$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/5AEF27A42ECD11F1AE5BE4D1C4833773.roa File: 5AEF27A42ECD11F1AE5BE4D1C4833773.roa (raw, json) Hash identifier: pJrOfhLTXJrzDjh1PttmKiJG9g18KY+/mTy+A26VFpE= Subject key identifier: CE:C4:C6:3C:93:D2:42:CB:07:4C:9B:C7:A4:7A:36:FB:71:AC:23:C3 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 0A4B Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/5AEF27A42ECD11F1AE5BE4D1C4833773.roa Signing time: Thu 02 Apr 2026 19:51:35 +0000 ROA not before: Thu 02 Apr 2026 19:51:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153789 IP address blocks: 103.142.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Apr 2 19:51:35 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69cec8c7-41a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:01:a5:fb:d4:16:6f:af:fe:5e:05:6d:60:a4: 18:bf:5c:5d:9f:d7:e7:af:5d:77:aa:fb:4d:19:5b: da:8f:bf:63:80:66:53:36:27:f7:92:49:a8:a4:29: e8:b6:4b:91:93:fe:90:b0:5f:b0:ad:62:fd:47:54: c6:a5:a7:47:2e:38:9b:08:97:05:96:c3:35:5d:22: ad:d9:ea:a3:d4:24:1a:57:3f:9f:66:44:b9:96:d1: 41:b0:2c:a7:0c:36:7e:ef:35:0c:9c:18:4d:81:7a: 97:ed:0d:4d:dc:13:10:d8:79:b8:72:b2:e7:d9:00: f6:82:e5:02:2e:c1:f2:28:14:fe:91:04:5e:40:c3: 73:97:6e:cd:88:8a:5e:7a:53:71:e7:3f:e7:8f:7a: b2:94:d1:48:22:5a:7c:93:90:61:54:81:2b:0f:6d: 37:42:b0:fc:aa:80:7a:44:3d:e5:c7:9c:89:f7:f7: de:a5:ab:36:1b:cd:c8:cd:b4:35:d7:6c:6c:c7:84: 81:30:33:4c:3c:a7:41:56:2c:ac:c8:de:34:64:e8: 20:06:80:64:3e:58:63:0e:5c:81:f9:c2:dc:32:79: 9e:29:c2:9d:46:27:d6:8d:d9:cb:13:43:47:c8:cc: 12:e6:ff:d6:de:4e:4c:17:2c:05:d5:a5:ec:5b:e0: 72:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C4:C6:3C:93:D2:42:CB:07:4C:9B:C7:A4:7A:36:FB:71:AC:23:C3 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/5AEF27A42ECD11F1AE5BE4D1C4833773.roa sbgp-ipAddrBlock: critical IPv4: 103.142.9.0/24 Signature Algorithm: sha256WithRSAEncryption 84:88:9e:4d:ed:4a:f3:02:c9:43:f8:3c:f3:8b:3a:01:9e:00: 69:8b:1d:1e:ce:9d:24:8b:2c:d4:63:1d:cf:03:3d:9c:4d:4f: ae:f2:6a:ee:d9:4f:15:4e:97:1b:54:24:67:0b:17:da:2f:00: be:a6:7f:6b:6c:64:cc:20:d4:86:06:d4:16:12:bf:39:51:04: 30:93:b6:0e:0f:0e:23:53:d1:d1:db:0b:03:a2:46:29:4a:6e: 12:ed:f4:83:0f:e0:e9:59:8e:a6:83:ff:db:aa:59:d8:ce:85: 47:e7:25:be:5a:7b:27:61:83:1c:30:b6:86:da:85:9d:46:3d: 62:dc:55:cc:e5:e6:b8:b6:ff:ff:41:b6:ad:bc:f9:b9:4d:ba: 90:d1:dd:53:ac:07:33:c0:99:a9:28:66:55:7b:85:89:28:03: 56:d5:2b:5d:86:18:3e:57:7b:00:16:8c:ba:06:ce:3b:31:73: 3f:a1:bf:93:f5:9e:1a:95:8b:a3:f0:70:bb:f5:8c:a4:54:5d: 59:39:2f:b9:23:59:72:e7:2f:33:70:ff:cc:b4:e8:4d:ba:c6: 68:75:e8:95:87:f5:4e:01:68:64:18:41:7b:05:50:fb:02:5c: 5e:c3:0f:69:9d:1f:ad:d0:ef:fc:ab:a0:09:55:b1:c7:0f:03: ef:dd:30:98 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjYwNDAyMTk1MTM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYzhjNy00MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gGl+9QWb6/+XgVtYKQYv1xdn9fnr113qvtNGVvaj79jgGZTNif3kkmopCno tkuRk/6QsF+wrWL9R1TGpadHLjibCJcFlsM1XSKt2eqj1CQaVz+fZkS5ltFBsCyn DDZ+7zUMnBhNgXqX7Q1N3BMQ2Hm4crLn2QD2guUCLsHyKBT+kQReQMNzl27NiIpe elNx5z/nj3qylNFIIlp8k5BhVIErD203QrD8qoB6RD3lx5yJ9/fepas2G83IzbQ1 12xsx4SBMDNMPKdBViysyN40ZOggBoBkPlhjDlyB+cLcMnmeKcKdRifWjdnLE0NH yMwS5v/W3k5MFywF1aXsW+ByeQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM7ExjyT 0kLLB0ybx6R6NvtxrCPDMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZERTUvNzJDNUE5Q0M5NDMwMTFFQUJENzVGOTgzQzRGOUFFMDIvNUFFRjI3QTQy RUNEMTFGMUFFNUJFNEQxQzQ4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ44JMA0GCSqGSIb3DQEBCwUAA4IBAQCEiJ5N7UrzAslD+DzzizoB ngBpix0ezp0kiyzUYx3PAz2cTU+u8mru2U8VTpcbVCRnCxfaLwC+pn9rbGTMINSG BtQWEr85UQQwk7YODw4jU9HR2wsDokYpSm4S7fSDD+DpWY6mg//bqlnYzoVH5yW+ WnsnYYMcMLaG2oWdRj1i3FXM5ea4tv//QbatvPm5TbqQ0d1TrAczwJmpKGZVe4WJ KANW1Stdhhg+V3sAFoy6Bs47MXM/ob+T9Z4alYuj8HC79YykVF1ZOS+5I1ly5y8z cP/MtOhNusZodeiVh/VOAWhkGEF7BVD7Alxeww9pnR+t0O/8q6AJVbHHDwPv3TCY -----END CERTIFICATE-----Generated at Sun Apr 5 20:57:41 2026 by rpki-client