$ rpki-client -vvf rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa File: 5D2D29A2966D11EA96C50E81C4F9AE02.roa (raw, json) Hash identifier: kFJ+TGQkQAcGMhJdugaT6QqqjbIgQb/V5WGvkK0LpAY= Subject key identifier: 4D:E6:13:12:CB:4B:E4:89:CD:15:B5:6C:2C:FB:97:C3:F5:0E:28:11 Certificate issuer: /CN=A9195D93/serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Certificate serial: 222F Authority key identifier: 99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:13:47 +0000 ROA not before: Wed 30 Apr 2025 16:24:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.52.62.0/24 maxlen: 24 103.67.234.0/23 maxlen: 24 103.67.248.0/24 maxlen: 24 2405:df80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 15:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8751 (0x222f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195D93, serialNumber=9935C639B3C351DBED5B293994F72F814CCF9BA9 Validity Not Before: Apr 30 16:24:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4034b-200a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:46:90:06:1e:81:a8:75:a0:77:d5:cf:7a: fb:1e:33:18:ef:1d:34:6d:33:54:4b:1e:34:9b:99: ef:11:cd:ec:ad:b2:05:72:79:0f:f6:b2:94:2f:f9: a7:54:d0:14:85:be:86:85:52:d1:2f:0d:ad:db:7a: 45:2a:85:ad:25:78:2b:5d:67:d4:db:00:9a:18:f8: 3b:4e:7d:14:d8:5c:8f:30:c5:bb:e4:b5:36:c0:2d: 46:e4:03:f2:bd:1c:dd:05:be:8e:9d:8a:fa:74:e1: 23:ae:17:5d:f6:ee:a9:b6:90:09:e7:3b:70:cb:66: 7a:53:a3:b3:20:c6:59:fc:d7:5b:36:d6:fb:1a:35: 53:89:44:8e:a2:d7:79:9a:b9:8c:e7:54:7c:33:94: ce:d9:2f:7f:53:fd:76:24:61:dd:c4:f3:57:10:f4: 07:35:7a:5c:f2:5f:4b:5c:ba:55:38:66:cd:2e:f1: 40:e3:eb:c8:80:64:7e:7d:21:d1:ec:52:b7:56:10: 23:ff:e7:8e:f0:24:65:80:f9:dc:f8:18:38:d3:e0: c7:95:c2:c1:41:38:c3:51:c5:6d:5f:52:0a:2d:51: 15:04:d9:46:19:db:3a:1a:ce:a0:13:9f:aa:43:2f: 2d:05:d6:b2:73:d7:81:8b:ad:63:24:ca:7c:30:78: 7e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E6:13:12:CB:4B:E4:89:CD:15:B5:6C:2C:FB:97:C3:F5:0E:28:11 X509v3 Authority Key Identifier: keyid:99:35:C6:39:B3:C3:51:DB:ED:5B:29:39:94:F7:2F:81:4C:CF:9B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/mTXGObPDUdvtWyk5lPcvgUzPm6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTXGObPDUdvtWyk5lPcvgUzPm6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195D93/5C10A810DC5D11E5B325452EC4F9AE02/5D2D29A2966D11EA96C50E81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.52.62.0/24 103.67.234.0/23 103.67.248.0/24 IPv6: 2405:df80::/32 Signature Algorithm: sha256WithRSAEncryption 