$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa File: B5EA3B509EDD11EC85676D09C4F9AE02.roa (raw, json) Hash identifier: XguSXdxwX10IbHPbblPRZe5PIEMjt2uiz6CEGHIK6Gc= Subject key identifier: A5:10:FC:E0:1D:68:06:49:AE:E7:D0:D6:D1:0F:3A:47:7A:E6:79:03 Certificate issuer: /CN=A9158D75/serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Certificate serial: 0D61 Authority key identifier: F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa Signing time: Wed 18 Mar 2026 18:23:06 +0000 ROA not before: Wed 18 Mar 2026 18:23:06 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58803 IP address blocks: 43.254.96.0/22 maxlen: 24 103.245.96.0/22 maxlen: 22 103.245.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D75, serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Validity Not Before: Mar 18 18:23:06 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69baed8a-d2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:c4:b5:f3:e9:13:d9:69:64:88:b8:f8:ce: d0:cb:23:b2:fa:27:56:e0:9f:5f:b5:ce:a5:49:4b: ea:8d:15:b4:82:8f:fc:81:20:3d:e6:61:3c:de:12: 78:9a:11:a9:45:40:80:04:14:68:c9:1d:ca:4b:a6: 54:c9:77:76:f6:ab:cc:a7:21:a8:b3:9c:85:98:4a: a3:a4:ba:7b:14:fc:aa:d4:5d:dc:da:38:85:5a:13: 87:1e:bc:50:37:e5:62:1e:7c:a4:c5:2d:3d:c1:0b: f7:c0:be:05:73:65:f5:0f:f0:a7:a8:f4:10:79:ac: 70:d8:b9:57:bc:5c:38:71:a0:45:bf:87:8c:53:72: 3f:eb:75:c1:18:a7:0f:05:f4:4c:c7:aa:00:c3:b5: 96:fa:82:0a:8e:02:ad:1b:fd:5e:4b:6c:00:cd:1c: 6b:5d:56:4b:92:b6:4b:1a:06:09:99:9b:67:87:ec: 81:3f:c1:c6:78:5a:3f:84:07:1d:f3:b4:74:d3:64: 5c:53:7e:ec:c2:54:ef:a1:3c:6d:8b:08:05:44:ae: 53:9c:52:7a:0c:ac:47:bf:0d:0b:24:27:be:92:8e: 8e:f2:b0:57:a7:89:f1:03:06:a9:cb:2c:0f:91:ec: 35:79:15:3d:62:1c:fe:03:5a:5f:ae:e1:68:a3:21: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:10:FC:E0:1D:68:06:49:AE:E7:D0:D6:D1:0F:3A:47:7A:E6:79:03 X509v3 Authority Key Identifier: keyid:F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.254.96.0/22 103.245.96.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:d9:f5:e8:c9:5a:3a:f6:04:86:34:c7:82:78:3f:f7:0e:b6: 3f:93:2f:0a:c4:29:07:e8:32:5c:99:45:36:f3:8e:54:14:ac: ab:2d:cb:c6:1e:27:52:82:ef:fa:45:36:aa:97:d6:c5:ec:02: 2e:f1:5d:4b:83:c1:23:03:6b:e0:9e:ee:1b:74:a0:36:69:f8: cc:19:2e:81:b5:73:33:47:50:91:da:9c:72:43:75:5a:5e:13: 4d:9c:3e:e2:60:f1:23:06:c1:df:45:a9:b3:f7:32:27:54:26: 59:fa:2f:76:79:25:67:6a:80:93:0f:a0:83:53:b5:1d:48:78: 87:a4:48:eb:51:ba:e5:6a:50:f3:f7:80:dc:d1:0d:d1:f8:4c: 85:16:3f:b6:11:16:5c:fc:b4:f2:0a:35:5f:a5:fa:4e:78:8e: 98:45:8c:f1:70:d5:4c:6c:43:3d:5d:25:1d:47:36:8c:fd:a1: 07:0d:88:ef:1f:f0:86:14:8f:29:3f:37:dd:1c:5b:f8:98:5b: df:7b:4c:90:cd:06:be:26:c5:37:52:57:76:e0:ab:ec:b2:96: f6:a1:32:05:62:ed:ad:58:2e:a4:09:29:c4:16:f9:70:53:e9: 88:f8:9a:29:84:29:33:00:7b:b8:1e:19:9e:96:ed:81:0f:01: 8b:63:ef:42 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENzUxMTAvBgNVBAUTKEY0MzQ1QzMxNEQ2RUJFREVCNDVGRTA3NTVGOEZGRUFD RjM2M0NCOEEwHhcNMjYwMzE4MTgyMzA2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhZWQ4YS1kMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLrEtfPpE9lpZIi4+M7QyyOy+idW4J9ftc6lSUvqjRW0go/8gSA95mE83hJ4 mhGpRUCABBRoyR3KS6ZUyXd29qvMpyGos5yFmEqjpLp7FPyq1F3c2jiFWhOHHrxQ N+ViHnykxS09wQv3wL4Fc2X1D/CnqPQQeaxw2LlXvFw4caBFv4eMU3I/63XBGKcP BfRMx6oAw7WW+oIKjgKtG/1eS2wAzRxrXVZLkrZLGgYJmZtnh+yBP8HGeFo/hAcd 87R002RcU37swlTvoTxtiwgFRK5TnFJ6DKxHvw0LJCe+ko6O8rBXp4nxAwapyywP kew1eRU9Yhz+A1pfruFooyEwjwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKUQ/OAd aAZJrufQ1tEPOkd65nkDMB8GA1UdIwQYMBaAFPQ0XDFNbr7etF/gdV+P/qzzY8uK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ3NS83NDM0OTQwRUYy NUUxMUU5OTEzMEIxODFDNEY5QUUwMi85RFJjTVUxdXZ0NjBYLUIxWDRfLXJQTmp5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlEUmNNVTF1dnQ2MFgtQjFYNF8tclBOank0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThENzUvNzQzNDk0MEVGMjVFMTFFOTkxMzBCMTgxQzRGOUFFMDIvQjVFQTNCNTA5 RUREMTFFQzg1Njc2RDA5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/5gAwQCZ/VgMA0GCSqGSIb3DQEBCwUAA4IBAQAP2fXoyVo69gSG NMeCeD/3DrY/ky8KxCkH6DJcmUU2845UFKyrLcvGHidSgu/6RTaql9bF7AIu8V1L g8EjA2vgnu4bdKA2afjMGS6BtXMzR1CR2pxyQ3VaXhNNnD7iYPEjBsHfRamz9zIn VCZZ+i92eSVnaoCTD6CDU7UdSHiHpEjrUbrlalDz94Dc0Q3R+EyFFj+2ERZc/LTy CjVfpfpOeI6YRYzxcNVMbEM9XSUdRzaM/aEHDYjvH/CGFI8pPzfdHFv4mFvfe0yQ zQa+JsU3Uld24Kvsspb2oTIFYu2tWC6kCSnEFvlwU+mI+JophCkzAHu4Hhmelu2B DwGLY+9C -----END CERTIFICATE-----Generated at Thu Mar 26 22:27:31 2026 by rpki-client