$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa File: ED8E5BC8CFD411EBA3172446C4F9AE02.roa (raw, json) Hash identifier: uC8BC8FOfX07Bz7LL4CTmAUAe/spoS+Jn5Z7MYh3ovQ= Subject key identifier: 26:91:5C:87:46:89:5D:24:C6:8F:87:C6:94:A9:B5:B9:78:6C:CB:4C Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 081F Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa Signing time: Thu 02 Apr 2026 21:28:14 +0000 ROA not before: Thu 02 Apr 2026 21:28:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45426 IP address blocks: 103.198.41.0/24 maxlen: 24 103.198.42.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F, serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Apr 2 21:28:13 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69cedf6d-4263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:90:c8:ca:c5:31:2e:82:6d:52:7f:ab:6c:e1: 33:a6:1f:66:d6:5f:be:ef:89:5d:0e:ea:fc:9c:3e: ee:43:f7:f2:98:26:57:59:8e:f5:c6:fc:20:37:38: ca:14:a9:8b:9e:66:aa:a9:a8:94:e6:67:e1:4f:f4: be:54:99:2e:be:1a:0e:b4:4e:c2:7f:7b:c8:95:43: 1f:05:a1:7b:98:48:9f:80:1e:a8:cb:43:30:94:9a: 0d:b5:e2:93:54:8f:2a:b9:10:23:f1:5e:db:38:42: fa:f4:1a:25:3c:41:de:11:63:19:0d:ae:7d:21:ad: 6b:bf:8e:50:69:c2:d1:d7:1d:af:32:6e:75:3e:b5: 37:c9:0d:d0:68:e2:64:c4:35:5e:82:71:72:73:c4: 65:af:90:55:a0:ee:e6:f1:1d:00:03:f1:04:07:fb: 91:78:94:a3:e9:f8:de:78:9c:36:86:61:b5:65:be: 80:44:e8:7c:33:c1:01:fa:57:37:76:32:7a:d3:58: 8d:ef:1e:5c:bc:80:87:b6:96:4d:e3:24:e4:ea:b7: b9:e8:69:3e:fc:d4:34:a1:dd:5e:03:fd:0b:b4:0f: ab:8f:f6:14:bf:29:a0:a5:82:08:31:cc:0f:1d:77: 9e:e4:55:ef:a3:d0:cf:b6:e9:18:a6:8e:cc:45:03: 02:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:91:5C:87:46:89:5D:24:C6:8F:87:C6:94:A9:B5:B9:78:6C:CB:4C X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.41.0-103.198.42.255 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption cc:59:45:8b:0f:c3:7c:31:d9:cc:7f:39:7e:93:07:35:44:c5: 32:cb:12:bf:2d:b7:a7:e7:f0:a1:87:b9:55:06:3c:51:6d:e8: 4a:d5:39:5d:02:29:62:2a:af:3e:5a:74:bf:e3:a7:48:fd:59: 86:40:39:70:90:ae:ce:88:2b:db:03:a8:97:22:56:5c:39:4c: 7d:f4:1a:1e:b4:07:b5:08:5f:d8:aa:69:be:df:b8:a0:e2:02: ac:5d:23:06:3c:22:8a:e6:d4:07:b4:b1:b2:5e:04:c2:6c:ca: 9d:3e:9d:24:91:04:9c:41:12:28:f7:37:06:e9:ef:ae:e4:3c: 00:cf:3c:df:b4:73:33:dd:3c:e7:9e:2f:e7:70:e0:a6:59:fc: 00:b0:ee:37:aa:4a:5e:e1:9b:03:0a:d1:7e:40:b1:05:59:9e: e3:a1:71:ab:5b:09:08:9c:92:37:6b:02:33:dc:9e:46:76:5a: 69:73:5a:21:40:65:27:df:e9:2a:aa:53:a4:76:5a:26:53:71: 86:68:08:bc:aa:34:22:4c:b9:b8:a5:55:70:53:b2:4c:47:80: 75:01:e8:a7:e8:9a:50:05:ee:82:3d:25:46:46:32:7e:cb:5e: 79:d8:5d:90:47:7f:18:4d:db:d4:01:ea:a1:c8:bd:86:f7:bd: ed:2c:dc:49 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjYwNDAyMjEyODEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZGY2ZC00MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjpDIysUxLoJtUn+rbOEzph9m1l++74ldDur8nD7uQ/fymCZXWY71xvwgNzjK FKmLnmaqqaiU5mfhT/S+VJkuvhoOtE7Cf3vIlUMfBaF7mEifgB6oy0MwlJoNteKT VI8quRAj8V7bOEL69BolPEHeEWMZDa59Ia1rv45QacLR1x2vMm51PrU3yQ3QaOJk xDVegnFyc8Rlr5BVoO7m8R0AA/EEB/uReJSj6fjeeJw2hmG1Zb6AROh8M8EB+lc3 djJ601iN7x5cvICHtpZN4yTk6re56Gk+/NQ0od1eA/0LtA+rj/YUvymgpYIIMcwP HXee5FXvo9DPtukYpo7MRQMC6wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFCaRXIdG iV0kxo+HxpSptbl4bMtMMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvRUQ4RTVCQzhD RkQ0MTFFQkEzMTcyNDQ2QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBABnxikDBABnxioDBALKgfQwDQYJKoZIhvcNAQELBQADggEBAMxZ RYsPw3wx2cx/OX6TBzVExTLLEr8tt6fn8KGHuVUGPFFt6ErVOV0CKWIqrz5adL/j p0j9WYZAOXCQrs6IK9sDqJciVlw5TH30Gh60B7UIX9iqab7fuKDiAqxdIwY8Iorm 1Ae0sbJeBMJsyp0+nSSRBJxBEij3Nwbp767kPADPPN+0czPdPOeeL+dw4KZZ/ACw 7jeqSl7hmwMK0X5AsQVZnuOhcatbCQickjdrAjPcnkZ2WmlzWiFAZSff6SqqU6R2 WiZTcYZoCLyqNCJMubilVXBTskxHgHUB6KfomlAF7oI9JUZGMn7LXnnYXZBHfxhN 29QB6qHIvYb3ve0s3Ek= -----END CERTIFICATE-----Generated at Mon Apr 6 11:19:39 2026 by rpki-client