$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/4A9AD51270F811F0BA070F34C4F9AE02.roa File: 4A9AD51270F811F0BA070F34C4F9AE02.roa (raw, json) Hash identifier: EykIZqKWyW5Hz0e2jWinLEma3navcyNteamjb1QiVS8= Subject key identifier: 45:B9:61:F5:1C:CB:9B:3C:17:66:18:D4:6D:3D:88:B8:D2:B8:3E:95 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: 0170 Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/4A9AD51270F811F0BA070F34C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:06:53 +0000 ROA not before: Sat 13 Sep 2025 05:11:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38713 IP address blocks: 103.121.40.0/22 maxlen: 22 103.121.40.0/24 maxlen: 24 103.121.41.0/24 maxlen: 24 103.121.42.0/24 maxlen: 24 103.121.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F, serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Sep 13 05:11:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58b6d-e61d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:99:21:ad:db:d9:c5:34:a6:c8:f3:14:2f:58: e8:d2:65:bf:99:f0:f6:13:f5:29:08:65:5c:db:ee: 78:65:a3:ba:45:3e:60:49:c3:8b:75:3d:34:44:70: b0:5c:ed:50:00:12:c4:ae:27:88:a6:9c:e7:bf:c7: 87:43:6a:b3:30:02:28:42:6b:81:16:0c:69:3a:ff: 63:93:c7:3f:17:e5:65:e2:a3:96:1e:73:7b:04:7b: 4e:e6:47:f9:ab:49:06:74:c2:f2:e5:72:84:cc:b3: 00:b2:e3:aa:a2:cd:4d:92:c0:c0:e3:e9:53:0a:aa: 32:df:d9:a5:ec:5b:12:66:6a:a7:6e:06:42:bb:42: da:a1:ab:24:7a:2e:f4:53:c5:2d:e6:ac:3a:79:0c: ab:fb:ca:bc:f0:02:a8:6a:a6:31:eb:1d:bd:8c:b5: d6:c0:cc:3e:ea:a8:79:c0:76:20:48:b3:06:16:57: fe:3f:60:8c:86:da:61:80:f0:ce:d0:3b:71:1b:74: c1:f6:f6:8c:90:fd:56:33:f8:74:5f:0f:b2:e0:ee: c5:4b:dd:60:5f:65:13:02:d7:bc:74:16:f1:97:62: 63:20:18:c6:95:13:6c:73:12:94:e3:13:c3:fc:db: 3b:dd:b2:66:c7:42:8b:ec:4f:52:c8:1c:b7:59:f2: 55:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B9:61:F5:1C:CB:9B:3C:17:66:18:D4:6D:3D:88:B8:D2:B8:3E:95 X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/4A9AD51270F811F0BA070F34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.40.0/22 Signature Algorithm: sha256WithRSAEncryption 74:c7:48:6d:1a:24:31:41:75:0f:fe:c5:76:d8:31:8a:2e:f3: c2:4b:23:44:1e:c4:25:6a:85:4e:d5:37:73:43:ac:ef:c9:3a: 7a:8d:ba:c1:b5:88:48:b5:b1:ea:88:b7:e7:1f:a3:b8:6b:c8: 14:3c:83:73:48:82:88:9d:06:a7:48:30:3f:c3:06:fe:19:7a: 87:eb:17:41:e7:c1:28:93:b3:aa:73:d7:fd:b1:fd:f4:8c:b0: 97:7a:4e:5e:35:95:2f:1c:14:40:8e:29:c2:e8:40:6f:62:31: 14:bc:71:78:f0:2b:21:a7:89:ef:0d:c0:39:3c:07:f1:58:01: 62:d7:cb:e7:a9:6b:62:18:41:51:a1:10:fe:b0:d9:5e:10:10: 7c:01:6f:a1:38:14:59:2d:78:f6:4a:cb:b1:61:c5:8f:b0:44: ba:8e:3d:bf:7d:23:29:6a:79:9f:a8:25:9c:8a:0e:e4:28:38: 9b:13:26:d4:bb:41:98:25:10:a0:9c:28:b4:4e:e1:b4:00:fc: ff:cf:31:09:a2:c0:32:f5:59:11:92:47:04:e8:73:45:e5:7a: 6e:c9:03:d6:a4:57:ce:d8:4e:35:94:7f:d5:cb:2c:c1:c2:22: 58:54:c8:34:1d:92:11:54:85:f9:3d:54:16:c6:d5:b5:5d:f4: 1c:49:b3:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMEYxMTAvBgNVBAUTKEEzRUI1MUQyOTk5QkJCNDQ2NTlCRERBNkJFMUUxMEZB NTUxRTIyNjUwHhcNMjUwOTEzMDUxMTQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGI2ZC1lNjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5khrdvZxTSmyPMUL1jo0mW/mfD2E/UpCGVc2+54ZaO6RT5gScOLdT00RHCw XO1QABLErieIppznv8eHQ2qzMAIoQmuBFgxpOv9jk8c/F+Vl4qOWHnN7BHtO5kf5 q0kGdMLy5XKEzLMAsuOqos1NksDA4+lTCqoy39ml7FsSZmqnbgZCu0Laoaskei70 U8Ut5qw6eQyr+8q88AKoaqYx6x29jLXWwMw+6qh5wHYgSLMGFlf+P2CMhtphgPDO 0DtxG3TB9vaMkP1WM/h0Xw+y4O7FS91gX2UTAte8dBbxl2JjIBjGlRNscxKU4xPD /Ns73bJmx0KL7E9SyBy3WfJVAwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEW5YfUc y5s8F2YY1G09iLjSuD6VMB8GA1UdIwQYMBaAFKPrUdKZm7tEZZvdpr4eEPpVHiJl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEwRi85QTc1ODBDOEZE NEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUwUmxtOTJtdmg0US1sVWVJ bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUltVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMxMEYvOUE3NTgwQzhGRDRBMTFFRTgwOUIwNzMwQzRGOUFFMDIvNEE5QUQ1MTI3 MEY4MTFGMEJBMDcwRjM0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3koMA0GCSqGSIb3DQEBCwUAA4IBAQB0x0htGiQxQXUP/sV22DGK LvPCSyNEHsQlaoVO1TdzQ6zvyTp6jbrBtYhItbHqiLfnH6O4a8gUPINzSIKInQan SDA/wwb+GXqH6xdB58Eok7Oqc9f9sf30jLCXek5eNZUvHBRAjinC6EBvYjEUvHF4 8Cshp4nvDcA5PAfxWAFi18vnqWtiGEFRoRD+sNleEBB8AW+hOBRZLXj2SsuxYcWP sES6jj2/fSMpanmfqCWcig7kKDibEybUu0GYJRCgnCi0TuG0APz/zzEJosAy9VkR kkcE6HNF5XpuyQPWpFfO2E41lH/VyyzBwiJYVMg0HZIRVIX5PVQWxtW1XfQcSbNM -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:17 2026 by rpki-client