$ rpki-client -vvf rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa File: 9E5F4D0060E111EEBD81AD43C4F9AE02.roa (raw, json) Hash identifier: szwrfHOT/xYsCIGVHX2T8M49IriuiiWjJIXXeeXlaic= Subject key identifier: 2C:B3:93:09:52:FF:FE:B9:24:FE:7E:E2:D9:F8:20:04:52:0E:71:74 Certificate issuer: /CN=A9185FD0/serialNumber=59B6D6CD7305F2DEEC2B8E613C5D8F49425E0039 Certificate serial: 0218 Authority key identifier: 59:B6:D6:CD:73:05:F2:DE:EC:2B:8E:61:3C:5D:8F:49:42:5E:00:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa Signing time: Tue 31 Mar 2026 02:36:24 +0000 ROA not before: Tue 31 Mar 2026 02:36:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151066 IP address blocks: 103.129.124.0/23 maxlen: 23 103.129.124.0/24 maxlen: 24 103.129.125.0/24 maxlen: 24 2001:df2:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.crl rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185FD0, serialNumber=59B6D6CD7305F2DEEC2B8E613C5D8F49425E0039 Validity Not Before: Mar 31 02:36:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cb3328-f681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d9:1f:b0:5b:04:a7:7a:8e:12:e8:a6:a7:c8: b0:d4:ec:d8:13:9d:65:75:af:e9:ee:d2:fc:d8:90: 5d:aa:db:74:06:49:81:ba:c3:c1:9e:89:e0:54:80: 3d:8f:85:f7:35:52:3d:f7:78:1f:10:e7:e8:7e:b9: 67:bf:aa:06:cd:ad:26:c7:ff:aa:ca:d8:f3:aa:4d: ce:59:cf:9b:19:1e:47:06:2a:d1:5e:e1:a6:d3:d8: eb:b3:2c:aa:a8:71:28:f7:fa:9e:d4:01:58:d9:ff: 3b:87:6d:81:00:a1:8f:42:7f:6f:12:17:db:df:43: 33:18:e6:a2:ad:fe:2a:ed:de:e8:f5:7f:70:62:ae: 84:36:20:26:d1:a8:2c:be:bf:c1:cc:bb:d7:96:81: 67:b8:66:bc:a6:9f:09:da:a2:50:97:c7:6e:35:8a: ae:4f:7f:e7:c2:10:61:19:44:c7:73:92:40:ab:17: 03:ad:f0:53:33:d3:be:4a:c1:a0:0a:8f:ca:b7:4f: bc:7d:92:3e:78:73:2b:ca:8b:d5:4c:f6:30:1f:8f: 7f:81:01:f1:38:ef:8e:4b:e4:7c:9f:32:98:dd:93: 58:19:f1:a4:52:d8:15:5d:fb:5e:49:46:70:65:34: 29:ef:d2:6a:1b:5c:18:65:54:ca:0a:bc:fc:28:58: e5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B3:93:09:52:FF:FE:B9:24:FE:7E:E2:D9:F8:20:04:52:0E:71:74 X509v3 Authority Key Identifier: keyid:59:B6:D6:CD:73:05:F2:DE:EC:2B:8E:61:3C:5D:8F:49:42:5E:00:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/WbbWzXMF8t7sK45hPF2PSUJeADk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WbbWzXMF8t7sK45hPF2PSUJeADk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185FD0/3833447809CF11EEA5E82532C4F9AE02/9E5F4D0060E111EEBD81AD43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.129.124.0/23 IPv6: 