$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa File: 694FA6C678B511F0B9F98C80C4F9AE02.roa (raw, json) Hash identifier: hm0KCaXb41mi9NBkToKwy9CiaM9xrRxIoRjp59b6bWM= Subject key identifier: 76:16:FB:B5:3F:4D:82:66:7A:DD:76:38:3E:7B:9D:23:D9:BF:23:CE Certificate issuer: /CN=A9143DB0/serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Certificate serial: 274F Authority key identifier: 9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:13:26 +0000 ROA not before: Thu 14 Aug 2025 02:21:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 64005 IP address blocks: 103.139.235.0/24 maxlen: 24 2001:df4:3800::/48 maxlen: 48 2400:eb80::/32 maxlen: 32 2400:eb80::/48 maxlen: 48 2400:eb80:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10063 (0x274f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DB0, serialNumber=9BC7651AC4BABF8C4478534FADA610ACDA746BD4 Validity Not Before: Aug 14 02:21:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42d66-0d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:f9:d3:af:b4:ff:49:42:d4:4f:ff:44:63: 5a:37:ba:3f:47:88:76:c1:ab:b0:6c:a4:01:92:23: 21:f4:dd:5e:d2:8b:bd:a0:c3:fb:f9:f6:e9:e8:0d: 63:a6:ff:41:d4:11:c5:33:87:6a:5c:e6:8f:7e:3e: ea:36:1d:03:8c:fe:2b:1e:ee:00:d5:8d:d6:f6:da: a7:f3:f0:f3:0c:4d:ae:dd:23:8e:90:38:2f:1a:ac: 94:60:7a:58:3a:f5:73:a1:42:8d:55:74:cc:62:f0: ad:58:84:9d:22:a0:b0:cd:48:ec:6d:16:73:ed:41: 96:a4:14:9c:a6:de:17:15:1a:dd:57:22:c0:e1:0d: 80:16:8e:19:fa:82:aa:5f:36:f8:a2:5d:77:94:2a: 01:bb:8c:1d:b1:cb:ff:07:b4:90:ab:72:04:a8:41: 80:9f:d5:37:52:3b:3b:82:65:76:b6:20:b4:e2:ab: 84:ad:01:56:f0:b8:b7:8c:09:ba:c3:c1:28:98:0c: bf:f1:eb:fc:64:52:e9:80:7f:9c:aa:86:76:96:09: e7:28:4e:26:cc:dc:f9:f6:9a:1a:60:27:21:a9:42: 66:e9:17:9f:c1:3a:0e:fd:96:56:54:48:23:48:cc: 2c:33:e8:3a:74:ce:bb:c4:1e:a2:1f:a8:eb:67:d0: e5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:16:FB:B5:3F:4D:82:66:7A:DD:76:38:3E:7B:9D:23:D9:BF:23:CE X509v3 Authority Key Identifier: keyid:9B:C7:65:1A:C4:BA:BF:8C:44:78:53:4F:AD:A6:10:AC:DA:74:6B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/m8dlGsS6v4xEeFNPraYQrNp0a9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8dlGsS6v4xEeFNPraYQrNp0a9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DB0/B895AF74051511E58D49AE42C4F9AE02/694FA6C678B511F0B9F98C80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.235.0/24 IPv6: 2001:df4:3800::/48 2400:eb80::/32 Signature Algorithm: sha256WithRSAEncryption b5:9a:a0:9e:a1:57:69:8e:7e:3d:2b:6c:5a:14:13:10:d2:59: 