$ rpki-client -vvf rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa File: AD8187A41FF511ED8DD6D661C4F9AE02.roa (raw, json) Hash identifier: ciZLIZ6M+VPkFh9Tgk01VRIHrZ3Wc7g1xIHU0gZQFjY= Subject key identifier: 17:18:BC:D2:B4:78:D1:53:BA:D8:A5:D4:15:88:E3:07:85:A4:61:9E Certificate issuer: /CN=A9194D56/serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Certificate serial: 23ED Authority key identifier: 7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa Signing time: Wed 28 Jan 2026 10:05:22 +0000 ROA not before: Wed 28 Jan 2026 10:05:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 24016 IP address blocks: 103.197.164.0/22 maxlen: 24 115.84.128.0/19 maxlen: 24 202.21.176.0/20 maxlen: 24 220.158.220.0/22 maxlen: 24 2401:8300::/32 maxlen: 40 2401:8300:f000::/48 maxlen: 48 2401:8300:f001::/48 maxlen: 48 2401:8300:f002::/48 maxlen: 48 2401:8300:f003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 15:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9197 (0x23ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194D56, serialNumber=7C5B7414E3CC804059BCA86CC5163A0743E41C85 Validity Not Before: Jan 28 10:05:22 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6979df62-f02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:40:3e:65:26:b0:e7:aa:af:44:ed:52:41:7b: e3:41:be:56:87:d1:6d:4d:5b:42:b4:4e:6f:22:2a: ff:af:29:39:ac:2d:17:82:2f:42:71:35:f2:7c:df: 3f:85:8e:18:52:b5:1c:d3:40:88:a9:53:e9:50:8e: 70:59:4d:a2:98:84:04:d7:63:7c:df:78:41:68:05: cc:db:cf:77:3d:2c:12:48:32:02:ba:99:34:45:4b: ee:50:07:7c:56:98:da:56:ad:cb:a8:f6:62:e1:23: 45:67:e9:65:8b:64:4a:5b:73:d1:7d:8f:58:8b:ee: 4b:03:8c:62:58:7d:20:8f:51:ca:5e:e8:97:b5:dc: 5c:bc:32:18:fb:70:12:d1:cf:d8:97:f1:0a:3e:7e: 33:36:c8:d7:34:5c:f9:c9:b5:56:d5:43:5b:81:55: 59:78:cb:c3:e4:d1:32:26:ee:ef:9e:5e:22:9e:04: ff:be:e2:a8:c9:0b:d5:99:b9:35:c9:9f:69:8f:b3: 3f:b6:ba:17:5b:2c:5a:79:ef:0b:66:da:2b:2f:4b: a8:eb:f9:a1:34:ad:0e:ff:8c:6a:95:ab:a1:86:28: 16:2a:fd:69:86:ee:60:65:44:fb:82:bc:79:57:91: c2:28:39:d4:e4:82:e6:ac:5b:3b:de:24:b6:33:ce: fc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:18:BC:D2:B4:78:D1:53:BA:D8:A5:D4:15:88:E3:07:85:A4:61:9E X509v3 Authority Key Identifier: keyid:7C:5B:74:14:E3:CC:80:40:59:BC:A8:6C:C5:16:3A:07:43:E4:1C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/fFt0FOPMgEBZvKhsxRY6B0PkHIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFt0FOPMgEBZvKhsxRY6B0PkHIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194D56/E5D407FE86B311E598F37F1AC4F9AE02/AD8187A41FF511ED8DD6D661C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.164.0/22 