$ rpki-client -vvf rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/F32DDE98545411EFA3BC6B2BC4F9AE02.roa File: F32DDE98545411EFA3BC6B2BC4F9AE02.roa (raw, json) Hash identifier: 9spWTKwzhxwWPHkdhJR5HEllKF63m9l363gaTe3qP68= Subject key identifier: 59:17:3C:90:37:3A:82:74:93:9A:BA:AD:EA:0A:A7:B2:FD:C1:7F:9D Certificate issuer: /CN=A9153134/serialNumber=8442DC46024006011AD5CF48CD7E4C48BB97A11E Certificate serial: 016B Authority key identifier: 84:42:DC:46:02:40:06:01:1A:D5:CF:48:CD:7E:4C:48:BB:97:A1:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hELcRgJABgEa1c9IzX5MSLuXoR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/F32DDE98545411EFA3BC6B2BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:27:47 +0000 ROA not before: Mon 01 Sep 2025 06:24:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138189 IP address blocks: 103.122.40.0/22 maxlen: 22 103.122.40.0/24 maxlen: 24 103.122.41.0/24 maxlen: 24 103.122.42.0/24 maxlen: 24 103.122.43.0/24 maxlen: 24 202.36.32.0/24 maxlen: 24 203.132.4.0/22 maxlen: 24 2001:df6:6500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/hELcRgJABgEa1c9IzX5MSLuXoR4.crl rsync://rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/hELcRgJABgEa1c9IzX5MSLuXoR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hELcRgJABgEa1c9IzX5MSLuXoR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153134, serialNumber=8442DC46024006011AD5CF48CD7E4C48BB97A11E Validity Not Before: Sep 1 06:24:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59e63-0c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:c0:ae:47:d7:63:6c:39:bb:0f:f8:bc:4e: 5f:a0:84:c3:02:62:33:3a:5a:1f:d6:d0:55:3e:ee: 39:e0:2c:4e:d4:05:f5:73:6d:8a:b2:0c:a9:3e:03: 0e:f3:8b:03:13:73:ef:bf:1b:6c:42:fc:44:23:9b: 1a:9e:13:b0:c7:b1:fc:c4:05:a0:77:84:b5:5a:27: b7:64:e0:5e:da:48:7a:f7:3a:0e:8e:ef:a2:57:83: 5e:51:9f:07:8b:3a:e3:98:18:2e:d2:42:6b:fb:85: ec:01:13:5b:4b:c0:aa:1b:ae:0a:85:9b:5c:27:91: 6b:4a:3a:7a:7f:1f:f1:01:21:5e:f2:d3:dc:54:21: 82:db:db:13:dd:f2:d3:91:53:9d:2a:65:67:41:64: 20:6e:40:0a:f0:4a:81:39:0d:b6:64:86:8c:df:89: c9:80:6f:90:54:33:3e:cc:77:bb:d2:13:71:a5:ea: fb:04:a2:fe:5c:8b:c9:b0:06:03:79:49:a3:60:57: cf:7e:d3:6c:c3:a4:1c:81:14:55:f4:55:64:9d:42: 57:4a:a6:40:3f:39:3a:82:00:df:91:2e:b8:bf:29: 7c:ee:25:ea:7d:1e:75:ac:e6:85:b9:19:d9:eb:f4: 6f:c5:4a:14:7b:7f:74:b5:dc:fc:5f:6f:59:49:d1: 39:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:17:3C:90:37:3A:82:74:93:9A:BA:AD:EA:0A:A7:B2:FD:C1:7F:9D X509v3 Authority Key Identifier: keyid:84:42:DC:46:02:40:06:01:1A:D5:CF:48:CD:7E:4C:48:BB:97:A1:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/hELcRgJABgEa1c9IzX5MSLuXoR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hELcRgJABgEa1c9IzX5MSLuXoR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153134/E65FA8A0545311EF8AD77409C4F9AE02/F32DDE98545411EFA3BC6B2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.40.0/22 