$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/3869DF8A1C6011EEAF58FB61C4F9AE02.roa File: 3869DF8A1C6011EEAF58FB61C4F9AE02.roa (raw, json) Hash identifier: na6D5MT1LprX316cXbP/lhvtb/2BzuNUnH7V1pK1SnQ= Subject key identifier: BE:35:56:FC:06:7F:19:3C:16:C9:BB:4A:7D:3F:09:54:57:9D:96:B7 Certificate issuer: /CN=A9174880/serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Certificate serial: 3589 Authority key identifier: 4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/3869DF8A1C6011EEAF58FB61C4F9AE02.roa Signing time: Wed 04 Feb 2026 15:10:06 +0000 ROA not before: Wed 04 Feb 2026 15:10:06 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132040 IP address blocks: 103.23.16.0/22 maxlen: 24 110.173.160.0/20 maxlen: 24 202.8.44.0/22 maxlen: 24 218.100.21.0/24 maxlen: 24 218.100.23.0/24 maxlen: 24 218.100.26.0/24 maxlen: 24 2001:4410::/32 maxlen: 40 2001:4410:1000::/45 maxlen: 48 2001:4410:2000::/43 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 14:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13705 (0x3589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527 Validity Not Before: Feb 4 15:10:06 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6983614e-43ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:92:79:9d:d6:1d:c9:95:5c:b5:0f:c9:df: 16:df:56:49:5f:e0:83:29:b6:fe:59:c2:f9:6f:7a: f6:2d:6f:2b:f6:38:6c:fc:bb:88:5a:14:59:93:da: e0:cb:d6:73:c3:05:ef:3a:01:55:83:9b:d5:b9:2c: 88:89:b7:45:1d:1b:4b:c5:9d:f9:c7:34:2d:41:b2: b8:d1:cb:57:fe:c1:9c:0c:dd:6d:6b:ba:57:a1:7f: 04:16:04:98:85:95:7b:a5:56:fd:28:de:17:9a:2e: ec:0b:47:b6:0d:bb:5d:62:e0:be:2d:2d:6c:87:73: 30:ae:76:9f:33:c5:fa:70:f2:f3:ef:61:1c:dd:e6: e8:1b:fb:3f:2c:b5:01:9d:dc:4b:46:9a:c1:e8:90: 54:5d:2a:7c:3f:c7:26:3a:2b:88:c7:ae:fa:bd:89: d5:ff:18:5f:c3:9b:af:a0:37:aa:fc:04:ef:8e:21: 80:bb:71:6f:a4:f5:10:5f:ab:08:f3:18:67:9e:45: 42:07:87:50:d3:26:b8:91:fd:4c:1b:11:c5:23:b0: 9e:fc:06:bc:b0:37:15:c6:1e:4d:74:11:a0:53:a3: 54:f3:7a:4b:19:34:87:aa:68:7c:a8:b0:13:cf:f4: 5d:d4:4e:b0:ec:a2:e5:e9:f8:db:56:b9:94:cc:69: 16:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:35:56:FC:06:7F:19:3C:16:C9:BB:4A:7D:3F:09:54:57:9D:96:B7 X509v3 Authority Key Identifier: keyid:4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/3869DF8A1C6011EEAF58FB61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.16.0/22 110.173.160.0/20 202.8.44.0/22 218.100.21.0/24 218.100.23.0/24 218.100.26.0/24 IPv6: 2001:4410::/32 Signature Algorithm: sha256WithRSAEncryption 