$ rpki-client -vvf rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa File: 9F3D07940A3D11E9A4A5D873C4F9AE02.roa (raw, json) Hash identifier: 3R3/el+K1BVW4wuN+WvYDFNavkHSUhSAP/JkoptS3wM= Subject key identifier: 01:9B:C3:A4:B8:41:63:97:C4:40:6A:96:78:C6:38:6C:47:0F:0B:B6 Certificate issuer: /CN=A9150A44/serialNumber=0D8C6DB480FEF8BBF5C68B1D4396DD85F593C146 Certificate serial: 11D8 Authority key identifier: 0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:34:27 +0000 ROA not before: Wed 30 Apr 2025 17:26:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45455 IP address blocks: 45.112.140.0/22 maxlen: 24 103.51.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.crl rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4568 (0x11d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150A44, serialNumber=0D8C6DB480FEF8BBF5C68B1D4396DD85F593C146 Validity Not Before: Apr 30 17:26:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42442-5a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:34:70:0c:d3:9a:f2:15:56:7b:45:6c:1e:27: 55:0c:35:aa:fc:65:7f:48:7a:21:ec:86:3c:8c:a9: da:ea:b3:30:f8:5f:2d:89:ef:88:b8:dc:ab:4f:46: 1f:0c:48:99:a6:90:10:e6:55:6e:c8:31:d2:e7:3d: c5:da:c7:4b:2f:92:bd:7c:a4:2d:ab:13:0a:76:17: 32:bd:87:e2:ea:57:c2:97:dc:56:e5:48:68:e1:ca: 95:34:e0:73:78:53:3c:49:b3:74:9f:cc:e1:e0:ae: 27:89:fe:0b:17:3e:09:48:d4:c0:75:8d:99:17:21: 8d:04:26:be:8e:01:ba:71:40:80:c1:49:4b:a9:d8: f5:ae:9f:a5:be:e0:ae:05:74:5a:a0:da:a2:69:0e: 88:6b:b9:e2:1f:45:67:99:01:68:2e:57:e5:2a:c5: 4a:9f:e6:c7:cf:a2:11:70:ee:d7:1c:5a:ea:88:f3: 2a:10:77:9d:3c:b2:a6:43:b9:b7:47:c2:0b:9e:45: af:ae:44:a2:31:52:af:61:63:6c:f0:1e:d8:0f:4b: e9:0a:26:70:b4:4c:df:10:d0:26:e4:ee:6c:a7:a7: 91:e4:40:5e:b0:03:b8:dd:11:59:e5:65:c1:59:c2: 37:0b:b1:a5:a0:50:c2:91:4f:f9:0d:d8:13:61:b6: f9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9B:C3:A4:B8:41:63:97:C4:40:6A:96:78:C6:38:6C:47:0F:0B:B6 X509v3 Authority Key Identifier: keyid:0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/9F3D07940A3D11E9A4A5D873C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.112.140.0/22 103.51.224.0/22 Signature Algorithm: sha256WithRSAEncryption 69:35:0a:5f:15:55:4e:22:f9:90:45:4a:61:ba:9e:d3:a0:7b: 75:aa:3b:1f:43:98:17:39:bc:94:68:2e:ef:d0:85:5e:42:e4: 2d:d5:52:a2:0e:7d:15:24:bc:f2:be:e7:d6:4b:89:66:f4:04: cb:b2:66:92:a3:f9:4b:15:37:04:a5:b7:b5:ed:1b:c2:4d:3e: 90:47:0d:e9:db:f4:c9:9f:da:88:75:f2:ff:bf:77:56:67:e5: b2:6b:41:fa:a2:91:9b:03:82:e4:6b:10:e4:f0:30:2b:a5:22: 6b:52:6a:de:2a:52:bb:da:6f:b3:29:05:79:cb:db:bc:ae:45: 30:6d:1f:d3:31:6e:de:77:dc:25:09:35:da:4f:69:74:9c:fe: 31:1f:e0:ee:62:39:5b:54:16:7d:91:87:97:44:d2:66:4c:03: e6:56:3b:76:0e:8a:ec:0a:b2:91:f0:39:45:b0:29:30:ca:5d: 8f:ac:d4:00:8b:0f:03:21:eb:84:c4:a6:96:4c:4d:9a:c9:f2: 1b:bc:4c:41:31:6c:25:18:76:38:09:f2:fb:75:a9:92:e7:d3: 51:5b:1b:6a:24:a1:89:43:28:47:77:ce:5b:8c:30:d5:82:d1: b0:41:73:81:5c:a4:14:22:ed:5d:4d:e4:c0:28:c2:4e:33:06: e8:61:3f:88 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICEdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBBNDQxMTAvBgNVBAUTKDBEOEM2REI0ODBGRUY4QkJGNUM2OEIxRDQzOTZERDg1 RjU5M0MxNDYwHhcNMjUwNDMwMTcyNjIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQ0Mi01YTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDRwDNOa8hVWe0VsHidVDDWq/GV/SHoh7IY8jKna6rMw+F8tie+IuNyrT0Yf DEiZppAQ5lVuyDHS5z3F2sdLL5K9fKQtqxMKdhcyvYfi6lfCl9xW5Uho4cqVNOBz eFM8SbN0n8zh4K4nif4LFz4JSNTAdY2ZFyGNBCa+jgG6cUCAwUlLqdj1rp+lvuCu BXRaoNqiaQ6Ia7niH0VnmQFoLlflKsVKn+bHz6IRcO7XHFrqiPMqEHedPLKmQ7m3 R8ILnkWvrkSiMVKvYWNs8B7YD0vpCiZwtEzfENAm5O5sp6eR5EBesAO43RFZ5WXB WcI3C7GloFDCkU/5DdgTYbb5UwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAGbw6S4 QWOXxEBqlnjGOGxHDwu2MB8GA1UdIwQYMBaAFA2MbbSA/vi79caLHUOW3YX1k8FG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEE0NC83Mzk3NzVDRTBB MzQxMUU5OEVFODcxNUVDNEY5QUUwMi9EWXh0dElELS1MdjF4b3NkUTViZGhmV1R3 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZeHR0SUQtLUx2MXhvc2RRNWJkaGZXVHdVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBBNDQvNzM5Nzc1Q0UwQTM0MTFFOThFRTg3MTVFQzRGOUFFMDIvOUYzRDA3OTQw QTNEMTFFOUE0QTVEODczQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLXCMAwQCZzPgMA0GCSqGSIb3DQEBCwUAA4IBAQBpNQpfFVVOIvmQ RUphup7ToHt1qjsfQ5gXObyUaC7v0IVeQuQt1VKiDn0VJLzyvufWS4lm9ATLsmaS o/lLFTcEpbe17RvCTT6QRw3p2/TJn9qIdfL/v3dWZ+Wya0H6opGbA4LkaxDk8DAr pSJrUmreKlK72m+zKQV5y9u8rkUwbR/TMW7ed9wlCTXaT2l0nP4xH+DuYjlbVBZ9 kYeXRNJmTAPmVjt2DorsCrKR8DlFsCkwyl2PrNQAiw8DIeuExKaWTE2ayfIbvExB MWwlGHY4CfL7damS59NRWxtqJKGJQyhHd85bjDDVgtGwQXOBXKQUIu1dTeTAKMJO MwboYT+I -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:18 2026 by rpki-client