$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa File: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (raw, json) Hash identifier: IJy6vq3u18sfK/PaqQ4HkbGHvtQ0+WpPPGjw18M6VWY= Subject key identifier: 2C:90:D5:D9:9F:14:DE:3E:B7:BD:6B:A0:C8:C4:69:4F:DF:2A:C8:4C Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0EC3 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:27:36 +0000 ROA not before: Thu 28 Aug 2025 18:08:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3779 (0xec3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 28 18:08:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a47708-d24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f0:76:1b:5c:22:51:af:69:2c:cf:6b:8f:7b: 3f:dc:58:7d:76:ff:39:3b:02:55:0a:02:14:8c:df: 87:80:4e:fd:e8:4b:0b:8e:72:7d:8a:0e:84:a6:11: 86:29:79:5e:57:47:e0:3e:9c:25:56:49:a1:a5:e7: 6d:88:de:65:4c:d8:1e:a6:f8:2f:23:75:ac:ba:64: 1b:08:74:3f:94:9e:f6:07:60:0a:55:d3:f6:31:eb: 33:05:0b:d3:33:5b:88:89:d2:c9:a5:29:2d:55:49: 40:c3:07:22:e0:b5:f3:7a:26:39:b8:ac:c5:a7:2d: 0c:fe:13:49:28:85:10:4f:5e:3c:52:95:4e:58:e2: f8:ab:9a:f5:d0:35:8e:53:25:65:42:6f:0f:71:55: a7:e4:c6:cd:0c:22:8f:7b:b8:2f:f7:c8:4a:2d:d5: 47:75:70:da:62:56:86:8f:1d:e4:dc:05:53:dd:dc: 49:dc:6b:c4:21:df:92:e5:ae:bb:4f:d7:dd:46:58: 20:b5:8b:75:4d:be:03:c3:59:c3:d1:27:e0:4d:07: dc:43:3b:ae:a7:b1:46:3e:fa:0c:cd:2d:38:ab:39: dd:ca:a2:01:c6:d0:eb:27:ce:fa:08:df:05:7a:71: fd:e7:24:2b:36:65:f5:2e:75:38:8c:f5:e1:95:e9: 32:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:90:D5:D9:9F:14:DE:3E:B7:BD:6B:A0:C8:C4:69:4F:DF:2A:C8:4C X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1BBE249C21D911EB85DAFE71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:81:fb:5c:47:8e:53:e1:69:76:e7:d1:e3:5b:d5:b0:70:af: bf:49:1a:9d:0c:28:ae:da:58:2b:6c:e5:75:d3:3e:62:3a:37: 90:7a:da:19:c3:11:93:7a:de:9f:d2:a8:a3:0a:89:39:c8:d2: b6:00:94:91:e8:8d:c3:2e:98:27:a9:ef:6d:f8:1f:ce:17:c5: 12:16:0f:5b:cc:76:89:f5:37:dd:71:fb:fd:cf:5e:53:d0:cd: 13:f0:31:03:3e:16:74:75:5b:11:a1:38:66:a8:f6:18:4c:f2: 4c:b5:09:a6:c8:c3:2c:c2:eb:a4:cc:30:7b:e7:f8:d6:e8:51: 88:8d:42:b2:a3:6d:79:b3:d7:b7:3b:4d:7e:0d:bb:e4:4f:fd: 66:a1:ac:5c:68:17:3d:27:77:1a:4d:3e:b8:98:91:16:2c:76: e4:39:3b:16:1c:6d:bb:df:f8:64:1a:a7:1f:85:70:01:98:cf: 72:37:ed:7f:15:9e:54:82:15:6b:16:40:16:e8:ad:2e:3a:dc: c4:de:43:cb:a7:43:16:fc:f9:21:2a:bf:65:48:ca:57:fa:3e: db:93:d7:7e:e0:ae:12:ba:ee:4a:be:0d:19:05:ce:09:fb:88: a5:b9:3f:13:4b:36:8b:3c:33:90:01:1a:53:85:c6:9c:55:ab: d8:d3:40:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUwODI4MTgwODIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzcwOC1kMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PB2G1wiUa9pLM9rj3s/3Fh9dv85OwJVCgIUjN+HgE796EsLjnJ9ig6EphGG KXleV0fgPpwlVkmhpedtiN5lTNgepvgvI3WsumQbCHQ/lJ72B2AKVdP2MeszBQvT M1uIidLJpSktVUlAwwci4LXzeiY5uKzFpy0M/hNJKIUQT148UpVOWOL4q5r10DWO UyVlQm8PcVWn5MbNDCKPe7gv98hKLdVHdXDaYlaGjx3k3AVT3dxJ3GvEId+S5a67 T9fdRlggtYt1Tb4Dw1nD0SfgTQfcQzuup7FGPvoMzS04qzndyqIBxtDrJ876CN8F enH95yQrNmX1LnU4jPXhlekyfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCyQ1dmf FN4+t71roMjEaU/fKshMMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMUJCRTI0OUMy MUQ5MTFFQjg1REFGRTcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4zkMA0GCSqGSIb3DQEBCwUAA4IBAQCdgftcR45T4Wl259HjW9Ww cK+/SRqdDCiu2lgrbOV10z5iOjeQetoZwxGTet6f0qijCok5yNK2AJSR6I3DLpgn qe9t+B/OF8USFg9bzHaJ9Tfdcfv9z15T0M0T8DEDPhZ0dVsRoThmqPYYTPJMtQmm yMMswuukzDB75/jW6FGIjUKyo215s9e3O01+DbvkT/1moaxcaBc9J3caTT64mJEW LHbkOTsWHG273/hkGqcfhXABmM9yN+1/FZ5UghVrFkAW6K0uOtzE3kPLp0MW/Pkh Kr9lSMpX+j7bk9d+4K4Suu5Kvg0ZBc4J+4iluT8TSzaLPDOQARpThcacVavY00DI -----END CERTIFICATE-----Generated at Thu Mar 12 22:56:20 2026 by rpki-client