$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa File: 2379396E35DA11F08BAAE414C4F9AE02.roa (raw, json) Hash identifier: wqvssZr8KniDppUjZkMFtJ/Vcm4eodrzwIwq5W5awEw= Subject key identifier: DC:31:FA:FA:CC:A1:A3:56:85:A5:3E:57:5E:7A:E8:95:D9:A0:63:BC Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0622 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:07 +0000 ROA not before: Thu 11 Sep 2025 00:06:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146806 IP address blocks: 103.135.208.0/24 maxlen: 24 103.135.209.0/24 maxlen: 24 103.135.210.0/24 maxlen: 24 103.135.211.0/24 maxlen: 24 203.168.128.0/22 maxlen: 22 203.168.128.0/23 maxlen: 23 203.168.128.0/24 maxlen: 24 203.168.129.0/24 maxlen: 24 203.168.130.0/23 maxlen: 23 203.168.130.0/24 maxlen: 24 203.168.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Sep 11 00:06:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58bb7-d18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1d:30:22:46:60:f1:65:1e:68:99:d8:10:34: a3:c6:c3:6f:e5:dc:59:41:5b:cd:c5:3c:18:cf:1b: 37:bd:31:ed:05:6d:52:78:e5:ae:3c:2b:49:cd:5d: 34:14:15:37:c7:04:e2:0e:a6:b8:65:f8:c7:32:51: 80:2b:9b:66:92:61:21:6b:00:da:b3:1f:7d:06:76: ec:c0:c9:51:eb:30:76:85:a8:c4:8e:80:db:73:44: 97:8d:e7:22:ad:26:5b:74:1b:a7:b8:3d:58:04:bb: 1d:41:24:6b:f8:8a:e9:92:d7:4f:39:c0:c6:0a:30: 06:66:37:20:d0:03:be:6f:e7:c8:5d:29:34:f7:a6: 06:03:b9:39:67:28:23:22:a6:82:fd:3e:e6:05:0f: a8:3a:cb:e3:85:df:55:80:82:cd:88:d6:dc:1a:3b: 7a:25:71:75:e5:0a:44:04:48:0d:ee:ae:69:68:07: 78:87:d1:49:fb:4f:a3:e7:fe:c4:d8:5c:05:e9:1b: ee:06:f6:17:a3:2e:c1:55:89:47:c7:79:c0:c2:ba: 3f:47:97:63:6d:70:6a:e8:4f:29:31:fe:85:37:80: 70:fe:8a:09:c6:99:09:78:62:6c:0f:ef:9b:da:28: 22:5b:7a:0b:90:89:cf:ee:43:62:c6:9f:7a:07:b4: 1e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:31:FA:FA:CC:A1:A3:56:85:A5:3E:57:5E:7A:E8:95:D9:A0:63:BC X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 203.168.128.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:ab:35:27:3e:af:49:ac:3a:67:33:61:ba:eb:0e:5e:55:7f: dc:92:03:23:1b:4f:7d:ee:f3:97:69:6e:7a:c1:42:86:a4:58: 51:b7:26:0b:98:ec:12:d1:0d:3a:75:a9:8a:71:25:79:af:a8: 99:1f:9b:8b:eb:35:01:e2:20:b6:b7:cf:fb:9f:14:ea:50:34: 44:23:f3:4e:66:09:ae:b8:73:ba:e3:c5:f2:ff:b6:13:90:ab: 5d:dc:8d:c5:ee:02:5f:bd:5b:01:b8:d2:db:34:e0:6e:1f:89: 9c:0c:0a:6b:db:da:ae:dc:0a:a8:b4:b3:d3:86:02:c8:e9:28: 62:9d:0d:89:c3:96:7b:4d:9e:a7:f1:7f:67:4e:b8:2e:4a:78: ff:7f:3a:ca:a5:5a:a2:9d:6f:7e:90:1b:fd:bc:00:1f:3e:c5: 44:b4:96:ce:02:33:06:bc:a8:bb:75:39:fb:e3:58:91:2d:ba: 14:c4:00:c5:e9:0a:c3:a0:f3:97:3b:3a:5a:08:ab:b4:c0:cc: 33:26:6b:9d:70:8a:98:d3:32:b9:84:01:fa:ff:7f:60:4e:f0: 88:36:86:89:70:f2:a4:f3:c5:07:22:b2:21:c0:ef:45:96:49: 78:a6:d5:cb:b3:3f:4c:83:53:8d:2a:ac:36:e5:54:3a:2e:e3: 51:95:2c:6b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwOTExMDAwNjQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJiNy1kMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvh0wIkZg8WUeaJnYEDSjxsNv5dxZQVvNxTwYzxs3vTHtBW1SeOWuPCtJzV00 FBU3xwTiDqa4ZfjHMlGAK5tmkmEhawDasx99BnbswMlR6zB2hajEjoDbc0SXjeci rSZbdBunuD1YBLsdQSRr+IrpktdPOcDGCjAGZjcg0AO+b+fIXSk096YGA7k5Zygj IqaC/T7mBQ+oOsvjhd9VgILNiNbcGjt6JXF15QpEBEgN7q5paAd4h9FJ+0+j5/7E 2FwF6RvuBvYXoy7BVYlHx3nAwro/R5djbXBq6E8pMf6FN4Bw/ooJxpkJeGJsD++b 2igiW3oLkInP7kNixp96B7QeOQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNwx+vrM oaNWhaU+V1566JXZoGO8MB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMjM3OTM5NkUz NURBMTFGMDhCQUFFNDE0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ4fQAwQCy6iAMA0GCSqGSIb3DQEBCwUAA4IBAQBtqzUnPq9JrDpn M2G66w5eVX/ckgMjG0997vOXaW56wUKGpFhRtyYLmOwS0Q06damKcSV5r6iZH5uL 6zUB4iC2t8/7nxTqUDREI/NOZgmuuHO648Xy/7YTkKtd3I3F7gJfvVsBuNLbNOBu H4mcDApr29qu3AqotLPThgLI6ShinQ2Jw5Z7TZ6n8X9nTrguSnj/fzrKpVqinW9+ kBv9vAAfPsVEtJbOAjMGvKi7dTn741iRLboUxADF6QrDoPOXOzpaCKu0wMwzJmud cIqY0zK5hAH6/39gTvCINoaJcPKk88UHIrIhwO9Flkl4ptXLsz9Mg1ONKqw25VQ6 LuNRlSxr -----END CERTIFICATE-----Generated at Thu Mar 26 10:12:53 2026 by rpki-client