$ rpki-client -vvf rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa File: 9AD04EAAD58A11EE9992494AC4F9AE02.roa (raw, json) Hash identifier: 2Vu6c2I8iVNOp/0hhK3ltNex+tULNdrSU6w0Dy/08/o= Subject key identifier: 4C:1D:9E:DA:BB:C7:5E:DE:47:C6:5B:62:F6:F5:1F:13:4A:1D:0D:F0 Certificate issuer: /CN=A9129AD6/serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Certificate serial: 2C7F Authority key identifier: A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa Signing time: Sun 14 Jun 2026 16:17:09 +0000 ROA not before: Sun 14 Jun 2026 16:17:09 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 59365 IP address blocks: 103.231.228.0/24 maxlen: 24 103.231.229.0/24 maxlen: 24 103.231.230.0/24 maxlen: 24 103.231.231.0/24 maxlen: 24 157.119.48.0/22 maxlen: 24 2404:4b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 15:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11391 (0x2c7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129AD6, serialNumber=A5A6A9EAC1ACF76E552C78BDD78BA74FEDDD3FF9 Validity Not Before: Jun 14 16:17:09 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2ed405-8052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:61:86:c3:22:44:49:99:43:97:c7:c9:00:c9: 4c:33:0d:e7:2c:a1:d5:76:16:6b:0a:48:33:ee:87: cc:82:2f:19:f0:cd:8d:a7:13:a8:7b:6b:06:61:4d: ab:06:db:c4:97:da:22:b2:2c:73:53:25:4f:28:cd: 5e:70:ba:de:99:a3:e0:5b:8d:90:4c:ac:2a:37:fc: f7:2b:26:6a:94:b8:1f:3d:27:aa:05:bf:01:86:a6: 0b:b8:cf:e0:7b:ff:cc:49:78:ad:21:61:36:5f:59: b5:39:1c:9f:39:7b:9e:63:89:87:79:0c:d6:06:1d: d6:69:93:8f:1e:c2:4a:16:5a:71:17:2b:de:9e:4e: c3:bd:ca:0a:89:07:55:e9:70:e5:5e:5e:4d:37:5b: c1:7c:e4:03:f7:f1:95:7d:41:43:bb:ce:05:66:f3: 4d:56:44:ad:6e:de:6c:3f:4a:0f:e7:72:4b:cc:46: 1a:73:f1:9a:44:7f:53:10:26:8c:7b:bd:02:dd:4a: c3:2f:9e:96:ad:c6:70:c8:1d:c0:df:b1:5c:13:b8: 8b:a6:03:8c:c7:ca:1d:24:77:be:54:1e:35:4f:df: d4:b4:15:f3:3a:6f:1f:d1:50:81:60:33:52:4a:50: ce:13:2e:45:37:24:38:e9:4a:ea:13:d4:3c:ea:91: 1e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1D:9E:DA:BB:C7:5E:DE:47:C6:5B:62:F6:F5:1F:13:4A:1D:0D:F0 X509v3 Authority Key Identifier: keyid:A5:A6:A9:EA:C1:AC:F7:6E:55:2C:78:BD:D7:8B:A7:4F:ED:DD:3F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/paap6sGs925VLHi914unT-3dP_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/paap6sGs925VLHi914unT-3dP_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129AD6/D677DC94DFD011E393DB795F5911EA32/9AD04EAAD58A11EE9992494AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.228.0/22 157.119.48.0/22 IPv6: 