$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa File: FD9E07EAAB1111EF89574855C4F9AE02.roa (raw, json) Hash identifier: 3bEt+BEL0/++S5Hn6XyvCpw2hPaq5SjA7QhpJ7kxSWM= Subject key identifier: BE:07:E6:8B:44:03:5F:06:A8:DD:34:9A:5D:A3:0C:88:89:EE:F8:72 Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0D11 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:40:26 +0000 ROA not before: Tue 24 Feb 2026 18:15:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138501 IP address blocks: 103.127.56.0/22 maxlen: 22 103.127.56.0/24 maxlen: 24 103.127.57.0/24 maxlen: 24 103.127.58.0/24 maxlen: 24 103.127.59.0/24 maxlen: 24 2405:9a40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Feb 24 18:15:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44fda-e59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:70:4f:26:9b:78:0c:99:0e:8d:d2:64:da:c3: a0:83:f5:a5:60:20:b3:ec:c8:8e:f1:a7:dc:0b:c7: 05:f8:7d:64:3f:49:dc:4b:75:db:bb:f3:0c:c3:da: 94:42:23:2a:14:81:b8:f4:7d:98:9d:58:ed:7c:c9: 9c:a5:3f:db:6e:4a:8c:cd:e4:b9:ec:87:c4:88:b4: ca:5f:99:01:f2:79:4a:db:9a:2d:95:e9:ec:1d:b6: cd:6b:67:2a:cb:ff:ef:4b:6e:a0:89:da:1c:d0:6f: 83:c0:8f:52:6f:e3:9a:20:a2:cc:a0:34:b8:39:a8: 0f:c5:14:9e:1f:02:08:ee:2f:20:cc:9f:f0:ae:2a: 13:e8:7b:74:87:79:ab:6f:69:f4:97:99:65:a4:3f: 83:00:4b:8f:e7:cf:a4:a1:53:ee:bd:ef:8c:2a:34: 35:42:c8:e1:5f:f8:76:79:df:f3:ad:da:fd:77:1b: 23:b3:20:27:99:29:6c:95:b5:c5:55:93:71:a0:2a: 2d:75:90:7d:b4:71:53:44:f1:ed:5c:3d:63:86:e2: 2a:a8:6f:1c:49:7e:21:58:71:6e:16:53:42:3b:4e: f3:1f:08:b0:d3:9e:42:aa:30:c2:1e:c0:3e:87:3a: fa:94:8f:ee:a6:8f:39:4c:0e:14:56:27:53:d0:5f: f5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:07:E6:8B:44:03:5F:06:A8:DD:34:9A:5D:A3:0C:88:89:EE:F8:72 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/FD9E07EAAB1111EF89574855C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.127.56.0/22 IPv6: 2405:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 3e:e5:4a:5a:0d:e5:78:d3:ea:ea:31:08:0a:1a:c2:15:fb:0b: b5:f5:02:33:80:e3:61:52:bc:95:fc:cb:b9:da:20:8d:7f:72: f9:5a:1c:62:9e:2e:4f:a6:b2:cf:3a:57:ca:bd:5f:77:2e:4d: 51:1c:19:ed:f6:c1:1d:af:04:5b:fb:d2:ea:68:59:84:e3:a6: 37:c7:72:73:19:f9:23:40:8a:34:a1:6c:1b:04:54:d4:f5:19: db:d7:f1:c3:82:d9:24:f9:fb:f6:fa:39:88:18:c5:38:41:59: cd:e9:3f:3f:a0:45:11:21:c6:53:43:f2:54:c4:82:3b:68:e7: 1d:79:3c:29:c6:30:d3:db:68:d4:ab:71:c7:1c:4a:d8:e8:ce: 39:94:7a:3a:0f:5c:c3:5c:a8:95:47:8f:08:79:87:db:27:9b: 86:00:82:6a:b1:81:35:e8:0e:38:5f:e0:ed:9e:45:95:a3:d7: 6d:6e:fb:d6:2d:78:d8:6a:3b:77:5e:39:41:02:20:32:58:a5: b1:fe:a1:da:59:2f:02:cb:57:e1:c3:a2:fd:52:0e:a4:6f:67: a5:49:17:dd:77:37:c0:b0:cc:74:c7:aa:44:a4:ba:d5:51:a1: 01:8a:a6:4e:ce:a1:05:4c:5e:0b:ea:48:2d:5a:e8:33:08:e3: 04:92:e9:df -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjYwMjI0MTgxNTQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGZkYS1lNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjXBPJpt4DJkOjdJk2sOgg/WlYCCz7MiO8afcC8cF+H1kP0ncS3Xbu/MMw9qU QiMqFIG49H2YnVjtfMmcpT/bbkqMzeS57IfEiLTKX5kB8nlK25otlensHbbNa2cq y//vS26gidoc0G+DwI9Sb+OaIKLMoDS4OagPxRSeHwII7i8gzJ/wrioT6Ht0h3mr b2n0l5llpD+DAEuP58+koVPuve+MKjQ1QsjhX/h2ed/zrdr9dxsjsyAnmSlslbXF VZNxoCotdZB9tHFTRPHtXD1jhuIqqG8cSX4hWHFuFlNCO07zHwiw055CqjDCHsA+ hzr6lI/upo85TA4UVidT0F/1FwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFL4H5otE A18GqN00ml2jDIiJ7vhyMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVDNjQvNDI1QjQyM0NGRkEzMTFFOTg3MzVBNjg1QzRGOUFFMDIvRkQ5RTA3RUFB QjExMTFFRjg5NTc0ODU1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ384MA0EAgACMAcDBQAkBZpAMA0GCSqGSIb3DQEBCwUAA4IBAQA+ 5UpaDeV40+rqMQgKGsIV+wu19QIzgONhUryV/Mu52iCNf3L5Whxini5PprLPOlfK vV93Lk1RHBnt9sEdrwRb+9LqaFmE46Y3x3JzGfkjQIo0oWwbBFTU9Rnb1/HDgtkk +fv2+jmIGMU4QVnN6T8/oEURIcZTQ/JUxII7aOcdeTwpxjDT22jUq3HHHErY6M45 lHo6D1zDXKiVR48IeYfbJ5uGAIJqsYE16A44X+DtnkWVo9dtbvvWLXjYajt3XjlB AiAyWKWx/qHaWS8Cy1fhw6L9Ug6kb2elSRfddzfAsMx0x6pEpLrVUaEBiqZOzqEF TF4L6kgtWugzCOMEkunf -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:42 2026 by rpki-client