$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa File: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (raw, json) Hash identifier: Z9wsNscGW8jTuOrPcKnc3KiOXLu3fKLaOWy4uh1nNqc= Subject key identifier: 1A:D2:8C:61:E6:D1:43:6A:67:AE:32:8C:FD:5F:7B:9E:2B:76:E4:8B Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 97 Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:08:58 +0000 ROA not before: Wed 03 Sep 2025 08:37:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141011 IP address blocks: 103.17.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: Sep 3 08:37:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3f41a-9c00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:a6:c8:52:9d:91:db:24:c7:a2:68:50:c5: 7c:c6:24:45:55:18:fb:eb:ac:9a:87:6e:17:66:95: ae:d9:8a:4f:82:53:00:29:29:7e:88:07:5d:47:1c: a9:8b:6f:1d:52:53:4a:73:ea:8f:d9:b3:5c:01:42: 11:f5:0f:20:03:e0:1d:6d:69:8d:15:60:d9:03:11: 2c:36:51:63:3d:37:56:46:16:78:92:34:ee:49:de: a9:82:89:61:ec:cf:d6:b2:7c:ba:2b:d9:f7:8c:f8: a3:0c:3e:ca:e3:01:18:7e:2d:4c:17:05:bf:12:42: 00:4e:b0:e1:f4:65:ae:31:4a:61:cd:87:0d:a8:66: 7d:b7:02:cf:38:76:04:1d:d9:12:bd:f7:14:1b:d9: 90:f8:96:13:f0:32:45:6a:c0:a7:89:ec:5e:a8:c1: 9e:16:00:93:05:2d:97:91:60:e7:65:80:a8:f3:af: 7b:2c:07:d0:0c:ff:c0:ca:db:13:84:07:ad:29:ea: 96:cb:8a:2a:36:fe:69:e6:0e:af:90:49:94:a2:59: 2d:e9:f3:c2:fc:a4:a2:0b:b6:7d:c5:54:ac:54:7c: 13:fb:54:9c:63:c0:99:f9:47:47:a9:a8:59:55:3c: 26:44:d2:9c:56:c1:c2:5b:f6:b6:d6:89:04:f9:f6: 16:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D2:8C:61:E6:D1:43:6A:67:AE:32:8C:FD:5F:7B:9E:2B:76:E4:8B X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/074A7A1436C511F0A4E5C52BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.19.0/24 Signature Algorithm: sha256WithRSAEncryption aa:a5:1e:77:28:55:d2:a1:03:14:71:3f:d8:79:36:27:24:97: c7:1a:9e:b9:df:c3:2e:de:9e:df:a1:d0:e5:0f:81:f1:36:7c: 9b:63:6a:ed:5a:94:b9:2f:e3:ae:4e:35:a1:a3:0b:81:99:a4: b1:b8:84:de:78:9a:21:f6:bc:03:53:79:46:5d:88:72:8a:50: a3:df:4c:0e:73:54:b6:99:f8:b2:89:98:ba:45:cf:98:e8:56: 1b:88:1c:0f:8a:35:53:8c:8d:aa:17:23:c9:0c:fc:a0:8b:38: b3:ee:3e:62:4d:78:78:5d:d6:c8:f1:b9:90:24:e7:b8:b2:8c: 31:20:99:77:8c:62:ea:33:37:98:4e:a8:86:53:62:50:2e:77: 6a:ab:b1:13:f3:17:71:f7:58:1e:ca:c4:34:c4:dd:81:bb:92: 66:e8:74:f8:83:fa:48:d4:81:c7:72:20:36:f8:d9:03:02:f8: c7:a0:2d:a9:75:fe:96:db:3d:4e:6c:ac:f5:75:32:f6:8f:f8: a9:85:00:fc:78:5d:f0:48:49:df:98:1c:cd:a1:37:e3:79:06: 2c:88:a1:9e:6c:bc:3b:44:29:d2:16:75:f2:10:14:95:fa:6b: 4d:ad:5d:01:42:12:b7:fb:a8:bf:86:f4:01:07:32:97:58:80: 0d:53:d1:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNzQxMTAvBgNVBAUTKEJGODg2MEIyQzAzNzdCQjVFRkVEQkUzQUQ0MEYxQ0Yx ODlGMkFDQjIwHhcNMjUwOTAzMDgzNzQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQxYS05YzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsimyFKdkdskx6JoUMV8xiRFVRj766yah24XZpWu2YpPglMAKSl+iAddRxyp i28dUlNKc+qP2bNcAUIR9Q8gA+AdbWmNFWDZAxEsNlFjPTdWRhZ4kjTuSd6pgolh 7M/Wsny6K9n3jPijDD7K4wEYfi1MFwW/EkIATrDh9GWuMUphzYcNqGZ9twLPOHYE HdkSvfcUG9mQ+JYT8DJFasCniexeqMGeFgCTBS2XkWDnZYCo8697LAfQDP/AytsT hAetKeqWy4oqNv5p5g6vkEmUolkt6fPC/KSiC7Z9xVSsVHwT+1ScY8CZ+UdHqahZ VTwmRNKcVsHCW/a21okE+fYWLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBrSjGHm 0UNqZ64yjP1fe54rduSLMB8GA1UdIwQYMBaAFL+IYLLAN3u17+2+OtQPHPGJ8qyy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3NC9DRTAwNDI1QTM2 QkMxMUYwODFENTVGMTdDNEY5QUUwMi92NGhnc3NBM2U3WHY3YjQ2MUE4YzhZbnly TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCNzQvQ0UwMDQyNUEzNkJDMTFGMDgxRDU1RjE3QzRGOUFFMDIvMDc0QTdBMTQz NkM1MTFGMEE0RTVDNTJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxETMA0GCSqGSIb3DQEBCwUAA4IBAQCqpR53KFXSoQMUcT/YeTYn JJfHGp6538Mu3p7fodDlD4HxNnybY2rtWpS5L+OuTjWhowuBmaSxuITeeJoh9rwD U3lGXYhyilCj30wOc1S2mfiyiZi6Rc+Y6FYbiBwPijVTjI2qFyPJDPygiziz7j5i TXh4XdbI8bmQJOe4sowxIJl3jGLqMzeYTqiGU2JQLndqq7ET8xdx91geysQ0xN2B u5Jm6HT4g/pI1IHHciA2+NkDAvjHoC2pdf6W2z1ObKz1dTL2j/iphQD8eF3wSEnf mBzNoTfjeQYsiKGebLw7RCnSFnXyEBSV+mtNrV0BQhK3+6i/hvQBBzKXWIANU9FE -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:16 2026 by rpki-client