$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/4D470362C55811EB981FA987C4F9AE02.roa File: 4D470362C55811EB981FA987C4F9AE02.roa (raw, json) Hash identifier: jONR2iUJdd8sTfAf2GKMQLcf6yBJF3ccZJWFs5abXDA= Subject key identifier: 63:17:9F:44:03:1D:D5:C2:1D:E7:7B:D3:5C:8D:57:FD:53:DA:90:44 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 064D Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/4D470362C55811EB981FA987C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:48:49 +0000 ROA not before: Wed 04 Jun 2025 23:03:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140072 IP address blocks: 103.166.172.0/23 maxlen: 24 2407:59c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Jun 4 23:03:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fd71-07af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:18:ef:ed:04:f4:2b:cd:e2:ce:55:28:c7:9c: b7:5f:22:2a:ae:c2:ac:5e:14:91:ab:9d:14:18:cc: 76:4e:00:c5:34:f2:a4:0c:a6:4b:07:59:52:9e:52: 10:83:c2:0e:95:eb:5a:e4:84:fc:eb:a7:5f:c8:d8: 1b:b6:ae:59:3e:52:2b:5f:2e:36:62:6f:36:85:69: 5e:9a:f6:2d:3c:3d:50:ce:73:95:34:28:ae:e9:e1: c1:a4:01:14:48:01:71:16:c8:80:39:f4:b5:e9:b9: ba:9e:19:87:54:1b:3b:11:1b:89:dc:3b:7a:68:26: 2d:f4:71:1e:84:23:1e:04:c2:db:1b:55:a6:5e:d7: 63:4e:ed:03:d5:6f:30:5f:e6:04:19:b3:11:46:a8: 45:42:bc:9b:80:b9:2b:72:81:13:c9:5a:c7:a8:54: b9:12:1c:bd:30:c3:0f:0c:a4:63:6f:01:18:37:68: 82:57:88:c4:57:84:4c:15:07:5d:40:3a:da:d1:22: 53:0e:14:3f:71:18:ef:f9:58:20:f1:17:35:6f:bd: 4a:c5:0e:fc:05:fc:8a:2f:e8:3a:9a:9b:a4:0a:99: 92:3f:14:16:15:02:a2:9d:ec:66:4d:50:2e:2d:10: b0:77:b1:d0:0f:39:c0:f6:03:ea:fa:7e:5c:6b:5d: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:17:9F:44:03:1D:D5:C2:1D:E7:7B:D3:5C:8D:57:FD:53:DA:90:44 X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/4D470362C55811EB981FA987C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.172.0/23 IPv6: 2407:59c0::/32 Signature Algorithm: sha256WithRSAEncryption bc:32:b2:88:e8:f6:50:73:b1:b8:8d:80:cd:c6:ae:5b:f9:c9: 53:34:4f:65:76:a2:9e:3d:04:4a:f7:a4:55:b7:8a:ac:02:96: 01:13:b8:ab:4b:48:a9:41:c0:95:c6:8c:be:98:4e:cf:5d:80: c6:ee:34:1b:98:57:ec:c5:45:80:d1:34:22:f2:8f:38:10:03: dd:5a:4f:27:22:b9:ab:10:16:0e:fd:10:7f:af:1d:3f:87:04: 33:60:74:74:d0:3c:4a:e4:94:ce:b1:31:bc:f4:33:a8:48:a7: f2:82:10:2c:a2:e5:95:3f:d8:1d:76:6c:f7:a4:fb:d6:ad:a3: 84:fa:34:3b:23:23:70:23:56:86:f3:0f:a2:e2:da:8d:51:50: dd:66:70:43:d8:47:f6:48:e4:31:49:be:31:04:37:8b:be:c9: 94:ed:1f:d0:af:c4:48:32:ac:a3:a0:09:3e:fa:9b:57:f3:33: 83:4e:75:e8:75:d0:ca:13:cb:11:c9:5f:c4:08:1e:f0:39:d2: cd:5c:f1:04:09:c7:92:69:0c:53:d1:ad:61:fe:67:59:6f:95: 4a:41:ff:79:0a:0f:61:cc:ba:64:62:7e:d7:22:9a:95:9a:2a: 32:15:af:89:ae:48:13:78:7c:96:01:8b:36:d5:03:40:72:43: 2f:c3:5c:79 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUwNjA0MjMwMzMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmQ3MS0wN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAihjv7QT0K83izlUox5y3XyIqrsKsXhSRq50UGMx2TgDFNPKkDKZLB1lSnlIQ g8IOleta5IT866dfyNgbtq5ZPlIrXy42Ym82hWlemvYtPD1QznOVNCiu6eHBpAEU SAFxFsiAOfS16bm6nhmHVBs7ERuJ3Dt6aCYt9HEehCMeBMLbG1WmXtdjTu0D1W8w X+YEGbMRRqhFQrybgLkrcoETyVrHqFS5Ehy9MMMPDKRjbwEYN2iCV4jEV4RMFQdd QDra0SJTDhQ/cRjv+Vgg8Rc1b71KxQ78BfyKL+g6mpukCpmSPxQWFQKinexmTVAu LRCwd7HQDznA9gPq+n5ca13cVQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGMXn0QD HdXCHed701yNV/1T2pBEMB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhGMzIvRTA2NDc1Q0VDNTU1MTFFQjlBRTU5RTg2QzRGOUFFMDIvNEQ0NzAzNjJD NTU4MTFFQjk4MUZBOTg3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6asMA0EAgACMAcDBQAkB1nAMA0GCSqGSIb3DQEBCwUAA4IBAQC8 MrKI6PZQc7G4jYDNxq5b+clTNE9ldqKePQRK96RVt4qsApYBE7irS0ipQcCVxoy+ mE7PXYDG7jQbmFfsxUWA0TQi8o84EAPdWk8nIrmrEBYO/RB/rx0/hwQzYHR00DxK 5JTOsTG89DOoSKfyghAsouWVP9gddmz3pPvWraOE+jQ7IyNwI1aG8w+i4tqNUVDd ZnBD2Ef2SOQxSb4xBDeLvsmU7R/Qr8RIMqyjoAk++ptX8zODTnXoddDKE8sRyV/E CB7wOdLNXPEECceSaQxT0a1h/mdZb5VKQf95Cg9hzLpkYn7XIpqVmioyFa+JrkgT eHyWAYs21QNAckMvw1x5 -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:18 2026 by rpki-client