$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/657BCA62CABC11EB8D6D063BC4F9AE02.roa File: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (raw, json) Hash identifier: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU= Subject key identifier: 4B:AD:B5:11:A0:DE:6C:A6:21:5B:42:55:4A:48:79:9D:68:EC:5D:DC Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0643 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/657BCA62CABC11EB8D6D063BC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:37:23 +0000 ROA not before: Tue 02 Dec 2025 21:55:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55720 IP address blocks: 103.159.132.0/24 maxlen: 24 103.159.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Dec 2 21:55:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43303-dc00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7f:db:28:43:61:74:6f:e8:cf:7b:1d:e3:3a: 05:09:13:c2:28:01:20:37:67:2b:8e:09:68:68:c5: 29:56:47:49:76:ab:bc:2b:83:37:ed:88:f7:90:ea: 28:21:64:e1:3d:c3:0a:9d:f1:f1:d1:34:50:89:00: 67:1c:5f:bb:40:aa:22:b9:e3:98:ee:35:cd:2d:90: 88:fb:f0:aa:32:47:f1:9c:4c:18:88:e7:73:22:79: b8:f1:21:9d:d1:6b:32:19:0b:d0:6a:a4:52:78:e6: 87:6b:0b:71:c5:4f:38:67:db:fa:c5:84:fb:c6:ee: 87:50:4d:db:96:e3:ca:1f:0b:14:fb:40:77:e8:4d: a2:66:44:9f:da:9e:17:bf:d1:c4:5f:48:a8:d6:94: cf:90:c3:1f:da:d7:99:a3:0c:ea:e1:13:84:2b:b4: c2:3f:fc:2a:a9:57:6d:7c:a0:57:c0:65:a3:cb:ab: 30:e6:23:98:44:82:06:95:2d:86:6e:9b:48:d4:54: 31:66:2b:80:2e:c5:7a:34:3d:32:28:e6:08:27:df: 25:3a:7e:1f:b1:40:6d:c2:f2:b7:1c:98:6a:1e:b3: a3:80:46:af:d7:0d:be:33:1d:9d:c4:41:b2:a8:98: 21:e6:35:a8:33:8e:ba:61:c1:59:ba:3c:66:b3:1f: 1b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AD:B5:11:A0:DE:6C:A6:21:5B:42:55:4A:48:79:9D:68:EC:5D:DC X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/657BCA62CABC11EB8D6D063BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.132.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:41:04:57:42:75:4d:d5:24:36:96:4b:e6:0a:7a:31:01:3e: 0f:df:d0:04:d2:f4:22:68:dc:a9:01:d6:c2:7a:e2:23:69:b6: 9f:9a:1f:a4:3d:18:45:5f:ec:aa:ae:42:84:c1:b8:09:33:67: b1:2c:83:d8:92:6f:eb:6d:e3:0f:2f:e5:27:dc:4b:fb:49:6e: 36:ad:51:3d:91:a4:a8:03:46:8c:1f:b1:4e:9d:99:ca:10:b1: ee:80:ae:5e:84:4c:1c:ce:07:d7:0f:71:00:2b:bf:50:5f:7d: 7a:36:97:dd:79:08:dc:ef:d5:d6:77:00:aa:12:a7:c7:46:2b: c0:91:93:12:b5:17:61:6b:53:b2:3f:c0:9d:39:56:4d:88:92: 13:d3:1a:6e:cd:75:22:f5:2b:7f:50:f9:89:e1:01:0e:96:3f: 84:81:d1:23:91:08:74:52:e0:00:ca:c2:6d:86:2e:2a:3e:25: a6:dc:73:58:2a:35:b3:01:57:46:00:79:df:a1:6b:5e:c8:8d: 89:1e:db:76:55:32:f9:de:ca:e8:d7:29:5f:6a:f9:a7:5c:49: 2a:82:6c:a8:7b:49:25:61:fc:c2:14:d7:24:a6:4d:4e:d8:15: 2d:93:32:2d:4b:ea:b5:e5:e5:36:40:53:06:78:ed:c3:26:72: eb:01:ca:53 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUxMjAyMjE1NTUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzMwMy1kYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi3/bKENhdG/oz3sd4zoFCRPCKAEgN2crjgloaMUpVkdJdqu8K4M37Yj3kOoo IWThPcMKnfHx0TRQiQBnHF+7QKoiueOY7jXNLZCI+/CqMkfxnEwYiOdzInm48SGd 0WsyGQvQaqRSeOaHawtxxU84Z9v6xYT7xu6HUE3bluPKHwsU+0B36E2iZkSf2p4X v9HEX0io1pTPkMMf2teZowzq4ROEK7TCP/wqqVdtfKBXwGWjy6sw5iOYRIIGlS2G bptI1FQxZiuALsV6ND0yKOYIJ98lOn4fsUBtwvK3HJhqHrOjgEav1w2+Mx2dxEGy qJgh5jWoM466YcFZujxmsx8b/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEuttRGg 3mymIVtCVUpIeZ1o7F3cMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdCNTgvQUFDMjFDN0VDQUI4MTFFQjg0MTU1MzM2QzRGOUFFMDIvNjU3QkNBNjJD QUJDMTFFQjhENkQwNjNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5+EMA0GCSqGSIb3DQEBCwUAA4IBAQAOQQRXQnVN1SQ2lkvmCnox AT4P39AE0vQiaNypAdbCeuIjabafmh+kPRhFX+yqrkKEwbgJM2exLIPYkm/rbeMP L+Un3Ev7SW42rVE9kaSoA0aMH7FOnZnKELHugK5ehEwczgfXD3EAK79QX316Npfd eQjc79XWdwCqEqfHRivAkZMStRdha1OyP8CdOVZNiJIT0xpuzXUi9St/UPmJ4QEO lj+EgdEjkQh0UuAAysJthi4qPiWm3HNYKjWzAVdGAHnfoWteyI2JHtt2VTL53sro 1ylfavmnXEkqgmyoe0klYfzCFNckpk1O2BUtkzItS+q15eU2QFMGeO3DJnLrAcpT -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:22 2026 by rpki-client