2001:df2:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 9c:b6:e5:c8:83:37:08:d0:af:b4:71:80:67:e6:43:c3:6d:e1: 7d:24:74:b1:04:63:93:16:0e:e1:1c:23:c0:94:6c:1f:8c:64: 64:a5:03:ee:51:6e:2c:59:26:7f:54:d0:db:df:e2:06:f3:64: a5:e9:0c:7f:54:83:8a:c0:fc:4d:93:8d:63:81:25:44:2c:79: ba:5c:79:53:51:5e:e0:6e:a4:66:51:9f:e8:f3:f5:ca:fa:bc: fd:b3:ac:1f:e9:ae:38:ac:78:b4:bb:9d:46:26:cf:36:0e:62: fe:d9:72:fc:54:2c:26:70:9c:66:43:e6:6a:e8:ed:5e:17:0c: ac:58:6a:87:10:ef:b6:eb:b8:90:37:ee:97:61:ec:8b:d6:57: 98:d7:43:50:53:60:89:d3:09:37:0e:49:ae:3b:38:49:f1:55: 5c:12:3a:f5:5e:72:e6:43:0f:52:30:1f:71:90:dd:b4:12:a5: fb:23:c0:b3:b2:92:78:d1:63:4c:9b:ae:ff:02:d1:8b:ed:48: cd:90:8d:9b:53:da:99:e0:9c:9d:e2:48:4a:2a:3f:bd:c4:d0: 7d:4f:50:e5:68:c4:50:fa:a1:64:30:4b:8f:9c:42:f6:05:39: 41:4f:0c:8c:04:ac:d5:a1:df:72:af:e8:2e:ab:e2:58:7e:40: 43:a4:19:f7 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGRDAxMTAvBgNVBAUTKDU5QjZENkNENzMwNUYyREVFQzJCOEU2MTNDNUQ4RjQ5 NDI1RTAwMzkwHhcNMjYwMzMxMDIzNjI0WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMzMyOC1mNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtkfsFsEp3qOEuimp8iw1OzYE51lda/p7tL82JBdqtt0BkmBusPBnongVIA9 j4X3NVI993gfEOfofrlnv6oGza0mx/+qytjzqk3OWc+bGR5HBirRXuGm09jrsyyq qHEo9/qe1AFY2f87h22BAKGPQn9vEhfb30MzGOairf4q7d7o9X9wYq6ENiAm0ags vr/BzLvXloFnuGa8pp8J2qJQl8duNYquT3/nwhBhGUTHc5JAqxcDrfBTM9O+SsGg Co/Kt0+8fZI+eHMryovVTPYwH49/gQHxOO+OS+R8nzKY3ZNYGfGkUtgVXfteSUZw ZTQp79JqG1wYZVTKCrz8KFjl1QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCyzkwlS //65JP5+4tn4IARSDnF0MB8GA1UdIwQYMBaAFFm21s1zBfLe7CuOYTxdj0lCXgA5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUZEMC8zODMzNDQ3ODA5 Q0YxMUVFQTVFODI1MzJDNEY5QUUwMi9XYmJXelhNRjh0N3NLNDVoUEYyUFNVSmVB RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1diYld6WE1GOHQ3c0s0NWhQRjJQU1VKZUFEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVGRDAvMzgzMzQ0NzgwOUNGMTFFRUE1RTgyNTMyQzRGOUFFMDIvOUU1RjREMDA2 MEUxMTFFRUJEODFBRDQzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4F8MA8EAgACMAkDBwAgAQ3yO0AwDQYJKoZIhvcNAQELBQADggEB AJy25ciDNwjQr7RxgGfmQ8Nt4X0kdLEEY5MWDuEcI8CUbB+MZGSlA+5RbixZJn9U 0Nvf4gbzZKXpDH9Ug4rA/E2TjWOBJUQsebpceVNRXuBupGZRn+jz9cr6vP2zrB/p rjiseLS7nUYmzzYOYv7ZcvxULCZwnGZD5mro7V4XDKxYaocQ77bruJA37pdh7IvW V5jXQ1BTYInTCTcOSa47OEnxVVwSOvVecuZDD1IwH3GQ3bQSpfsjwLOyknjRY0yb rv8C0YvtSM2QjZtT2pngnJ3iSEoqP73E0H1PUOVoxFD6oWQwS4+cQvYFOUFPDIwE rNWh33Kv6C6r4lh+QEOkGfc= -----END CERTIFICATE-----Generated at Mon Apr 6 12:25:30 2026 by rpki-client