$ rpki-client -vvf rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa File: 9C524DA858CE11E891382260C4F9AE02.roa (raw, json) Hash identifier: Q51vzZRqiNMLEKgdpBoUsf7XxI+ws50Le5bazvWIeV0= Subject key identifier: FD:55:2A:31:0F:0D:A2:E3:3D:FD:DC:41:6B:88:12:57:B0:3C:BF:D5 Certificate issuer: /CN=A9127673/serialNumber=31E912E9FF73AF5BC447693528D725B25A2B17F7 Certificate serial: 1567 Authority key identifier: 31:E9:12:E9:FF:73:AF:5B:C4:47:69:35:28:D7:25:B2:5A:2B:17:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:17:19 +0000 ROA not before: Mon 10 Mar 2025 17:06:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136380 IP address blocks: 103.86.56.0/23 maxlen: 23 103.86.56.0/24 maxlen: 24 103.86.57.0/24 maxlen: 24 2407:2bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.crl rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5479 (0x1567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127673, serialNumber=31E912E9FF73AF5BC447693528D725B25A2B17F7 Validity Not Before: Mar 10 17:06:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4041f-969e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:70:8d:a1:c5:6b:05:7c:a6:43:02:a4:38:73: 72:2a:13:0b:b8:7c:7b:16:ba:c5:e9:15:6f:fb:fc: e3:bc:7c:db:ba:ce:d0:40:5d:72:13:56:c9:0a:f5: e4:a6:65:f5:95:42:c8:4f:cb:63:ef:35:a0:63:e3: 10:30:81:28:26:42:50:bf:79:9f:35:3f:35:db:22: 57:fe:d1:42:80:26:59:11:11:97:c2:8e:ef:54:83: 5e:f7:e4:52:0b:d5:d8:9a:7c:22:8d:bc:7f:b8:90: d8:53:a1:2b:40:a4:8e:95:c4:7e:e0:f4:95:e5:ec: a5:3a:03:d6:10:68:39:b4:39:4b:fd:8b:b3:33:c6: 18:c0:b8:1a:1a:ae:87:78:5f:67:e5:b7:64:47:bb: 7c:8f:43:f3:52:28:e3:e7:26:04:6f:7b:90:d1:31: 2e:cf:d8:1d:fb:5f:02:c0:23:28:94:06:24:18:de: 92:ab:10:02:84:e3:c8:81:6c:5c:bc:75:9f:dc:f6: bb:3d:cb:7e:9f:0b:f8:76:b1:cf:a8:24:20:38:a0: 00:fe:07:ba:d9:f8:98:ab:34:ff:00:cf:1d:b3:f4: aa:7b:d3:43:3f:87:22:1b:53:73:e2:3b:2d:28:b1: 4b:0c:02:99:19:67:84:3d:ae:9f:8b:8f:3b:6c:af: 0e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:55:2A:31:0F:0D:A2:E3:3D:FD:DC:41:6B:88:12:57:B0:3C:BF:D5 X509v3 Authority Key Identifier: keyid:31:E9:12:E9:FF:73:AF:5B:C4:47:69:35:28:D7:25:B2:5A:2B:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.56.0/23 IPv6: 2407:2bc0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:3f:f9:a1:9e:cc:98:56:e1:20:0b:b6:7e:1c:7d:92:9c:34: ff:12:c2:d2:01:62:9b:30:c2:b2:a1:03:24:16:3a:8d:88:d1: f0:0c:bc:c0:6b:ec:71:4b:73:3e:c9:44:99:fb:59:12:e0:95: d9:76:5f:bf:db:0e:02:71:ad:e3:b8:b2:86:61:24:f5:c6:33: eb:22:f6:9a:13:52:b3:e7:38:86:28:ee:f9:a4:f3:5f:32:5a: 91:f3:a3:33:05:6d:71:6d:31:63:66:55:7d:a6:8b:4f:06:ac: 73:af:6c:61:99:1d:22:06:28:49:33:28:b3:55:86:11:1c:32: bb:52:72:23:46:0f:0c:ad:99:96:64:bc:ab:7f:76:b9:94:c4: 78:f1:2f:9a:06:bb:bf:9f:aa:42:e2:c0:4b:2b:a8:51:a6:82: 4d:5c:62:7b:83:ad:3b:d3:7d:26:0d:43:e0:6e:ce:e6:02:b1: 39:2d:d3:3a:10:95:4d:e1:1d:ea:12:d2:6c:e0:c7:14:e2:2d: 0b:ab:fd:ba:79:f9:ea:82:e6:05:4c:13:0c:0a:85:99:1b:be: 2d:20:55:c7:2b:98:d1:ed:3a:0a:60:92:b0:f0:34:66:36:85: c3:2b:2a:14:46:a1:b3:24:33:2d:ca:e0:fa:53:30:46:f2:49: 75:8f:90:ae -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2NzMxMTAvBgNVBAUTKDMxRTkxMkU5RkY3M0FGNUJDNDQ3NjkzNTI4RDcyNUIy NUEyQjE3RjcwHhcNMjUwMzEwMTcwNjA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQxZi05NjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHCNocVrBXymQwKkOHNyKhMLuHx7FrrF6RVv+/zjvHzbus7QQF1yE1bJCvXk pmX1lULIT8tj7zWgY+MQMIEoJkJQv3mfNT812yJX/tFCgCZZERGXwo7vVINe9+RS C9XYmnwijbx/uJDYU6ErQKSOlcR+4PSV5eylOgPWEGg5tDlL/YuzM8YYwLgaGq6H eF9n5bdkR7t8j0PzUijj5yYEb3uQ0TEuz9gd+18CwCMolAYkGN6SqxAChOPIgWxc vHWf3Pa7Pct+nwv4drHPqCQgOKAA/ge62fiYqzT/AM8ds/Sqe9NDP4ciG1Nz4jst KLFLDAKZGWeEPa6fi487bK8ORwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP1VKjEP DaLjPf3cQWuIElewPL/VMB8GA1UdIwQYMBaAFDHpEun/c69bxEdpNSjXJbJaKxf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY3My8wM0Y0MzA5QTU4 Q0QxMUU4QkIyRDlFNURDNEY5QUUwMi9NZWtTNmY5enIxdkVSMmsxS05jbHNsb3JG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01la1M2Zjl6cjF2RVIyazFLTmNsc2xvckZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2NzMvMDNGNDMwOUE1OENEMTFFOEJCMkQ5RTVEQzRGOUFFMDIvOUM1MjREQTg1 OENFMTFFODkxMzgyMjYwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ1Y4MA0EAgACMAcDBQAkByvAMA0GCSqGSIb3DQEBCwUAA4IBAQAN P/mhnsyYVuEgC7Z+HH2SnDT/EsLSAWKbMMKyoQMkFjqNiNHwDLzAa+xxS3M+yUSZ +1kS4JXZdl+/2w4Cca3juLKGYST1xjPrIvaaE1Kz5ziGKO75pPNfMlqR86MzBW1x bTFjZlV9potPBqxzr2xhmR0iBihJMyizVYYRHDK7UnIjRg8MrZmWZLyrf3a5lMR4 8S+aBru/n6pC4sBLK6hRpoJNXGJ7g607030mDUPgbs7mArE5LdM6EJVN4R3qEtJs 4McU4i0Lq/26efnqguYFTBMMCoWZG74tIFXHK5jR7ToKYJKw8DRmNoXDKyoURqGz JDMtyuD6UzBG8kl1j5Cu -----END CERTIFICATE-----Generated at Mon Mar 2 15:11:18 2026 by rpki-client