$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/98212A1EA7F011EB816C331FC4F9AE02.roa File: 98212A1EA7F011EB816C331FC4F9AE02.roa (raw, json) Hash identifier: lW6QZXgkIKKSa0jLf9ZE4i3WNOuxkEM9pch0Rc7OqqM= Subject key identifier: 44:83:D4:AB:DD:A6:FC:C7:57:E2:CC:31:1B:7B:B1:FA:5D:E3:B2:66 Certificate issuer: /CN=A9170AF9/serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F Certificate serial: 0698 Authority key identifier: 7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/98212A1EA7F011EB816C331FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:43 +0000 ROA not before: Wed 18 Jun 2025 23:12:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142116 IP address blocks: 103.166.132.0/23 maxlen: 24 2407:56c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AF9, serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F Validity Not Before: Jun 18 23:12:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46e63-637a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:84:76:61:70:20:c2:80:98:05:69:bb:6c:40: a1:a2:d9:a9:69:0c:a0:82:66:27:57:b8:48:d1:29: 45:c3:95:c9:3b:72:e7:9d:3a:ea:b8:f6:fa:27:bf: e9:fe:d6:6d:32:dd:71:59:cc:72:a9:bb:57:6b:a8: fb:3b:df:97:11:61:af:ca:e6:de:78:66:46:4e:0b: 02:b7:d3:3e:a6:52:58:a4:b3:d6:c8:78:79:f0:6f: 18:64:92:6c:3d:3f:b9:f1:f3:6c:d1:d3:66:d9:be: ff:64:48:ce:6d:66:1f:3f:90:1a:49:ac:0b:1e:b9: 92:4b:2c:51:a1:2a:a6:c1:eb:14:c4:c7:94:d8:8d: 7e:d9:de:11:a6:11:3b:55:ca:61:4d:ea:a4:0c:44: 85:48:cf:99:24:3f:3d:eb:1d:bf:af:c5:c6:1a:e2: 55:ce:f9:ba:04:67:3b:9d:05:9f:21:0a:62:70:e0: fd:a4:a7:da:6e:af:8a:c6:55:ee:52:42:46:e7:09: d9:37:02:07:0e:f7:be:fe:67:06:b3:2d:ed:86:74: 0f:7e:b4:a7:12:d8:fa:b8:ae:31:41:bd:e7:f2:aa: b0:83:82:af:94:09:fa:da:56:c4:73:72:90:80:3f: b7:72:49:18:75:d0:66:80:45:70:c2:b8:5d:ed:4f: af:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:83:D4:AB:DD:A6:FC:C7:57:E2:CC:31:1B:7B:B1:FA:5D:E3:B2:66 X509v3 Authority Key Identifier: keyid:7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/98212A1EA7F011EB816C331FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.132.0/23 IPv6: 2407:56c0::/32 Signature Algorithm: sha256WithRSAEncryption c9:43:b3:b6:fc:85:7b:ff:45:f4:15:3a:0b:07:6b:13:7a:f8: 14:08:ad:3b:d2:04:7c:e0:1b:51:07:56:46:b5:c7:2d:0e:82: 98:71:72:41:18:2a:63:11:8a:4d:eb:57:b3:fa:1e:2c:56:6b: 2f:55:ea:4e:c7:fe:8b:5d:4c:8e:5b:5f:5e:60:db:83:28:9f: 52:f2:99:ab:26:d7:04:b5:b7:79:05:85:52:11:35:b9:22:aa: d8:e1:4a:93:53:d0:c7:70:cd:f2:18:c0:d8:2b:10:ec:d8:4f: 9f:04:f5:82:72:fb:3b:a2:ba:c7:93:0f:eb:e2:5b:42:2a:60: 7c:ad:4b:44:0a:05:4a:2c:1a:23:1f:64:d3:bf:15:61:6c:e5: 29:d6:1c:2b:8a:1a:fc:29:b2:cd:95:cf:fc:5b:1b:91:a4:60: c6:ed:40:98:9d:1e:48:97:31:6b:68:ff:f4:65:d9:99:d2:a5: 65:57:3f:72:45:4a:b7:e9:b3:71:72:6c:d8:d6:1b:a3:36:23: 89:1a:74:59:e3:d3:b5:12:b7:74:50:30:84:0f:d4:54:68:42: 79:d1:8f:a2:58:0a:18:0b:1e:dd:7a:23:49:73:60:3c:76:a6: eb:aa:b0:06:ac:e6:02:db:04:16:9a:46:a8:1b:f8:63:80:af: 57:92:a8:13 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRjkxMTAvBgNVBAUTKDdFRTNCODhGQjFBRjBEOTJEQkQyMTY2MTI1RkIwOUNC MjRGMTA4M0YwHhcNMjUwNjE4MjMxMjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU2My02MzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkIR2YXAgwoCYBWm7bEChotmpaQyggmYnV7hI0SlFw5XJO3LnnTrquPb6J7/p /tZtMt1xWcxyqbtXa6j7O9+XEWGvyubeeGZGTgsCt9M+plJYpLPWyHh58G8YZJJs PT+58fNs0dNm2b7/ZEjObWYfP5AaSawLHrmSSyxRoSqmwesUxMeU2I1+2d4RphE7 VcphTeqkDESFSM+ZJD896x2/r8XGGuJVzvm6BGc7nQWfIQpicOD9pKfabq+KxlXu UkJG5wnZNwIHDve+/mcGsy3thnQPfrSnEtj6uK4xQb3n8qqwg4KvlAn62lbEc3KQ gD+3ckkYddBmgEVwwrhd7U+vawIDAQABo4ICbzCCAmswHQYDVR0OBBYEFESD1Kvd pvzHV+LMMRt7sfpd47JmMB8GA1UdIwQYMBaAFH7juI+xrw2S29IWYSX7Ccsk8Qg/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFGOS8yOUNEQ0Q4RUE3 RUYxMUVCQjEyREE0MUVDNEY5QUUwMi9mdU80ajdHdkRaTGIwaFpoSmZzSnl5VHhD RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1TzRqN0d2RFpMYjBoWmhKZnNKeXlUeENEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBBRjkvMjlDRENEOEVBN0VGMTFFQkIxMkRBNDFFQzRGOUFFMDIvOTgyMTJBMUVB N0YwMTFFQjgxNkMzMzFGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6aEMA0EAgACMAcDBQAkB1bAMA0GCSqGSIb3DQEBCwUAA4IBAQDJ Q7O2/IV7/0X0FToLB2sTevgUCK070gR84BtRB1ZGtcctDoKYcXJBGCpjEYpN61ez +h4sVmsvVepOx/6LXUyOW19eYNuDKJ9S8pmrJtcEtbd5BYVSETW5IqrY4UqTU9DH cM3yGMDYKxDs2E+fBPWCcvs7orrHkw/r4ltCKmB8rUtECgVKLBojH2TTvxVhbOUp 1hwrihr8KbLNlc/8WxuRpGDG7UCYnR5IlzFraP/0ZdmZ0qVlVz9yRUq36bNxcmzY 1hujNiOJGnRZ49O1Erd0UDCED9RUaEJ50Y+iWAoYCx7deiNJc2A8dqbrqrAGrOYC 2wQWmkaoG/hjgK9XkqgT -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:25 2026 by rpki-client