$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa File: 4A7E1926947511EC9795DF56C4F9AE02.roa (raw, json) Hash identifier: YLvOpo/gAJOyi4aEbUEuHHlI1c0Z1SZvTOBlRFCy2+E= Subject key identifier: 0B:4F:78:23:05:63:50:1F:B2:A0:E3:10:52:7A:60:A7:D3:34:C7:58 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 0458 Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:09:48 +0000 ROA not before: Mon 24 Nov 2025 23:15:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139852 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020, serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Nov 24 23:15:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a464cb-a328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6c:9c:62:8f:65:6d:66:af:5d:f5:e3:f3:37: 8d:f9:38:24:80:5b:92:12:35:e2:99:81:d0:96:9e: e2:57:a4:47:93:a7:72:44:26:5b:c5:36:44:19:71: 4b:7d:30:54:fa:7b:11:fd:ff:78:83:86:5e:ce:55: 98:c1:66:02:28:15:28:8b:b7:da:12:ff:81:c1:bf: c5:63:68:5d:c5:26:78:7a:61:7b:2b:7b:ed:cb:88: 85:c9:f4:81:57:84:68:0b:cc:cb:3d:c7:75:b4:a4: 9f:d6:45:a7:33:c8:c4:5c:ba:95:bb:70:ff:a6:c7: 29:a8:a1:0a:b3:9d:c7:ad:96:75:76:dd:45:c0:2e: 13:07:f3:b1:79:c7:fb:2e:eb:75:8c:98:8d:ac:70: 0a:e3:91:06:ac:c6:49:b2:fc:0b:83:6a:01:42:24: ff:38:e1:04:94:21:27:73:c0:b1:b3:3a:d3:23:ef: a4:8d:7e:5c:9f:78:02:28:bb:fd:7e:04:b1:aa:9e: 7b:00:99:28:00:14:dc:04:6d:e4:8d:79:4e:40:3f: 88:57:19:29:6d:e7:6e:aa:b2:e9:f0:d5:c0:a0:55: 9d:60:9d:8c:25:8b:63:8c:53:c0:e8:24:13:dd:d5: f3:ec:da:6b:42:e5:15:21:b3:b7:06:18:7b:f7:ca: 16:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4F:78:23:05:63:50:1F:B2:A0:E3:10:52:7A:60:A7:D3:34:C7:58 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 6e:94:e9:7c:34:3a:0c:2c:7f:6a:8e:d7:c7:f5:2b:19:83:e7: 83:22:ff:e0:db:11:ed:92:0a:28:da:93:d8:22:20:9e:0b:10: 17:fb:4f:17:df:26:22:21:e8:40:69:e3:b0:48:1c:43:34:fe: c2:10:0c:c8:73:8a:44:70:ea:87:a0:ad:c5:a8:ea:d2:4b:f3: 73:3d:85:0f:be:45:8b:c1:86:54:24:bd:63:4a:4d:2b:23:d2: 2d:57:04:24:75:55:7d:99:28:44:a9:aa:7d:ed:37:56:67:5a: 72:99:91:7c:58:43:c7:dd:41:f1:c9:31:fd:25:c4:c1:14:b6: c4:3f:79:12:73:15:95:59:1d:cf:17:3a:e6:a0:9e:0c:2a:23: e3:b4:b2:7e:47:2d:0b:a7:00:7c:cf:1c:59:44:c8:38:81:6a: d1:28:f7:37:1a:b6:b0:10:4d:3e:01:d0:8a:61:28:52:9c:6d: c6:e2:05:cb:a4:14:1f:1c:cc:0a:70:12:56:32:4c:6d:66:60: 00:31:9d:4f:fc:77:a1:b7:3b:8b:74:03:7c:7b:eb:09:a1:bc: 75:89:ef:c1:8b:a1:f9:9b:99:14:f5:b9:6b:1c:bd:6d:8c:c4: 01:97:4a:8f:e6:c9:ae:95:84:d6:0f:d7:d2:23:53:6c:66:bf: a3:9f:d6:fe -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjUxMTI0MjMxNTUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjRjYi1hMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWycYo9lbWavXfXj8zeN+TgkgFuSEjXimYHQlp7iV6RHk6dyRCZbxTZEGXFL fTBU+nsR/f94g4ZezlWYwWYCKBUoi7faEv+Bwb/FY2hdxSZ4emF7K3vty4iFyfSB V4RoC8zLPcd1tKSf1kWnM8jEXLqVu3D/pscpqKEKs53HrZZ1dt1FwC4TB/Oxecf7 Lut1jJiNrHAK45EGrMZJsvwLg2oBQiT/OOEElCEnc8CxszrTI++kjX5cn3gCKLv9 fgSxqp57AJkoABTcBG3kjXlOQD+IVxkpbeduqrLp8NXAoFWdYJ2MJYtjjFPA6CQT 3dXz7NprQuUVIbO3Bhh798oWTwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFAtPeCMF Y1AfsqDjEFJ6YKfTNMdYMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvNEE3RTE5MjY5 NDc1MTFFQzk3OTVERjU2QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ5I7AwQAygB0MA8EAgACMAkDBwAgAQ3yTYAwDQYJKoZIhvcNAQEL BQADggEBAG6U6Xw0Ogwsf2qO18f1KxmD54Mi/+DbEe2SCijak9giIJ4LEBf7Txff JiIh6EBp47BIHEM0/sIQDMhzikRw6oegrcWo6tJL83M9hQ++RYvBhlQkvWNKTSsj 0i1XBCR1VX2ZKESpqn3tN1ZnWnKZkXxYQ8fdQfHJMf0lxMEUtsQ/eRJzFZVZHc8X OuagngwqI+O0sn5HLQunAHzPHFlEyDiBatEo9zcatrAQTT4B0IphKFKcbcbiBcuk FB8czApwElYyTG1mYAAxnU/8d6G3O4t0A3x76wmhvHWJ78GLofmbmRT1uWscvW2M xAGXSo/mya6VhNYP19IjU2xmv6Of1v4= -----END CERTIFICATE-----Generated at Sun Mar 8 03:30:45 2026 by rpki-client