$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/131FA4B092AD11F0AF4F4C85C4F9AE02.roa File: 131FA4B092AD11F0AF4F4C85C4F9AE02.roa (raw, json) Hash identifier: ipyTnc82ut8pZyRx4sDro4mSJHvZJZYQ7p6XZ0S5TUo= Subject key identifier: 19:C7:90:C4:92:6B:0A:C4:9A:91:13:EF:49:DD:10:92:DD:F5:6A:A6 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0623 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/131FA4B092AD11F0AF4F4C85C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:08 +0000 ROA not before: Tue 16 Sep 2025 03:27:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 209242 IP address blocks: 103.135.208.0/22 maxlen: 22 103.172.110.0/23 maxlen: 23 103.204.13.0/24 maxlen: 24 203.168.128.0/22 maxlen: 22 222.167.32.0/22 maxlen: 22 2001:df7:6e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Sep 16 03:27:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58bb8-bb65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:5c:91:35:b8:fe:40:63:2f:a2:52:b0:90: 40:81:97:ee:e2:f9:ae:8b:b8:bc:84:70:14:0f:55: 7c:b8:19:18:71:ed:cd:dd:02:c3:4a:73:3a:f7:c8: ce:67:a4:76:63:70:e7:66:68:e4:0a:1b:c6:73:8d: 8c:c4:88:82:f1:90:bc:ab:95:89:7c:9a:85:e1:f9: 82:ef:22:1f:47:7f:e9:9d:8d:6b:d3:fe:28:8b:06: af:ac:fe:7b:34:74:20:f8:94:9d:f6:dc:70:ea:d4: cb:4f:8b:30:5d:d4:92:85:e6:92:72:3d:09:25:af: ea:31:5b:73:e5:81:6e:23:3f:f3:40:2c:40:ba:fe: bb:0b:82:55:1f:26:70:46:bb:10:bc:ce:da:fd:96: 35:5e:8b:02:80:2f:32:ea:2c:62:ad:15:0e:b7:cd: 22:29:41:31:fd:8a:f5:7e:95:3c:9f:5f:43:6b:1e: 4f:4f:0a:2c:f7:75:45:11:d1:67:8e:4b:2d:a9:ca: 28:6e:81:0e:9f:e6:7f:c5:a5:66:c9:c8:fb:0a:94: c2:0d:1c:7f:2c:46:1b:2a:e7:88:53:1a:74:c8:5e: 42:71:f9:50:77:44:1f:36:a4:85:cd:46:89:d4:d2: 9c:a7:f4:29:26:7f:09:2f:d4:56:f6:9d:16:b0:fb: d5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C7:90:C4:92:6B:0A:C4:9A:91:13:EF:49:DD:10:92:DD:F5:6A:A6 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/131FA4B092AD11F0AF4F4C85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 103.172.110.0/23 103.204.13.0/24 203.168.128.0/22 222.167.32.0/22 IPv6: 2001:df7:6e80::/48 Signature Algorithm: sha256WithRSAEncryption 10:90:dc:36:1b:a2:dd:d9:c4:b1:f6:5c:d5:19:44:71:e5:b7: 9d:45:c7:68:81:4a:0c:d1:21:b6:86:c1:d5:5e:49:eb:de:cb: 03:12:2c:51:a8:54:9e:1e:92:2f:f8:bd:ff:35:5b:44:f8:24: 4b:89:8d:e4:10:27:9d:a3:c8:04:5e:ca:1f:9b:f6:02:9e:66: fc:35:6b:14:3b:de:ba:3d:72:dc:44:2c:d2:42:01:23:76:2e: 80:b3:1b:43:c8:52:d0:50:68:96:bd:18:0b:ff:ec:51:08:14: d5:58:77:8c:e1:ad:38:a3:d4:64:fe:db:02:56:ca:e8:d9:15: 86:fe:19:00:84:2a:cd:4a:52:e7:4e:55:ca:b0:62:1a:53:dc: 99:41:4b:48:65:41:7c:88:1f:83:21:b7:65:3a:16:8e:bb:63: 2e:d8:68:40:a1:e7:4b:a6:15:b7:4d:78:64:f4:fc:0a:36:68: e7:37:11:94:2f:d4:78:d5:b2:fa:63:b3:73:2c:ff:a0:07:dc: 61:86:a0:d4:c1:44:a2:bf:1a:25:de:e4:81:58:cd:54:14:c2: 77:1c:a8:3d:2c:ae:57:66:bb:2d:e4:7e:b2:03:32:d7:6e:dd: cd:22:d1:30:56:02:68:ac:2c:69:59:df:ab:7f:33:54:36:eb: 74:33:ea:29 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwOTE2MDMyNzMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJiOC1iYjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgRckTW4/kBjL6JSsJBAgZfu4vmui7i8hHAUD1V8uBkYce3N3QLDSnM698jO Z6R2Y3DnZmjkChvGc42MxIiC8ZC8q5WJfJqF4fmC7yIfR3/pnY1r0/4oiwavrP57 NHQg+JSd9txw6tTLT4swXdSSheaScj0JJa/qMVtz5YFuIz/zQCxAuv67C4JVHyZw RrsQvM7a/ZY1XosCgC8y6ixirRUOt80iKUEx/Yr1fpU8n19Dax5PTwos93VFEdFn jkstqcooboEOn+Z/xaVmycj7CpTCDRx/LEYbKueIUxp0yF5CcflQd0QfNqSFzUaJ 1NKcp/QpJn8JL9RW9p0WsPvVPwIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFBnHkMSS awrEmpET70ndEJLd9WqmMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMTMxRkE0QjA5 MkFEMTFGMEFGNEY0Qzg1QzRGOUFFMDIucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzAk BAIAATAeAwQCZ4fQAwQBZ6xuAwQAZ8wNAwQCy6iAAwQC3qcgMA8EAgACMAkDBwAg AQ33boAwDQYJKoZIhvcNAQELBQADggEBABCQ3DYbot3ZxLH2XNUZRHHlt51Fx2iB SgzRIbaGwdVeSeveywMSLFGoVJ4eki/4vf81W0T4JEuJjeQQJ52jyAReyh+b9gKe Zvw1axQ73ro9ctxELNJCASN2LoCzG0PIUtBQaJa9GAv/7FEIFNVYd4zhrTij1GT+ 2wJWyujZFYb+GQCEKs1KUudOVcqwYhpT3JlBS0hlQXyIH4Mht2U6Fo67Yy7YaECh 50umFbdNeGT0/Ao2aOc3EZQv1HjVsvpjs3Ms/6AH3GGGoNTBRKK/GiXe5IFYzVQU wnccqD0srldmuy3kfrIDMtdu3c0i0TBWAmisLGlZ36t/M1Q263Qz6ik= -----END CERTIFICATE-----Generated at Wed Mar 4 17:51:43 2026 by rpki-client