$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/C9F37B86584111F09E8EC450C4F9AE02.roa File: C9F37B86584111F09E8EC450C4F9AE02.roa (raw, json) Hash identifier: lMbLeQ9y+VcqNaUu40E6Ont31pNHR+PjOYoL46iU/ug= Subject key identifier: BB:42:FC:FC:83:CD:33:A3:71:1B:0C:70:AE:CC:67:FC:D6:B5:7E:F6 Certificate issuer: /CN=A9115C2E/serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Certificate serial: 0A6A Authority key identifier: 39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/C9F37B86584111F09E8EC450C4F9AE02.roa Signing time: Wed 04 Mar 2026 19:26:10 +0000 ROA not before: Wed 04 Mar 2026 19:26:10 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134220 IP address blocks: 45.118.188.0/22 maxlen: 24 103.58.228.0/22 maxlen: 24 103.246.52.0/22 maxlen: 24 2402:6f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 19:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2666 (0xa6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Validity Not Before: Mar 4 19:26:10 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a88752-8a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c1:4d:32:3d:7f:82:d3:62:b8:50:ef:84:a3: 4c:26:e9:a0:e8:a8:3f:83:e3:b8:20:71:cb:06:c1: 06:b1:e9:6d:7e:4a:74:f2:79:84:b1:f3:b3:43:db: 18:27:75:ca:a9:c9:b3:f0:d1:04:af:51:85:e1:08: 6b:39:86:da:d2:7e:21:38:1a:60:69:b4:41:04:14: ac:16:3c:8f:19:77:43:cb:80:38:a5:99:63:2f:d4: bf:5c:83:65:54:1a:58:07:ce:0e:a3:b0:ad:6a:bc: 79:a0:85:b3:c7:74:be:8f:18:9d:82:90:87:58:6e: 00:bb:38:54:2f:a1:2b:ea:7f:1a:59:98:a2:2c:63: f6:43:f1:52:fd:b4:e1:e7:c9:1a:b0:8c:86:16:6f: 39:c3:58:82:bd:28:06:d5:e4:ac:aa:44:1f:90:bc: 60:0e:bc:c5:b2:fe:0a:49:ce:3b:71:a0:3e:aa:93: aa:a5:27:32:e4:bf:7c:47:09:08:f8:99:21:71:22: 8b:23:1e:db:b7:96:4a:44:6f:47:a1:15:6c:0a:b8: 0a:e6:ad:da:c1:7c:5c:be:97:bd:02:45:15:2e:9c: 08:f8:b1:1a:c7:c9:ec:88:cc:c2:52:9e:f0:11:3d: 05:b9:28:7d:c4:80:1f:41:dd:e7:e4:9b:b4:cf:6e: 64:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:42:FC:FC:83:CD:33:A3:71:1B:0C:70:AE:CC:67:FC:D6:B5:7E:F6 X509v3 Authority Key Identifier: keyid:39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/C9F37B86584111F09E8EC450C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.188.0/22 103.58.228.0/22 103.246.52.0/22 IPv6: 2402:6f80::/32 Signature Algorithm: sha256WithRSAEncryption bd:e6:01:56:98:f9:82:99:d7:19:1a:de:81:55:3b:ee:d8:b9: 1b:6a:16:cb:86:5f:da:07:9d:ab:9b:ea:8b:d7:7c:d0:34:af: 84:36:32:23:c9:e9:e2:16:3c:0f:be:f8:3f:a1:cf:e1:85:fe: 93:68:0b:2e:46:7b:98:8c:ba:22:cf:7f:e5:df:4d:3e:f4:00: 88:15:27:9f:03:31:7a:f9:43:96:1f:c9:7f:49:11:be:39:91: 21:de:7c:1c:e3:08:a6:e9:7e:7e:bb:88:97:98:83:f9:c6:bc: 23:f4:db:c4:10:dc:88:89:07:76:f8:8e:d8:c6:72:12:dd:5c: db:b7:be:df:de:ca:bd:b9:eb:81:4f:5c:dc:0d:30:26:1d:2d: 2e:c9:5d:d2:b4:ac:e9:fc:ae:4e:9a:8a:5a:11:51:00:c6:9c: f8:16:e1:c4:4b:8f:e7:81:5f:70:04:e6:92:32:b2:f5:b8:de: f5:2d:d1:77:ab:9c:4e:26:bb:de:43:58:13:b4:08:b0:9a:ff: b1:49:50:e6:bb:4a:7f:2a:f7:e6:9a:a7:c8:bf:7c:74:35:63: 23:84:f9:fb:19:03:2a:3e:f3:93:89:b8:fd:c5:17:5d:13:9d: 6f:b9:b5:67:10:93:7a:d5:b8:90:77:5f:50:06:28:28:72:23: 29:64:20:5b -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKDM5MkZDMjI3RUVDQzVBNjIxNTcyRkFEQUFDNjUxQTND RUJCMjE2M0MwHhcNMjYwMzA0MTkyNjEwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4ODc1Mi04YTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcFNMj1/gtNiuFDvhKNMJumg6Kg/g+O4IHHLBsEGseltfkp08nmEsfOzQ9sY J3XKqcmz8NEEr1GF4QhrOYba0n4hOBpgabRBBBSsFjyPGXdDy4A4pZljL9S/XINl VBpYB84Oo7Ctarx5oIWzx3S+jxidgpCHWG4AuzhUL6Er6n8aWZiiLGP2Q/FS/bTh 58kasIyGFm85w1iCvSgG1eSsqkQfkLxgDrzFsv4KSc47caA+qpOqpScy5L98RwkI +JkhcSKLIx7bt5ZKRG9HoRVsCrgK5q3awXxcvpe9AkUVLpwI+LEax8nsiMzCUp7w ET0FuSh9xIAfQd3n5Ju0z25khwIDAQABo4ICezCCAncwHQYDVR0OBBYEFLtC/PyD zTOjcRsMcK7MZ/zWtX72MB8GA1UdIwQYMBaAFDkvwifuzFpiFXL62qxlGjzrshY8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS8zOEQxNDAxQzgz NDgxMUVBQTdDNDc1NzZDNEY5QUUwMi9PU19DSi03TVdtSVZjdnJhckdVYVBPdXlG ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TX0NKLTdNV21JVmN2cmFyR1VhUE91eUZqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDMkUvMzhEMTQwMUM4MzQ4MTFFQUE3QzQ3NTc2QzRGOUFFMDIvQzlGMzdCODY1 ODQxMTFGMDlFOEVDNDUwQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLXa8AwQCZzrkAwQCZ/Y0MA0EAgACMAcDBQAkAm+AMA0GCSqGSIb3 DQEBCwUAA4IBAQC95gFWmPmCmdcZGt6BVTvu2LkbahbLhl/aB52rm+qL13zQNK+E NjIjyeniFjwPvvg/oc/hhf6TaAsuRnuYjLoiz3/l300+9ACIFSefAzF6+UOWH8l/ SRG+OZEh3nwc4wim6X5+u4iXmIP5xrwj9NvEENyIiQd2+I7YxnIS3Vzbt77f3sq9 ueuBT1zcDTAmHS0uyV3StKzp/K5OmopaEVEAxpz4FuHES4/ngV9wBOaSMrL1uN71 LdF3q5xOJrveQ1gTtAiwmv+xSVDmu0p/KvfmmqfIv3x0NWMjhPn7GQMqPvOTibj9 xRddE51vubVnEJN61biQd19QBigociMpZCBb -----END CERTIFICATE-----Generated at Fri Mar 13 13:31:52 2026 by rpki-client