c1:2a:63:3d:cc:77:ca:3b:51:3e:97:77:bb: 55:cc:12:70:f2:9d:a3:c1:0e:f7:b7:f1:35:39:d6:fb:17:24: 7d:79:58:31:b0:0f:a1:1d:8b:0e:fe:86:17:25:4e:eb:ad:68: 9e:a3:f4:5d:cc:65:9f:3b:28:62:c8:96:6a:2f:eb:9b:0b:4a: 24:d1:86:71:41:d3:56:3c:bf:29:ae:cf:73:05:58:1b:6a:ae: 21:42:5c:5f:78:df:72:e5:91:2d:3f:cf:e3:78:ec:56:4a:f6: 9e:9a:ee:d8:b4:18:18:28:4d:e4:61:e0:d6:41:4b:89:9e:85: c4:3f:7e:d7:6e:39:ef:97:94:50:da:95:72:ce:bf:2d:b4:64: 03:f6:61:cb:58:ad:38:53:2a:b4:be:d4:e9:9f:77:d0:ee:4f: b1:d9:37:0d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwNzA0MTgyNzQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjUyYS0xODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup/211JFf8ID9d/HAwLEO06E+hv8c9/ZNpd++Ng7OBGQXhhfb7pRxUmlTdEW r1S+x2NmfiGvXvIMVMk35SYla3dKAear6FVjKa/obw4+ru8r+qET9jquPceKDPsy tnzO9SBs2tTcXffAm7aM/87XNEAFHoijB+2Beu5HDhnrW+vcUFkkd3BHeeSxcNNg B+v3/1k3xppFg4WEQ9fU9ID92qt6Y9o1C5neMRyn7eNqjuioibSNeypeA9w/EV9L aHYjNp9F4YAAynBi6rOzyqZMFbd0TNSmq9h6/N4Dj7rrF9ZYia6Tsrmt3W5vVLyg rnBBNwrv15tyt9pTPyXN8EqucwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKiLgMrp w7cVB81JoGVrTHPlacOLMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFRTIvRUEwMUQ1NUFERjczMTFFOUFCRUJENDNCQzRGOUFFMDIvQjUyM0RBRTY4 QzkyMTFFQUJDNjgyODY3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZzqQAwQBZ38+MA0EAgACMAcDBQAkBVXAMA0GCSqGSIb3DQEBCwUA A4IBAQBnzpHWgcJOjOwkemglKwMsWB4PYxJjqphmChaOjCNUnHN3bq/FmowSUbnw 8N2kQMHbB5c7ipxGqxmNb6EbiqrC/E8qOAnt5tYUTPmjedLkUK69GD32x5AnA5SW JxdzIcEqYz3Md8o7UT6Xd7tVzBJw8p2jwQ73t/E1Odb7FyR9eVgxsA+hHYsO/oYX JU7rrWieo/RdzGWfOyhiyJZqL+ubC0ok0YZxQdNWPL8prs9zBVgbaq4hQlxfeN9y 5ZEtP8/jeOxWSvaemu7YtBgYKE3kYeDWQUuJnoXEP37Xbjnvl5RQ2pVyzr8ttGQD 9mHLWK04Uyq0vtTpn3fQ7k+x2TcN -----END CERTIFICATE-----Generated at Thu Mar 26 05:41:25 2026 by rpki-client