$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/C6766086579811EAA245BE5EC4F9AE02.roa File: C6766086579811EAA245BE5EC4F9AE02.roa (raw, json) Hash identifier: zk9lSKL5bckK4ujX80BMa7XuYL11Sm1xpBbwBzRkhos= Subject key identifier: 32:9B:5C:07:F1:A6:9E:B7:C6:AB:18:49:47:68:00:F7:37:88:0F:F4 Certificate issuer: /CN=A9132FA5/serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Certificate serial: 0B4E Authority key identifier: 8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/C6766086579811EAA245BE5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:28 +0000 ROA not before: Wed 02 Apr 2025 19:50:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136431 IP address blocks: 103.87.208.0/23 maxlen: 24 103.87.210.0/23 maxlen: 24 203.96.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2894 (0xb4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FA5, serialNumber=8D5AFF3219012A1C99E273C2B7E63A2D0C3962E7 Validity Not Before: Apr 2 19:50:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42ed0-48d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f5:b5:72:17:66:3b:41:6e:28:68:f0:dd:bb: 61:04:28:72:7e:26:4c:44:b9:50:99:2a:77:e4:31: 80:18:fe:af:07:92:00:a7:b8:88:e9:af:cc:45:f8: 15:92:f1:72:df:bf:a3:94:7b:05:99:1d:38:f4:07: f0:5e:8e:77:91:c0:92:3d:5f:6e:e3:04:9b:a7:b7: 52:7f:fc:ce:02:e4:ce:6f:72:63:c6:6b:5f:93:be: 56:48:aa:d3:36:3c:d2:37:00:f5:9c:07:0f:67:89: be:82:b7:cd:6e:7e:22:c7:d9:86:76:72:53:b2:3c: 4c:b6:35:9a:41:a8:c0:ef:55:a0:0b:30:46:d7:35: a5:e9:6e:32:3e:25:4d:75:c2:c2:a7:a6:8c:f6:15: 6a:40:2f:d8:4d:ac:a7:85:cd:d5:6d:08:1d:46:d6: d6:c0:46:83:20:0a:3b:04:28:4a:19:e8:8e:ae:64: e0:9e:c5:41:0b:9a:31:64:ce:97:31:af:2a:3a:51: 28:34:11:0e:1f:8e:60:c2:fe:c7:5c:80:74:47:2e: b8:28:f6:57:0f:47:69:42:42:99:4d:3b:4a:d6:f7: 13:c5:21:91:e4:6a:ec:5f:1d:c7:85:fa:bf:eb:d2: f3:9a:66:a5:97:e8:2e:fc:9e:77:27:1a:a4:f3:05: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9B:5C:07:F1:A6:9E:B7:C6:AB:18:49:47:68:00:F7:37:88:0F:F4 X509v3 Authority Key Identifier: keyid:8D:5A:FF:32:19:01:2A:1C:99:E2:73:C2:B7:E6:3A:2D:0C:39:62:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVr_MhkBKhyZ4nPCt-Y6LQw5Yuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FA5/ABD47108569111EAB5C5C70FC4F9AE02/C6766086579811EAA245BE5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.208.0/22 203.96.172.0/22 Signature Algorithm: sha256WithRSAEncryption 87:7c:fc:20:34:b7:20:3c:16:d6:f4:2e:de:0d:80:76:2c:f7: b8:1a:5a:71:51:a3:11:d3:f0:a7:d5:2f:3c:f5:50:dd:69:48: e2:1e:07:6a:ac:57:c2:4b:eb:15:f4:0c:9f:61:95:f4:29:fe: 30:8f:95:59:21:7e:9e:b2:f0:f5:fc:6c:3f:cd:d5:f7:99:3a: 73:86:6a:82:52:8f:7e:94:8d:ae:63:a5:b7:c4:94:40:ca:ff: e1:4e:3a:51:55:82:24:a9:18:3a:4e:b9:39:d7:9f:06:0f:23: 73:63:c5:0a:55:1a:94:9a:6f:bc:29:26:0a:dc:e9:67:36:e0: 3f:83:80:b5:26:23:da:3f:7b:dc:62:e9:9c:d1:5e:28:05:cd: 5d:0c:a0:cc:7f:6b:98:e7:ba:7b:2d:19:9a:04:0f:ae:fa:05: 39:78:85:df:bc:d4:73:54:85:7a:be:29:16:ca:95:b1:ac:63: 2b:97:0e:08:c4:b3:c4:51:0d:c7:42:e4:ec:8e:65:40:58:3a: 37:95:27:c8:df:87:14:5c:da:60:38:29:fb:b6:6e:64:50:34: 83:78:70:42:5a:80:14:80:4e:89:6f:8b:27:78:41:f3:79:89: 6e:d8:0b:be:87:c9:bf:8b:58:21:57:fd:92:dd:df:33:11:4b: 4b:ab:7f:4f -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGQTUxMTAvBgNVBAUTKDhENUFGRjMyMTkwMTJBMUM5OUUyNzNDMkI3RTYzQTJE MEMzOTYyRTcwHhcNMjUwNDAyMTk1MDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmVkMC00OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fW1chdmO0FuKGjw3bthBChyfiZMRLlQmSp35DGAGP6vB5IAp7iI6a/MRfgV kvFy37+jlHsFmR049AfwXo53kcCSPV9u4wSbp7dSf/zOAuTOb3Jjxmtfk75WSKrT NjzSNwD1nAcPZ4m+grfNbn4ix9mGdnJTsjxMtjWaQajA71WgCzBG1zWl6W4yPiVN dcLCp6aM9hVqQC/YTaynhc3VbQgdRtbWwEaDIAo7BChKGeiOrmTgnsVBC5oxZM6X Ma8qOlEoNBEOH45gwv7HXIB0Ry64KPZXD0dpQkKZTTtK1vcTxSGR5GrsXx3Hhfq/ 69Lzmmall+gu/J53Jxqk8wXNTQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDKbXAfx pp63xqsYSUdoAPc3iA/0MB8GA1UdIwQYMBaAFI1a/zIZASocmeJzwrfmOi0MOWLn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZBNS9BQkQ0NzEwODU2 OTExMUVBQjVDNUM3MEZDNEY5QUUwMi9qVnJfTWhrQktoeVo0blBDdC1ZNkxRdzVZ dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWcl9NaGtCS2h5WjRuUEN0LVk2TFF3NVl1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJGQTUvQUJENDcxMDg1NjkxMTFFQUI1QzVDNzBGQzRGOUFFMDIvQzY3NjYwODY1 Nzk4MTFFQUEyNDVCRTVFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ1fQAwQCy2CsMA0GCSqGSIb3DQEBCwUAA4IBAQCHfPwgNLcgPBbW 9C7eDYB2LPe4GlpxUaMR0/Cn1S889VDdaUjiHgdqrFfCS+sV9AyfYZX0Kf4wj5VZ IX6esvD1/Gw/zdX3mTpzhmqCUo9+lI2uY6W3xJRAyv/hTjpRVYIkqRg6Trk5158G DyNzY8UKVRqUmm+8KSYK3OlnNuA/g4C1JiPaP3vcYumc0V4oBc1dDKDMf2uY57p7 LRmaBA+u+gU5eIXfvNRzVIV6vikWypWxrGMrlw4IxLPEUQ3HQuTsjmVAWDo3lSfI 34cUXNpgOCn7tm5kUDSDeHBCWoAUgE6Jb4sneEHzeYlu2Au+h8m/i1ghV/2S3d8z EUtLq39P -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:15 2026 by rpki-client