$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa File: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (raw, json) Hash identifier: ytLxJNoeOErOaEt2ynhNFJNPdaZ3HaWQ5Jud6jrSAVQ= Subject key identifier: CA:66:CD:10:04:5E:D2:71:72:60:B3:D7:35:5D:41:2B:2B:8E:CE:2F Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 08B8 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:42 +0000 ROA not before: Wed 22 Oct 2025 21:39:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45177 IP address blocks: 103.123.164.0/22 maxlen: 22 103.123.164.0/24 maxlen: 24 103.123.165.0/24 maxlen: 24 103.123.166.0/24 maxlen: 24 103.123.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Oct 22 21:39:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a447b6-749e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:35:96:c1:93:85:c7:3d:27:3c:81:3b:94:e9: 7a:21:47:55:39:5a:26:9c:c2:41:dc:a6:47:ae:83: ac:e1:28:b5:df:36:5a:90:58:ee:86:22:93:1d:89: 4e:ca:5b:80:1a:42:9b:c1:ab:90:d8:38:3a:dc:57: 4f:8f:72:92:65:84:ea:34:54:bf:7d:cd:9a:0a:b2: 32:0d:08:11:b3:ee:00:20:af:0f:67:0c:05:20:43: 08:a6:9d:5c:cd:40:4d:7b:6c:d9:77:55:f2:f6:0b: 0f:59:fa:86:97:14:d3:87:ba:5b:bc:20:bb:16:7b: 21:86:44:67:3e:70:4c:69:10:8e:10:f4:a2:23:f6: 1b:02:9a:32:d1:83:f1:2c:86:3d:05:40:3a:0e:4f: 50:0e:71:35:d3:d8:6e:f8:93:fd:48:5f:de:29:4e: ee:55:2b:1d:38:a3:77:16:b3:89:c0:97:52:bc:aa: 4b:23:03:d3:87:2e:37:b9:93:32:bf:d0:b3:da:f3: fe:8e:7c:6a:02:44:02:38:9d:a0:88:2f:15:39:53: 40:b2:04:43:16:83:b6:8a:9f:ea:31:a2:74:b5:cf: 7e:56:09:af:1e:68:a9:68:03:05:fe:03:0f:c2:c6: 5a:a8:a8:90:0e:00:b1:51:eb:af:9b:76:2c:05:c4: 0f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:66:CD:10:04:5E:D2:71:72:60:B3:D7:35:5D:41:2B:2B:8E:CE:2F X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.123.164.0/22 Signature Algorithm: sha256WithRSAEncryption 56:ef:60:d9:ea:52:f1:60:55:e4:d4:53:b4:e9:aa:bf:bc:b4: 36:90:ca:86:b4:f5:b7:3b:a3:49:46:0e:24:0c:65:55:dc:46: 27:f5:46:53:5d:d3:92:63:1d:74:3d:31:6e:ef:fa:1f:0a:f5: 81:9f:82:e3:b6:fc:3e:1f:c9:50:3b:f9:a7:74:1d:4a:18:a4: 00:9b:ac:6b:78:49:56:90:b2:d6:fa:a4:e5:67:91:e3:31:b4: 74:d8:52:81:c5:e7:72:40:fd:6b:62:c6:50:d8:a7:dc:dd:fc: 86:88:39:b1:c4:e9:47:7b:78:4f:97:d5:a1:53:eb:6d:f8:dd: d2:fb:1b:52:ca:41:35:5c:60:5d:6f:5f:c3:5a:e9:b3:d3:30: de:d0:0a:40:e3:fb:cd:53:e1:cf:95:c8:5e:fc:9a:2d:35:24: 60:68:4d:9e:71:dc:c9:93:e6:79:0c:32:1f:57:a7:7f:de:96: 34:00:99:41:14:3d:58:62:ca:19:db:43:5f:50:b1:82:76:51: 75:67:5a:db:4e:8b:3d:a9:7a:81:81:58:21:ca:6d:d5:7b:40: f4:09:b1:0d:fb:bb:7c:1f:e1:6f:31:1b:f3:2e:eb:ca:17:96: ae:f9:bf:2c:bd:ba:c8:80:ba:01:4c:3b:d3:a2:9a:09:f1:f3: 04:0d:94:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMDIyMjEzOTM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDdiNi03NDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTWWwZOFxz0nPIE7lOl6IUdVOVomnMJB3KZHroOs4Si13zZakFjuhiKTHYlO yluAGkKbwauQ2Dg63FdPj3KSZYTqNFS/fc2aCrIyDQgRs+4AIK8PZwwFIEMIpp1c zUBNe2zZd1Xy9gsPWfqGlxTTh7pbvCC7FnshhkRnPnBMaRCOEPSiI/YbApoy0YPx LIY9BUA6Dk9QDnE109hu+JP9SF/eKU7uVSsdOKN3FrOJwJdSvKpLIwPThy43uZMy v9Cz2vP+jnxqAkQCOJ2giC8VOVNAsgRDFoO2ip/qMaJ0tc9+VgmvHmipaAMF/gMP wsZaqKiQDgCxUeuvm3YsBcQPJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMpmzRAE XtJxcmCz1zVdQSsrjs4vMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRGRTcvNUEyRDg5RUFEQjdEMTFFQUJDRjNFQzNFQzRGOUFFMDIvNEIzQUM3REM1 RkM4MTFFRDg2OUE2OTU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3ukMA0GCSqGSIb3DQEBCwUAA4IBAQBW72DZ6lLxYFXk1FO06aq/ vLQ2kMqGtPW3O6NJRg4kDGVV3EYn9UZTXdOSYx10PTFu7/ofCvWBn4Ljtvw+H8lQ O/mndB1KGKQAm6xreElWkLLW+qTlZ5HjMbR02FKBxedyQP1rYsZQ2Kfc3fyGiDmx xOlHe3hPl9WhU+tt+N3S+xtSykE1XGBdb1/DWumz0zDe0ApA4/vNU+HPlche/Jot NSRgaE2ecdzJk+Z5DDIfV6d/3pY0AJlBFD1YYsoZ20NfULGCdlF1Z1rbTos9qXqB gVghym3Ve0D0CbEN+7t8H+FvMRvzLuvKF5au+b8svbrIgLoBTDvTopoJ8fMEDZS9 -----END CERTIFICATE-----Generated at Mon Mar 2 07:37:30 2026 by rpki-client