$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa File: C22B92AA081011EDBC3C4374C4F9AE02.roa (raw, json) Hash identifier: WD74/2XgeAz/XgGtt1zWIcisMorpjdxcCpl+RUcYgd4= Subject key identifier: E0:4C:CE:6E:FF:CB:75:8D:12:86:CD:8C:E2:E7:14:A0:CC:60:7E:BA Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Certificate serial: 0DCF Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa Signing time: Thu 26 Mar 2026 18:23:22 +0000 ROA not before: Thu 26 Mar 2026 18:23:22 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135341 IP address blocks: 103.109.92.0/24 maxlen: 24 103.109.93.0/24 maxlen: 24 103.109.95.0/24 maxlen: 24 103.214.200.0/24 maxlen: 24 103.214.201.0/24 maxlen: 24 103.214.202.0/24 maxlen: 24 103.214.203.0/24 maxlen: 24 144.48.150.0/24 maxlen: 24 144.48.151.0/24 maxlen: 24 2001:df4:3100::/48 maxlen: 48 2404:4c0:10::/48 maxlen: 48 2404:4c0:10a::/48 maxlen: 48 2404:4c0:150::/48 maxlen: 48 2404:4c0:151::/48 maxlen: 48 2404:4c0:152::/48 maxlen: 48 2404:4c0:153::/48 maxlen: 48 2404:4c0:154::/48 maxlen: 48 2404:4c0:155::/48 maxlen: 48 2404:4c0:156::/48 maxlen: 48 2404:4c0:157::/48 maxlen: 48 2404:4c0:158::/48 maxlen: 48 2404:4c0:159::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 17:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3535 (0xdcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F6D, serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Validity Not Before: Mar 26 18:23:22 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69c5799a-a4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:18:34:67:ca:a4:8c:63:8f:b6:5d:76:26: da:28:5d:bf:81:71:fe:10:1e:12:87:b7:fc:66:0b: 16:68:26:06:a4:b9:85:bf:b6:a7:ab:bd:3c:f7:7f: 14:59:ec:0f:31:25:00:7e:c6:04:81:06:31:86:bf: 4a:18:51:bf:82:e7:bf:9f:bf:ad:09:76:31:d6:72: 34:8a:c7:c1:c3:4e:37:ff:7c:1f:75:92:d4:b1:c9: 8d:87:ce:f5:e0:c3:56:c9:8c:ef:2b:fc:67:24:42: 7f:9f:b0:95:53:19:a9:36:eb:66:a0:77:f6:80:24: 20:75:bf:e8:9d:78:0b:15:6f:74:a1:bf:ca:0f:22: 44:2f:5f:5d:55:56:fc:79:5a:da:00:c1:3c:01:ee: 70:1e:4e:77:e1:dd:72:b8:e7:12:61:d7:b1:da:68: b6:5b:3b:c7:85:52:dd:75:c5:00:bf:6b:cb:dc:1b: c0:22:7c:8a:39:b7:37:d3:7d:9b:04:8f:15:2a:ae: 22:b2:61:ef:29:54:e6:a1:cb:d6:f2:ae:6e:5f:56: d3:b0:19:48:3e:b4:ef:e5:06:e8:ea:a5:0d:8d:80: ee:68:88:4c:27:7d:bd:af:ec:67:dc:27:48:9b:a3: 3c:50:d9:74:e8:a9:49:61:ec:75:32:37:50:07:ad: 4c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4C:CE:6E:FF:CB:75:8D:12:86:CD:8C:E2:E7:14:A0:CC:60:7E:BA X509v3 Authority Key Identifier: keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.92.0/23 103.109.95.0/24 103.214.200.0/22 144.48.150.0/23 IPv6: 2001:df4:3100::/48 