3f:47:57:bb:b1:81:3b:c9:4e:8f:87:28:e4:d4:67:1b:be:76: af:e9:16:d1:7e:95:d4:25:62:74:e4:d2:9c:98:bd:54:96:fc: 15:d0:ac:ac:70:a4:78:c5:3e:d9:d3:7b:40:a7:b5:97:ae:92: 3d:3c:c8:a5:0d:27:b9:59:23:8f:ea:4f:d0:c7:fd:2b:02:e1: fc:00:06:86:1e:64:d6:35:15:e3:61:5c:df:ee:01:f0:44:45: f2:8e:77:c7:23:4b:28:fa:8c:6d:55:2e:f0:15:dd:19:86:4f: 6e:b4:c8:e0:a5:0d:9b:2d:e6:68:da:75:e4:8f:45:ed:5f:5d: c8:0e:54:46:14:75:02:ca:44:0e:e0:18:1f:01:dd:c2:0e:87: 0f:80:fb:ce:d5:9f:9b:28:4a:31:3c:f7:b2:65:29:27:b7:06: 4a:51:8d:f2:be:77:3d:b4:37:6b:25:52:34:07:68:c2:0e:37: 44:22:ae:e2:ad:c0:f9:9f:ef:ff:b6:b6:31:ed:66:97:81:df: 1a:6e:85:52:48:5e:69:ae:d6:28:9e:d3:6a:45:5c:84:07:01: 2c:b8:21:3b:48:da:cd:b6:a5:18:80:cc:f8:ab:ec:a6:c1:44: 67:c8:a0:99 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICJ08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNEQjAxMTAvBgNVBAUTKDlCQzc2NTFBQzRCQUJGOEM0NDc4NTM0RkFEQTYxMEFD REE3NDZCRDQwHhcNMjUwODE0MDIyMTQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmQ2Ni0wZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tD506+0/0lC1E//RGNaN7o/R4h2wauwbKQBkiMh9N1e0ou9oMP7+fbp6A1j pv9B1BHFM4dqXOaPfj7qNh0DjP4rHu4A1Y3W9tqn8/DzDE2u3SOOkDgvGqyUYHpY OvVzoUKNVXTMYvCtWISdIqCwzUjsbRZz7UGWpBScpt4XFRrdVyLA4Q2AFo4Z+oKq Xzb4ol13lCoBu4wdscv/B7SQq3IEqEGAn9U3Ujs7gmV2tiC04quErQFW8Li3jAm6 w8EomAy/8ev8ZFLpgH+cqoZ2lgnnKE4mzNz59poaYCchqUJm6RefwToO/ZZWVEgj SMwsM+g6dM67xB6iH6jrZ9Dl4wIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFHYW+7U/ TYJmet12OD57nSPZvyPOMB8GA1UdIwQYMBaAFJvHZRrEur+MRHhTT62mEKzadGvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RCMC9CODk1QUY3NDA1 MTUxMUU1OEQ0OUFFNDJDNEY5QUUwMi9tOGRsR3NTNnY0eEVlRk5QcmFZUXJOcDBh OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204ZGxHc1M2djR4RWVGTlByYVlRck5wMGE5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNEQjAvQjg5NUFGNzQwNTE1MTFFNThENDlBRTQyQzRGOUFFMDIvNjk0RkE2QzY3 OEI1MTFGMEI5Rjk4QzgwQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAM BAIAATAGAwQAZ4vrMBYEAgACMBADBwAgAQ30OAADBQAkAOuAMA0GCSqGSIb3DQEB CwUAA4IBAQC1mqCeoVdpjn49K2xaFBMQ0lk/R1e7sYE7yU6Phyjk1Gcbvnav6RbR fpXUJWJ05NKcmL1UlvwV0KyscKR4xT7Z03tAp7WXrpI9PMilDSe5WSOP6k/Qx/0r AuH8AAaGHmTWNRXjYVzf7gHwREXyjnfHI0so+oxtVS7wFd0Zhk9utMjgpQ2bLeZo 2nXkj0XtX13IDlRGFHUCykQO4BgfAd3CDocPgPvO1Z+bKEoxPPeyZSkntwZKUY3y vnc9tDdrJVI0B2jCDjdEIq7ircD5n+//trYx7WaXgd8aboVSSF5prtYontNqRVyE BwEsuCE7SNrNtqUYgMz4q+ymwURnyKCZ -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:12 2026 by rpki-client