$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa File: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (raw, json) Hash identifier: Arkrsyo5+ae+fzAV/8rJkRmaTl2oT1Ort1Y2T29kOdo= Subject key identifier: DA:91:BA:7A:A0:E1:21:B0:6A:5F:8F:80:4E:9F:E8:32:E0:A4:CF:9E Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E91 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:38:39 +0000 ROA not before: Tue 16 Sep 2025 17:57:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24550 IP address blocks: 103.94.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Sep 16 17:57:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a44f6f-56a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8e:7a:f5:c4:87:4a:c9:ef:44:52:ec:38:a4: 70:d8:de:53:59:1f:fe:83:44:de:c0:61:55:c6:73: 9f:b6:68:7e:1e:9a:69:4d:ec:7d:0e:74:a0:51:27: 7c:de:f5:a0:14:31:41:c0:ea:38:ce:f6:18:9d:ba: 8f:00:cc:e9:32:51:2a:ca:78:0e:3e:8e:0e:e2:88: 79:bc:46:27:52:ba:7c:9d:e1:a5:fa:27:da:e9:e2: a2:6b:04:11:ba:c9:9c:92:0c:1a:7a:04:8c:03:d6: 63:2f:8b:5b:ce:76:05:1c:cf:87:4f:1c:58:e3:50: c1:12:83:9e:c9:07:ec:79:13:89:a8:4e:45:3d:5a: 55:3a:3f:60:b8:e6:27:04:3e:d1:68:84:4f:67:90: f8:b6:a6:35:1f:12:30:a2:68:ab:53:93:9f:db:79: da:71:3c:f4:f0:88:98:3a:76:51:20:b0:c4:93:fd: 83:be:73:94:ae:c9:52:b9:0b:89:75:62:7d:2e:a2: 32:77:72:91:b6:e8:6b:c9:3f:ad:e1:00:c2:14:bc: c6:00:20:4c:0c:8e:99:71:a5:74:27:4c:6e:40:28: 7b:30:3b:4e:46:c0:a1:af:9c:d5:fb:80:ec:6a:40: 73:a5:b8:62:fd:bd:80:ee:e3:f8:e5:40:82:bd:fe: dc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:91:BA:7A:A0:E1:21:B0:6A:5F:8F:80:4E:9F:E8:32:E0:A4:CF:9E X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.94.252.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:f8:9b:80:6c:05:69:33:cb:f0:9f:eb:c3:71:2c:eb:d1:30: 94:15:53:33:51:54:92:ea:5f:50:b9:0b:9c:e3:2c:33:cb:3a: ea:fd:30:89:52:32:b6:63:14:83:93:2a:81:47:76:ea:20:8e: fe:3c:6e:86:b4:95:a1:de:75:31:b5:b9:72:74:b3:8a:fd:78: f0:70:27:c5:13:f4:12:d8:15:80:3f:d6:94:ba:62:cd:ec:71: 38:c5:1b:72:f2:4b:76:d9:65:b4:94:e8:ad:33:d6:9d:9c:ec: 88:a5:fb:65:27:b3:3c:fa:52:5d:0c:35:fe:47:62:a6:40:21: 17:bf:4f:06:40:92:bb:a3:d3:8a:aa:89:5a:2b:e1:17:f1:26: c3:07:ad:43:9c:37:6e:e8:79:ee:a9:f6:37:c3:22:91:ec:95: 9a:ae:04:59:bb:79:2b:e6:98:b4:ce:46:9a:60:48:fb:da:4a: c3:db:91:4b:ec:1a:08:19:4b:24:77:cd:ee:be:23:6d:a5:d2: ca:63:b7:8e:7c:70:33:60:c9:8d:22:0a:ce:16:f3:9f:fc:0f: 45:2d:22:28:d6:ea:6d:44:c9:61:e7:a9:f9:5d:2e:1a:3d:58: 39:dc:b0:e1:9d:84:2f:d0:c8:30:34:44:80:d4:2e:09:fe:c9: a2:df:c8:b1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjUwOTE2MTc1NzI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGY2Zi01NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsI569cSHSsnvRFLsOKRw2N5TWR/+g0TewGFVxnOftmh+HpppTex9DnSgUSd8 3vWgFDFBwOo4zvYYnbqPAMzpMlEqyngOPo4O4oh5vEYnUrp8neGl+ifa6eKiawQR usmckgwaegSMA9ZjL4tbznYFHM+HTxxY41DBEoOeyQfseROJqE5FPVpVOj9guOYn BD7RaIRPZ5D4tqY1HxIwomirU5Of23nacTz08IiYOnZRILDEk/2DvnOUrslSuQuJ dWJ9LqIyd3KRtuhryT+t4QDCFLzGACBMDI6ZcaV0J0xuQCh7MDtORsChr5zV+4Ds akBzpbhi/b2A7uP45UCCvf7cFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNqRunqg 4SGwal+PgE6f6DLgpM+eMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyOTcvNDMwMUZEQkVBRjZFMTFFOUE5MjU4MDY3QzRGOUFFMDIvNDU3QTAwQThB RjdBMTFFOUFGRjEwNzgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ178MA0GCSqGSIb3DQEBCwUAA4IBAQAq+JuAbAVpM8vwn+vDcSzr 0TCUFVMzUVSS6l9QuQuc4ywzyzrq/TCJUjK2YxSDkyqBR3bqII7+PG6GtJWh3nUx tblydLOK/XjwcCfFE/QS2BWAP9aUumLN7HE4xRty8kt22WW0lOitM9adnOyIpftl J7M8+lJdDDX+R2KmQCEXv08GQJK7o9OKqolaK+EX8SbDB61DnDdu6HnuqfY3wyKR 7JWargRZu3kr5pi0zkaaYEj72krD25FL7BoIGUskd83uviNtpdLKY7eOfHAzYMmN IgrOFvOf/A9FLSIo1uptRMlh56n5XS4aPVg53LDhnYQv0MgwNESA1C4J/smi38ix -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:14 2026 by rpki-client