$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa File: 1126128EE44C11F0A977367B746F56BC.roa (raw, json) Hash identifier: lYU3WDSr8ovXTxPSJ0BURvkl+9SRsjU70WaECu9jzR4= Subject key identifier: 23:F6:8F:BE:05:66:F9:50:7B:7E:0D:61:56:60:B8:CB:8F:3B:A5:D8 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C31 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa Signing time: Sun 01 Mar 2026 21:26:47 +0000 ROA not before: Mon 29 Dec 2025 00:19:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.104.86.0/24 maxlen: 24 103.182.250.0/24 maxlen: 24 103.182.251.0/24 maxlen: 24 103.188.89.0/24 maxlen: 24 103.253.240.0/22 maxlen: 22 144.48.40.0/22 maxlen: 24 203.191.134.0/24 maxlen: 24 203.191.135.0/24 maxlen: 24 211.44.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Mar 2026 00:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15409 (0x3c31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Dec 29 00:19:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af16-ee47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5a:22:39:ba:93:ff:d1:fd:d3:53:3e:9e:ab: a5:e2:6f:d9:f1:ab:e2:81:21:27:8a:85:b5:d3:45: 01:98:bb:41:23:0b:58:5e:8d:50:d2:4e:29:ab:5a: b9:66:3b:e0:b8:67:f3:c1:eb:64:89:49:5b:a3:1a: b6:12:d0:f8:68:b6:16:7d:3a:ab:ec:0a:ae:29:8d: ed:bd:a9:5f:76:30:8e:c7:2d:1f:4a:ac:15:dd:bd: eb:91:9c:92:76:4d:83:7a:28:13:a6:c9:2f:ca:2c: 40:34:1e:e0:40:b1:51:90:1c:e4:a1:95:e1:ee:fa: de:92:6f:22:31:28:c7:31:5f:77:a2:4d:3d:dc:70: bb:e7:32:a3:cc:c7:49:08:8a:9f:b6:86:7c:9b:5d: 8c:d3:57:7f:b5:c8:d7:34:e9:ba:3b:96:16:5a:3f: ad:cd:be:de:60:ec:4f:f5:d1:b1:e6:4e:51:81:2e: b4:3c:c9:e5:33:bb:7f:d1:5a:17:24:2e:79:bc:e7: 25:a7:e7:5b:40:03:1c:07:48:df:07:56:e6:09:5b: f4:93:27:d5:16:86:da:91:7a:94:ba:a6:12:36:03: 78:b7:87:f8:0a:5c:1b:e6:2b:dc:77:19:58:58:32: 32:ba:29:0f:d7:7d:69:5b:16:30:6f:09:48:f3:65: 33:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F6:8F:BE:05:66:F9:50:7B:7E:0D:61:56:60:B8:CB:8F:3B:A5:D8 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/1126128EE44C11F0A977367B746F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.104.86.0/24 103.182.250.0/23 103.188.89.0/24 103.253.240.0/22 144.48.40.0/22 203.191.134.0/23 211.44.103.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:b4:c3:07:35:33:6c:6f:53:fa:e1:41:ec:f5:f8:da:8d:3f: b1:f6:6d:99:3c:6d:b1:99:08:36:49:b6:e4:e9:6e:18:88:c9: 16:cc:21:c5:88:37:fe:b6:f7:ca:ab:d0:da:30:c0:6a:2c:01: 06:3a:8c:20:f4:62:90:8e:60:6a:9c:e3:b5:75:b2:23:1b:64: d7:1c:11:9d:67:8f:e2:39:01:18:66:5d:05:cd:a6:1e:f7:0c: 0f:81:1b:17:1e:f1:bd:76:17:d0:3d:f5:af:6c:3e:3e:32:1a: df:6c:12:1d:26:09:1e:42:50:87:2a:7e:a1:73:5f:1d:c2:02: 62:c7:2e:f3:54:a4:d9:d0:79:8b:61:34:04:ab:be:95:af:4d: 44:c3:4e:e7:b7:db:88:48:d1:ff:59:b0:a6:3a:2e:16:6d:76: 5f:32:47:57:6a:29:a2:63:a4:f6:f0:d9:d0:51:78:ae:e7:3b: 7d:1e:b2:b6:fd:f5:0b:5d:a5:ba:14:be:2b:69:05:e6:ff:52: ab:82:38:f3:19:87:b6:92:e8:3e:40:d0:9b:f9:4f:44:be:77: 91:88:d4:8b:0e:d8:5c:53:c2:91:64:5e:50:b3:19:9f:ec:25: 73:62:98:31:41:35:7c:1f:d6:f2:dd:da:13:ec:e8:72:cd:52: bb:44:3e:08 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICPDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUxMjI5MDAxOTQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYxNi1lZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVoiObqT/9H901M+nqul4m/Z8avigSEnioW100UBmLtBIwtYXo1Q0k4pq1q5 ZjvguGfzwetkiUlboxq2EtD4aLYWfTqr7AquKY3tvalfdjCOxy0fSqwV3b3rkZyS dk2DeigTpskvyixANB7gQLFRkBzkoZXh7vrekm8iMSjHMV93ok093HC75zKjzMdJ CIqftoZ8m12M01d/tcjXNOm6O5YWWj+tzb7eYOxP9dGx5k5RgS60PMnlM7t/0VoX JC55vOclp+dbQAMcB0jfB1bmCVv0kyfVFobakXqUuqYSNgN4t4f4Clwb5ivcdxlY WDIyuikP131pWxYwbwlI82UzOQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFCP2j74F ZvlQe34NYVZguMuPO6XYMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvMTEyNjEyOEVF NDRDMTFGMEE5NzczNjdCNzQ2RjU2QkMucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQAZ2hWAwQBZ7b6AwQAZ7xZAwQCZ/3wAwQCkDAoAwQBy7+GAwQA0yxn MA0GCSqGSIb3DQEBCwUAA4IBAQBetMMHNTNsb1P64UHs9fjajT+x9m2ZPG2xmQg2 Sbbk6W4YiMkWzCHFiDf+tvfKq9DaMMBqLAEGOowg9GKQjmBqnOO1dbIjG2TXHBGd Z4/iOQEYZl0FzaYe9wwPgRsXHvG9dhfQPfWvbD4+MhrfbBIdJgkeQlCHKn6hc18d wgJixy7zVKTZ0HmLYTQEq76Vr01Ew07nt9uISNH/WbCmOi4WbXZfMkdXaimiY6T2 8NnQUXiu5zt9HrK2/fULXaW6FL4raQXm/1KrgjjzGYe2kug+QNCb+U9EvneRiNSL DthcU8KRZF5Qsxmf7CVzYpgxQTV8H9by3doT7OhyzVK7RD4I -----END CERTIFICATE-----Generated at Tue Mar 10 13:21:12 2026 by rpki-client