2404:4b80::/32 Signature Algorithm: sha256WithRSAEncryption 6b:f7:1f:18:90:3c:b9:63:0b:1d:32:4d:f4:e0:d6:5a:35:1a: 42:35:fe:3a:d4:91:20:96:3b:f2:06:36:43:24:e6:8e:8d:61: 54:0a:94:a6:db:d6:e4:65:33:2a:7f:a5:68:77:a5:21:89:f5: 8f:34:0f:db:4a:93:4d:9f:9c:d8:6b:42:2d:c4:1e:17:f1:f1: da:10:40:b3:52:77:39:83:fb:76:6a:12:f7:bc:3e:39:a4:dc: 06:e5:de:91:25:13:3b:c3:1b:f8:ee:28:f2:a9:05:82:43:06: a5:2b:2f:49:6e:b9:3d:81:93:16:8b:5d:db:25:35:c9:f1:35: 1f:ad:80:f1:eb:67:79:19:2a:3a:f7:b1:af:ae:97:cc:35:ed: f1:4c:57:f0:19:61:53:d1:20:51:33:b9:50:af:91:46:ed:36: 99:a7:1e:96:f3:ab:84:c6:71:bd:16:e0:23:d4:7a:78:e8:f4: d2:ca:aa:a7:e0:a5:28:4f:22:13:2a:2e:35:7a:ec:a6:e0:c4: b0:21:a4:66:95:56:82:e9:53:4d:cd:8c:45:6d:13:85:dc:f1: 15:e3:fa:ff:bb:03:47:f9:eb:85:f6:f3:f1:29:a0:c2:81:54: 79:b3:dc:fe:9a:72:8c:37:b8:3b:47:7d:55:a8:ee:2b:44:66: 42:95:3c:88 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICLH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlBRDYxMTAvBgNVBAUTKEE1QTZBOUVBQzFBQ0Y3NkU1NTJDNzhCREQ3OEJBNzRG RURERDNGRjkwHhcNMjYwNjE0MTYxNzA5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJlZDQwNS04MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/mGGwyJESZlDl8fJAMlMMw3nLKHVdhZrCkgz7ofMgi8Z8M2NpxOoe2sGYU2r BtvEl9oisixzUyVPKM1ecLremaPgW42QTKwqN/z3KyZqlLgfPSeqBb8BhqYLuM/g e//MSXitIWE2X1m1ORyfOXueY4mHeQzWBh3WaZOPHsJKFlpxFyvenk7DvcoKiQdV 6XDlXl5NN1vBfOQD9/GVfUFDu84FZvNNVkStbt5sP0oP53JLzEYac/GaRH9TECaM e70C3UrDL56WrcZwyB3A37FcE7iLpgOMx8odJHe+VB41T9/UtBXzOm8f0VCBYDNS SlDOEy5FNyQ46UrqE9Q86pEeXwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEwdntq7 x17eR8ZbYvb1HxNKHQ3wMB8GA1UdIwQYMBaAFKWmqerBrPduVSx4vdeLp0/t3T/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUFENi9ENjc3REM5NERG RDAxMUUzOTNEQjc5NUY1OTExRUEzMi9wYWFwNnNHczkyNVZMSGk5MTR1blQtM2RQ X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BhYXA2c0dzOTI1VkxIaTkxNHVuVC0zZFBfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlBRDYvRDY3N0RDOTRERkQwMTFFMzkzREI3OTVGNTkxMUVBMzIvOUFEMDRFQUFE NThBMTFFRTk5OTI0OTRBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ+fkAwQCnXcwMA0EAgACMAcDBQAkBEuAMA0GCSqGSIb3DQEBCwUA A4IBAQBr9x8YkDy5YwsdMk304NZaNRpCNf461JEgljvyBjZDJOaOjWFUCpSm29bk ZTMqf6Vod6UhifWPNA/bSpNNn5zYa0ItxB4X8fHaEECzUnc5g/t2ahL3vD45pNwG 5d6RJRM7wxv47ijyqQWCQwalKy9Jbrk9gZMWi13bJTXJ8TUfrYDx62d5GSo697Gv rpfMNe3xTFfwGWFT0SBRM7lQr5FG7TaZpx6W86uExnG9FuAj1Hp46PTSyqqn4KUo TyITKi41euym4MSwIaRmlVaC6VNNzYxFbROF3PEV4/r/uwNH+euF9vPxKaDCgVR5 s9z+mnKMN7g7R31VqO4rRGZClTyI -----END CERTIFICATE-----Generated at Wed Jun 24 12:34:44 2026 by rpki-client