$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa File: 25687A64364D11F0AECC3986C4F9AE02.roa (raw, json) Hash identifier: TWN/2cVZRi9uapuQsJLFYt79FGpaZGSlGK7OEP/EpgM= Subject key identifier: 3F:35:37:39:88:A7:32:B3:5A:DE:15:1F:B1:41:D4:FE:56:A8:E1:28 Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 03DA Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:01:43 +0000 ROA not before: Tue 05 Aug 2025 01:38:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153494 IP address blocks: 45.122.136.0/22 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08, serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: Aug 5 01:38:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42aa7-721b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:78:39:a5:c1:fe:60:d0:ce:f9:d6:1d:6d: f1:48:e1:00:38:59:21:4a:bd:9d:71:2f:0f:49:72: 97:f2:a8:b4:52:37:8c:17:ab:c9:1a:3c:9a:35:29: a1:97:a4:a0:e6:ff:3e:38:6d:d2:12:75:01:7b:3b: 69:2f:1d:17:6c:12:9c:d7:e5:c7:41:c3:31:b7:1a: 3d:aa:17:26:93:87:71:9b:b5:73:c4:7d:26:42:f0: 36:aa:64:44:52:9a:55:9f:9a:b4:24:06:f1:78:a2: 86:ad:85:d4:8e:bf:6c:01:28:9f:90:67:ac:a6:22: ec:74:bd:78:83:0c:51:6b:3a:c7:c8:8e:71:3d:8c: 8a:f0:9f:cf:64:5a:c9:1f:89:ff:6d:b0:2c:d8:fb: f8:b3:d3:c7:ff:1e:ad:cd:ef:2c:e7:38:e7:9f:7b: b7:07:ef:21:06:24:db:a4:99:8c:6b:2a:e2:1a:65: 3d:3a:f0:e3:8c:86:02:e8:82:50:ec:70:c8:b7:1a: 4e:f4:34:e5:4d:01:96:6f:f3:00:8d:8a:1c:e5:ee: 1c:f8:09:27:6b:dc:3d:15:0d:0f:dd:86:67:f2:5a: ac:f9:c1:ad:03:ec:e4:7e:b2:50:b5:42:c4:97:61: 4a:33:64:4e:bf:61:40:1c:de:66:73:2e:70:42:a1: 32:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:35:37:39:88:A7:32:B3:5A:DE:15:1F:B1:41:D4:FE:56:A8:E1:28 X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/22 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 07:a6:64:bb:9f:5e:3d:11:91:4f:fd:ea:66:ef:f6:d5:9f:90: a3:5b:34:82:7a:d9:64:86:5d:12:5a:d0:39:0a:ef:ec:87:67: 91:79:91:b8:4a:93:3a:5f:0d:4d:c9:59:6f:8f:08:f8:84:ac: 74:91:b8:f6:da:ea:79:8f:96:2d:1a:62:69:d3:74:37:5a:70: 86:25:00:53:bc:b0:2c:cf:4a:58:de:4a:12:39:7f:a2:0d:4a: 08:62:33:ba:fe:33:eb:e8:d8:38:af:5b:16:a0:ab:21:15:dc: 5b:df:5d:71:ed:a2:eb:b5:38:c6:a8:5e:1a:d9:97:26:12:93: e9:3c:0f:d4:16:b7:cd:a2:a7:7c:da:19:13:fa:d5:e8:5d:46: 45:2e:5b:e0:40:44:84:aa:33:06:ec:8c:d9:5a:d2:ba:d4:65: 14:81:e7:47:b5:f0:c6:de:82:83:e3:89:e2:3f:2b:03:38:c8: 06:55:09:87:f1:d5:9f:29:7c:4d:fc:62:0b:8c:23:7c:30:58: 92:e0:36:20:45:c9:0e:06:99:cf:55:33:1f:e7:a4:d5:be:97: 04:5b:a9:34:e5:84:37:53:d9:1d:12:93:b3:ec:9f:2f:5b:fc: 72:6e:b0:5e:6f:18:3f:5b:f7:ed:4e:dd:3d:87:f3:7a:f4:e8: bd:d7:a7:a5 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjUwODA1MDEzODM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmFhNy03MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhR4OaXB/mDQzvnWHW3xSOEAOFkhSr2dcS8PSXKX8qi0UjeMF6vJGjyaNSmh l6Sg5v8+OG3SEnUBeztpLx0XbBKc1+XHQcMxtxo9qhcmk4dxm7VzxH0mQvA2qmRE UppVn5q0JAbxeKKGrYXUjr9sASifkGespiLsdL14gwxRazrHyI5xPYyK8J/PZFrJ H4n/bbAs2Pv4s9PH/x6tze8s5zjnn3u3B+8hBiTbpJmMayriGmU9OvDjjIYC6IJQ 7HDItxpO9DTlTQGWb/MAjYoc5e4c+Akna9w9FQ0P3YZn8lqs+cGtA+zkfrJQtULE l2FKM2ROv2FAHN5mcy5wQqEyswIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFD81NzmI pzKzWt4VH7FB1P5WqOEoMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvMjU2ODdBNjQz NjREMTFGMEFFQ0MzOTg2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLXqIAwQCZz8EMA0GCSqGSIb3DQEBCwUAA4IBAQAHpmS7n149EZFP /epm7/bVn5CjWzSCetlkhl0SWtA5Cu/sh2eReZG4SpM6Xw1NyVlvjwj4hKx0kbj2 2up5j5YtGmJp03Q3WnCGJQBTvLAsz0pY3koSOX+iDUoIYjO6/jPr6Ng4r1sWoKsh Fdxb311x7aLrtTjGqF4a2ZcmEpPpPA/UFrfNoqd82hkT+tXoXUZFLlvgQESEqjMG 7IzZWtK61GUUgedHtfDG3oKD44niPysDOMgGVQmH8dWfKXxN/GILjCN8MFiS4DYg RckOBpnPVTMf56TVvpcEW6k05YQ3U9kdEpOz7J8vW/xybrBebxg/W/ftTt09h/N6 9Oi916el -----END CERTIFICATE-----Generated at Sat Mar 21 22:40:10 2026 by rpki-client