$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa File: C8165660822F11EEABA7D533C4F9AE02.roa (raw, json) Hash identifier: h/A2ekMJ720Ho+otYfeYLNAk/zsB1s3sx7Qk4yapaYo= Subject key identifier: 4D:93:AC:DD:3D:6D:02:12:4A:1E:02:54:76:12:9E:8F:BA:D6:3F:0B Certificate issuer: /CN=A9170982/serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Certificate serial: 0444 Authority key identifier: E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:03:45 +0000 ROA not before: Fri 14 Nov 2025 23:15:50 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 16839 IP address blocks: 103.23.64.0/22 maxlen: 24 2406:9f00::/32 maxlen: 32 2406:9f00:6100::/40 maxlen: 40 2406:9f00:6110::/48 maxlen: 48 2406:9f00:6120::/48 maxlen: 48 2406:9f00:6500::/40 maxlen: 40 2406:9f00:6510::/48 maxlen: 48 2406:9f00:6520::/48 maxlen: 48 2406:9f00:8100::/40 maxlen: 40 2406:9f00:8110::/48 maxlen: 48 2406:9f00:8120::/48 maxlen: 48 2406:9f00:8200::/40 maxlen: 40 2406:9f00:8210::/48 maxlen: 48 2406:9f00:8220::/48 maxlen: 48 2406:9f00:9100::/40 maxlen: 40 2406:9f00:9110::/48 maxlen: 48 2406:9f00:9120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Validity Not Before: Nov 14 23:15:50 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45551-2892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:d2:86:10:ac:61:db:8f:92:09:25:d2:0e: 61:aa:29:1c:99:82:1e:cf:6f:f9:9e:39:27:9c:07: 00:86:50:9b:30:49:95:fc:84:fb:ac:84:ba:01:c6: aa:f8:a3:09:98:35:12:ce:bf:53:ed:17:52:e5:3e: 06:b3:91:59:99:31:57:53:f3:fe:3d:3b:36:8f:d6: 47:e0:1d:f6:3e:b2:fd:83:93:20:bc:a8:f1:4d:08: f5:4c:81:2e:5e:7f:1e:72:d2:c9:14:5f:50:a9:8c: 61:fc:ce:b4:27:c4:fd:8f:ae:d8:a9:f0:ff:6c:96: 7a:69:95:31:59:8a:b4:d6:32:dd:02:f8:af:7d:99: fd:cd:85:e3:77:ca:e9:67:2e:6d:ff:a9:5c:09:15: 25:e2:47:10:ce:e6:18:07:52:7c:82:9a:33:a3:46: 2f:28:96:1f:f2:9b:7b:5c:1a:c1:1e:d8:4a:cd:94: 3b:dd:ba:31:a5:83:d4:81:ff:08:44:b0:9a:48:1e: a9:e2:66:a1:ec:64:65:fe:45:33:e8:9b:8f:9f:7c: 12:19:63:9e:a6:cd:bc:30:b0:15:57:f7:01:8c:f7: 47:e7:ad:fc:86:c8:f8:6f:ee:41:93:7f:ac:a0:08: 4f:6b:72:9e:e6:b8:13:bf:95:d0:4f:98:ea:4f:06: 40:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:93:AC:DD:3D:6D:02:12:4A:1E:02:54:76:12:9E:8F:BA:D6:3F:0B X509v3 Authority Key Identifier: keyid:E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.64.0/22 IPv6: 2406:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 51:04:18:21:69:8c:e2:c2:6e:e2:ca:dd:01:57:d5:cd:c2:5d: 52:d0:b2:c5:d6:ff:87:17:46:47:69:3e:1b:8d:28:59:4d:4d: c7:35:ee:bc:93:63:87:33:67:47:d2:f1:b3:8b:4a:76:f1:88: 43:22:4e:49:53:67:e7:32:05:9c:3d:2f:af:f3:83:78:cf:c6: 65:3b:e3:84:3c:6e:d8:7d:85:35:7c:e4:8c:a9:9d:b5:6a:94: 90:55:5c:bc:7a:12:51:9b:1a:cd:d9:fb:6d:10:b2:2c:40:3c: 50:0f:df:e5:b5:66:ec:68:57:27:cb:d2:02:58:fc:92:c1:88: 3a:82:20:5d:03:16:f7:27:75:b1:1c:e3:aa:88:68:54:db:bb: 00:d7:4d:42:11:18:12:9c:5f:30:12:50:1f:a0:db:3f:70:5b: 57:ae:fa:2c:61:d1:df:10:a6:ea:8d:00:23:d2:e3:2a:5b:66: 0b:7f:7b:30:04:24:4c:44:ae:67:c7:9e:ff:d3:2f:2e:2a:73: 68:a9:3e:3d:f5:8e:fc:b5:e7:5d:3f:8d:f7:f3:a0:32:27:d0: 7f:a8:84:08:74:91:75:7a:78:e3:ef:ac:82:68:bd:1e:47:5d: 2b:d4:3f:41:14:f3:47:00:fc:90:13:c0:51:f9:5b:60:99:e4: ed:1c:89:df -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKEU2MjE0NjlDRDVBNTc4Rjk0N0FCNDdFQjBFQ0U4ODkz OUI4N0VCRkIwHhcNMjUxMTE0MjMxNTUwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTU1MS0yODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumrShhCsYduPkgkl0g5hqikcmYIez2/5njknnAcAhlCbMEmV/IT7rIS6Acaq +KMJmDUSzr9T7RdS5T4Gs5FZmTFXU/P+PTs2j9ZH4B32PrL9g5MgvKjxTQj1TIEu Xn8ectLJFF9QqYxh/M60J8T9j67YqfD/bJZ6aZUxWYq01jLdAvivfZn9zYXjd8rp Zy5t/6lcCRUl4kcQzuYYB1J8gpozo0YvKJYf8pt7XBrBHthKzZQ73boxpYPUgf8I RLCaSB6p4mah7GRl/kUz6JuPn3wSGWOeps28MLAVV/cBjPdH5638hsj4b+5Bk3+s oAhPa3Ke5rgTv5XQT5jqTwZA/wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFE2TrN09 bQISSh4CVHYSno+61j8LMB8GA1UdIwQYMBaAFOYhRpzVpXj5R6tH6w7OiJObh+v7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9EOEI2ODY5NkFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi81aUZHbk5XbGVQbEhxMGZyRHM2SWs1dUg2 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpRkduTldsZVBsSHEwZnJEczZJazV1SDZfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5ODIvRDhCNjg2OTZBQzEzMTFFQ0I3NzZCMjA5QzRGOUFFMDIvQzgxNjU2NjA4 MjJGMTFFRUFCQTdENTMzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxdAMA0EAgACMAcDBQAkBp8AMA0GCSqGSIb3DQEBCwUAA4IBAQBR BBghaYziwm7iyt0BV9XNwl1S0LLF1v+HF0ZHaT4bjShZTU3HNe68k2OHM2dH0vGz i0p28YhDIk5JU2fnMgWcPS+v84N4z8ZlO+OEPG7YfYU1fOSMqZ21apSQVVy8ehJR mxrN2fttELIsQDxQD9/ltWbsaFcny9ICWPySwYg6giBdAxb3J3WxHOOqiGhU27sA 101CERgSnF8wElAfoNs/cFtXrvosYdHfEKbqjQAj0uMqW2YLf3swBCRMRK5nx57/ 0y8uKnNoqT499Y78teddP43386AyJ9B/qIQIdJF1enjj76yCaL0eR10r1D9BFPNH APyQE8BR+VtgmeTtHInf -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:41 2026 by rpki-client