$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa File: C8165660822F11EEABA7D533C4F9AE02.roa (raw, json) Hash identifier: TWI7/AHi80APjR4S5j80I9E6yRO+kebGNcad/BHi2Mc= Subject key identifier: 75:56:BF:07:AF:23:71:4C:A3:16:0C:8D:55:A6:85:96:6D:28:D2:A9 Certificate issuer: /CN=A9170982/serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Certificate serial: 0477 Authority key identifier: E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa Signing time: Mon 01 Jun 2026 16:20:00 +0000 ROA not before: Mon 01 Jun 2026 16:20:00 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 16839 IP address blocks: 103.23.64.0/22 maxlen: 24 2406:9f00::/32 maxlen: 32 2406:9f00:200::/47 maxlen: 48 2406:9f00:202::/47 maxlen: 48 2406:9f00:6100::/40 maxlen: 40 2406:9f00:6110::/48 maxlen: 48 2406:9f00:6120::/48 maxlen: 48 2406:9f00:6500::/40 maxlen: 40 2406:9f00:6510::/48 maxlen: 48 2406:9f00:6520::/48 maxlen: 48 2406:9f00:8100::/40 maxlen: 40 2406:9f00:8110::/48 maxlen: 48 2406:9f00:8120::/48 maxlen: 48 2406:9f00:8200::/40 maxlen: 40 2406:9f00:8210::/48 maxlen: 48 2406:9f00:8220::/48 maxlen: 48 2406:9f00:9100::/40 maxlen: 40 2406:9f00:9110::/48 maxlen: 48 2406:9f00:9120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Validity Not Before: Jun 1 16:20:00 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a1db12f-ff3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:a9:7a:f4:f9:84:a1:e1:13:ac:e8:b7:84: e7:20:af:db:53:42:e4:f6:36:52:b5:67:56:b7:cd: 1e:cb:ae:12:b6:ed:02:ec:09:d2:37:d7:f5:68:9b: ae:63:cf:97:40:17:69:fe:22:46:1e:e0:7a:72:c0: b6:33:e9:d1:5c:61:f3:16:5b:e5:3b:a4:59:49:c7: 57:67:bd:19:5a:ce:54:0e:6d:d7:a2:32:27:50:64: 74:e2:87:f3:b6:08:9c:b4:8a:fd:22:ad:bc:11:21: f0:6a:0d:04:a3:64:54:39:21:3c:56:bc:ec:4f:dc: 6b:6a:c0:d4:67:03:74:b4:d9:69:e1:fa:79:2c:10: 17:b5:9b:c9:a1:a1:e4:73:f2:e1:2a:93:3e:1b:af: 4f:97:3b:99:74:a6:db:df:a4:14:43:8a:1f:8b:b1: c5:a8:33:d6:9c:fc:97:77:f2:40:a3:3c:e6:46:a4: 4a:00:a2:31:f9:11:6f:7e:b4:1a:83:5a:fa:ce:d1: 37:02:0d:9e:4f:52:92:15:88:0d:6a:df:e8:08:92: c5:36:de:14:7f:ea:14:32:5e:bf:4c:4a:73:ad:77: 5c:7a:6b:75:af:98:c1:47:bc:29:3c:e7:0a:e8:f9: 00:84:1f:b0:b3:72:25:cb:4d:b6:4f:f6:1a:52:55: 94:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:56:BF:07:AF:23:71:4C:A3:16:0C:8D:55:A6:85:96:6D:28:D2:A9 X509v3 Authority Key Identifier: keyid:E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/C8165660822F11EEABA7D533C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.64.0/22 IPv6: 