$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa File: BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa (raw, json) Hash identifier: rSNRm7Q4WMCIBH8hkTL3prpi5y8Vemq3QMOyN8boMh0= Subject key identifier: 48:72:6B:87:B6:0A:F5:DC:E5:C7:93:F6:9E:B4:C2:79:4F:EC:05:30 Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Certificate serial: 0DD0 Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa Signing time: Thu 26 Mar 2026 18:23:24 +0000 ROA not before: Thu 26 Mar 2026 18:23:24 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137453 IP address blocks: 103.109.93.0/24 maxlen: 24 103.109.94.0/24 maxlen: 24 144.48.151.0/24 maxlen: 24 2404:4c0:a::/48 maxlen: 48 2404:4c0:b::/48 maxlen: 48 2404:4c0:c::/48 maxlen: 48 2404:4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 17:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3536 (0xdd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F6D, serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Validity Not Before: Mar 26 18:23:24 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69c5799c-2fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:22:8c:de:cc:b8:a3:16:ce:e3:93:73:ac:61: ae:bb:bd:f5:fe:30:26:78:1a:54:02:db:99:2c:9e: 79:49:c3:da:76:ac:38:5b:9c:8b:18:fc:68:46:bf: 96:f8:20:b6:90:c1:14:7d:b7:f7:7f:65:72:f6:5b: 61:a2:32:79:c5:11:88:fd:be:7f:41:59:dc:60:75: f4:cb:87:a6:76:56:c6:e5:30:69:e5:60:3e:73:11: 2b:39:db:7f:20:cb:0a:b7:66:3c:3a:be:ea:42:71: 69:80:76:1c:8e:ab:aa:91:9e:86:68:52:80:1a:94: 68:af:6b:43:64:42:97:7c:20:2e:af:6c:65:9d:e1: 16:7e:b2:d0:1f:09:8f:74:93:06:39:4c:af:4a:31: 31:9b:69:67:f1:26:80:92:eb:e5:a1:77:f4:e4:5a: 39:e3:ea:73:df:4d:62:79:71:79:54:49:9b:40:06: 9f:58:c4:8c:a2:7a:d3:8d:c0:ea:a1:81:2e:d2:af: 1f:05:44:0c:70:07:f9:d8:c0:d5:e1:07:ed:01:9e: 07:63:dd:d4:87:1f:89:4b:b1:8a:e3:85:60:2c:7b: 6f:28:5b:10:1f:d4:23:f1:79:26:7a:3e:35:5b:2a: 29:a1:f1:d6:e7:9d:34:6e:95:ca:8d:56:ff:e6:c9: 2c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:72:6B:87:B6:0A:F5:DC:E5:C7:93:F6:9E:B4:C2:79:4F:EC:05:30 X509v3 Authority Key Identifier: keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.93.0-103.109.94.255 144.48.151.0/24 IPv6: 2404:4c0:a::-2404:4c0:d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7a:80:d9:1a:2b:0f:d8:71:ab:c5:fa:b9:88:cf:9f:f2:27:11: 5c:af:74:e6:02:7f:01:06:0f:84:91:45:ff:bb:11:d8:4c:14: 2a:4f:76:73:e2:c2:2e:ec:b8:fd:aa:20:dd:c6:dd:af:b5:b3: 11:fb:e1:6a:66:cd:e9:4f:8b:52:ab:79:d4:14:c1:59:17:1c: c8:dd:b9:d9:ed:bd:a5:d1:2b:11:f9:d3:51:2a:78:56:d7:a3: 55:63:f8:49:83:4f:41:8f:22:fe:1f:53:dc:5a:a6:06:5c:ef: db:2c:7e:40:13:89:c6:e6:d4:85:5b:5f:1d:ff:4f:89:57:6b: 28:1b:9b:8d:4e:72:c3:e1:b0:d8:64:a0:eb:44:b5:56:a6:e0: dd:fb:0d:21:b1:70:7a:60:12:b9:4c:2a:9d:ae:74:28:c2:6a: 19:8c:d7:7d:0f:93:f7:db:d5:56:e6:52:85:36:df:fa:a8:19: 7e:e4:ff:19:dc:13:3d:48:1d:c8:40:b2:31:23:f4:5f:03:56: 7c:5f:36:d2:10:38:c6:bb:9a:b2:3f:98:8e:71:ce:87:0d:ae: 47:6c:ae:8a:2c:52:3a:f7:98:4c:45:5d:8f:b2:7a:df:f5:4c: f8:53:4b:5b:eb:be:d8:a0:d5:0c:b4:5c:b5:4a:d3:8b:a9:67: 70:20:35:63 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICDdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNkQxMTAvBgNVBAUTKEZEMDZCMTUwODU1N0Y2NUY2OENDQkEzQzIwM0VDQUFE MDc1REQxOUIwHhcNMjYwMzI2MTgyMzI0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1Nzk5Yy0yZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCKM3sy4oxbO45NzrGGuu731/jAmeBpUAtuZLJ55ScPadqw4W5yLGPxoRr+W +CC2kMEUfbf3f2Vy9lthojJ5xRGI/b5/QVncYHX0y4emdlbG5TBp5WA+cxErOdt/ IMsKt2Y8Or7qQnFpgHYcjquqkZ6GaFKAGpRor2tDZEKXfCAur2xlneEWfrLQHwmP dJMGOUyvSjExm2ln8SaAkuvloXf05Fo54+pz301ieXF5VEmbQAafWMSMonrTjcDq oYEu0q8fBUQMcAf52MDV4QftAZ4HY93Uhx+JS7GK44VgLHtvKFsQH9Qj8Xkmej41 WyopofHW5500bpXKjVb/5sks2wIDAQABo4ICijCCAoYwHQYDVR0OBBYEFEhya4e2 CvXc5ceT9p60wnlP7AUwMB8GA1UdIwQYMBaAFP0GsVCFV/ZfaMy6PCA+yq0HXdGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY2RC85QTVCMUE5RUY2 NkExMUU5QkY1MDY5N0FDNEY5QUUwMi9fUWF4VUlWWDlsOW96TG84SUQ3S3JRZGQw WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19RYXhVSVZYOWw5b3pMbzhJRDdLclFkZDBacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNkQvOUE1QjFBOUVGNjZBMTFFOUJGNTA2OTdBQzRGOUFFMDIvQkE0QjZFRjJG RkM2MTFFRUJFQzJBOTIzQzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODAa BAIAATAUMAwDBABnbV0DBABnbV4DBACQMJcwGgQCAAIwFDASAwcBJAQEwAAKAwcB JAQEwAAMMA0GCSqGSIb3DQEBCwUAA4IBAQB6gNkaKw/YcavF+rmIz5/yJxFcr3Tm An8BBg+EkUX/uxHYTBQqT3Zz4sIu7Lj9qiDdxt2vtbMR++FqZs3pT4tSq3nUFMFZ FxzI3bnZ7b2l0SsR+dNRKnhW16NVY/hJg09BjyL+H1PcWqYGXO/bLH5AE4nG5tSF W18d/0+JV2soG5uNTnLD4bDYZKDrRLVWpuDd+w0hsXB6YBK5TCqdrnQowmoZjNd9 D5P329VW5lKFNt/6qBl+5P8Z3BM9SB3IQLIxI/RfA1Z8XzbSEDjGu5qyP5iOcc6H Da5HbK6KLFI695hMRV2Psnrf9Uz4U0tb677YoNUMtFy1StOLqWdwIDVj -----END CERTIFICATE-----Generated at Mon Mar 30 18:38:15 2026 by rpki-client