5f:e4:67:25:41:23:91:19:94:93:01:86:41:54:8d:1e:7a:fe: 14:f2:58:ed:52:42:69:34:61:32:0b:71:9b:25:be:c8:08:5a: 88:fa:ab:32:df:0b:13:7f:7d:aa:68:c4:e5:b8:37:27:34:b1: 82:55:bd:6c:29:e5:fd:42:fb:b2:88:08:e4:5c:44:df:83:af: d0:85:c5:9e:45:5d:a0:a8:84:0e:98:5a:26:26:d1:b8:fe:f1: 18:a1:e6:4d:8c:8d:15:14:ec:21:b8:ce:fd:b5:8f:de:9c:f0: a8:c1:cf:ae:26:1c:04:e5:5a:fc:11:4a:a5:9f:c6:5c:6e:3d: 68:c9:d9:86:71:05:5b:68:10:17:52:e8:1f:d5:ef:3d:91:7d: cc:a7:76:20:19:b2:38:35:03:73:6a:a1:98:bc:e9:67:03:c7: 86:e1:9d:95:c7:98:33:0a:f5:c3:90:da:02:0f:db:f0:a9:59: 2b:05:9c:c2:b5:6e:5c:97:2a:b2:5b:4b:9f:20:2b:c4:20:e6: 54:60:9a:a3:a0:3d:6d:69:97:08:41:e5:13:cb:37:50:75:86: 10:09:97:09:1c:01:a0:f5:50:28:fa:fb:cf:49:9f:1e:1a:2a: 89:46:3d:21:00:70:46:a4:65:83:76:cc:d6:58:2d:85:ed:58: 41:bc:71:01 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzQ4ODAxMTAvBgNVBAUTKDRGMkZEM0YwMEI1OEYxMzRBOUE4RTNFN0REQThEOEQy MEFDMDM1MjcwHhcNMjYwMjA0MTUxMDA2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgzNjE0ZS00M2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF+SeZ3WHcmVXLUPyd8W31ZJX+CDKbb+WcL5b3r2LW8r9jhs/LuIWhRZk9rg y9ZzwwXvOgFVg5vVuSyIibdFHRtLxZ35xzQtQbK40ctX/sGcDN1ta7pXoX8EFgSY hZV7pVb9KN4Xmi7sC0e2DbtdYuC+LS1sh3MwrnafM8X6cPLz72Ec3eboG/s/LLUB ndxLRprB6JBUXSp8P8cmOiuIx676vYnV/xhfw5uvoDeq/ATvjiGAu3FvpPUQX6sI 8xhnnkVCB4dQ0ya4kf1MGxHFI7Ce/Aa8sDcVxh5NdBGgU6NU83pLGTSHqmh8qLAT z/Rd1E6w7KLl6fjbVrmUzGkWtQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFL41VvwG fxk8Fsm7Sn0/CVRXnZa3MB8GA1UdIwQYMBaAFE8v0/ALWPE0qajj592o2NIKwDUn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC82OUYwNEJBODFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9UeV9UOEF0WThUU3BxT1BuM2FqWTBnckFO U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5X1Q4QXRZOFRTcHFPUG4zYWpZMGdyQU5TYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ4ODAvNjlGMDRCQTgxRDZBMTFFMkJCNzAxNEE4MDhCMDJDRDIvMzg2OURGOEEx QzYwMTFFRUFGNThGQjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnFxADBARuraADBALKCCwDBADaZBUDBADaZBcDBADaZBow DQQCAAIwBwMFACABRBAwDQYJKoZIhvcNAQELBQADggEBAF/kZyVBI5EZlJMBhkFU jR56/hTyWO1SQmk0YTILcZslvsgIWoj6qzLfCxN/fapoxOW4Nyc0sYJVvWwp5f1C +7KICORcRN+Dr9CFxZ5FXaCohA6YWiYm0bj+8Rih5k2MjRUU7CG4zv21j96c8KjB z64mHATlWvwRSqWfxlxuPWjJ2YZxBVtoEBdS6B/V7z2RfcyndiAZsjg1A3NqoZi8 6WcDx4bhnZXHmDMK9cOQ2gIP2/CpWSsFnMK1blyXKrJbS58gK8Qg5lRgmqOgPW1p lwhB5RPLN1B1hhAJlwkcAaD1UCj6+89Jnx4aKolGPSEAcEakZYN2zNZYLYXtWEG8 cQE= -----END CERTIFICATE-----Generated at Fri Feb 20 00:11:16 2026 by rpki-client