$ rpki-client -vvf rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa File: D97D5F6A3FEB11E9882E830FC4F9AE02.roa (raw, json) Hash identifier: 4t8qb0GabrWIWJUSjOS1rf6wJ97T7O+YGd0HdnqU6mA= Subject key identifier: EE:6A:B2:07:53:EF:1B:55:63:F8:D9:ED:53:C5:83:04:AC:64:0F:7F Certificate issuer: /CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Certificate serial: 10D7 Authority key identifier: 0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:35:17 +0000 ROA not before: Thu 10 Apr 2025 17:56:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18225 IP address blocks: 103.161.218.0/24 maxlen: 24 103.161.219.0/24 maxlen: 24 202.154.160.0/21 maxlen: 21 202.154.168.0/24 maxlen: 24 202.154.169.0/24 maxlen: 24 202.154.170.0/24 maxlen: 24 202.154.171.0/24 maxlen: 24 202.154.172.0/24 maxlen: 24 202.154.173.0/24 maxlen: 24 202.154.174.0/24 maxlen: 24 202.154.175.0/24 maxlen: 24 2406:de00:100::/40 maxlen: 40 2406:de00:200::/40 maxlen: 40 2406:de00:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4311 (0x10d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162DD6, serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Validity Not Before: Apr 10 17:56:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42475-7b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:27:4a:45:9e:19:72:c5:e3:52:d9:f8:cb:8f: 90:52:e1:8a:c8:39:5d:e9:8a:55:2a:e2:90:4c:64: 5d:70:90:18:fb:80:04:66:66:41:e2:d6:37:ed:ed: 37:94:61:1f:e6:8d:7a:64:fc:40:68:b1:10:a9:e3: ea:c1:5e:9c:7e:cc:fd:ab:67:86:85:c8:71:9a:93: 9d:d9:c4:1f:d8:a5:4b:fc:92:f1:12:8e:6d:f8:43: ba:4f:72:3b:99:c4:3d:a2:05:80:c6:c9:00:ca:94: 60:fc:5b:a4:b3:67:4c:4e:ff:43:44:fd:4a:a9:d1: b5:5a:b6:63:f2:dc:a6:1f:c5:21:14:69:1a:25:08: 58:35:5f:bc:ad:3e:1a:e9:c0:7a:ab:77:f5:f0:64: 93:96:5c:a9:69:d8:76:3d:ca:d0:ca:8a:87:44:7e: cc:f6:29:be:70:e4:2e:8a:8c:79:d7:ee:15:92:b5: 85:d4:0f:85:2b:17:63:cf:08:89:58:e8:15:29:5a: 40:79:40:c4:75:a3:81:f3:e7:2f:92:e9:4f:26:69: 95:a1:5d:82:47:f3:e7:f7:ac:36:3d:d4:8b:c0:72: 4c:a3:d5:9b:94:6c:c6:19:e9:85:85:9e:4f:54:3e: 16:49:63:6b:d2:50:de:09:b5:d0:44:60:15:aa:46: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6A:B2:07:53:EF:1B:55:63:F8:D9:ED:53:C5:83:04:AC:64:0F:7F X509v3 Authority Key Identifier: keyid:0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.161.218.0/23 202.154.160.0/20 IPv6: 2406:de00:100::-2406:de00:2ff:ffff:ffff:ffff:ffff:ffff 2406:de00:400::/40 Signature Algorithm: sha256WithRSAEncryption bf:da:18:ca:69:ca:d4:7b:95:c4:76:1d:60:9d:09:e2:c4:f8: 