$ rpki-client -vvf rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa File: CE042A841E5611EFBEDD1F39C4F9AE02.roa (raw, json) Hash identifier: k9o+QZZOY/GVuUjyky+6WbWrZg7L8fx0wCEliNfXDKk= Subject key identifier: 84:F0:BD:61:AD:16:26:2D:3A:E7:72:AF:2B:1E:E8:C3:5B:99:A3:A0 Certificate issuer: /CN=A9192698/serialNumber=DB063078F7B97752FB81D00FA9BD7C523B1C9703 Certificate serial: 0152 Authority key identifier: DB:06:30:78:F7:B9:77:52:FB:81:D0:0F:A9:BD:7C:52:3B:1C:97:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:17:09 +0000 ROA not before: Fri 05 Sep 2025 05:41:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17893 IP address blocks: 103.159.28.0/23 maxlen: 24 202.124.224.0/20 maxlen: 24 2404:7800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.crl rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192698, serialNumber=DB063078F7B97752FB81D00FA9BD7C523B1C9703 Validity Not Before: Sep 5 05:41:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a9f4-87ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:ac:58:a3:2a:ba:47:1f:a2:f4:33:d0:d6: 3f:ff:32:b9:50:2a:75:9b:54:56:d6:a9:00:bc:ca: 22:ea:32:97:0d:4a:26:54:62:01:4a:03:20:90:0a: 29:10:1a:75:6c:d4:ef:e3:11:09:79:5f:eb:f6:c7: 82:9f:ae:3b:c2:95:b6:45:57:29:bb:bf:f8:ca:f4: 02:ea:b9:5c:e5:f7:15:b7:d3:e6:60:0d:2d:ca:70: ec:45:21:f0:51:18:85:ad:71:7d:93:64:fe:c8:2f: 69:e5:1e:62:a1:bb:38:7c:96:07:fd:08:f7:74:79: 3b:28:b4:52:c4:cb:64:2f:c7:b9:96:4c:b1:11:33: 7f:de:24:28:1d:a7:4d:4d:96:8c:ad:9b:21:c9:38: 69:62:7c:2d:5b:7f:e7:d1:87:b5:9d:1b:54:52:db: c7:fd:bc:b8:a6:79:88:61:c0:85:d0:70:ab:45:63: f6:b9:9d:a8:a9:a7:68:dd:bf:97:3f:66:4c:5b:b7: 6b:49:97:2f:de:34:99:7e:a0:1c:20:58:d1:1b:35: 62:c2:81:3e:65:22:95:f3:8d:a3:b2:31:ac:f5:48: 61:81:ef:ad:bc:81:8f:9c:06:3b:72:a0:68:46:4b: e8:47:e3:04:cc:b7:69:fb:f3:7c:a7:f8:9e:1d:c2: d8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F0:BD:61:AD:16:26:2D:3A:E7:72:AF:2B:1E:E8:C3:5B:99:A3:A0 X509v3 Authority Key Identifier: keyid:DB:06:30:78:F7:B9:77:52:FB:81:D0:0F:A9:BD:7C:52:3B:1C:97:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.28.0/23 202.124.224.0/20 IPv6: 2404:7800::/32 Signature Algorithm: sha256WithRSAEncryption 13:a5:ea:a8:b9:57:cd:3d:6e:31:92:0f:09:ee:e5:1b:77:2b: 07:8e:4f:46:03:18:2e:b2:a4:29:fa:b0:ce:12:6c:08:df:3b: 31:b0:ff:83:2d:2a:13:ca:52:12:66:f9:17:e4:77:e6:a4:a4: 60:56:21:b9:40:bf:23:08:82:cc:4a:8c:af:f7:f7:29:c7:3a: 89:b4:b4:a0:fb:01:cb:72:cd:62:7c:ad:4e:01:8a:2c:be:af: 77:95:f1:c1:02:35:a1:c5:06:7c:cb:89:16:62:33:69:ed:16: 03:a8:24:c0:b5:2a:4e:34:84:0b:17:2d:1e:f7:63:12:5d:d3: e1:4d:e6:3d:2a:8d:bc:8f:32:07:dc:87:43:4c:d7:00:c5:82: fb:d9:af:44:19:e6:83:88:26:b6:7a:8b:32:81:07:16:70:0d: 37:88:3b:b5:c1:ef:24:dc:0b:0a:7a:73:c0:39:5b:2e:ba:23: 12:b4:32:bc:a3:3a:7e:84:cc:59:36:59:f1:88:27:41:e4:ee: ac:db:47:59:6b:af:5e:fd:7b:a0:dd:36:70:26:3e:5f:e2:93: f9:21:34:d7:2c:d1:83:f4:ef:92:e7:ac:c5:66:00:42:42:cd: 63:3f:66:51:46:32:7f:19:65:43:ab:7d:94:2f:42:d2:1b:aa: 33:fa:1d:95 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI2OTgxMTAvBgNVBAUTKERCMDYzMDc4RjdCOTc3NTJGQjgxRDAwRkE5QkQ3QzUy M0IxQzk3MDMwHhcNMjUwOTA1MDU0MTU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTlmNC04N2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOesWKMqukcfovQz0NY//zK5UCp1m1RW1qkAvMoi6jKXDUomVGIBSgMgkAop EBp1bNTv4xEJeV/r9seCn647wpW2RVcpu7/4yvQC6rlc5fcVt9PmYA0tynDsRSHw URiFrXF9k2T+yC9p5R5iobs4fJYH/Qj3dHk7KLRSxMtkL8e5lkyxETN/3iQoHadN TZaMrZshyThpYnwtW3/n0Ye1nRtUUtvH/by4pnmIYcCF0HCrRWP2uZ2oqado3b+X P2ZMW7drSZcv3jSZfqAcIFjRGzViwoE+ZSKV842jsjGs9Uhhge+tvIGPnAY7cqBo RkvoR+MEzLdp+/N8p/ieHcLYewIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFITwvWGt FiYtOudyryse6MNbmaOgMB8GA1UdIwQYMBaAFNsGMHj3uXdS+4HQD6m9fFI7HJcD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjY5OC9EM0MwRUNFMjFF NTUxMUVGQUM5NTlGMTlDNEY5QUUwMi8yd1l3ZVBlNWQxTDdnZEFQcWIxOFVqc2Ns d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3WXdlUGU1ZDFMN2dkQVBxYjE4VWpzY2x3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI2OTgvRDNDMEVDRTIxRTU1MTFFRkFDOTU5RjE5QzRGOUFFMDIvQ0UwNDJBODQx RTU2MTFFRkJFREQxRjM5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ58cAwQEynzgMA0EAgACMAcDBQAkBHgAMA0GCSqGSIb3DQEBCwUA A4IBAQATpeqouVfNPW4xkg8J7uUbdysHjk9GAxgusqQp+rDOEmwI3zsxsP+DLSoT ylISZvkX5HfmpKRgViG5QL8jCILMSoyv9/cpxzqJtLSg+wHLcs1ifK1OAYosvq93 lfHBAjWhxQZ8y4kWYjNp7RYDqCTAtSpONIQLFy0e92MSXdPhTeY9Ko28jzIH3IdD TNcAxYL72a9EGeaDiCa2eosygQcWcA03iDu1we8k3AsKenPAOVsuuiMStDK8ozp+ hMxZNlnxiCdB5O6s20dZa69e/Xug3TZwJj5f4pP5ITTXLNGD9O+S56zFZgBCQs1j P2ZRRjJ/GWVDq32UL0LSG6oz+h2V -----END CERTIFICATE-----Generated at Thu Mar 26 05:37:12 2026 by rpki-client