$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/249BA23C364D11F0AECC3986C4F9AE02.roa File: 249BA23C364D11F0AECC3986C4F9AE02.roa (raw, json) Hash identifier: znuT/lx1cVo1Y53YyyfaSdImgaQ4zBt/+bOXogW6iF0= Subject key identifier: 29:F4:D5:1F:9B:3B:83:7D:8B:25:14:C2:80:AA:0D:1B:C4:AC:6E:97 Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 03D9 Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/249BA23C364D11F0AECC3986C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:01:43 +0000 ROA not before: Tue 05 Aug 2025 01:38:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132742 IP address blocks: 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08, serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: Aug 5 01:38:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42aa6-ee78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e4:87:66:bf:37:1e:de:fa:8b:69:0b:f0:36: d1:18:67:d1:2e:ad:57:a3:72:b9:57:f7:91:aa:21: 26:02:86:c1:76:e1:de:bb:cf:af:ff:29:f7:61:e9: a3:ea:d1:be:02:ae:92:d8:66:92:0f:1f:aa:70:70: c6:4c:fe:53:de:66:dd:b6:94:df:87:24:82:64:b0: b0:f6:67:98:42:4b:f1:20:0f:a2:fd:95:d5:33:6b: f7:fe:91:bd:d4:fa:ea:3c:ab:33:4d:8e:93:e5:7d: bf:01:f2:1f:66:49:52:41:fc:35:a6:1b:7b:b7:40: e5:bd:4c:58:d8:0a:bb:fa:85:55:cc:85:88:26:1c: fb:a4:10:e2:31:47:b2:55:5b:ef:01:63:00:1e:93: 17:12:15:91:71:dd:4e:35:5c:ca:e0:ba:82:b6:b1: af:14:f2:b5:e7:ed:d7:45:cc:e3:f3:b2:fe:96:85: a7:f2:5d:19:ff:57:fb:88:5d:22:9b:75:73:46:af: 61:78:f0:1b:2d:c3:f3:9d:f2:02:c0:4f:c3:ab:1e: c7:1b:87:83:40:77:08:97:15:bd:e2:43:ae:1b:1b: dd:3a:01:25:dd:9f:3f:2b:10:ef:35:19:0e:da:0b: de:a3:7e:39:d3:21:0c:c4:93:e8:8f:6a:dc:83:65: aa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F4:D5:1F:9B:3B:83:7D:8B:25:14:C2:80:AA:0D:1B:C4:AC:6E:97 X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/249BA23C364D11F0AECC3986C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:0b:6a:cd:4b:2f:55:a4:83:a3:21:55:99:1a:fc:fc:2e:68: ee:5e:6a:c1:6b:1e:1d:08:d7:90:79:67:17:4e:0e:ae:6d:ba: eb:04:da:da:19:f4:99:0d:22:d3:93:21:dd:88:70:57:e9:1f: 5b:44:31:ae:fa:71:6c:6c:d8:4e:d6:5c:d5:2a:21:8e:84:8a: 04:55:78:b8:40:56:72:57:30:42:8f:06:02:95:42:59:e8:ed: bc:37:4d:c1:75:3c:ce:bb:35:10:fe:d9:db:07:fa:43:92:d7: 1f:fd:16:f0:f8:92:f9:f7:a5:53:1b:cc:19:d1:70:2a:68:6d: 43:43:7c:0e:59:00:67:5b:aa:16:25:5b:94:69:1c:81:00:93: 6b:58:76:4f:13:72:2c:94:0a:25:91:b5:ab:dd:a7:0d:8e:fe: db:01:23:4b:05:2c:35:70:8f:f6:5a:b8:cc:8e:b1:30:7c:de: e8:3c:ad:28:a1:09:1f:02:2e:41:9b:51:29:ee:03:f3:3d:3d: 6d:c4:b5:f7:ba:d9:f0:73:89:74:05:8a:c2:47:63:e0:24:77: 25:64:18:6d:68:b2:76:74:eb:83:a1:6a:2d:13:8e:7e:c6:ed: 5c:e3:8c:1d:49:03:49:94:bf:fa:60:66:ff:a8:c9:f6:30:08: a8:c4:01:34 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjUwODA1MDEzODM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmFhNi1lZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+SHZr83Ht76i2kL8DbRGGfRLq1Xo3K5V/eRqiEmAobBduHeu8+v/yn3Yemj 6tG+Aq6S2GaSDx+qcHDGTP5T3mbdtpTfhySCZLCw9meYQkvxIA+i/ZXVM2v3/pG9 1PrqPKszTY6T5X2/AfIfZklSQfw1pht7t0DlvUxY2Aq7+oVVzIWIJhz7pBDiMUey VVvvAWMAHpMXEhWRcd1ONVzK4LqCtrGvFPK15+3XRczj87L+loWn8l0Z/1f7iF0i m3VzRq9hePAbLcPznfICwE/Dqx7HG4eDQHcIlxW94kOuGxvdOgEl3Z8/KxDvNRkO 2gveo3450yEMxJPoj2rcg2WqcQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCn01R+b O4N9iyUUwoCqDRvErG6XMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvMjQ5QkEyM0Mz NjREMTFGMEFFQ0MzOTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZz8EMA0GCSqGSIb3DQEBCwUAA4IBAQBbC2rNSy9VpIOjIVWZGvz8 LmjuXmrBax4dCNeQeWcXTg6ubbrrBNraGfSZDSLTkyHdiHBX6R9bRDGu+nFsbNhO 1lzVKiGOhIoEVXi4QFZyVzBCjwYClUJZ6O28N03BdTzOuzUQ/tnbB/pDktcf/Rbw +JL596VTG8wZ0XAqaG1DQ3wOWQBnW6oWJVuUaRyBAJNrWHZPE3IslAolkbWr3acN jv7bASNLBSw1cI/2WrjMjrEwfN7oPK0ooQkfAi5Bm1Ep7gPzPT1txLX3utnwc4l0 BYrCR2PgJHclZBhtaLJ2dOuDoWotE45+xu1c44wdSQNJlL/6YGb/qMn2MAioxAE0 -----END CERTIFICATE-----Generated at Sat Mar 21 22:48:23 2026 by rpki-client