$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B883270E356B11E7A51C314CC4F9AE02.roa File: B883270E356B11E7A51C314CC4F9AE02.roa (raw, json) Hash identifier: BXYsjDqlLEV/gkzmbllHEHQfc1w+MAlqG2W9wqlUnJg= Subject key identifier: 70:04:98:6F:AE:9B:20:8A:EA:0A:BF:B0:35:F0:19:45:02:E3:FE:26 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A66 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B883270E356B11E7A51C314CC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:22:28 +0000 ROA not before: Fri 16 Jan 2026 16:13:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38778 IP address blocks: 45.64.4.0/22 maxlen: 22 45.64.4.0/23 maxlen: 23 45.64.4.0/24 maxlen: 24 45.64.5.0/24 maxlen: 24 45.64.6.0/23 maxlen: 23 45.64.6.0/24 maxlen: 24 45.64.7.0/24 maxlen: 24 103.228.236.0/22 maxlen: 22 103.228.236.0/23 maxlen: 23 103.228.236.0/24 maxlen: 24 103.228.237.0/24 maxlen: 24 103.228.238.0/23 maxlen: 23 103.228.238.0/24 maxlen: 24 103.228.239.0/24 maxlen: 24 115.69.216.0/21 maxlen: 21 115.69.216.0/22 maxlen: 22 115.69.216.0/23 maxlen: 23 115.69.216.0/24 maxlen: 24 115.69.217.0/24 maxlen: 24 115.69.218.0/23 maxlen: 23 115.69.218.0/24 maxlen: 24 115.69.219.0/24 maxlen: 24 115.69.220.0/22 maxlen: 22 115.69.220.0/23 maxlen: 23 115.69.220.0/24 maxlen: 24 115.69.221.0/24 maxlen: 24 115.69.222.0/23 maxlen: 23 115.69.222.0/24 maxlen: 24 115.69.223.0/24 maxlen: 24 2407:f900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 15:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14950 (0x3a66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:35 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4ae14-2394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ea:34:23:a9:cc:dc:f3:7d:1f:cb:a0:f6:6d: 10:5e:c1:d9:61:c5:67:2b:71:9f:b6:4f:82:5c:92: b9:d6:f0:47:a3:77:03:27:a4:c7:e6:67:f9:80:9c: 06:fe:32:85:63:32:1e:e9:d7:ca:90:93:7b:0a:96: 40:f3:0f:68:31:30:31:ea:5c:59:ad:c3:31:23:a0: d9:60:e9:41:74:9f:50:f5:59:15:a3:ff:2f:90:54: c6:30:02:30:dc:5a:40:3f:b5:d1:a9:fa:a2:f5:f5: 5b:3c:e3:0a:08:18:97:d3:2c:62:3d:5c:fb:bd:67: ad:cd:b7:3c:e9:7b:1c:d0:49:cf:a6:ee:64:5c:8e: 14:19:79:e2:1d:4a:74:5c:cc:7f:87:74:a5:62:7c: c2:06:d0:af:20:c0:69:fe:de:5b:d2:57:c7:21:fd: 8f:9d:47:eb:f0:4f:88:e8:51:7c:07:0e:93:9d:4c: bb:7b:c4:84:a7:0c:f2:06:e8:ba:fa:61:dd:79:c8: 3b:e5:e0:25:96:63:35:f8:5b:37:64:01:d5:0a:58: 4a:a8:37:d5:7f:75:69:97:66:ba:cd:d3:c4:16:7a: 68:33:f7:33:9c:12:5f:55:08:e0:a4:74:f5:56:82: 