$ rpki-client -vvf rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa File: A29A7DF20E2011EB81D90E2EC4F9AE02.roa (raw, json) Hash identifier: My4vP+7ejMRWzliSWfidB1ey8yz0H3py9TXfGkF1uec= Subject key identifier: 21:2D:78:33:D8:8B:5F:F6:82:ED:60:DF:D0:57:69:41:4C:AE:EC:48 Certificate issuer: /CN=A9192EE9/serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Certificate serial: 0890 Authority key identifier: 2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:37:43 +0000 ROA not before: Fri 30 May 2025 21:49:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139195 IP address blocks: 103.139.156.0/24 maxlen: 24 103.139.157.0/24 maxlen: 24 103.139.158.0/24 maxlen: 24 103.139.159.0/24 maxlen: 24 2404:e740::/32 maxlen: 32 2404:e740::/48 maxlen: 48 2404:e740:1::/48 maxlen: 48 2404:e740:2::/48 maxlen: 48 2404:e740:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192EE9, serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Validity Not Before: May 30 21:49:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fad7-14a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f2:83:0e:ae:84:70:62:65:0a:ea:46:62:66: 64:a1:e2:d0:6c:e0:11:f3:99:af:4c:18:a1:8a:8d: 85:59:1b:7d:e7:a2:a0:8e:70:bb:29:c3:4b:d3:f9: af:7d:ef:b4:50:d6:50:41:b4:27:8d:6f:42:dc:3b: ea:73:09:08:30:a6:7d:cd:f3:19:ac:f7:aa:09:da: 7b:c1:b6:59:ff:47:56:27:40:99:8d:43:ee:e1:9a: 01:1c:67:73:9d:af:c7:d1:e5:d0:1f:8a:e7:f0:3e: db:26:e0:3e:dc:47:d9:0d:1f:45:17:47:f3:bb:1e: 71:70:63:00:02:6f:32:97:46:50:36:3c:d6:a6:55: b6:d6:1e:3e:0a:47:6c:ef:36:95:6a:4a:c7:cd:60: 5c:cf:e0:d0:a3:80:45:6d:81:92:4d:5c:1a:4e:9f: 42:1b:a8:ca:d3:87:18:18:7e:10:6f:4e:28:13:d0: 16:0f:de:5c:5b:46:e2:5c:11:ee:52:44:98:a4:da: cf:1d:21:8f:22:c8:6f:31:c0:86:0d:cb:7e:90:13: 96:e7:09:e1:25:87:a5:d1:40:d2:38:35:48:71:a5: 66:e1:15:85:d2:22:ae:97:b8:e8:20:de:f8:45:69: d7:84:1f:6d:1b:2d:b7:6e:3f:ec:3c:42:ab:6a:4e: d3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2D:78:33:D8:8B:5F:F6:82:ED:60:DF:D0:57:69:41:4C:AE:EC:48 X509v3 Authority Key Identifier: keyid:2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/A29A7DF20E2011EB81D90E2EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.156.0/22 IPv6: 2404:e740::/32 Signature Algorithm: sha256WithRSAEncryption 99:de:08:79:02:1b:6c:8b:e2:5b:45:4e:15:bf:4f:49:7c:7a: c5:54:01:3a:1a:c9:6c:f4:99:5f:ed:ed:2e:3c:c6:a3:af:28: 00:a2:78:01:d6:9d:25:45:da:6d:6c:24:2b:1c:54:24:9d:ff: aa:72:68:17:ec:f2:3e:18:18:e9:30:50:b0:94:91:7d:56:34: d2:e9:ec:04:a5:f2:61:ba:bf:a8:0b:07:30:da:2e:38:cd:b8: 1c:0e:37:ae:42:09:07:be:2e:85:1b:a6:83:ea:fc:2d:0c:52: 3e:4f:52:75:e5:f7:1e:a6:4f:32:1c:11:0b:d1:a5:7d:92:2f: 67:f4:59:41:31:6e:c3:1f:63:c6:eb:9d:2d:6c:4d:b6:3f:fe: 76:c1:cd:84:53:51:09:6c:cf:e7:17:8a:ae:e6:ca:05:c6:a3: ca:b6:49:a4:12:df:80:f3:9c:19:8e:ef:73:b6:1e:91:53:b3: 6d:82:1d:05:9a:42:fa:51:0c:b1:fe:43:5c:b5:86:74:18:ac: ff:3b:b4:62:7d:07:1f:53:18:0c:5b:11:5b:ab:41:48:d4:c3: ca:9e:32:5a:ba:27:9d:d3:85:9d:70:e2:f4:9f:bf:3b:ff:9f: 9d:8f:c3:3c:2c:37:d9:eb:bf:8e:d3:c0:16:05:38:60:e0:1f: bd:40:e3:e2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJFRTkxMTAvBgNVBAUTKDJGN0FFQkRDNzAxNzlENzE2OTRGQzY5OUQ1RjNFNDBF NTg0QUIzNjkwHhcNMjUwNTMwMjE0OTMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmFkNy0xNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/KDDq6EcGJlCupGYmZkoeLQbOAR85mvTBihio2FWRt956KgjnC7KcNL0/mv fe+0UNZQQbQnjW9C3DvqcwkIMKZ9zfMZrPeqCdp7wbZZ/0dWJ0CZjUPu4ZoBHGdz na/H0eXQH4rn8D7bJuA+3EfZDR9FF0fzux5xcGMAAm8yl0ZQNjzWplW21h4+Ckds 7zaVakrHzWBcz+DQo4BFbYGSTVwaTp9CG6jK04cYGH4Qb04oE9AWD95cW0biXBHu UkSYpNrPHSGPIshvMcCGDct+kBOW5wnhJYel0UDSODVIcaVm4RWF0iKul7joIN74 RWnXhB9tGy23bj/sPEKrak7T7wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFCEteDPY i1/2gu1g39BXaUFMruxIMB8GA1UdIwQYMBaAFC9669xwF51xaU/GmdXz5A5YSrNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkVFOS8zMjQ4NDFGNEU2 RkUxMUVBODM4RUExNDhDNEY5QUUwMi9MM3JyM0hBWG5YRnBUOGFaMWZQa0RsaEtz MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzcnIzSEFYblhGcFQ4YVoxZlBrRGxoS3Myay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJFRTkvMzI0ODQxRjRFNkZFMTFFQTgzOEVBMTQ4QzRGOUFFMDIvQTI5QTdERjIw RTIwMTFFQjgxRDkwRTJFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4ucMA0EAgACMAcDBQAkBOdAMA0GCSqGSIb3DQEBCwUAA4IBAQCZ 3gh5Ahtsi+JbRU4Vv09JfHrFVAE6Gsls9Jlf7e0uPMajrygAongB1p0lRdptbCQr HFQknf+qcmgX7PI+GBjpMFCwlJF9VjTS6ewEpfJhur+oCwcw2i44zbgcDjeuQgkH vi6FG6aD6vwtDFI+T1J15fcepk8yHBEL0aV9ki9n9FlBMW7DH2PG650tbE22P/52 wc2EU1EJbM/nF4qu5soFxqPKtkmkEt+A85wZju9zth6RU7Ntgh0FmkL6UQyx/kNc tYZ0GKz/O7RifQcfUxgMWxFbq0FI1MPKnjJauied04WdcOL0n787/5+dj8M8LDfZ 67+O08AWBThg4B+9QOPi -----END CERTIFICATE-----Generated at Thu Mar 26 06:51:57 2026 by rpki-client