$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa File: 9FA735ECEAF811ED9E2D1958C4F9AE02.roa (raw, json) Hash identifier: GS7Hz+JO/tFd7f6jkV506RLU0L8tY/ifzdZjJQhwPzk= Subject key identifier: 5F:C8:E8:89:39:EC:5D:1D:E2:57:2A:1B:7C:16:33:CA:06:41:2A:A2 Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 15D6 Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa Signing time: Mon 30 Mar 2026 17:20:40 +0000 ROA not before: Mon 30 Mar 2026 17:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140867 IP address blocks: 103.100.141.0/24 maxlen: 24 103.100.142.0/23 maxlen: 24 103.113.45.0/24 maxlen: 24 103.113.46.0/23 maxlen: 24 2402:b740:8000::/33 maxlen: 33 2402:b740:8001::/48 maxlen: 48 2402:b740:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5590 (0x15d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42, serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Mar 30 17:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cab0e8-28d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:09:66:3e:10:0d:8e:85:37:24:db:a4:21:35: 37:95:40:15:53:a1:02:4d:a5:2c:03:11:3a:af:f8: ed:cd:fa:2e:3f:d9:8f:de:65:69:c7:70:a1:39:0c: 7a:e1:55:b0:00:5c:32:37:d1:ed:da:df:42:dc:c6: bb:e0:a4:6c:26:ad:cc:7e:33:6f:f5:8c:53:8d:23: 2e:2c:78:3a:5f:5e:ab:ef:2b:54:4a:d2:ca:55:17: 07:d3:25:45:ac:09:b3:33:57:8f:07:f2:fb:1b:34: b0:e6:35:4f:b9:ae:7c:85:64:47:cd:d7:66:93:78: 1f:e1:63:59:f2:37:2d:ac:72:f2:89:2e:4f:ef:99: 95:5d:16:55:0d:49:28:3c:71:16:6f:25:e2:a3:d5: e5:e8:5f:40:36:12:81:99:b4:49:5c:8b:71:1f:73: 83:5e:aa:9b:37:c0:e1:bb:c0:6d:d7:2b:55:c3:9b: af:62:bb:d7:6c:51:d7:26:a6:9c:15:11:e0:73:a5: e1:09:d4:05:83:ef:62:2b:01:58:80:cb:07:af:d0: 93:c7:a8:47:52:4f:ea:7f:fe:8e:f2:9e:15:bb:1b: 1a:f6:ac:95:65:54:e2:bf:2c:c0:09:6b:67:c5:70: 94:17:65:b5:fc:8e:ea:30:a9:a0:25:55:2a:d3:5f: 37:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C8:E8:89:39:EC:5D:1D:E2:57:2A:1B:7C:16:33:CA:06:41:2A:A2 X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.141.0-103.100.143.255 103.113.45.0-103.113.47.255 IPv6: 2402:b740:8000::/33 Signature Algorithm: sha256WithRSAEncryption 14:0c:3d:ee:5c:28:98:0d:9b:e9:da:a9:6d:ed:65:47:0b:d0: 59:64:4e:93:f1:fc:a6:ad:48:f0:42:ad:a6:33:b2:fe:48:31: 17:4e:aa:6c:ab:6f:1a:c5:44:03:8f:db:e8:e2:53:5f:5a:73: 02:45:53:fc:c3:bc:d7:a5:88:54:e9:a2:e8:83:ba:9e:ff:b8: 3c:f7:fe:8b:6a:c7:09:cf:c6:cc:96:15:a8:81:c8:1a:f1:7c: e3:23:22:e5:90:56:6d:65:ba:30:d8:04:dc:db:1f:6f:40:29: 7a:bf:96:e6:98:55:bb:17:d2:58:f9:2a:92:c1:51:29:e1:02: 9b:1d:7b:3e:26:a0:76:7b:5a:f1:2a:f2:9c:f4:2e:2b:6b:5b: f7:c9:cc:80:41:86:fe:05:b2:7f:41:0a:cd:d9:2d:bf:67:cf: 00:42:d7:03:a7:18:ef:86:a4:b0:e3:8b:67:31:fc:73:b0:7f: 03:b5:c2:90:78:49:4b:f4:9e:40:88:08:f3:6f:53:c5:e5:bc: 75:da:56:37:f7:f2:59:09:e4:66:5f:b6:9d:d2:a4:8c:da:91: 24:82:bb:8f:58:3f:b7:7f:a4:3c:53:5e:82:3e:a6:62:91:a1: 35:ac:b5:d3:3f:1c:6e:c5:9a:f2:15:7c:8f:92:58:05:78:ec: e7:86:f2:f7 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICFdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjYwMzMwMTcyMDQwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYjBlOC0yOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQlmPhANjoU3JNukITU3lUAVU6ECTaUsAxE6r/jtzfouP9mP3mVpx3ChOQx6 4VWwAFwyN9Ht2t9C3Ma74KRsJq3MfjNv9YxTjSMuLHg6X16r7ytUStLKVRcH0yVF rAmzM1ePB/L7GzSw5jVPua58hWRHzddmk3gf4WNZ8jctrHLyiS5P75mVXRZVDUko PHEWbyXio9Xl6F9ANhKBmbRJXItxH3ODXqqbN8Dhu8Bt1ytVw5uvYrvXbFHXJqac FRHgc6XhCdQFg+9iKwFYgMsHr9CTx6hHUk/qf/6O8p4Vuxsa9qyVZVTivyzACWtn xXCUF2W1/I7qMKmgJVUq0183UQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFF/I6Ik5 7F0d4lcqG3wWM8oGQSqiMB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvOUZBNzM1RUNF QUY4MTFFRDlFMkQxOTU4QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAi BAIAATAcMAwDBABnZI0DBARnZIAwDAMEAGdxLQMEBGdxIDAOBAIAAjAIAwYHJAK3 QIAwDQYJKoZIhvcNAQELBQADggEBABQMPe5cKJgNm+naqW3tZUcL0FlkTpPx/Kat SPBCraYzsv5IMRdOqmyrbxrFRAOP2+jiU19acwJFU/zDvNeliFTpouiDup7/uDz3 /otqxwnPxsyWFaiByBrxfOMjIuWQVm1lujDYBNzbH29AKXq/luaYVbsX0lj5KpLB USnhApsdez4moHZ7WvEq8pz0LitrW/fJzIBBhv4Fsn9BCs3ZLb9nzwBC1wOnGO+G pLDji2cx/HOwfwO1wpB4SUv0nkCICPNvU8XlvHXaVjf38lkJ5GZftp3SpIzakSSC u49YP7d/pDxTXoI+pmKRoTWstdM/HG7FmvIVfI+SWAV47OeG8vc= -----END CERTIFICATE-----Generated at Mon Apr 6 09:52:54 2026 by rpki-client