$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa File: C1D49C12AEDF11EE96155C68C4F9AE02.roa (raw, json) Hash identifier: lkWBayLACrcApYQdnN1KbRgTJ81JMGh+ZFCvad/cRz8= Subject key identifier: 19:EF:BE:A8:B7:77:F9:7B:34:4E:F9:2A:C3:FF:7B:C8:17:DD:57:18 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 019D Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:41:11 +0000 ROA not before: Sat 23 Aug 2025 04:22:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132787 IP address blocks: 43.242.244.0/24 maxlen: 24 43.242.245.0/24 maxlen: 24 43.242.246.0/24 maxlen: 24 43.242.247.0/24 maxlen: 24 103.24.172.0/24 maxlen: 24 103.24.173.0/24 maxlen: 24 103.24.174.0/24 maxlen: 24 103.24.175.0/24 maxlen: 24 2402:20a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Aug 23 04:22:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3df87-5aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:aa:49:80:9d:c9:83:5f:36:df:1a:52:15:54: cf:b6:b9:d7:b2:9a:28:94:70:56:37:56:e9:03:6b: 52:9a:cb:74:06:f0:71:7c:06:b6:e2:14:52:e8:10: 2c:8c:ef:42:14:59:c7:75:97:0f:80:88:ce:56:a9: bb:6b:48:25:fc:5d:6c:f5:78:75:9e:65:a1:b3:2d: c3:ba:35:1b:ce:05:63:89:8c:31:d6:86:e2:cd:fd: 1b:aa:28:5d:63:88:61:5d:81:b4:74:d0:a0:cd:af: 54:f0:49:03:bd:7d:3a:89:48:a3:27:c5:4f:8f:5d: f6:d4:19:f8:f5:9b:44:cb:8e:6c:d8:df:44:02:4c: 93:13:ce:4e:c1:21:eb:63:b4:54:b0:2d:93:3a:8b: 0a:77:ba:d8:c9:0e:6e:55:f0:ee:1e:2f:b0:29:d4: 09:bb:00:cb:86:58:5c:a7:46:f6:a2:bd:35:8d:09: 5a:b3:ae:03:d2:37:00:a5:36:58:07:f4:68:8f:4e: 12:30:17:28:5a:f1:86:97:26:9c:3f:28:da:be:1d: 89:9d:6b:3a:71:bc:8a:84:54:08:ba:75:c7:47:de: 59:95:f3:41:d6:8e:84:8f:a4:d8:f8:2a:7a:4c:56: 55:b2:18:db:2e:da:68:84:9c:3f:26:31:48:46:0b: 6c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EF:BE:A8:B7:77:F9:7B:34:4E:F9:2A:C3:FF:7B:C8:17:DD:57:18 X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.242.244.0/22 103.24.172.0/22 IPv6: 2402:20a0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:1b:60:b5:5d:87:54:15:e3:0d:25:90:f9:b4:4f:8c:c1:03: 55:e5:ef:a5:52:3c:69:d4:9b:e5:71:10:62:43:53:b7:e3:0f: 7e:8c:34:71:b2:26:ca:f3:ee:86:1f:d7:21:bd:9d:cd:03:0d: a0:88:fa:5c:11:46:ac:27:31:31:23:1f:fe:e2:32:21:2d:fa: 5f:42:2f:bc:8e:7c:ea:16:44:66:86:fc:c5:e4:cc:47:5a:95: a4:5e:2a:4c:d3:72:90:f0:55:fa:96:2b:de:4b:ec:bd:8a:3f: f3:4f:18:dc:f3:67:56:37:12:5a:fc:ad:7b:47:d5:34:e5:62: 6b:13:4c:74:b7:13:69:19:9f:26:0e:88:52:ba:e3:16:19:75: 4e:a5:8c:e4:a4:73:93:62:82:1f:8e:c7:84:cc:ac:a8:50:59: 7f:37:2a:23:48:94:ca:80:de:6b:bc:0e:d3:40:6c:ca:93:31: ca:a4:b5:14:0b:94:fa:a0:5d:95:84:4e:e2:4c:18:35:ea:58: 23:e0:51:c2:70:f5:eb:95:5f:01:d7:80:b0:5a:bd:44:9e:17: c0:0e:b4:a5:31:0e:f7:d0:eb:e1:46:36:9d:82:a2:36:7e:ac: 42:d8:cc:8f:a0:64:05:f1:b2:c9:c8:88:b5:b9:5f:d2:5f:12: e3:26:34:72 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjUwODIzMDQyMjA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGY4Ny01YWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKpJgJ3Jg1823xpSFVTPtrnXspoolHBWN1bpA2tSmst0BvBxfAa24hRS6BAs jO9CFFnHdZcPgIjOVqm7a0gl/F1s9Xh1nmWhsy3DujUbzgVjiYwx1obizf0bqihd Y4hhXYG0dNCgza9U8EkDvX06iUijJ8VPj1321Bn49ZtEy45s2N9EAkyTE85OwSHr Y7RUsC2TOosKd7rYyQ5uVfDuHi+wKdQJuwDLhlhcp0b2or01jQlas64D0jcApTZY B/Roj04SMBcoWvGGlyacPyjavh2JnWs6cbyKhFQIunXHR95ZlfNB1o6Ej6TY+Cp6 TFZVshjbLtpohJw/JjFIRgtsNwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFBnvvqi3 d/l7NE75KsP/e8gX3VcYMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0MTMvNzU5QUQyNENBQjlFMTFFRTk2M0QzMTdEQzRGOUFFMDIvQzFENDlDMTJB RURGMTFFRTk2MTU1QzY4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/L0AwQCZxisMA0EAgACMAcDBQAkAiCgMA0GCSqGSIb3DQEBCwUA A4IBAQAPG2C1XYdUFeMNJZD5tE+MwQNV5e+lUjxp1JvlcRBiQ1O34w9+jDRxsibK 8+6GH9chvZ3NAw2giPpcEUasJzExIx/+4jIhLfpfQi+8jnzqFkRmhvzF5MxHWpWk XipM03KQ8FX6liveS+y9ij/zTxjc82dWNxJa/K17R9U05WJrE0x0txNpGZ8mDohS uuMWGXVOpYzkpHOTYoIfjseEzKyoUFl/NyojSJTKgN5rvA7TQGzKkzHKpLUUC5T6 oF2VhE7iTBg16lgj4FHCcPXrlV8B14CwWr1EnhfADrSlMQ730OvhRjadgqI2fqxC 2MyPoGQF8bLJyIi1uV/SXxLjJjRy -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:58 2026 by rpki-client