$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/D5775FF4E54F11F0875E48B9366F56BC.roa File: D5775FF4E54F11F0875E48B9366F56BC.roa (raw, json) Hash identifier: dBaY0JbbVzl8W6CAtYQ8b8Su4AnGzP3sLeHSsKnDsdA= Subject key identifier: 8E:49:24:51:E2:01:61:B5:3D:46:B4:7F:72:D4:BF:5B:8B:42:D1:66 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0862 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/D5775FF4E54F11F0875E48B9366F56BC.roa Signing time: Sun 01 Mar 2026 16:03:23 +0000 ROA not before: Tue 30 Dec 2025 07:19:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141215 IP address blocks: 103.156.152.0/24 maxlen: 24 2001:df2:89c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Dec 30 07:19:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4634b-0352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:14:7c:08:53:de:70:86:56:1b:0a:0f:9a: 09:59:5d:b6:bc:3e:6e:88:7a:a2:0e:6b:25:3b:c2: ee:f4:77:84:90:0f:9c:81:92:d5:68:cd:4b:5d:85: 8b:da:b5:19:42:1a:7d:67:39:96:27:74:68:af:99: ed:c9:1c:19:64:ab:43:85:ce:39:00:80:04:36:21: e6:2b:a8:55:f0:1c:5c:78:78:0f:5c:79:c2:ba:07: 78:6f:f0:18:f8:b1:7f:d3:de:b2:6a:bd:81:21:fe: 17:48:75:8b:94:d7:92:af:82:c0:52:cf:7a:ab:13: e6:fd:e7:64:25:66:19:d2:c1:ff:62:a9:64:4e:bd: 78:7b:21:36:23:d1:1b:12:eb:e9:43:f7:ba:6f:2a: b5:69:8d:92:50:1f:ac:3b:ba:15:f7:96:de:40:98: c5:1e:f2:1f:f1:f0:6b:d3:42:14:d2:6e:73:21:c3: 27:09:68:87:93:a1:5b:22:51:f5:61:ce:ab:ad:18: 77:7e:f4:73:fe:bf:f9:9b:4a:71:7e:c5:bb:2a:b0: 15:5c:05:4a:fd:46:f1:5b:97:72:29:eb:44:6b:5b: 08:0e:ab:1a:17:55:c4:c9:91:d9:3e:55:14:04:0f: c4:a4:13:b1:80:f9:34:3c:fe:c3:03:ac:52:21:73: b4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:49:24:51:E2:01:61:B5:3D:46:B4:7F:72:D4:BF:5B:8B:42:D1:66 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/D5775FF4E54F11F0875E48B9366F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.156.152.0/24 IPv6: 2001:df2:89c0::/48 Signature Algorithm: sha256WithRSAEncryption bb:46:5d:19:c9:00:cb:04:88:43:04:69:19:4b:e9:3f:b0:0d: 96:04:0a:53:bb:90:8f:91:6c:bd:55:b9:95:bd:aa:a6:99:b0: 0b:84:71:4a:bd:a5:58:3d:95:25:7c:61:9d:a0:f8:47:09:2d: 21:90:25:98:bc:e1:89:ac:a4:6f:e6:c9:0c:43:a9:77:fb:14: 4c:35:2e:04:8d:f2:2e:2a:8b:0b:25:bc:3c:c4:dd:81:d7:38: 8e:3e:da:c9:56:1d:03:c2:ff:92:73:ee:4b:5e:0c:06:46:8f: c0:e1:d8:b4:1d:12:ed:99:46:11:1e:45:bd:1a:60:51:90:a1: c1:1e:8a:b3:42:dd:71:6d:56:09:5d:c7:e5:3a:d4:af:5a:0c: e6:a0:1c:56:16:45:df:12:2a:ae:0a:09:7b:25:26:ef:56:91: b3:44:c6:d0:0d:cd:e6:af:0d:c2:11:b9:71:16:d4:d7:77:5d: b0:bc:4f:b3:f4:6b:fa:39:74:1b:70:2b:ea:df:9c:94:66:66: 5d:a5:5d:1e:b0:55:19:32:2c:4f:29:fe:6b:98:42:bb:b5:70: c0:ab:bd:21:56:57:0c:78:c6:09:16:a4:e3:4a:28:8e:03:15: 85:79:1d:da:a0:66:4f:7a:e5:ae:dd:15:0e:0d:71:36:5c:7c: 58:a7:6e:d9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUxMjMwMDcxOTA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjM0Yi0wMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyQUfAhT3nCGVhsKD5oJWV22vD5uiHqiDmslO8Lu9HeEkA+cgZLVaM1LXYWL 2rUZQhp9ZzmWJ3Ror5ntyRwZZKtDhc45AIAENiHmK6hV8BxceHgPXHnCugd4b/AY +LF/096yar2BIf4XSHWLlNeSr4LAUs96qxPm/edkJWYZ0sH/YqlkTr14eyE2I9Eb EuvpQ/e6byq1aY2SUB+sO7oV95beQJjFHvIf8fBr00IU0m5zIcMnCWiHk6FbIlH1 Yc6rrRh3fvRz/r/5m0pxfsW7KrAVXAVK/UbxW5dyKetEa1sIDqsaF1XEyZHZPlUU BA/EpBOxgPk0PP7DA6xSIXO0EwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI5JJFHi AWG1PUa0f3LUv1uLQtFmMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVGQUQvQTRENzg5OUUwODY2MTFFQjhBMkQxNTM1QzRGOUFFMDIvRDU3NzVGRjRF NTRGMTFGMDg3NUU0OEI5MzY2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5yYMA8EAgACMAkDBwAgAQ3yicAwDQYJKoZIhvcNAQELBQADggEB ALtGXRnJAMsEiEMEaRlL6T+wDZYEClO7kI+RbL1VuZW9qqaZsAuEcUq9pVg9lSV8 YZ2g+EcJLSGQJZi84YmspG/myQxDqXf7FEw1LgSN8i4qiwslvDzE3YHXOI4+2slW HQPC/5Jz7kteDAZGj8Dh2LQdEu2ZRhEeRb0aYFGQocEeirNC3XFtVgldx+U61K9a DOagHFYWRd8SKq4KCXslJu9WkbNExtANzeavDcIRuXEW1Nd3XbC8T7P0a/o5dBtw K+rfnJRmZl2lXR6wVRkyLE8p/muYQru1cMCrvSFWVwx4xgkWpONKKI4DFYV5Hdqg Zk965a7dFQ4NcTZcfFinbtk= -----END CERTIFICATE-----Generated at Mon Mar 2 19:01:11 2026 by rpki-client