3c:23:07:28:e0:df:21:eb:5b:ca:21:b9:9f:0f:4d:44:5e:62: f7:4c:ec:04:3a:e1:88:bd:78:ad:c7:43:38:21:9d:da:37:a1: c0:99:ab:ac:6f:41:de:d2:5d:ee:69:ff:64:b7:bb:a9:37:f4: dd:66:8f:3f:8f:a4:c4:4e:45:12:98:3f:0d:84:9e:76:33:cb: 8e:0a:af:45:ae:62:09:fa:91:e8:c4:77:3a:c9:9d:aa:7b:2b: dd:0e:51:56:1c:03:e6:e0:c5:44:39:63:08:04:89:67:8b:92: 20:da:13:53:a0:5c:8f:a7:bf:51:bb:48:03:01:58:2f:94:75: 9f:10:e0:92:09:bf:42:e3:01:e3:b6:fd:62:6b:d3:6e:6a:88: d0:e1:2d:9e:1f:a4:a6:e6:f5:2e:68:a6:7f:31:15:c4:f3:90: 94:56:a9:c9:5d:ab:90:0c:39:88:81:34:1c:5f:43:29:b5:29: c6:27:a5:6a:b6:ac:45:8d:e0:8c:36:7a:26:3b:ff:36:1c:da: cf:a0:4a:ab:3b:ae:75:88:d6:7f:26:d0:89:bf:d8:44:66:1b: 44:8e:69:4f:7c:3f:0f:0f:e6:13:2f:f9:7f:da:31:84:3a:04: c0:08:43:70 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICENcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJERDYxMTAvBgNVBAUTKDBFMjg3MDYzMUZBMEVGRUFFOTQ1MzFEQjBFMjYwNDVD QTNCQzgxOUIwHhcNMjUwNDEwMTc1NjA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQ3NS03YjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSdKRZ4ZcsXjUtn4y4+QUuGKyDld6YpVKuKQTGRdcJAY+4AEZmZB4tY37e03 lGEf5o16ZPxAaLEQqePqwV6cfsz9q2eGhchxmpOd2cQf2KVL/JLxEo5t+EO6T3I7 mcQ9ogWAxskAypRg/Fuks2dMTv9DRP1KqdG1WrZj8tymH8UhFGkaJQhYNV+8rT4a 6cB6q3f18GSTllypadh2PcrQyoqHRH7M9im+cOQuiox51+4VkrWF1A+FKxdjzwiJ WOgVKVpAeUDEdaOB8+cvkulPJmmVoV2CR/Pn96w2PdSLwHJMo9WblGzGGemFhZ5P VD4WSWNr0lDeCbXQRGAVqkafrQIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFO5qsgdT 7xtVY/jZ7VPFgwSsZA9/MB8GA1UdIwQYMBaAFA4ocGMfoO/q6UUx2w4mBFyjvIGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkRENi85Q0Q3Q0IwQTNG RUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzctcnBSVEhiRGlZRVhLTzhn WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpaHdZeC1nNy1ycFJUSGJEaVlFWEtPOGdacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjJERDYvOUNEN0NCMEEzRkVBMTFFOTkxODM5RDBEQzRGOUFFMDIvRDk3RDVGNkEz RkVCMTFFOTg4MkU4MzBGQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjAS BAIAATAMAwQBZ6HaAwQEypqgMCAEAgACMBowEAMGACQG3gABAwYAJAbeAAIDBgAk Bt4ABDANBgkqhkiG9w0BAQsFAAOCAQEAv9oYymnK1HuVxHYdYJ0J4sT4PCMHKODf IetbyiG5nw9NRF5i90zsBDrhiL14rcdDOCGd2jehwJmrrG9B3tJd7mn/ZLe7qTf0 3WaPP4+kxE5FEpg/DYSedjPLjgqvRa5iCfqR6MR3Osmdqnsr3Q5RVhwD5uDFRDlj CASJZ4uSINoTU6Bcj6e/UbtIAwFYL5R1nxDgkgm/QuMB47b9YmvTbmqI0OEtnh+k pub1LmimfzEVxPOQlFapyV2rkAw5iIE0HF9DKbUpxielarasRY3gjDZ6Jjv/Nhza z6BKqzuudYjWfybQib/YRGYbRI5pT3w/Dw/mEy/5f9oxhDoEwAhDcA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:31 2026 by rpki-client