$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa File: 20322C32233F11EB9E4D160EC4F9AE02.roa (raw, json) Hash identifier: EZxaNB8Cg1CajysGL+HI5uVaed24iixfpfYF8glfmow= Subject key identifier: 62:F7:F6:42:17:D8:7C:3A:37:95:C2:9E:B0:0A:D4:34:C7:7C:B3:B2 Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 081E Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa Signing time: Thu 02 Apr 2026 21:28:12 +0000 ROA not before: Thu 02 Apr 2026 21:28:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38880 IP address blocks: 103.198.40.0/24 maxlen: 24 103.198.41.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F, serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Apr 2 21:28:12 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69cedf6c-d0c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b4:4d:b3:bd:48:4c:03:a2:3e:d1:33:32:46: b9:fd:a4:ef:4f:7e:25:40:99:a2:dd:32:cc:a0:56: 1b:d8:a3:55:7b:1a:21:e3:53:eb:78:2b:20:db:a3: d5:21:3a:47:2a:94:98:fa:8b:fd:c8:3c:97:a1:88: d7:bb:63:7a:ab:b3:c9:36:0f:57:4e:eb:53:81:73: 59:4e:8b:19:8a:5d:a6:a0:53:c9:41:1c:8b:1c:43: 9d:81:c9:64:08:39:ac:f7:cb:99:4d:03:68:06:07: 31:26:bd:4f:39:40:be:fa:30:4a:31:77:e6:ea:2b: 54:6a:73:07:16:89:ce:06:e3:2c:e8:67:b2:76:53: 9c:1c:aa:c7:e6:f0:d9:77:83:46:f7:ff:e2:80:8b: 9a:df:68:e2:b1:c4:03:4a:64:64:39:99:dd:44:e8: 49:65:9e:11:0f:2d:a1:5d:78:0c:01:fa:8e:f9:22: 88:2b:d5:02:58:fd:f0:7d:14:c8:c3:24:f3:39:56: bc:42:af:38:7a:23:f2:08:84:41:47:35:47:a5:6e: a1:9e:bf:b4:9f:04:7e:b5:37:55:81:79:3b:65:87: 35:ec:03:a9:60:63:3a:3e:48:36:a6:0d:db:e3:57: 36:65:df:80:41:2f:13:c7:0d:8a:91:5f:70:4d:c9: 3f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F7:F6:42:17:D8:7C:3A:37:95:C2:9E:B0:0A:D4:34:C7:7C:B3:B2 X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.40.0/23 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption 14:35:2e:45:33:6e:0a:9d:79:9c:50:0b:bf:e4:a5:89:e5:69: e0:b1:39:11:e2:ac:ee:20:50:d3:de:10:ba:9f:6b:01:4d:f1: aa:6d:da:93:87:2e:1b:0f:51:c1:07:6c:15:ff:d1:38:f1:b2: 51:91:cc:54:0b:aa:9f:28:2a:e9:df:aa:06:f0:32:c0:ce:a0: 76:ec:90:73:98:f0:fd:b2:6d:a1:c5:db:10:14:82:a7:b2:07: 39:cc:14:39:4b:d1:fa:b7:65:53:4b:da:79:e4:eb:a6:9d:a9: 23:86:1f:33:51:3b:0c:e7:6f:2f:13:f9:01:a5:7f:0c:d9:f9: f6:cb:0b:b4:e6:4c:f7:14:6c:6c:b2:4d:73:bc:f8:f2:b9:0e: 2f:c5:23:8a:bd:d2:b2:03:f7:e6:43:e7:cb:86:13:41:e6:3d: 60:f3:67:77:4f:1e:f6:11:dd:4f:f7:03:75:47:56:7a:62:95: de:18:5f:04:a6:fc:6e:cb:19:7c:5c:c1:a2:b5:ef:68:fc:09: bd:0a:0e:31:32:0f:2c:6c:b1:a1:7a:e1:0b:34:7b:f4:0b:81: a4:93:a3:b1:3a:ee:97:b4:b6:50:52:18:1a:b0:78:90:5e:37: 4f:46:1c:e7:3d:46:f9:17:fe:b3:b3:62:a1:0d:48:ab:c9:b4: 3b:d2:13:f1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjYwNDAyMjEyODEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZGY2Yy1kMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjrRNs71ITAOiPtEzMka5/aTvT34lQJmi3TLMoFYb2KNVexoh41PreCsg26PV ITpHKpSY+ov9yDyXoYjXu2N6q7PJNg9XTutTgXNZTosZil2moFPJQRyLHEOdgclk CDms98uZTQNoBgcxJr1POUC++jBKMXfm6itUanMHFonOBuMs6GeydlOcHKrH5vDZ d4NG9//igIua32jiscQDSmRkOZndROhJZZ4RDy2hXXgMAfqO+SKIK9UCWP3wfRTI wyTzOVa8Qq84eiPyCIRBRzVHpW6hnr+0nwR+tTdVgXk7ZYc17AOpYGM6Pkg2pg3b 41c2Zd+AQS8Txw2KkV9wTck/2QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGL39kIX 2Hw6N5XCnrAK1DTHfLOyMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvMjAzMjJDMzIy MzNGMTFFQjlFNEQxNjBFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ8YoAwQCyoH0MA0GCSqGSIb3DQEBCwUAA4IBAQAUNS5FM24KnXmc UAu/5KWJ5WngsTkR4qzuIFDT3hC6n2sBTfGqbdqThy4bD1HBB2wV/9E48bJRkcxU C6qfKCrp36oG8DLAzqB27JBzmPD9sm2hxdsQFIKnsgc5zBQ5S9H6t2VTS9p55Oum nakjhh8zUTsM528vE/kBpX8M2fn2ywu05kz3FGxssk1zvPjyuQ4vxSOKvdKyA/fm Q+fLhhNB5j1g82d3Tx72Ed1P9wN1R1Z6YpXeGF8Epvxuyxl8XMGite9o/Am9Cg4x Mg8sbLGheuELNHv0C4Gkk6OxOu6XtLZQUhgasHiQXjdPRhznPUb5F/6zs2KhDUir ybQ70hPx -----END CERTIFICATE-----Generated at Mon Apr 6 11:19:24 2026 by rpki-client