2406:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 82:32:68:f3:cf:ac:f1:cb:7d:35:45:8b:7a:c8:a8:92:46:f4: c8:93:35:42:35:e1:e3:35:45:4b:a8:a5:11:9f:5b:45:9c:f0: e3:2a:b3:aa:ee:83:d0:e7:d3:23:2a:58:4e:a2:aa:25:a7:c7: f5:41:fa:ac:18:bf:09:15:55:49:c8:44:3b:8f:ab:2e:b0:b8: df:18:54:3e:e1:28:a6:c0:64:86:00:06:3d:87:79:e7:54:3e: 1d:ad:d3:53:f1:6c:63:76:da:cd:c0:bc:37:3e:4c:fe:b9:86: bc:c4:85:b6:b3:b9:fc:a9:55:4a:ba:e1:5e:03:4c:a1:6c:dc: e5:98:af:f5:74:ad:e3:3f:7c:e4:03:d0:67:73:57:8c:25:5a: 65:b3:1b:97:a1:8c:ae:54:dd:09:ac:95:49:2c:73:e4:aa:1b: 19:fe:e2:43:4f:dc:23:9f:9a:87:6f:84:c3:07:c6:78:e2:cb: aa:f4:90:82:c8:bb:fe:3a:a9:06:a8:c5:62:e5:f3:c2:83:f0: a2:7d:fa:b2:ab:10:d6:7e:de:08:bf:ef:58:c2:1e:44:78:c2: 00:7e:b6:c6:34:2b:bc:53:bc:8f:54:f1:f8:8d:22:3a:75:15: 13:ae:87:53:3d:dd:58:9c:3f:d7:7d:f7:31:ff:fc:a5:88:8d: 3b:5d:66:c1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKEU2MjE0NjlDRDVBNTc4Rjk0N0FCNDdFQjBFQ0U4ODkz OUI4N0VCRkIwHhcNMjYwNjAxMTYyMDAwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFkYjEyZi1mZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcypevT5hKHhE6zot4TnIK/bU0Lk9jZStWdWt80ey64Stu0C7AnSN9f1aJuu Y8+XQBdp/iJGHuB6csC2M+nRXGHzFlvlO6RZScdXZ70ZWs5UDm3XojInUGR04ofz tgictIr9Iq28ESHwag0Eo2RUOSE8VrzsT9xrasDUZwN0tNlp4fp5LBAXtZvJoaHk c/LhKpM+G69PlzuZdKbb36QUQ4ofi7HFqDPWnPyXd/JAozzmRqRKAKIx+RFvfrQa g1r6ztE3Ag2eT1KSFYgNat/oCJLFNt4Uf+oUMl6/TEpzrXdcemt1r5jBR7wpPOcK 6PkAhB+ws3Ily022T/YaUlWU3QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHVWvwev I3FMoxYMjVWmhZZtKNKpMB8GA1UdIwQYMBaAFOYhRpzVpXj5R6tH6w7OiJObh+v7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9EOEI2ODY5NkFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi81aUZHbk5XbGVQbEhxMGZyRHM2SWs1dUg2 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpRkduTldsZVBsSHEwZnJEczZJazV1SDZfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5ODIvRDhCNjg2OTZBQzEzMTFFQ0I3NzZCMjA5QzRGOUFFMDIvQzgxNjU2NjA4 MjJGMTFFRUFCQTdENTMzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxdAMA0EAgACMAcDBQAkBp8AMA0GCSqGSIb3DQEBCwUAA4IBAQCC Mmjzz6zxy301RYt6yKiSRvTIkzVCNeHjNUVLqKURn1tFnPDjKrOq7oPQ59MjKlhO oqolp8f1QfqsGL8JFVVJyEQ7j6susLjfGFQ+4SimwGSGAAY9h3nnVD4drdNT8Wxj dtrNwLw3Pkz+uYa8xIW2s7n8qVVKuuFeA0yhbNzlmK/1dK3jP3zkA9Bnc1eMJVpl sxuXoYyuVN0JrJVJLHPkqhsZ/uJDT9wjn5qHb4TDB8Z44suq9JCCyLv+OqkGqMVi 5fPCg/CiffqyqxDWft4Iv+9Ywh5EeMIAfrbGNCu8U7yPVPH4jSI6dRUTrodTPd1Y nD/Xffcx//yliI07XWbB -----END CERTIFICATE-----Generated at Sat Jun 13 21:26:40 2026 by rpki-client