$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa File: 4D06CD2C667411EF8E723587C4F9AE02.roa (raw, json) Hash identifier: zXaiTn1OPuqTOi1DnfJ2nxhGdbrJsBTMVyTGh2dj7aY= Subject key identifier: 7D:10:23:E4:54:05:DB:D8:87:50:FF:A0:F7:15:D8:F9:4E:C6:A5:FC Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: 0129 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:12:21 +0000 ROA not before: Sun 21 Dec 2025 04:24:28 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4049 IP address blocks: 103.79.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Dec 21 04:24:28 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45755-95d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:40:21:4c:0a:86:c6:f9:a7:41:fa:2d:f5: af:a2:f9:78:00:a0:39:80:48:9f:16:a3:b8:ae:da: 3f:70:e4:e8:23:c3:a1:63:9b:7c:9d:be:50:bc:ed: 70:7b:43:27:cc:a8:6a:1f:c6:ff:a2:cf:48:ab:7e: db:a2:c3:69:7b:0c:16:28:45:09:11:55:d2:57:96: 16:c9:f5:17:a8:a4:df:b9:5f:f2:81:ec:0e:f9:87: 73:66:0f:7b:a1:3b:33:96:ee:4b:d6:9b:4c:a2:fb: 54:b9:bf:70:00:a3:db:3b:47:20:e9:50:bc:97:2a: b8:b0:4f:5d:47:c1:d8:bf:3b:53:2e:22:1f:ef:92: a0:77:7a:54:16:3e:ac:5d:e1:90:fd:44:e8:d9:b9: e3:5e:5f:a2:11:e5:3b:6b:fc:7b:e1:ac:ea:bc:6a: f7:08:14:1d:09:c9:fd:ed:34:e2:e6:8d:02:55:9c: b9:c0:02:8a:9b:91:05:39:2b:d0:b3:b3:32:b7:74: 20:69:a0:42:2b:d3:50:2f:65:b1:78:42:1d:ed:49: 0e:27:21:d5:89:a0:af:5c:35:c1:21:52:a1:8c:0f: 21:37:7c:c2:1e:fb:91:2f:fc:0c:a9:bd:1d:2c:32: 0c:dc:2b:6f:ff:98:e6:ef:54:80:82:e1:6e:8f:f3: cd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:10:23:E4:54:05:DB:D8:87:50:FF:A0:F7:15:D8:F9:4E:C6:A5:FC X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:4d:8d:23:aa:68:c6:89:f7:23:9e:d5:22:34:89:47:e6:b4: ea:da:4c:fb:8c:34:6a:e3:bc:b4:82:db:6e:38:8a:69:a0:f4: 74:9b:e5:46:a0:bd:20:c2:77:42:5d:d5:27:1d:d3:e6:f7:69: 90:0c:e9:10:09:6e:c0:79:a2:15:f9:1e:3c:e0:d7:76:fe:42: 23:17:30:43:f4:1a:04:75:63:79:b0:53:50:37:5d:37:10:f0: ed:68:55:24:cb:bb:a8:b8:b3:8b:03:41:0f:d5:86:09:fc:34: 82:af:28:04:00:86:cb:ad:58:06:81:1d:8e:3a:d6:ce:a2:a0: e5:5a:65:10:19:7a:2c:14:e8:28:ac:62:d9:c1:e1:9a:46:de: d5:e3:b8:67:46:e7:4e:75:c8:0f:4c:c0:c9:84:43:6c:00:d1: f6:a9:7a:c3:e6:8a:57:e6:1f:e0:ff:bc:78:47:66:8a:44:d6: 0d:f7:45:37:64:85:8c:b2:f3:92:fd:86:86:4f:79:17:55:e3: 87:29:85:42:3f:86:ca:bd:b4:24:b0:ac:9a:7d:d4:2f:ea:8f: b3:c1:54:d0:07:8e:d3:1b:a1:91:5e:65:b5:47:1d:b3:3c:a1: 0a:60:81:66:65:4b:f4:2d:42:38:34:e6:b5:35:31:b6:0c:15: 73:10:18:34 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUxMjIxMDQyNDI4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTc1NS05NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3JAIUwKhsb5p0H6LfWvovl4AKA5gEifFqO4rto/cOToI8OhY5t8nb5QvO1w e0MnzKhqH8b/os9Iq37bosNpewwWKEUJEVXSV5YWyfUXqKTfuV/ygewO+YdzZg97 oTszlu5L1ptMovtUub9wAKPbO0cg6VC8lyq4sE9dR8HYvztTLiIf75Kgd3pUFj6s XeGQ/UTo2bnjXl+iEeU7a/x74azqvGr3CBQdCcn97TTi5o0CVZy5wAKKm5EFOSvQ s7Myt3QgaaBCK9NQL2WxeEId7UkOJyHViaCvXDXBIVKhjA8hN3zCHvuRL/wMqb0d LDIM3Ctv/5jm71SAguFuj/PNNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH0QI+RU BdvYh1D/oPcV2PlOxqX8MB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBERDgvQTY2QTc1RUU2NUJCMTFFRkFGQTMyRjgyQzRGOUFFMDIvNEQwNkNEMkM2 Njc0MTFFRjhFNzIzNTg3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ09YMA0GCSqGSIb3DQEBCwUAA4IBAQAaTY0jqmjGifcjntUiNIlH 5rTq2kz7jDRq47y0gttuOIppoPR0m+VGoL0gwndCXdUnHdPm92mQDOkQCW7AeaIV +R484Nd2/kIjFzBD9BoEdWN5sFNQN103EPDtaFUky7uouLOLA0EP1YYJ/DSCrygE AIbLrVgGgR2OOtbOoqDlWmUQGXosFOgorGLZweGaRt7V47hnRudOdcgPTMDJhENs ANH2qXrD5opX5h/g/7x4R2aKRNYN90U3ZIWMsvOS/YaGT3kXVeOHKYVCP4bKvbQk sKyafdQv6o+zwVTQB47TG6GRXmW1Rx2zPKEKYIFmZUv0LUI4NOa1NTG2DBVzEBg0 -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:01 2026 by rpki-client