$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa File: C0A21C70A4A711EA835CCA70C4F9AE02.roa (raw, json) Hash identifier: w0Mg38kqxU56tToSKDuvE9izP1apCE3Ik6yrPGcnebw= Subject key identifier: 78:C5:BA:0E:01:F7:AA:BF:13:3B:ED:8A:25:A1:0F:67:8A:26:68:92 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 09C7 Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa Signing time: Thu 30 Apr 2026 20:26:09 +0000 ROA not before: Thu 30 Apr 2026 20:26:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9381 IP address blocks: 103.234.220.0/24 maxlen: 24 150.129.34.0/24 maxlen: 24 150.129.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2503 (0x9c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Apr 30 20:26:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3bae1-1371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:49:3b:4c:58:bc:de:15:2a:84:86:91:17: 1a:d9:4b:50:d2:07:6c:4f:0e:48:f5:57:8f:4d:35: 1e:1a:84:ae:c7:d2:1d:21:d9:bc:e1:4a:40:3d:5b: e7:ce:48:c2:a8:76:b4:df:be:a3:61:3a:cd:81:e9: 5b:9e:0e:6a:70:0e:19:7e:b1:6f:c7:54:ed:fe:6e: 6e:66:51:b8:ca:ca:84:dd:99:18:e9:d9:a1:89:95: eb:86:57:7a:bd:31:e7:9c:ad:70:a9:c7:37:6c:d1: e6:44:41:58:7b:46:e9:3c:7e:ef:e2:b7:6d:2c:24: f8:c4:5b:44:e9:95:77:17:20:1b:b5:b1:5f:c1:ec: 5c:f1:7c:77:4e:68:e2:d8:ed:99:59:14:a9:91:bc: 3f:cf:ce:b7:58:2d:f7:29:7d:f4:44:ec:7e:4f:5e: c8:29:a9:a9:62:b0:f6:96:86:fc:22:5e:3e:d1:19: 96:2a:08:22:06:db:6e:b4:91:21:aa:83:21:3e:f3: ac:34:11:fe:3a:47:e9:77:64:63:f4:d2:b4:26:51: d0:8a:0e:02:a9:dd:d5:b2:d8:82:95:2c:a0:73:04: 6e:a4:64:2b:60:2e:69:f4:22:c4:05:0f:dd:c0:f1: ee:eb:5f:13:b8:7d:69:ac:93:38:27:dc:f7:de:f4: 1e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C5:BA:0E:01:F7:AA:BF:13:3B:ED:8A:25:A1:0F:67:8A:26:68:92 X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/C0A21C70A4A711EA835CCA70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.220.0/24 150.129.34.0/23 Signature Algorithm: sha256WithRSAEncryption a1:3e:57:29:71:8d:bb:85:51:5a:af:05:ee:a9:9a:11:ce:1a: 31:37:f2:cb:b5:ed:5b:b4:d8:c9:2b:2b:7e:11:7d:2b:01:5f: 24:1b:c6:73:cc:1d:81:02:59:b8:89:89:65:df:ca:f8:68:f1: ed:bd:b8:d2:9c:b0:af:49:2c:2e:a1:b1:0d:65:f1:2b:99:ce: 10:97:ed:d8:33:4d:b2:3d:cd:f7:be:f8:e8:72:f4:a3:79:d1: 35:17:d3:83:f8:74:91:f5:65:67:ab:60:04:6d:51:d5:77:52: 8d:9a:dd:ff:f7:ba:d8:20:a1:14:84:2a:59:ce:8a:0d:f3:4b: 1a:93:c1:85:76:55:06:ca:d1:57:1e:1a:f3:22:80:e7:b5:39: 78:4a:f2:9f:5c:06:79:d9:3b:30:42:a7:e0:b0:8b:20:be:20: 57:54:d5:e4:b7:9e:3f:08:d1:00:a3:f1:ce:3c:8d:49:b6:28: e3:2e:af:e7:d8:74:61:da:3a:06:ad:e8:c4:36:70:61:e6:a6: f6:5f:13:0f:ed:c5:f2:0b:80:af:1b:d0:de:f9:3e:36:bf:5d: 8e:00:b0:40:4c:29:65:3e:ce:41:9d:9d:53:91:9a:84:98:1f: 5e:77:3b:f7:f5:81:3b:cd:71:b7:65:f6:1e:78:da:8e:c9:65: 2d:cb:6e:48 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjYwNDMwMjAyNjA5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzYmFlMS0xMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuThJO0xYvN4VKoSGkRca2UtQ0gdsTw5I9VePTTUeGoSux9IdIdm84UpAPVvn zkjCqHa0376jYTrNgelbng5qcA4ZfrFvx1Tt/m5uZlG4ysqE3ZkY6dmhiZXrhld6 vTHnnK1wqcc3bNHmREFYe0bpPH7v4rdtLCT4xFtE6ZV3FyAbtbFfwexc8Xx3Tmji 2O2ZWRSpkbw/z863WC33KX30ROx+T17IKampYrD2lob8Il4+0RmWKggiBttutJEh qoMhPvOsNBH+Okfpd2Rj9NK0JlHQig4Cqd3VstiClSygcwRupGQrYC5p9CLEBQ/d wPHu618TuH1prJM4J9z33vQeQwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHjFug4B 96q/EzvtiiWhD2eKJmiSMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU2MDQvQkNFQzZDNUVBNEEwMTFFQThGQkFCNDVEQzRGOUFFMDIvQzBBMjFDNzBB NEE3MTFFQTgzNUNDQTcwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ+rcAwQBloEiMA0GCSqGSIb3DQEBCwUAA4IBAQChPlcpcY27hVFa rwXuqZoRzhoxN/LLte1btNjJKyt+EX0rAV8kG8ZzzB2BAlm4iYll38r4aPHtvbjS nLCvSSwuobENZfErmc4Ql+3YM02yPc33vvjocvSjedE1F9OD+HSR9WVnq2AEbVHV d1KNmt3/97rYIKEUhCpZzooN80sak8GFdlUGytFXHhrzIoDntTl4SvKfXAZ52Tsw QqfgsIsgviBXVNXkt54/CNEAo/HOPI1JtijjLq/n2HRh2joGrejENnBh5qb2XxMP 7cXyC4CvG9De+T42v12OALBATCllPs5BnZ1TkZqEmB9edzv39YE7zXG3ZfYeeNqO yWUty25I -----END CERTIFICATE-----Generated at Wed May 13 05:17:44 2026 by rpki-client