$ rpki-client -vvf rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa File: 5B102332845711EEB3DC4A5EC4F9AE02.roa (raw, json) Hash identifier: MfSrUeG5zlLQwVfLUtX7EadU02b5P4ETvocuCMNtMPM= Subject key identifier: A8:DE:33:22:84:78:3A:5C:F6:90:8F:90:86:EC:F6:C7:09:D6:FE:D5 Certificate issuer: /CN=A9156021/serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Certificate serial: 2E81 Authority key identifier: AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa Signing time: Wed 28 Jan 2026 16:12:39 +0000 ROA not before: Wed 28 Jan 2026 16:12:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133201 IP address blocks: 103.255.44.0/22 maxlen: 22 103.255.44.0/24 maxlen: 24 103.255.45.0/24 maxlen: 24 103.255.46.0/24 maxlen: 24 103.255.47.0/24 maxlen: 24 202.61.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 15:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11905 (0x2e81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156021, serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Validity Not Before: Jan 28 16:12:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697a3576-3d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:28:1f:73:b3:f7:a4:6d:38:5a:bf:0d:c3:3e: f9:b6:b9:dc:3c:8b:c9:cd:f2:9a:ef:59:27:96:c5: 40:7e:56:a9:9f:61:f4:0b:6e:10:fa:53:06:d7:65: 38:ee:0d:02:e5:c3:2f:ba:13:4f:a3:d7:cb:1e:55: 09:1c:a8:f5:61:9b:fa:4b:b4:e7:2f:6f:f7:45:e4: e1:eb:39:30:da:07:f5:1e:95:f5:b8:ed:27:8f:e5: ad:d8:48:30:30:4b:b2:2d:e4:f2:fb:34:a4:42:0c: 75:7b:b8:e8:e8:d9:0d:42:d9:4b:22:95:b5:3d:18: 9e:16:c8:1a:9e:9a:7a:12:7a:d8:da:46:e4:8e:0f: da:04:86:72:36:f4:99:6d:9f:93:c5:1e:22:40:b5: 07:61:65:b4:1e:14:da:7f:07:9c:29:33:6c:0f:c3: 27:83:22:17:47:c4:e1:67:ed:be:c2:ae:79:93:75: 65:ea:a7:43:8c:81:40:6e:41:12:a8:a8:a3:83:67: d8:b2:46:1b:69:79:1a:b8:7e:ef:78:b6:23:ef:bc: 16:16:73:96:b4:6a:66:77:62:81:55:b4:e1:10:90: 3b:2f:a2:49:e3:4f:83:7b:58:51:ef:b8:8e:2c:be: e4:8b:aa:90:e8:2b:96:3a:ed:e0:16:7d:af:e2:90: e5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DE:33:22:84:78:3A:5C:F6:90:8F:90:86:EC:F6:C7:09:D6:FE:D5 X509v3 Authority Key Identifier: keyid:AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/5B102332845711EEB3DC4A5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.44.0/22 202.61.84.0/22 Signature Algorithm: sha256WithRSAEncryption 97:34:b6:b6:ff:3b:9d:18:44:6d:61:15:68:d6:f6:d0:0e:ae: 3d:76:9a:9e:90:6b:a6:2a:d5:86:76:14:b9:d7:f6:b4:80:f4: 31:15:7b:bf:5e:0b:b4:f4:b9:08:31:dc:92:30:dc:b3:4f:6e: 57:01:73:67:49:8d:aa:03:8f:ec:c7:ca:6f:de:1c:ef:5d:1c: d7:3f:c7:3d:b5:5e:2e:aa:d0:ea:36:62:cc:1b:74:82:5c:1e: f5:32:94:11:bb:a5:e3:32:e6:6d:3d:a5:5f:eb:d5:50:39:27: ab:9a:8a:f5:ce:f7:3a:4f:42:f1:2d:8b:4a:93:86:4a:6d:c2: 4c:cf:dd:4d:b5:4a:d7:4c:8c:c7:e5:e0:4f:47:4d:69:62:0d: df:7e:ad:a7:7f:c5:ad:bd:03:ba:89:ea:00:f0:fb:2f:19:c4: 08:43:fc:dd:60:b6:4f:87:ff:b2:f7:f1:1e:cf:25:18:13:fc: 9a:bc:14:d3:dc:74:c2:32:af:5b:2a:f4:16:7b:43:6f:5a:cc: 6f:7a:d5:75:d9:d4:54:27:6e:93:b4:4d:92:40:c3:64:b3:f8: f3:5e:3f:83:ec:ae:88:05:93:34:25:6e:0a:9a:0a:b3:48:3b: 0b:30:1e:7f:d6:ff:3a:77:f0:70:70:17:4e:29:d0:20:43:50: 6f:cd:23:31 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICLoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTYwMjExMTAvBgNVBAUTKEFBNEM5QjdGRkI3NzYwRDEzNERBMzRGQTMxMTI5REUx MUExREUyQUUwHhcNMjYwMTI4MTYxMjM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhMzU3Ni0zZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtigfc7P3pG04Wr8Nwz75trncPIvJzfKa71knlsVAflapn2H0C24Q+lMG12U4 7g0C5cMvuhNPo9fLHlUJHKj1YZv6S7TnL2/3ReTh6zkw2gf1HpX1uO0nj+Wt2Egw MEuyLeTy+zSkQgx1e7jo6NkNQtlLIpW1PRieFsganpp6EnrY2kbkjg/aBIZyNvSZ bZ+TxR4iQLUHYWW0HhTafwecKTNsD8MngyIXR8ThZ+2+wq55k3Vl6qdDjIFAbkES qKijg2fYskYbaXkauH7veLYj77wWFnOWtGpmd2KBVbThEJA7L6JJ40+De1hR77iO LL7ki6qQ6CuWOu3gFn2v4pDlBQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKjeMyKE eDpc9pCPkIbs9scJ1v7VMB8GA1UdIwQYMBaAFKpMm3/7d2DRNNo0+jESneEaHeKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjAyMS9EOTg3NjFENDY5 MkUxMUUzODhDODI1MkU1OTExRUEzMi9xa3liZl90M1lORTAyalQ2TVJLZDRSb2Q0 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FreWJmX3QzWU5FMDJqVDZNUktkNFJvZDRxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYwMjEvRDk4NzYxRDQ2OTJFMTFFMzg4QzgyNTJFNTkxMUVBMzIvNUIxMDIzMzI4 NDU3MTFFRUIzREM0QTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn/ywDBALKPVQwDQYJKoZIhvcNAQELBQADggEBAJc0trb/ O50YRG1hFWjW9tAOrj12mp6Qa6Yq1YZ2FLnX9rSA9DEVe79eC7T0uQgx3JIw3LNP blcBc2dJjaoDj+zHym/eHO9dHNc/xz21Xi6q0Oo2YswbdIJcHvUylBG7peMy5m09 pV/r1VA5J6uaivXO9zpPQvEti0qThkptwkzP3U21StdMjMfl4E9HTWliDd9+rad/ xa29A7qJ6gDw+y8ZxAhD/N1gtk+H/7L38R7PJRgT/Jq8FNPcdMIyr1sq9BZ7Q29a zG961XXZ1FQnbpO0TZJAw2Sz+PNeP4PsrogFkzQlbgqaCrNIOwswHn/W/zp38HBw F04p0CBDUG/NIzE= -----END CERTIFICATE-----Generated at Fri Feb 20 01:37:34 2026 by rpki-client