$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa File: 5DE13E6AAF1211EB8138312CC4F9AE02.roa (raw, json) Hash identifier: VZngPQoD9ajhao0l3dsJoThd/544+8t+izMD2tZRtf8= Subject key identifier: 61:F5:1C:40:61:81:9C:AB:12:52:E5:BC:62:32:11:8D:75:C2:CC:6A Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 06AC Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:05:15 +0000 ROA not before: Fri 18 Jul 2025 23:35:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138029 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 103.119.106.0/24 maxlen: 24 103.119.107.0/24 maxlen: 24 2403:4240::/32 maxlen: 32 2403:4240:a000::/36 maxlen: 36 2403:4240:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 22:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50, serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 18 23:35:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a463bb-1a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2e:17:f2:bf:dd:ee:b9:53:40:38:04:ef:11: 15:61:ba:8e:96:88:f2:80:f5:19:ba:33:50:4a:4a: ab:0a:6d:c9:7b:10:2e:06:c9:3e:02:5d:7e:67:44: 20:ab:d7:d9:c5:99:15:d9:07:b3:2a:fe:5b:10:c9: de:b8:11:4d:90:e2:15:e0:0b:c0:3b:bd:1c:66:9b: 1b:e1:81:45:de:f4:f0:ec:4e:47:66:5e:46:d6:1d: dc:b4:8f:8b:8a:8c:39:3b:be:c2:6c:58:79:7d:c9: b2:ed:c2:93:45:8c:6a:c1:8e:26:c9:cb:2f:46:13: 3d:78:90:ce:00:27:d7:2b:63:37:00:7b:d4:10:fb: d1:0f:76:00:8b:d2:af:5f:be:98:33:5e:11:47:f5: 0f:e8:d4:60:17:51:75:98:c2:c8:79:bf:19:c0:d1: 61:b0:a3:cd:77:3f:ec:24:2f:22:65:be:af:8d:80: 68:73:91:30:1a:79:32:ca:6e:ca:b2:4a:b4:de:e9: 5b:51:23:fd:c7:54:30:b3:79:f5:76:93:ba:2f:1a: f9:d3:85:d8:7f:9b:72:d7:b9:9d:c2:e9:41:e2:3b: 5d:7b:ac:76:71:62:26:34:3b:2e:f3:1f:fa:f9:41: 37:ab:0a:79:44:01:dc:39:d6:53:b0:c2:77:8b:f8: fa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F5:1C:40:61:81:9C:AB:12:52:E5:BC:62:32:11:8D:75:C2:CC:6A X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption cb:2f:d8:14:ab:68:b4:a2:6d:95:0f:42:57:98:7c:fc:49:62: ed:a7:4c:4b:bf:10:9b:b5:a7:64:61:36:d6:d5:19:cb:fb:89: 8e:77:57:47:c1:59:60:fd:ff:dc:a9:a5:b5:e8:db:5b:f3:4e: d4:39:a5:7f:4b:15:7d:fb:ae:94:7f:72:68:b3:82:88:33:96: 4c:c7:13:c5:ab:59:6b:90:2c:d4:d6:a0:94:76:02:65:67:72: 39:84:dd:ac:fd:0d:3d:28:15:2b:b8:f5:1c:cf:70:c6:9c:c6: a8:58:78:a9:c8:a1:c1:c8:81:f9:54:e4:cd:9d:5e:e5:af:1d: 1f:76:ff:c9:2c:ef:44:29:7d:80:98:18:cd:c2:98:95:1c:08: 47:45:6c:15:c3:35:ce:8d:db:08:2e:ed:91:04:27:55:b5:81: 76:f4:e7:11:d9:3f:17:1f:52:5d:8a:7a:8b:05:fa:25:89:4d: b7:f3:af:b0:1b:b2:6c:68:34:98:a8:0c:46:ac:50:b3:16:84: 34:ea:9c:fb:db:05:b2:b5:9d:87:95:6b:9e:f5:69:b9:46:c8: 75:c6:7e:b1:fd:03:0e:90:3a:73:7c:8b:8e:d8:41:7c:d7:ad: 11:c8:28:b3:a5:03:45:d8:60:b6:f0:8e:30:d4:ed:22:f0:36: be:6a:a0:1d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjUwNzE4MjMzNTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjNiYi0xYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy4X8r/d7rlTQDgE7xEVYbqOlojygPUZujNQSkqrCm3JexAuBsk+Al1+Z0Qg q9fZxZkV2QezKv5bEMneuBFNkOIV4AvAO70cZpsb4YFF3vTw7E5HZl5G1h3ctI+L iow5O77CbFh5fcmy7cKTRYxqwY4mycsvRhM9eJDOACfXK2M3AHvUEPvRD3YAi9Kv X76YM14RR/UP6NRgF1F1mMLIeb8ZwNFhsKPNdz/sJC8iZb6vjYBoc5EwGnkyym7K skq03ulbUSP9x1Qws3n1dpO6Lxr504XYf5ty17mdwulB4jtde6x2cWImNDsu8x/6 +UE3qwp5RAHcOdZTsMJ3i/j6HwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGH1HEBh gZyrElLlvGIyEY11wsxqMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvNURFMTNFNkFB RjEyMTFFQjgxMzgzMTJDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3doMA0EAgACMAcDBQAkA0JAMA0GCSqGSIb3DQEBCwUAA4IBAQDL L9gUq2i0om2VD0JXmHz8SWLtp0xLvxCbtadkYTbW1RnL+4mOd1dHwVlg/f/cqaW1 6Ntb807UOaV/SxV9+66Uf3Jos4KIM5ZMxxPFq1lrkCzU1qCUdgJlZ3I5hN2s/Q09 KBUruPUcz3DGnMaoWHipyKHByIH5VOTNnV7lrx0fdv/JLO9EKX2AmBjNwpiVHAhH RWwVwzXOjdsILu2RBCdVtYF29OcR2T8XH1JdinqLBfoliU2386+wG7JsaDSYqAxG rFCzFoQ06pz72wWytZ2HlWue9Wm5Rsh1xn6x/QMOkDpzfIuO2EF8160RyCizpQNF 2GC28I4w1O0i8Da+aqAd -----END CERTIFICATE-----Generated at Thu Mar 12 22:56:31 2026 by rpki-client