$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa File: 95D9A9461BEC11EC97B39812C4F9AE02.roa (raw, json) Hash identifier: v0rJzZLI+1O5nfOP2tDFakvguyT8MUXLjwiVOqN97W8= Subject key identifier: DB:71:AF:88:D2:4F:B0:6B:95:84:F2:B2:10:93:3C:65:0B:40:46:00 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0571 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:42:12 +0000 ROA not before: Fri 31 Oct 2025 23:44:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147050 IP address blocks: 103.173.152.0/23 maxlen: 23 103.173.152.0/24 maxlen: 24 103.173.153.0/24 maxlen: 24 2001:df7:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827, serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Oct 31 23:44:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43424-b918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:61:15:be:35:4b:6f:38:93:17:c3:74:a4:7d: 9e:61:22:69:20:7b:e3:b1:fb:d6:6c:c8:54:00:3c: dc:6c:e9:c4:85:86:3c:df:33:ee:b9:bd:e6:4e:1a: 23:74:1d:5c:76:33:1f:b5:e5:82:c0:a4:53:88:b4: 71:e9:d7:53:9a:a1:d5:93:0d:9c:0f:8e:80:7d:66: 6a:a4:78:7d:8e:0b:4b:96:02:3c:11:14:04:be:bd: 10:6b:01:56:9b:fb:43:7a:ab:29:1d:79:f6:7a:e0: 4c:37:24:b8:4d:c3:af:49:81:3d:ec:67:63:47:03: 36:4e:94:71:aa:3f:b7:32:95:97:c0:ae:78:b3:a9: ae:ad:2c:ba:1b:b9:f9:67:85:36:03:b1:0a:82:ab: 5c:52:f6:1f:83:c7:b9:01:b8:f3:44:c0:2e:e9:9f: 54:6d:48:1f:93:68:7c:b3:04:54:b7:c4:78:b9:5a: 7f:41:dd:68:3e:6b:8c:82:0e:cf:41:76:93:0b:77: 2a:77:99:b0:32:8a:e6:d1:c7:62:35:9a:5f:ec:4d: cd:55:cf:ff:24:8b:4f:c9:65:2b:85:2c:6d:22:99: 95:29:13:d1:e4:0d:e3:06:70:3c:7e:e9:8b:61:c6: 41:af:14:cf:0d:63:d7:eb:14:8a:52:d4:2b:3d:4b: e1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:71:AF:88:D2:4F:B0:6B:95:84:F2:B2:10:93:3C:65:0B:40:46:00 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/95D9A9461BEC11EC97B39812C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.152.0/23 IPv6: 2001:df7:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 1e:e2:9c:ba:30:a8:01:af:d9:9a:02:e7:44:11:18:6b:5b:37: bc:04:4d:23:d9:c5:3d:74:75:e7:99:f2:22:6e:58:ac:60:06: 7f:ff:12:b3:bb:85:91:46:f6:f3:ac:c2:e3:b5:73:d1:c3:f4: ec:b6:24:f1:5d:e8:03:70:70:33:4b:5e:b8:0b:05:b2:5a:58: 64:9b:95:e7:ed:c4:87:05:34:d0:80:0a:b9:67:98:02:44:a7: da:9e:64:52:b4:37:5f:62:65:77:75:35:a3:fa:8d:16:f0:a1: 56:08:96:03:d8:3b:b3:92:13:af:22:ca:7a:b9:dc:66:b7:b5: 8a:d3:af:33:75:5d:30:f2:81:2e:25:ce:51:45:98:80:82:54: a7:f8:42:fc:20:11:b3:53:be:8c:67:20:6d:cd:f9:b0:cf:66: 1a:a9:5a:81:bc:6c:ee:6e:d6:d6:28:15:f6:cc:58:f4:68:8d: 01:f5:cc:8f:9d:cb:72:bf:83:4d:3d:d6:76:90:49:0b:32:72: d9:d2:8e:87:c5:c6:0e:ce:2d:91:d1:67:37:00:29:84:e5:de: 71:07:f2:ea:54:54:69:b9:e3:f0:2d:00:5a:53:7e:41:e9:53: 02:6f:65:c5:a3:53:fe:10:7e:3a:e4:41:0d:76:b7:12:b5:90: 60:f2:82:3b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjUxMDMxMjM0NDA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzQyNC1iOTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWEVvjVLbziTF8N0pH2eYSJpIHvjsfvWbMhUADzcbOnEhYY83zPuub3mThoj dB1cdjMfteWCwKRTiLRx6ddTmqHVkw2cD46AfWZqpHh9jgtLlgI8ERQEvr0QawFW m/tDeqspHXn2euBMNyS4TcOvSYE97GdjRwM2TpRxqj+3MpWXwK54s6murSy6G7n5 Z4U2A7EKgqtcUvYfg8e5AbjzRMAu6Z9UbUgfk2h8swRUt8R4uVp/Qd1oPmuMgg7P QXaTC3cqd5mwMorm0cdiNZpf7E3NVc//JItPyWUrhSxtIpmVKRPR5A3jBnA8fumL YcZBrxTPDWPX6xSKUtQrPUvh2QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNtxr4jS T7BrlYTyshCTPGULQEYAMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4MjcvM0M3Q0I0NTAxQkU4MTFFQ0JCQTY1QjUwQzRGOUFFMDIvOTVEOUE5NDYx QkVDMTFFQzk3QjM5ODEyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ62YMA8EAgACMAkDBwAgAQ33n4AwDQYJKoZIhvcNAQELBQADggEB AB7inLowqAGv2ZoC50QRGGtbN7wETSPZxT10deeZ8iJuWKxgBn//ErO7hZFG9vOs wuO1c9HD9Oy2JPFd6ANwcDNLXrgLBbJaWGSbleftxIcFNNCACrlnmAJEp9qeZFK0 N19iZXd1NaP6jRbwoVYIlgPYO7OSE68iynq53Ga3tYrTrzN1XTDygS4lzlFFmICC VKf4QvwgEbNTvoxnIG3N+bDPZhqpWoG8bO5u1tYoFfbMWPRojQH1zI+dy3K/g009 1naQSQsyctnSjofFxg7OLZHRZzcAKYTl3nEH8upUVGm54/AtAFpTfkHpUwJvZcWj U/4QfjrkQQ12txK1kGDygjs= -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:28 2026 by rpki-client