$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa File: C08B939607D911EDA41A0B25C4F9AE02.roa (raw, json) Hash identifier: 5mOXYDCuxkdq/XEQwoY69lXUcjkoAmJ8AwIjsdZITME= Subject key identifier: 84:55:16:EB:20:D8:AD:45:C8:DF:5F:9C:10:FE:B8:D7:5D:45:8A:6E Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0629 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:13 +0000 ROA not before: Sun 01 Feb 2026 10:50:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59117 IP address blocks: 103.135.208.0/22 maxlen: 24 103.204.13.0/24 maxlen: 24 125.3.192.0/21 maxlen: 21 222.167.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Feb 1 10:50:22 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58bbd-bb3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0b:1c:65:dc:65:37:0d:b8:84:aa:72:fd:07: 83:cc:4d:d3:48:b4:94:5a:0a:6c:c2:6a:1c:1f:f3: 08:fd:fc:bc:22:92:12:bf:e6:b5:02:1c:60:18:e5: c7:6b:f6:a6:05:44:6c:7b:a8:aa:93:39:2c:5d:93: 6c:d6:ed:06:55:81:b6:a8:81:78:bb:d2:b0:7c:33: 71:f7:79:55:4a:33:c2:08:8c:6a:d6:d1:bd:0e:51: 23:f8:81:a1:72:95:30:44:b4:d9:d5:1b:90:c9:6e: cf:5b:74:5f:b0:4a:63:59:00:5f:60:fb:24:21:51: 25:e4:86:a5:e9:fd:68:1c:41:7f:63:db:26:e6:41: 9f:41:65:3c:61:62:5d:ae:de:4c:c7:e5:c8:83:80: 58:df:31:4d:f4:63:3b:cc:06:61:98:97:3e:4c:6f: 6c:1c:b3:6e:e2:11:b7:b1:55:1c:da:12:69:12:51: c3:e3:b4:99:f6:19:d5:cd:03:d8:b7:0d:5b:5e:de: 17:ab:ce:c9:b0:8b:48:e3:fd:66:aa:cd:be:fc:e8: 83:8e:e4:4d:da:8d:30:e8:d2:b1:01:d4:98:a1:0c: 19:b5:99:48:d7:4b:66:5a:b6:11:3e:a0:99:2d:6a: 7c:e2:b6:7c:2b:e2:88:68:16:7f:98:5f:2b:7f:de: 39:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:55:16:EB:20:D8:AD:45:C8:DF:5F:9C:10:FE:B8:D7:5D:45:8A:6E X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/C08B939607D911EDA41A0B25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 103.204.13.0/24 125.3.192.0/21 222.167.32.0/22 Signature Algorithm: sha256WithRSAEncryption 01:c8:19:38:17:a5:91:78:b1:8c:b3:bf:93:d1:99:4d:d3:73: 14:ef:e1:ad:20:5e:74:1b:8d:28:1b:5e:44:c9:0d:7b:85:bb: ad:bc:cc:bb:d7:5b:42:eb:47:1b:19:8c:a7:a3:f5:7f:f1:ec: bc:73:6f:70:86:3e:00:93:89:7c:6b:2a:c4:73:a7:77:1a:1a: 8f:3a:cc:6e:8b:05:4f:4d:42:71:ca:72:30:dc:bb:05:17:73: 66:7e:04:94:fc:41:2d:2f:42:44:68:a0:07:c5:6a:38:7b:92: fb:a2:5b:cf:69:0a:07:ea:fe:e2:8d:ff:75:5f:a6:19:79:fe: 6b:2d:6d:9a:09:ea:3a:56:4d:83:cf:98:7f:06:0c:e3:e0:cc: 54:9e:46:ab:c8:c8:0a:f0:04:a7:f9:52:9e:93:4e:f7:a3:32: 65:2e:62:88:d1:4d:47:63:2d:72:c7:7c:2a:12:49:3c:ca:33: 7b:2b:79:d0:b5:5b:e6:7a:73:43:77:2e:b9:b1:71:74:1a:93: d7:5c:d2:25:7f:d8:ba:21:36:3f:13:e2:e8:14:be:92:e5:a4: e5:26:34:e4:02:1a:20:9b:b8:5b:2b:46:3d:d3:1f:e7:95:16: 26:94:f7:6c:ac:3a:47:9a:fa:bd:05:ef:22:d6:ba:3e:16:fc: c5:67:5b:ce -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjYwMjAxMTA1MDIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJiZC1iYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAscZdxlNw24hKpy/QeDzE3TSLSUWgpswmocH/MI/fy8IpISv+a1AhxgGOXH a/amBURse6iqkzksXZNs1u0GVYG2qIF4u9KwfDNx93lVSjPCCIxq1tG9DlEj+IGh cpUwRLTZ1RuQyW7PW3RfsEpjWQBfYPskIVEl5Ial6f1oHEF/Y9sm5kGfQWU8YWJd rt5Mx+XIg4BY3zFN9GM7zAZhmJc+TG9sHLNu4hG3sVUc2hJpElHD47SZ9hnVzQPY tw1bXt4Xq87JsItI4/1mqs2+/OiDjuRN2o0w6NKxAdSYoQwZtZlI10tmWrYRPqCZ LWp84rZ8K+KIaBZ/mF8rf945PQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFIRVFusg 2K1FyN9fnBD+uNddRYpuMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQzA4QjkzOTYw N0Q5MTFFREE0MUEwQjI1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCZ4fQAwQAZ8wNAwQDfQPAAwQC3qcgMA0GCSqGSIb3DQEBCwUAA4IB AQAByBk4F6WReLGMs7+T0ZlN03MU7+GtIF50G40oG15EyQ17hbutvMy711tC60cb GYyno/V/8ey8c29whj4Ak4l8ayrEc6d3GhqPOsxuiwVPTUJxynIw3LsFF3NmfgSU /EEtL0JEaKAHxWo4e5L7olvPaQoH6v7ijf91X6YZef5rLW2aCeo6Vk2Dz5h/Bgzj 4MxUnkaryMgK8ASn+VKek073ozJlLmKI0U1HYy1yx3wqEkk8yjN7K3nQtVvmenND dy65sXF0GpPXXNIlf9i6ITY/E+LoFL6S5aTlJjTkAhogm7hbK0Y90x/nlRYmlPds rDpHmvq9Be8i1ro+FvzFZ1vO -----END CERTIFICATE-----Generated at Wed Mar 4 17:47:00 2026 by rpki-client