$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa File: DC10E79AABF211F0AF7B0010C4F9AE02.roa (raw, json) Hash identifier: zrqCL04jUGgsbKaYOZp7KQyNgp8nrR3Fm1zIFrxXnuE= Subject key identifier: 21:72:D1:86:C2:E7:DA:1D:48:A9:3C:8D:F7:E0:08:E1:39:8D:48:24 Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 012B Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:03:07 +0000 ROA not before: Thu 27 Nov 2025 03:22:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.4.20.0/22 maxlen: 24 202.9.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Nov 27 03:22:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5989b-5453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:09:55:64:bf:df:49:85:2d:7d:1e:af:be: 50:89:7e:ef:61:d3:b5:28:be:c9:cf:cd:a1:1b:d9: 48:56:4a:52:d6:b1:a9:db:12:a7:23:33:80:27:94: 82:c7:87:ce:2a:25:81:b3:10:41:3f:80:8e:f9:12: 2f:99:94:b8:9c:4f:40:fd:4f:2c:da:44:91:68:1b: df:ac:fc:30:26:80:a7:3e:ed:5d:37:ca:c4:94:4a: 90:4d:31:e4:67:da:8d:a7:8f:0b:05:b8:70:7a:7e: d4:d6:30:25:71:07:7c:e1:67:bd:46:02:6d:52:62: 61:77:06:40:b4:01:13:69:49:23:b2:c5:0f:d4:82: 8f:7f:05:09:97:4c:d3:da:5f:55:11:e0:34:05:10: 8f:24:9b:99:ba:ef:59:11:22:5c:39:a0:be:f4:4c: 35:99:d7:e8:3f:df:25:c0:ac:08:16:5b:a3:57:98: 86:52:0d:db:c5:13:1a:b7:97:09:8e:63:fa:4f:a3: bd:be:02:3f:4b:73:83:ec:e7:0f:1e:37:eb:44:69: ce:61:d1:bc:36:95:e5:66:62:74:22:3b:81:d4:06: dd:ea:1f:68:3d:1d:0b:d2:9f:40:fe:35:ff:e3:f5: 66:37:f1:80:ff:a7:e6:c4:47:57:9c:3e:20:4f:97: a2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:72:D1:86:C2:E7:DA:1D:48:A9:3C:8D:F7:E0:08:E1:39:8D:48:24 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/DC10E79AABF211F0AF7B0010C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.4.20.0/22 202.9.60.0/22 Signature Algorithm: sha256WithRSAEncryption aa:70:63:a7:c3:6e:fe:58:40:2d:a4:65:66:f6:fe:7a:cb:02: 32:f3:b5:49:48:bd:2c:e9:99:8f:c4:c2:5b:bb:ed:02:56:bd: 76:0c:66:7f:3c:48:66:3e:d5:38:c6:3c:40:bc:54:53:a3:3b: 6b:21:20:d6:e6:4d:8d:6a:77:41:dd:67:50:d0:14:24:c6:2d: bb:40:8d:7c:6d:21:49:22:85:0d:e0:ce:bc:c4:81:1c:48:d6: ef:33:8e:29:2a:c4:b0:23:87:0c:36:b1:13:c3:45:ed:d7:61: 5b:5a:ea:79:d8:78:e0:8b:1f:6e:ea:98:7f:0c:b2:c1:4b:d5: a1:5b:ed:f0:66:cb:93:14:b9:3f:25:bd:3e:34:a4:af:45:d1: 6b:77:2d:9e:13:68:b3:a4:40:7b:27:e3:23:94:32:26:53:07: 03:84:07:71:1a:ec:22:c3:6f:05:cd:0b:3c:02:e0:6e:22:a6: 59:c3:2f:ba:36:0b:18:e3:74:e3:2a:5c:07:59:10:43:af:92: cd:98:36:21:5c:41:b9:f7:b6:42:cf:8f:92:c8:24:a1:aa:fb: 51:7c:8f:eb:de:1a:00:71:46:f5:31:60:0d:fd:38:f5:42:a6: 0a:fd:ca:46:cf:19:cc:7a:2b:9d:bd:00:32:0f:a9:a5:d1:6a: 31:26:d4:08 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUxMTI3MDMyMjEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTg5Yi01NDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurEJVWS/30mFLX0er75QiX7vYdO1KL7Jz82hG9lIVkpS1rGp2xKnIzOAJ5SC x4fOKiWBsxBBP4CO+RIvmZS4nE9A/U8s2kSRaBvfrPwwJoCnPu1dN8rElEqQTTHk Z9qNp48LBbhwen7U1jAlcQd84We9RgJtUmJhdwZAtAETaUkjssUP1IKPfwUJl0zT 2l9VEeA0BRCPJJuZuu9ZESJcOaC+9Ew1mdfoP98lwKwIFlujV5iGUg3bxRMat5cJ jmP6T6O9vgI/S3OD7OcPHjfrRGnOYdG8NpXlZmJ0IjuB1Abd6h9oPR0L0p9A/jX/ 4/VmN/GA/6fmxEdXnD4gT5einwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCFy0YbC 59odSKk8jffgCOE5jUgkMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRERUEvM0JGNUYyRTA1QUUxMTFFRkE3NTYzQzJDQzRGOUFFMDIvREMxMEU3OUFB QkYyMTFGMEFGN0IwMDEwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZwQUAwQCygk8MA0GCSqGSIb3DQEBCwUAA4IBAQCqcGOnw27+WEAt pGVm9v56ywIy87VJSL0s6ZmPxMJbu+0CVr12DGZ/PEhmPtU4xjxAvFRToztrISDW 5k2NandB3WdQ0BQkxi27QI18bSFJIoUN4M68xIEcSNbvM44pKsSwI4cMNrETw0Xt 12FbWup52Hjgix9u6ph/DLLBS9WhW+3wZsuTFLk/Jb0+NKSvRdFrdy2eE2izpEB7 J+MjlDImUwcDhAdxGuwiw28FzQs8AuBuIqZZwy+6NgsY43TjKlwHWRBDr5LNmDYh XEG597ZCz4+SyCShqvtRfI/r3hoAcUb1MWAN/Tj1QqYK/cpGzxnMeiudvQAyD6ml 0WoxJtQI -----END CERTIFICATE-----Generated at Sat Mar 21 22:26:56 2026 by rpki-client