$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa File: FDA3EFA45C6211EB91658215C4F9AE02.roa (raw, json) Hash identifier: 2oVR2t5v2J8c0h/gxceBEyWV3OdTw+s6Iy45bTBQMQ0= Subject key identifier: A2:17:8E:77:0D:74:4A:DA:66:88:E6:12:6E:2C:C5:55:FB:C5:66:A8 Certificate issuer: /CN=A9171A1B/serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Certificate serial: 0777 Authority key identifier: 4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:04:15 +0000 ROA not before: Thu 04 Dec 2025 21:04:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 14618 IP address blocks: 103.124.134.0/24 maxlen: 24 103.124.135.0/24 maxlen: 24 2403:e040:8000::/34 maxlen: 34 2403:e040:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A1B, serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Validity Not Before: Dec 4 21:04:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4637f-092a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:55:46:1f:f7:f9:80:90:aa:f7:13:7c:de:49: 0b:69:7d:32:28:8d:4f:68:0a:d2:be:02:a5:5c:6d: 83:f1:f0:05:76:9d:59:6c:21:8a:c2:df:41:da:1f: 61:67:01:9b:a3:3e:1c:81:5e:f4:00:d7:e2:8c:da: af:49:df:1e:02:99:2d:89:7f:4f:bb:3f:06:1e:1a: 49:a4:79:e5:95:5c:19:cf:eb:5a:ca:e9:01:8b:c3: ae:da:83:c6:2e:b9:4d:10:ca:97:b2:94:1f:29:53: 1f:b8:d8:9b:b4:23:c0:56:c5:fd:2d:42:50:47:73: c1:4a:95:6e:10:4d:b6:14:f5:a2:af:bb:4f:7b:f6: 4f:de:b3:bc:17:11:70:bd:07:d0:80:cd:00:50:b0: 00:15:96:9f:0e:91:70:15:51:de:b0:dc:96:7a:99: 04:56:13:6c:8d:02:93:39:f9:6a:1d:7a:a4:d8:36: a6:53:90:ec:e8:f7:72:ee:04:d3:fa:fd:53:24:49: 6a:e7:d5:74:f9:b9:60:e5:95:47:dd:7a:99:dd:b5: 71:56:ac:07:80:d5:f1:25:d4:6f:8f:07:ab:d0:64: f9:2b:0a:54:0e:e3:c6:04:68:8e:db:ba:58:02:6a: 40:83:d6:34:b5:c4:84:14:05:52:ef:24:28:97:ac: ea:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:17:8E:77:0D:74:4A:DA:66:88:E6:12:6E:2C:C5:55:FB:C5:66:A8 X509v3 Authority Key Identifier: keyid:4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.134.0/23 IPv6: 2403:e040:8000::/33 Signature Algorithm: sha256WithRSAEncryption 53:49:27:11:79:33:c9:c3:ba:a0:ff:55:bd:1d:00:00:70:c4: df:11:35:3a:25:b7:ab:0b:cb:7d:0c:f2:d3:4b:5d:a3:4c:09: e3:b5:f9:42:57:a7:54:5e:c8:5c:78:21:ac:14:d4:a7:be:05: 2e:36:d1:d2:ae:66:cf:38:16:53:37:2e:fb:75:a3:00:0d:1c: 3d:e7:43:51:99:f2:22:3e:0c:a2:ad:bb:3c:b3:8f:0b:b6:fc: ae:5b:df:62:6b:21:4b:2b:87:42:0b:87:3e:1c:88:fa:5d:39: 68:50:39:d6:fd:53:10:58:87:84:34:03:85:25:f5:79:23:51: aa:1e:0f:af:ee:f9:ed:fe:b1:84:de:23:b0:96:be:db:85:fa: 51:05:a3:c6:b0:ca:96:55:52:7a:c5:81:99:bd:25:3c:12:e0: 05:8e:c5:33:5b:13:cb:0c:13:b9:ab:d8:91:48:f6:bd:37:d6: 3c:23:1f:23:4b:35:a4:7b:77:e4:5f:c8:8e:be:07:b5:12:a4: 9b:79:74:bf:2b:2f:dc:14:da:1a:59:ea:c4:70:f9:7d:87:a3: 4d:ff:19:9d:3c:f0:1b:f4:cf:f4:6e:d8:d3:27:37:3d:9b:d6: 52:c3:69:aa:5e:c0:42:9e:4c:d0:50:6b:ba:cd:7f:eb:fa:7a: 51:ad:cb:39 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMUIxMTAvBgNVBAUTKDRDMzQ5QzUxQ0E1OTg5MDdENUMwN0NCMUYyNDg1MUZD MDQ4REFEMUEwHhcNMjUxMjA0MjEwNDQ0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjM3Zi0wOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlVGH/f5gJCq9xN83kkLaX0yKI1PaArSvgKlXG2D8fAFdp1ZbCGKwt9B2h9h ZwGboz4cgV70ANfijNqvSd8eApktiX9Puz8GHhpJpHnllVwZz+tayukBi8Ou2oPG LrlNEMqXspQfKVMfuNibtCPAVsX9LUJQR3PBSpVuEE22FPWir7tPe/ZP3rO8FxFw vQfQgM0AULAAFZafDpFwFVHesNyWepkEVhNsjQKTOflqHXqk2DamU5Ds6Pdy7gTT +v1TJElq59V0+blg5ZVH3XqZ3bVxVqwHgNXxJdRvjwer0GT5KwpUDuPGBGiO27pY AmpAg9Y0tcSEFAVS7yQol6zqWQIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFKIXjncN dEraZojmEm4sxVX7xWaoMB8GA1UdIwQYMBaAFEw0nFHKWYkH1cB8sfJIUfwEja0a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUExQi9EQzU4Q0M1QTVD NDExMUVCODFEN0M2MEJDNEY5QUUwMi9URFNjVWNwWmlRZlZ3SHl4OGtoUl9BU05y Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REU2NVY3BaaVFmVndIeXg4a2hSX0FTTnJSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFBMUIvREM1OENDNUE1QzQxMTFFQjgxRDdDNjBCQzRGOUFFMDIvRkRBM0VGQTQ1 QzYyMTFFQjkxNjU4MjE1QzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQBZ3yGMA4EAgACMAgDBgckA+BAgDANBgkqhkiG9w0BAQsFAAOCAQEA U0knEXkzycO6oP9VvR0AAHDE3xE1OiW3qwvLfQzy00tdo0wJ47X5QlenVF7IXHgh rBTUp74FLjbR0q5mzzgWUzcu+3WjAA0cPedDUZnyIj4Moq27PLOPC7b8rlvfYmsh SyuHQguHPhyI+l05aFA51v1TEFiHhDQDhSX1eSNRqh4Pr+757f6xhN4jsJa+24X6 UQWjxrDKllVSesWBmb0lPBLgBY7FM1sTywwTuavYkUj2vTfWPCMfI0s1pHt35F/I jr4HtRKkm3l0vysv3BTaGlnqxHD5fYejTf8ZnTzwG/TP9G7Y0yc3PZvWUsNpql7A Qp5M0FBrus1/6/p6Ua3LOQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:01 2026 by rpki-client