6b:de:75:36:5e:ad:18:6e:dc:c3:ee:75:45:6b:35: d4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:04:98:6F:AE:9B:20:8A:EA:0A:BF:B0:35:F0:19:45:02:E3:FE:26 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/B883270E356B11E7A51C314CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.64.4.0/22 103.228.236.0/22 115.69.216.0/21 IPv6: 2407:f900::/32 Signature Algorithm: sha256WithRSAEncryption 3b:1b:90:2b:46:e2:7c:71:d9:c2:45:aa:be:95:3d:16:2b:f2: a2:a8:d0:f1:ec:4a:5c:4a:85:05:8e:4b:ae:99:b9:f0:e3:f0: 37:f0:e2:c4:d9:5c:a7:8a:8f:60:66:3f:32:ec:cb:65:98:30: 8e:8e:b3:c2:cb:34:f9:fe:a6:2b:66:c2:7c:c8:a4:91:88:79: b0:02:d8:3d:4d:e8:ed:04:39:dc:b0:41:47:3e:64:c0:ca:10: 63:23:64:a8:46:ff:0f:e3:c1:36:48:cf:3e:10:3b:5d:29:c1: 71:82:5b:0c:fd:de:03:7c:f9:bc:ec:51:88:13:f0:95:b1:5c: 4a:17:02:d0:61:de:74:05:33:53:bd:83:c5:7f:38:12:71:87: 48:84:f2:27:fa:d5:e3:09:03:e5:a8:7f:95:2d:75:d7:ad:f0: 32:03:2d:68:a6:db:6e:00:54:46:bd:cb:21:01:b0:87:43:70: c5:5c:eb:92:67:49:36:de:b7:a4:d9:dc:0b:1b:35:14:f4:7b: 0f:b9:f2:ec:b7:1f:fd:de:4c:c2:4e:6c:e4:bf:36:0f:c3:97: 9a:bc:36:f8:c1:0d:3c:1b:97:9b:0f:ae:6f:bd:d2:d2:6e:b2: 89:d5:aa:ef:53:b5:4c:50:02:74:36:3b:d9:66:8d:63:97:85: 5d:61:91:e2 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICOmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzM1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWUxNC0yMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+o0I6nM3PN9H8ug9m0QXsHZYcVnK3Gftk+CXJK51vBHo3cDJ6TH5mf5gJwG /jKFYzIe6dfKkJN7CpZA8w9oMTAx6lxZrcMxI6DZYOlBdJ9Q9VkVo/8vkFTGMAIw 3FpAP7XRqfqi9fVbPOMKCBiX0yxiPVz7vWetzbc86Xsc0EnPpu5kXI4UGXniHUp0 XMx/h3SlYnzCBtCvIMBp/t5b0lfHIf2PnUfr8E+I6FF8Bw6TnUy7e8SEpwzyBui6 +mHdecg75eAllmM1+Fs3ZAHVClhKqDfVf3Vpl2a6zdPEFnpoM/cznBJfVQjgpHT1 VoJr3nU2Xq0YbtzD7nVFazXUIQIDAQABo4ICezCCAncwHQYDVR0OBBYEFHAEmG+u myCK6gq/sDXwGUUC4/4mMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQjg4MzI3MEUz NTZCMTFFN0E1MUMzMTRDQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLUAEAwQCZ+TsAwQDc0XYMA0EAgACMAcDBQAkB/kAMA0GCSqGSIb3 DQEBCwUAA4IBAQA7G5ArRuJ8cdnCRaq+lT0WK/KiqNDx7EpcSoUFjkuumbnw4/A3 8OLE2Vynio9gZj8y7MtlmDCOjrPCyzT5/qYrZsJ8yKSRiHmwAtg9TejtBDncsEFH PmTAyhBjI2SoRv8P48E2SM8+EDtdKcFxglsM/d4DfPm87FGIE/CVsVxKFwLQYd50 BTNTvYPFfzgScYdIhPIn+tXjCQPlqH+VLXXXrfAyAy1opttuAFRGvcshAbCHQ3DF XOuSZ0k23rek2dwLGzUU9HsPufLstx/93kzCTmzkvzYPw5eavDb4wQ08G5ebD65v vdLSbrKJ1arvU7VMUAJ0NjvZZo1jl4VdYZHi -----END CERTIFICATE-----Generated at Fri Mar 13 05:00:01 2026 by rpki-client