115.84.128.0/19 202.21.176.0/20 220.158.220.0/22 IPv6: 2401:8300::/32 Signature Algorithm: sha256WithRSAEncryption 09:32:3d:dc:ff:3e:24:cf:8a:30:24:d7:f4:50:28:d7:00:bd: 37:a9:2a:e2:96:3a:8a:f6:4f:3c:6f:e0:ee:1e:ff:5b:16:49: a0:07:fa:b2:43:ef:02:78:19:fd:d7:20:1d:6d:16:73:d8:10: 62:8c:a6:42:e1:b6:32:70:5b:33:29:44:48:98:33:08:e9:e8: 91:46:1d:00:43:79:0a:fe:d4:2b:f8:f4:d0:0a:79:6c:57:f4: 53:17:16:3f:df:7a:f7:75:48:3c:84:5c:d1:df:b7:7f:9c:f3: 82:76:a3:ca:7c:03:0f:4a:98:cd:ca:8a:5d:7c:9a:6d:4d:64: 79:f1:0b:8c:5f:1c:8b:8f:c5:fe:0d:39:d8:03:53:61:f3:9e: a2:b3:17:79:f2:00:af:19:ab:66:cd:e7:b1:15:97:f2:91:2f: 12:14:21:76:a4:33:2d:62:a2:76:9a:ab:be:be:a0:16:15:d3: 69:96:ef:ee:f5:c4:d8:b0:00:77:a5:cc:79:3c:bc:76:f1:96: 59:a4:9b:65:a0:72:eb:1e:eb:34:2c:76:fb:e7:29:e4:1d:c9: 59:56:25:c4:5a:c2:3a:06:2a:9d:f4:96:1e:43:fd:a9:da:a8: cf:23:b5:70:88:de:74:71:ea:e9:05:44:47:53:cc:5d:93:91: 18:4e:63:16 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICI+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRENTYxMTAvBgNVBAUTKDdDNUI3NDE0RTNDQzgwNDA1OUJDQTg2Q0M1MTYzQTA3 NDNFNDFDODUwHhcNMjYwMTI4MTAwNTIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTc5ZGY2Mi1mMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20A+ZSaw56qvRO1SQXvjQb5Wh9FtTVtCtE5vIir/ryk5rC0Xgi9CcTXyfN8/ hY4YUrUc00CIqVPpUI5wWU2imIQE12N833hBaAXM2893PSwSSDICupk0RUvuUAd8 VpjaVq3LqPZi4SNFZ+lli2RKW3PRfY9Yi+5LA4xiWH0gj1HKXuiXtdxcvDIY+3AS 0c/Yl/EKPn4zNsjXNFz5ybVW1UNbgVVZeMvD5NEyJu7vnl4ingT/vuKoyQvVmbk1 yZ9pj7M/troXWyxaee8LZtorL0uo6/mhNK0O/4xqlauhhigWKv1phu5gZUT7grx5 V5HCKDnU5ILmrFs73iS2M878yQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBcYvNK0 eNFTutil1BWI4weFpGGeMB8GA1UdIwQYMBaAFHxbdBTjzIBAWbyobMUWOgdD5ByF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEQ1Ni9FNUQ0MDdGRTg2 QjMxMUU1OThGMzdGMUFDNEY5QUUwMi9mRnQwRk9QTWdFQlp2S2hzeFJZNkIwUGtI SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGdDBGT1BNZ0VCWnZLaHN4Ulk2QjBQa0hJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRENTYvRTVENDA3RkU4NkIzMTFFNTk4RjM3RjFBQzRGOUFFMDIvQUQ4MTg3QTQx RkY1MTFFRDhERDZENjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnxaQDBAVzVIADBATKFbADBALcntwwDQQCAAIwBwMFACQB gwAwDQYJKoZIhvcNAQELBQADggEBAAkyPdz/PiTPijAk1/RQKNcAvTepKuKWOor2 Tzxv4O4e/1sWSaAH+rJD7wJ4Gf3XIB1tFnPYEGKMpkLhtjJwWzMpREiYMwjp6JFG HQBDeQr+1Cv49NAKeWxX9FMXFj/fevd1SDyEXNHft3+c84J2o8p8Aw9KmM3Kil18 mm1NZHnxC4xfHIuPxf4NOdgDU2HznqKzF3nyAK8Zq2bN57EVl/KRLxIUIXakMy1i onaaq76+oBYV02mW7+71xNiwAHelzHk8vHbxllmkm2Wgcuse6zQsdvvnKeQdyVlW JcRawjoGKp30lh5D/anaqM8jtXCI3nRx6ukFREdTzF2TkRhOYxY= -----END CERTIFICATE-----Generated at Thu Feb 19 21:52:57 2026 by rpki-client