$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa File: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (raw, json) Hash identifier: aw80wgMWCfwDMmwypvEv3dHoFM7g8ZcoNFgI2Y8JRd4= Subject key identifier: 68:D0:81:93:FA:D9:39:50:9F:AE:A9:01:5A:E0:95:1F:8D:CA:9D:04 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B63 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:06:10 +0000 ROA not before: Wed 02 Apr 2025 19:49:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45637 IP address blocks: 103.91.172.0/22 maxlen: 23 123.253.56.0/22 maxlen: 23 182.54.160.0/20 maxlen: 21 2402:ff00::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Apr 2 19:49:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47202-1fe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8f:4c:76:99:2f:df:74:73:a9:5b:3a:5d:f0: 67:b5:17:eb:62:1a:8e:17:98:ce:4a:2d:22:41:78: ba:87:de:6c:e8:11:c4:8c:6e:7b:e2:e0:8b:d5:d6: b6:27:de:cc:a4:9d:ec:67:8c:fc:0a:2d:0f:07:8d: e4:96:1e:1a:83:6c:bd:b9:ae:11:78:f6:4d:33:20: c2:a2:b6:c0:33:97:07:c7:0e:f5:73:ea:d4:62:0e: 76:1f:d6:ba:ad:95:2f:60:73:b1:fb:e0:ca:50:9a: f2:36:a3:13:b9:55:9c:70:d3:67:ed:bc:1b:4a:5d: 5a:8a:15:8b:4e:1e:32:b1:ad:2a:f0:5a:c0:f4:35: b0:92:93:3e:73:a2:58:88:df:50:2b:55:41:af:b7: 0f:f2:49:de:93:0b:43:2e:78:2c:b2:c0:66:54:88: d1:a3:3e:08:e9:06:98:c3:af:02:04:0b:19:2b:97: 13:a4:af:2d:59:fd:fb:b6:d8:ff:51:87:3b:66:a5: 2b:ad:09:58:61:70:b6:a9:18:e7:00:b3:ca:c7:5a: 26:a9:72:99:6f:05:9e:ca:5b:d2:93:24:d9:99:10: d8:62:d7:57:cb:ab:97:0d:ed:fa:69:cf:72:7a:0f: f7:c4:20:5a:35:21:2d:37:a2:06:07:75:c5:2a:29: 35:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D0:81:93:FA:D9:39:50:9F:AE:A9:01:5A:E0:95:1F:8D:CA:9D:04 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.172.0/22 123.253.56.0/22 182.54.160.0/20 IPv6: 2402:ff00::/32 Signature Algorithm: sha256WithRSAEncryption 24:2b:68:01:9e:cb:c8:fa:cc:e7:50:f0:86:3a:5c:46:dd:c1: ef:57:f8:ee:e1:2e:8f:e7:0c:8d:45:7b:f8:7c:ac:77:20:c0: 60:71:e8:ee:03:24:bc:9f:e7:d0:f1:17:3c:ef:cf:d9:ee:76: f2:2e:51:68:76:02:e2:69:b0:ae:9d:c1:14:0d:be:8a:28:e5: 5c:84:44:72:73:76:d0:b2:3a:a4:24:e1:7a:7a:bd:2e:bb:72: 76:3e:6c:84:72:07:e8:6d:4f:28:70:3d:26:fc:27:ac:a4:b4: d8:0b:9b:b6:a6:2a:41:9d:e8:b0:47:8b:95:3d:83:02:53:89: e0:53:bd:b2:00:a9:9d:20:16:78:ee:5c:89:20:c0:3a:31:09: a0:ff:28:eb:b5:9b:47:e1:97:2c:75:b4:67:3d:f9:45:cc:00: 40:2e:4b:ba:75:a8:bb:d9:31:63:b0:e8:67:42:72:d6:c7:28: 5d:f3:11:d8:90:d8:ba:0f:45:8b:d2:6b:0f:3f:64:10:47:d6: 76:67:03:b9:d7:76:7f:1c:fc:55:0b:01:cd:87:ae:b0:e4:8c: 1f:f0:d2:61:12:89:10:50:88:47:e2:0b:38:b5:2f:a1:72:a8: 3c:23:59:90:8d:c8:ca:d4:97:ec:48:a4:11:c2:d6:74:4e:82: bc:04:b2:e9 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUwNDAyMTk0OTQ2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzIwMi0xZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI9Mdpkv33RzqVs6XfBntRfrYhqOF5jOSi0iQXi6h95s6BHEjG574uCL1da2 J97MpJ3sZ4z8Ci0PB43klh4ag2y9ua4RePZNMyDCorbAM5cHxw71c+rUYg52H9a6 rZUvYHOx++DKUJryNqMTuVWccNNn7bwbSl1aihWLTh4ysa0q8FrA9DWwkpM+c6JY iN9QK1VBr7cP8knekwtDLngsssBmVIjRoz4I6QaYw68CBAsZK5cTpK8tWf37ttj/ UYc7ZqUrrQlYYXC2qRjnALPKx1omqXKZbwWeylvSkyTZmRDYYtdXy6uXDe36ac9y eg/3xCBaNSEtN6IGB3XFKik1wQIDAQABo4ICezCCAncwHQYDVR0OBBYEFGjQgZP6 2TlQn66pAVrglR+Nyp0EMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDMjAvODY1NzFDMTA0RUEyMTFFQTg0QzA4ODc0QzRGOUFFMDIvQUQzNUMwMDQ0 RUE1MTFFQUFCOURCRTdEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZ1usAwQCe/04AwQEtjagMA0EAgACMAcDBQAkAv8AMA0GCSqGSIb3 DQEBCwUAA4IBAQAkK2gBnsvI+sznUPCGOlxG3cHvV/ju4S6P5wyNRXv4fKx3IMBg cejuAyS8n+fQ8Rc878/Z7nbyLlFodgLiabCuncEUDb6KKOVchERyc3bQsjqkJOF6 er0uu3J2PmyEcgfobU8ocD0m/CespLTYC5u2pipBneiwR4uVPYMCU4ngU72yAKmd IBZ47lyJIMA6MQmg/yjrtZtH4ZcsdbRnPflFzABALku6dai72TFjsOhnQnLWxyhd 8xHYkNi6D0WL0msPP2QQR9Z2ZwO513Z/HPxVCwHNh66w5Iwf8NJhEokQUIhH4gs4 tS+hcqg8I1mQjcjK1JfsSKQRwtZ0ToK8BLLp -----END CERTIFICATE-----Generated at Mon Mar 2 04:11:28 2026 by rpki-client