$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/99C6F94CF52511E7948D5A0BC4F9AE02.roa File: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (raw, json) Hash identifier: KzN0lf2tMPA9CR+MbmlmHKhd1CioUaWks43azeizhtM= Subject key identifier: 5F:AA:22:C4:A3:AD:E7:70:58:75:A5:4B:18:C2:FF:95:D1:C5:6C:88 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 175F Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/99C6F94CF52511E7948D5A0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:31:48 +0000 ROA not before: Fri 04 Jul 2025 17:25:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132365 IP address blocks: 103.72.109.0/24 maxlen: 24 103.90.0.0/23 maxlen: 23 103.90.0.0/24 maxlen: 24 103.90.1.0/24 maxlen: 24 103.90.2.0/24 maxlen: 24 2401:3b40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5983 (0x175f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Jul 4 17:25:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a423a4-4e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:02:60:69:2f:82:ac:6c:4b:dc:8e:aa:0a:d9: 3f:85:a6:6e:ae:89:77:28:df:21:4b:6f:9f:1c:f0: 84:b4:97:58:0d:18:ef:53:55:af:93:da:77:b9:c9: 0d:11:41:1f:28:b5:87:60:93:a7:1c:14:2b:b9:02: 4c:1f:19:12:4e:ec:63:11:1a:79:1c:3b:dd:6d:93: 3a:09:f8:42:ca:b2:df:37:94:2c:6a:a5:21:5c:d2: 3b:b2:f4:92:38:79:44:0b:82:0c:31:41:47:be:47: a3:cc:5f:a3:f4:0a:00:90:14:6f:f2:76:56:a0:cb: bf:d1:13:da:5b:76:65:d1:71:08:92:d2:17:6b:36: 08:f4:a5:02:41:7a:59:d8:6b:1f:d7:1f:e1:13:75: 72:c8:c2:4f:8f:b3:e4:28:fe:b7:b3:68:ca:7b:8c: 7a:78:52:a2:d5:69:48:9c:52:f7:47:f0:ce:53:d1: 2b:27:cf:42:37:1d:fa:36:83:31:f4:28:95:d6:ea: b3:1c:72:f8:35:fb:cb:3f:e6:aa:a0:b8:19:3f:19: 38:c3:44:1c:96:88:59:36:d4:99:05:2d:a6:f5:5c: a3:d9:4b:6c:a1:f8:fc:dc:b1:0d:26:a4:77:94:9c: 35:c8:48:ca:80:4d:33:80:3e:e1:4f:47:2f:41:ba: 00:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:AA:22:C4:A3:AD:E7:70:58:75:A5:4B:18:C2:FF:95:D1:C5:6C:88 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/99C6F94CF52511E7948D5A0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.109.0/24 103.90.0.0-103.90.2.255 IPv6: 2401:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 3e:70:71:cd:ee:f1:b4:ed:8b:07:51:3d:5b:f4:2f:ef:64:4d: c3:55:6d:2c:b1:32:25:3b:20:29:63:c4:40:37:84:ac:90:5a: cc:49:98:0e:0d:82:8c:d4:25:d5:47:ba:c8:2c:e8:14:a8:c4: 4d:13:a4:bb:52:f7:51:a8:a8:e1:e4:b8:b9:40:fa:50:39:7f: ab:3a:71:95:09:43:6e:31:26:94:fb:b0:9d:e1:6d:13:58:76: 67:66:ce:d7:d1:14:9c:c8:2b:2f:12:69:42:23:5b:11:be:32: 88:c4:c6:1b:97:e1:6f:88:34:6b:24:d9:c6:e1:49:58:f3:f1: 89:c2:7c:23:0c:ac:52:3f:ea:a5:ae:88:9e:eb:20:5a:c3:4c: 07:ed:d3:45:04:f4:b2:34:9c:f2:08:c9:8c:a1:7f:f4:0b:0f: 6c:46:fb:2f:a2:6f:31:49:34:55:e0:de:29:05:03:d1:bf:08: 35:31:5c:e4:fb:8b:e5:c4:8d:a2:5e:62:9e:ee:6a:4b:96:0e: 92:57:26:c3:20:3b:cd:bb:ec:50:3b:12:17:92:5d:17:38:7e: 0f:f4:52:1e:98:44:3b:ad:1c:23:fb:c9:0d:01:59:81:7e:89: d8:42:6b:e4:95:c3:0e:f5:7e:d4:3e:b0:35:6d:32:7a:d1:4d: 8d:f7:af:1d -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICF18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwNzA0MTcyNTU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjNhNC00ZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAJgaS+CrGxL3I6qCtk/haZurol3KN8hS2+fHPCEtJdYDRjvU1Wvk9p3uckN EUEfKLWHYJOnHBQruQJMHxkSTuxjERp5HDvdbZM6CfhCyrLfN5QsaqUhXNI7svSS OHlEC4IMMUFHvkejzF+j9AoAkBRv8nZWoMu/0RPaW3Zl0XEIktIXazYI9KUCQXpZ 2Gsf1x/hE3VyyMJPj7PkKP63s2jKe4x6eFKi1WlInFL3R/DOU9ErJ89CNx36NoMx 9CiV1uqzHHL4NfvLP+aqoLgZPxk4w0QclohZNtSZBS2m9Vyj2Utsofj83LENJqR3 lJw1yEjKgE0zgD7hT0cvQboAuQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFF+qIsSj redwWHWlSxjC/5XRxWyIMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNBQTYvOUMzRDg3RTZGNTI0MTFFNzk2NDRCMDA5QzRGOUFFMDIvOTlDNkY5NENG NTI1MTFFNzk0OEQ1QTBCQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAZ BAIAATATAwQAZ0htMAsDAwFnWgMEAGdaAjANBAIAAjAHAwUAJAE7QDANBgkqhkiG 9w0BAQsFAAOCAQEAPnBxze7xtO2LB1E9W/Qv72RNw1VtLLEyJTsgKWPEQDeErJBa zEmYDg2CjNQl1Ue6yCzoFKjETROku1L3Uaio4eS4uUD6UDl/qzpxlQlDbjEmlPuw neFtE1h2Z2bO19EUnMgrLxJpQiNbEb4yiMTGG5fhb4g0ayTZxuFJWPPxicJ8Iwys Uj/qpa6InusgWsNMB+3TRQT0sjSc8gjJjKF/9AsPbEb7L6JvMUk0VeDeKQUD0b8I NTFc5PuL5cSNol5inu5qS5YOklcmwyA7zbvsUDsSF5JdFzh+D/RSHphEO60cI/vJ DQFZgX6J2EJr5JXDDvV+1D6wNW0yetFNjfevHQ== -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:10 2026 by rpki-client