202.36.32.0/24 203.132.4.0/22 IPv6: 2001:df6:6500::/48 Signature Algorithm: sha256WithRSAEncryption 1e:2f:5a:71:5f:4f:c8:0f:31:05:82:c8:d5:f1:a1:35:d8:6c: c8:89:b0:4a:e4:9b:d4:42:06:40:68:91:1a:d0:a0:2a:ff:9d: 05:25:de:52:6f:60:41:e5:60:4a:64:a1:ce:df:f1:8a:b9:0f: 83:28:d9:8e:9a:02:b5:e7:8f:9b:a8:c3:1e:dc:6e:8a:e6:3c: 98:12:d8:d4:76:f5:af:d2:43:36:6f:dd:a6:f1:e5:18:dd:1d: a2:97:6f:4a:8c:05:78:04:d5:3f:63:22:b4:3a:3d:bf:05:aa: 5b:2d:aa:37:ae:2c:f3:46:47:c3:a8:ee:e1:0e:18:bb:c4:e4: c3:3f:1c:5d:6c:14:83:65:86:af:96:5f:07:d6:38:82:b1:c4: c4:d4:a3:95:cd:50:e7:5d:3e:61:e7:6f:b2:32:9e:51:75:4a: 2a:cd:bf:45:49:3c:06:fc:35:96:f6:72:98:63:b4:6a:3f:a0: ea:04:d1:3f:d2:d3:23:c1:20:90:96:73:7e:24:c2:50:5e:ae: dc:7e:0d:ec:96:15:f4:53:0f:67:67:e7:cf:eb:6a:50:0f:13: ee:5a:ee:d4:c3:bc:37:a1:87:2b:1e:c3:30:7f:e4:d2:dc:89: 90:bd:7f:c7:70:ff:a2:e1:0d:e7:0d:fe:90:3b:8b:c8:98:bc: 3d:32:33:54 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMxMzQxMTAvBgNVBAUTKDg0NDJEQzQ2MDI0MDA2MDExQUQ1Q0Y0OENEN0U0QzQ4 QkI5N0ExMUUwHhcNMjUwOTAxMDYyNDU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWU2My0wYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy3ArkfXY2w5uw/4vE5foITDAmIzOlof1tBVPu454CxO1AX1c22KsgypPgMO 84sDE3PvvxtsQvxEI5sanhOwx7H8xAWgd4S1Wie3ZOBe2kh69zoOju+iV4NeUZ8H izrjmBgu0kJr+4XsARNbS8CqG64KhZtcJ5FrSjp6fx/xASFe8tPcVCGC29sT3fLT kVOdKmVnQWQgbkAK8EqBOQ22ZIaM34nJgG+QVDM+zHe70hNxper7BKL+XIvJsAYD eUmjYFfPftNsw6QcgRRV9FVknUJXSqZAPzk6ggDfkS64vyl87iXqfR51rOaFuRnZ 6/RvxUoUe390tdz8X29ZSdE5TwIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFFkXPJA3 OoJ0k5q6reoKp7L9wX+dMB8GA1UdIwQYMBaAFIRC3EYCQAYBGtXPSM1+TEi7l6Ee MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzEzNC9FNjVGQThBMDU0 NTMxMUVGOEFENzc0MDlDNEY5QUUwMi9oRUxjUmdKQUJnRWExYzlJelg1TVNMdVhv UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFTGNSZ0pBQmdFYTFjOUl6WDVNU0x1WG9SNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTMxMzQvRTY1RkE4QTA1NDUzMTFFRjhBRDc3NDA5QzRGOUFFMDIvRjMyRERFOTg1 NDU0MTFFRkEzQkM2QjJCQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQCZ3ooAwQAyiQgAwQCy4QEMA8EAgACMAkDBwAgAQ32ZQAwDQYJKoZI hvcNAQELBQADggEBAB4vWnFfT8gPMQWCyNXxoTXYbMiJsErkm9RCBkBokRrQoCr/ nQUl3lJvYEHlYEpkoc7f8Yq5D4Mo2Y6aArXnj5uowx7cbormPJgS2NR29a/SQzZv 3abx5RjdHaKXb0qMBXgE1T9jIrQ6Pb8FqlstqjeuLPNGR8Oo7uEOGLvE5MM/HF1s FINlhq+WXwfWOIKxxMTUo5XNUOddPmHnb7IynlF1SirNv0VJPAb8NZb2cphjtGo/ oOoE0T/S0yPBIJCWc34kwlBertx+DeyWFfRTD2dn58/ralAPE+5a7tTDvDehhyse wzB/5NLciZC9f8dw/6LhDecN/pA7i8iYvD0yM1Q= -----END CERTIFICATE-----Generated at Thu Mar 26 13:35:53 2026 by rpki-client