$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/6DCC06C231BC11EA9AACCA4BC4F9AE02.roa File: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (raw, json) Hash identifier: NDA9/ZIdOnZog2sK2a7R7CTd4jfshQqjGD+nO4awG3w= Subject key identifier: 76:F7:8A:30:DD:5B:08:02:20:DD:4C:65:0B:80:43:64:D0:F7:0F:4E Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0C07 Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/6DCC06C231BC11EA9AACCA4BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:44:04 +0000 ROA not before: Fri 30 Jan 2026 19:16:19 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 56028 IP address blocks: 103.19.4.0/22 maxlen: 22 103.19.4.0/24 maxlen: 24 103.19.5.0/24 maxlen: 24 103.19.6.0/24 maxlen: 24 103.19.7.0/24 maxlen: 24 114.31.212.0/22 maxlen: 22 114.31.212.0/24 maxlen: 24 114.31.213.0/24 maxlen: 24 114.31.214.0/24 maxlen: 24 114.31.215.0/24 maxlen: 24 119.160.224.0/21 maxlen: 24 163.47.232.0/22 maxlen: 22 163.47.232.0/24 maxlen: 24 163.47.233.0/24 maxlen: 24 163.47.234.0/24 maxlen: 24 163.47.235.0/24 maxlen: 24 2406:1a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Jan 30 19:16:19 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a450b4-873f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:98:e3:43:6d:a1:5f:c7:38:3e:f1:45:10:e9: 20:99:1e:bd:a3:24:fc:59:f0:25:3a:d5:1e:1d:6d: 07:d5:40:c7:dd:65:40:48:3c:64:f4:22:b4:f4:ca: 3a:ef:19:72:6d:aa:90:88:c6:b4:12:60:89:2c:13: bc:0b:aa:d8:87:f8:6f:4d:d8:b6:f0:be:24:c2:13: 9f:fa:7f:92:4e:54:32:ce:00:a1:a8:c1:0d:2b:96: 7d:05:ed:d3:b8:e0:c1:4c:25:0c:fe:5c:02:23:44: fe:6f:c9:af:03:8d:0a:da:24:37:6b:63:11:df:5e: 82:d9:4a:36:76:db:8d:83:81:68:13:f0:ef:7d:6e: 7b:30:6b:6f:ac:07:55:83:db:2d:a2:df:d5:61:c4: 1c:e0:8a:c4:50:d2:3a:82:45:b8:9d:15:bb:8b:58: 4a:5a:42:a4:ea:8e:e9:a6:22:96:d4:0f:f6:b5:f2: 78:d8:36:ae:43:e4:07:4f:40:90:86:2b:0b:83:2b: 04:92:cf:18:36:dd:4a:85:4c:bf:07:d9:36:e4:13: 78:a7:d8:30:f5:f3:89:9d:17:e6:31:f3:95:20:5b: 55:bf:19:84:01:ab:87:e0:5f:f1:de:27:37:d0:4a: 14:89:3a:0f:4f:69:0c:34:83:86:e3:a3:5c:14:27: f9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F7:8A:30:DD:5B:08:02:20:DD:4C:65:0B:80:43:64:D0:F7:0F:4E X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/6DCC06C231BC11EA9AACCA4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.19.4.0/22 114.31.212.0/22 119.160.224.0/21 163.47.232.0/22 IPv6: 2406:1a00::/32 Signature Algorithm: sha256WithRSAEncryption 63:0e:e4:68:54:72:56:6e:37:83:67:97:fc:35:48:0c:9f:c5: 53:cb:59:1f:f8:f3:e4:b5:e5:ed:63:12:d2:46:d9:a8:e3:82: a7:d3:b5:56:98:34:cb:c1:16:f4:b5:43:76:d6:22:1f:88:85: e5:25:9a:4c:e4:b7:fc:9d:9d:20:10:30:e4:fc:cc:c1:c0:f8: 67:8b:de:37:84:b6:36:76:e0:21:36:ad:31:d0:77:cf:b3:b2: 6d:f2:71:a0:1a:4e:a9:27:0b:bc:96:fe:82:d1:b1:a1:5b:a1: 03:9c:12:34:26:92:51:53:ae:9b:fa:a3:45:f9:4c:a6:91:44: e6:f2:c0:96:0d:d0:a7:f3:a2:da:bf:2c:73:5e:53:78:6a:af: 02:9d:27:e0:63:0f:5a:27:2d:c0:e0:94:84:2f:28:92:29:c9: 0c:86:1f:eb:6e:37:9d:b4:0b:21:b4:9d:5c:0a:fc:7d:ca:ea: ba:1b:81:49:92:37:f8:d3:8b:ab:bd:fa:65:4c:e4:22:95:f6: 93:67:e6:ed:a5:45:37:e3:b0:20:3f:ba:c3:21:e6:1b:4c:e0: 3b:de:82:1d:7e:69:c9:cd:18:7e:cf:5e:b4:91:16:d3:ef:68: 82:1f:b4:be:e1:ef:34:95:3a:42:ab:ea:31:68:8d:59:f8:ca: 31:b9:66:57 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjYwMTMwMTkxNjE5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTBiNC04NzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJjjQ22hX8c4PvFFEOkgmR69oyT8WfAlOtUeHW0H1UDH3WVASDxk9CK09Mo6 7xlybaqQiMa0EmCJLBO8C6rYh/hvTdi28L4kwhOf+n+STlQyzgChqMENK5Z9Be3T uODBTCUM/lwCI0T+b8mvA40K2iQ3a2MR316C2Uo2dtuNg4FoE/DvfW57MGtvrAdV g9stot/VYcQc4IrEUNI6gkW4nRW7i1hKWkKk6o7ppiKW1A/2tfJ42DauQ+QHT0CQ hisLgysEks8YNt1KhUy/B9k25BN4p9gw9fOJnRfmMfOVIFtVvxmEAauH4F/x3ic3 0EoUiToPT2kMNIOG46NcFCf5ewIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFHb3ijDd WwgCIN1MZQuAQ2TQ9w9OMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA3MDEvNTQwMEM0MTgzMDMwMTFFQUE3MkYzNjdBQzRGOUFFMDIvNkRDQzA2QzIz MUJDMTFFQTlBQUNDQTRCQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQCZxMEAwQCch/UAwQDd6DgAwQCoy/oMA0EAgACMAcDBQAkBhoAMA0G CSqGSIb3DQEBCwUAA4IBAQBjDuRoVHJWbjeDZ5f8NUgMn8VTy1kf+PPkteXtYxLS Rtmo44Kn07VWmDTLwRb0tUN21iIfiIXlJZpM5Lf8nZ0gEDDk/MzBwPhni943hLY2 duAhNq0x0HfPs7Jt8nGgGk6pJwu8lv6C0bGhW6EDnBI0JpJRU66b+qNF+UymkUTm 8sCWDdCn86LavyxzXlN4aq8CnSfgYw9aJy3A4JSELyiSKckMhh/rbjedtAshtJ1c Cvx9yuq6G4FJkjf404urvfplTOQilfaTZ+btpUU347AgP7rDIeYbTOA73oIdfmnJ zRh+z160kRbT72iCH7S+4e80lTpCq+oxaI1Z+MoxuWZX -----END CERTIFICATE-----Generated at Mon Mar 2 04:42:29 2026 by rpki-client