0e:22:a4:52:86:18:52:91:68:d3:d9:07:e8:72:39:ef:6f:99: 9e:e7:91:ea:0b:a2:6c:19:d8:92:ad:57:a6:9b:56:93:13:cf: b9:28:a2:b7:73:53:54:cc:df:2c:1c:c0:fb:f7:e0:bd:bc:14: 8d:57:d5:22:7a:8f:8f:f3:a7:eb:f1:c3:a8:48:40:3b:ce:14: 41:10:7c:dd:bf:d1:f5:a8:5e:25:3d:59:d4:cb:ef:96:ac:0a: ae:ad:73:15:3e:1b:b1:89:e1:87:a3:1c:33:ee:27:16:2b:5c: 88:e3:d7:1d:91:e6:df:1e:99:34:d9:41:5e:99:6d:1c:1c:8b: 12:cb:54:a6:56:82:f4:72:43:ee:3e:da:eb:94:65:df:a9:f8: 65:36:18:03:c1:66:d1:34:f8:14:1b:e3:12:86:b8:7b:2c:ce: 05:26:2d:29:07:21:6a:98:89:16:f8:31:52:5e:d4:26:15:ad: dd:d5:71:ed:68:a7:a6:85:dc:16:a4:62:09:af:a0:ca:4f:60: e0:70:bf:b0:fd:42:67:1d:e6:1e:fb:35:c2:3b:69:56:40:d8: 57:93:5e:8c:ff:db:1a:e2:8a:f2:19:1c:e1:40:d5:b0:10:b0: 48:94:df:56:e0:f5:84:90:cf:ee:2f:b5:31:26:c9:e4:12:14: aa:c8:ad:64 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICIi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVEOTMxMTAvBgNVBAUTKDk5MzVDNjM5QjNDMzUxREJFRDVCMjkzOTk0RjcyRjgx NENDRjlCQTkwHhcNMjUwNDMwMTYyNDAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDM0Yi0yMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlNGkAYegah1oHfVz3r7HjMY7x00bTNUSx40m5nvEc3srbIFcnkP9rKUL/mn VNAUhb6GhVLRLw2t23pFKoWtJXgrXWfU2wCaGPg7Tn0U2FyPMMW75LU2wC1G5APy vRzdBb6OnYr6dOEjrhdd9u6ptpAJ5ztwy2Z6U6OzIMZZ/NdbNtb7GjVTiUSOotd5 mrmM51R8M5TO2S9/U/12JGHdxPNXEPQHNXpc8l9LXLpVOGbNLvFA4+vIgGR+fSHR 7FK3VhAj/+eO8CRlgPnc+Bg40+DHlcLBQTjDUcVtX1IKLVEVBNlGGds6Gs6gE5+q Qy8tBdayc9eBi61jJMp8MHh+0wIDAQABo4ICezCCAncwHQYDVR0OBBYEFE3mExLL S+SJzRW1bCz7l8P1DigRMB8GA1UdIwQYMBaAFJk1xjmzw1Hb7VspOZT3L4FMz5up MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUQ5My81QzEwQTgxMERD NUQxMUU1QjMyNTQ1MkVDNEY5QUUwMi9tVFhHT2JQRFVkdnRXeWs1bFBjdmdVelBt NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21UWEdPYlBEVWR2dFd5azVsUGN2Z1V6UG02ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVEOTMvNUMxMEE4MTBEQzVEMTFFNUIzMjU0NTJFQzRGOUFFMDIvNUQyRDI5QTI5 NjZEMTFFQTk2QzUwRTgxQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZzQ+AwQBZ0PqAwQAZ0P4MA0EAgACMAcDBQAkBd+AMA0GCSqGSIb3 DQEBCwUAA4IBAQAOIqRShhhSkWjT2Qfocjnvb5me55HqC6JsGdiSrVemm1aTE8+5 KKK3c1NUzN8sHMD79+C9vBSNV9Uieo+P86fr8cOoSEA7zhRBEHzdv9H1qF4lPVnU y++WrAqurXMVPhuxieGHoxwz7icWK1yI49cdkebfHpk02UFemW0cHIsSy1SmVoL0 ckPuPtrrlGXfqfhlNhgDwWbRNPgUG+MShrh7LM4FJi0pByFqmIkW+DFSXtQmFa3d 1XHtaKemhdwWpGIJr6DKT2DgcL+w/UJnHeYe+zXCO2lWQNhXk16M/9sa4oryGRzh QNWwELBIlN9W4PWEkM/uL7UxJsnkEhSqyK1k -----END CERTIFICATE-----Generated at Sun Mar 22 17:41:00 2026 by rpki-client