2404:4c0:10::/48 2404:4c0:10a::/48 2404:4c0:150::-2404:4c0:159:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2b:88:ab:72:2b:2c:11:11:d0:e5:2b:55:7e:e5:86:49:dc:85: 70:78:84:19:ac:41:eb:18:83:73:67:f6:24:3b:ca:c4:52:58: e4:21:ad:2a:c2:73:24:28:a7:a6:fb:99:c9:70:4f:29:a1:48: c4:cc:e5:ce:a8:99:74:10:2a:05:28:c0:c0:52:5e:7d:ae:0a: c3:8c:f6:e5:2c:ba:4e:4d:bf:59:77:97:12:32:4a:f1:8d:1e: 7a:19:11:b1:cf:6d:c4:ae:47:8a:12:48:63:e5:21:ff:b4:19: 45:43:9f:04:d1:4a:db:4d:b0:b1:8d:03:10:55:1a:80:2a:73: c4:a0:cc:af:35:40:5d:ee:b8:a7:58:ef:1c:ff:27:38:a8:5d: 47:94:3c:b4:ee:f0:b4:cc:ca:c0:1b:06:ed:7b:a2:6b:02:a3: 5e:86:55:e8:05:26:97:56:38:de:50:3b:2f:60:92:69:57:e5: 4e:12:90:b4:bd:16:b6:5d:70:23:d6:01:d1:65:11:58:8f:d8: 77:bc:c9:36:20:e8:10:68:c8:eb:de:1f:34:a1:c3:1c:eb:43: 7d:6d:d2:1f:0b:64:db:64:52:d9:28:80:cc:3f:25:61:a1:d3: 51:72:83:2c:aa:48:88:30:25:ff:b3:ec:75:e6:98:13:e2:58: 6f:99:7e:ae -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNkQxMTAvBgNVBAUTKEZEMDZCMTUwODU1N0Y2NUY2OENDQkEzQzIwM0VDQUFE MDc1REQxOUIwHhcNMjYwMzI2MTgyMzIyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1Nzk5YS1hNGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUgYNGfKpIxjj7ZddibaKF2/gXH+EB4Sh7f8ZgsWaCYGpLmFv7anq708938U WewPMSUAfsYEgQYxhr9KGFG/gue/n7+tCXYx1nI0isfBw043/3wfdZLUscmNh871 4MNWyYzvK/xnJEJ/n7CVUxmpNutmoHf2gCQgdb/onXgLFW90ob/KDyJEL19dVVb8 eVraAME8Ae5wHk534d1yuOcSYdex2mi2WzvHhVLddcUAv2vL3BvAInyKObc3032b BI8VKq4ismHvKVTmocvW8q5uX1bTsBlIPrTv5Qbo6qUNjYDuaIhMJ329r+xn3CdI m6M8UNl06KlJYex1MjdQB61MaQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOBMzm7/ y3WNEobNjOLnFKDMYH66MB8GA1UdIwQYMBaAFP0GsVCFV/ZfaMy6PCA+yq0HXdGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY2RC85QTVCMUE5RUY2 NkExMUU5QkY1MDY5N0FDNEY5QUUwMi9fUWF4VUlWWDlsOW96TG84SUQ3S3JRZGQw WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19RYXhVSVZYOWw5b3pMbzhJRDdLclFkZDBacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNkQvOUE1QjFBOUVGNjZBMTFFOUJGNTA2OTdBQzRGOUFFMDIvQzIyQjkyQUEw ODEwMTFFREJDM0M0Mzc0QzRGOUFFMDIucm9hMGgGCCsGAQUFBwEHAQH/BFkwVzAe BAIAATAYAwQBZ21cAwQAZ21fAwQCZ9bIAwQBkDCWMDUEAgACMC8DBwAgAQ30MQAD BwAkBATAABADBwAkBATAAQowEgMHBCQEBMABUAMHASQEBMABWDANBgkqhkiG9w0B AQsFAAOCAQEAK4ircissERHQ5StVfuWGSdyFcHiEGaxB6xiDc2f2JDvKxFJY5CGt KsJzJCinpvuZyXBPKaFIxMzlzqiZdBAqBSjAwFJefa4Kw4z25Sy6Tk2/WXeXEjJK 8Y0eehkRsc9txK5HihJIY+Uh/7QZRUOfBNFK202wsY0DEFUagCpzxKDMrzVAXe64 p1jvHP8nOKhdR5Q8tO7wtMzKwBsG7XuiawKjXoZV6AUml1Y43lA7L2CSaVflThKQ tL0Wtl1wI9YB0WURWI/Yd7zJNiDoEGjI694fNKHDHOtDfW3SHwtk22RS2SiAzD8l YaHTUXKDLKpIiDAl/7PsdeaYE+JYb5l+rg== -----END CERTIFICATE-----Generated at Mon Mar 30 16:11:35 2026 by rpki-client