$ rpki-client -vvf rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa File: 43854B4044D411EB85615640C4F9AE02.roa (raw, json) Hash identifier: 2Xjt4SdBZGaW7oZCb7vo9tweuahkp/3fJMEVxJAgK7M= Subject key identifier: 12:C3:AE:D0:B7:96:45:3F:B3:64:93:44:ED:75:21:AC:27:05:2D:FE Certificate issuer: /CN=A9168197/serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Certificate serial: 0791 Authority key identifier: C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:42:16 +0000 ROA not before: Thu 24 Jul 2025 22:33:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131448 IP address blocks: 103.69.136.0/22 maxlen: 22 103.69.136.0/24 maxlen: 24 103.69.137.0/24 maxlen: 24 103.69.138.0/24 maxlen: 24 103.69.139.0/24 maxlen: 24 116.66.180.0/22 maxlen: 22 116.66.180.0/24 maxlen: 24 116.66.181.0/24 maxlen: 24 116.66.182.0/24 maxlen: 24 116.66.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1937 (0x791) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168197, serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Validity Not Before: Jul 24 22:33:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a409f7-a783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:af:6e:bc:5f:4b:1e:be:c0:90:20:b1:84: 4c:88:14:02:90:ba:6a:02:dd:63:f4:82:2d:36:45: 80:a6:98:ec:79:68:b8:39:7c:35:8b:7e:67:f5:a5: 20:58:0f:de:81:16:64:99:ee:8e:48:07:88:0f:80: 79:9f:c1:6e:f1:cb:b1:df:9c:1d:f6:2d:d4:0c:75: 2a:2d:67:bd:94:f0:b2:18:92:c7:93:33:d4:08:24: b5:9c:4c:f2:e5:78:aa:04:f2:3f:09:ff:1a:8a:9d: 90:e6:2f:d8:d3:2e:10:6d:27:46:07:0a:70:36:30: 42:b6:c6:f5:40:09:da:44:9a:28:c4:54:97:c9:91: 3a:14:ea:c6:9f:e0:db:d7:dd:df:7e:37:34:cd:4a: 10:f8:8e:39:0b:e0:c9:0c:f8:5f:c4:f3:de:0e:ae: 45:da:68:8d:be:2c:f6:a2:59:68:c4:80:d2:de:bd: 8d:e3:ac:ed:82:a6:30:87:10:80:89:09:9b:30:be: ef:80:e6:e5:81:a5:55:ea:fd:97:0f:ec:76:17:d7: 1d:29:00:cc:db:86:30:b2:d5:f8:de:51:34:b0:a4: d6:45:ce:92:e4:52:a3:87:ce:16:b0:e0:22:f3:b6: 15:e1:06:6a:37:50:07:be:4b:c3:f2:d3:6c:72:d2: f0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C3:AE:D0:B7:96:45:3F:B3:64:93:44:ED:75:21:AC:27:05:2D:FE X509v3 Authority Key Identifier: keyid:C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/43854B4044D411EB85615640C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.69.136.0/22 116.66.180.0/22 Signature Algorithm: sha256WithRSAEncryption 09:56:2a:f9:62:f6:d2:2a:44:07:cb:e1:22:26:4e:71:d7:e7: f3:34:96:ea:86:da:ef:69:94:bb:d2:a2:b3:33:e6:8d:01:f1: 0e:f5:5d:69:3c:ec:1a:67:b3:fd:6f:a3:2b:4c:2d:d4:c2:ed: 39:9c:27:b4:4b:f7:e7:ac:be:86:b2:ed:c3:22:29:b9:38:f3: d5:2e:cd:5c:5b:3b:73:75:1c:78:8b:09:6a:80:91:a0:cd:5e: a2:d5:1f:93:c1:b0:5b:a1:24:ff:ad:34:22:ef:8e:b8:0a:aa: 15:e3:c0:60:64:07:44:1e:99:c9:30:51:2f:52:e7:06:ab:30: 98:ef:0f:7b:f7:c2:f2:ed:1b:01:cb:e3:5f:70:24:83:89:cf: 86:f4:ae:73:c4:17:3a:1b:1e:d4:d3:15:b1:06:21:9e:82:6a: 42:3f:af:6d:ec:42:74:ee:3f:b4:2f:f3:f9:3f:86:61:42:50: 3c:7f:ec:7c:4d:c1:d5:2c:cc:36:28:a8:33:b2:51:83:c0:26: cd:ec:99:31:a3:0c:3a:bc:6d:b6:52:ef:9d:12:a7:f2:2f:b9: 3d:92:a7:17:4e:73:4d:63:be:46:19:28:0b:08:ca:20:c8:1e: 26:a3:b8:a8:d3:c4:59:ee:18:23:1b:d3:56:01:1d:14:86:59: f2:93:9f:b0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxOTcxMTAvBgNVBAUTKEMzQjY0OEVCMkUyMzg3MkE5MThEMDU3NzEzMEYzNTg1 M0Y2RjYzOUUwHhcNMjUwNzI0MjIzMzU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDlmNy1hNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYSvbrxfSx6+wJAgsYRMiBQCkLpqAt1j9IItNkWAppjseWi4OXw1i35n9aUg WA/egRZkme6OSAeID4B5n8Fu8cux35wd9i3UDHUqLWe9lPCyGJLHkzPUCCS1nEzy 5XiqBPI/Cf8aip2Q5i/Y0y4QbSdGBwpwNjBCtsb1QAnaRJooxFSXyZE6FOrGn+Db 193ffjc0zUoQ+I45C+DJDPhfxPPeDq5F2miNviz2olloxIDS3r2N46ztgqYwhxCA iQmbML7vgOblgaVV6v2XD+x2F9cdKQDM24YwstX43lE0sKTWRc6S5FKjh84WsOAi 87YV4QZqN1AHvkvD8tNsctLwDQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBLDrtC3 lkU/s2STRO11IawnBS3+MB8GA1UdIwQYMBaAFMO2SOsuI4cqkY0FdxMPNYU/b2Oe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE5Ny9BNEREQTUyNDQ0 RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5cVJqUVYzRXc4MWhUOXZZ NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3Wkk2eTRqaHlxUmpRVjNFdzgxaFQ5dlk1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxOTcvQTREREE1MjQ0NEQyMTFFQkIxMzc5QzNFQzRGOUFFMDIvNDM4NTRCNDA0 NEQ0MTFFQjg1NjE1NjQwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ0WIAwQCdEK0MA0GCSqGSIb3DQEBCwUAA4IBAQAJVir5YvbSKkQH y+EiJk5x1+fzNJbqhtrvaZS70qKzM+aNAfEO9V1pPOwaZ7P9b6MrTC3Uwu05nCe0 S/fnrL6Gsu3DIim5OPPVLs1cWztzdRx4iwlqgJGgzV6i1R+TwbBboST/rTQi7464 CqoV48BgZAdEHpnJMFEvUucGqzCY7w9798Ly7RsBy+NfcCSDic+G9K5zxBc6Gx7U 0xWxBiGegmpCP69t7EJ07j+0L/P5P4ZhQlA8f+x8TcHVLMw2KKgzslGDwCbN7Jkx oww6vG22Uu+dEqfyL7k9kqcXTnNNY75GGSgLCMogyB4mo7io08RZ7hgjG9NWAR0U hlnyk5+w -----END CERTIFICATE-----Generated at Mon Mar 2 18:08:24 2026 by rpki-client