$ rpki-client -vvf rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/88E1581E93C611F093DD4E26C4F9AE02.roa File: 88E1581E93C611F093DD4E26C4F9AE02.roa (raw, json) Hash identifier: /voKyazUys3+SCuvprRad6peYAmU9/zZXHb+lbxgXpY= Subject key identifier: E0:86:A8:4E:05:DA:A9:BC:82:F8:0A:AB:45:35:95:61:66:B3:2C:BB Certificate issuer: /CN=A9172999/serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Certificate serial: 0384 Authority key identifier: 2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/88E1581E93C611F093DD4E26C4F9AE02.roa Signing time: Fri 03 Apr 2026 01:33:16 +0000 ROA not before: Fri 03 Apr 2026 01:33:16 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 54801 IP address blocks: 103.40.8.0/22 maxlen: 24 103.180.160.0/23 maxlen: 23 103.180.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172999, serialNumber=2F533EA0E40819DF563E3F7FE3FE87428D52A0D5 Validity Not Before: Apr 3 01:33:16 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf18dc-72fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:a4:96:f1:de:a8:cf:52:a1:88:53:a2:8b: 7c:b4:30:b5:03:11:e4:54:6a:cf:d8:78:33:ff:af: a5:29:6c:18:2d:7e:04:58:c8:e7:47:64:52:f7:50: 52:24:dc:07:1b:3b:3f:a8:40:7d:34:29:fa:17:ed: 31:6d:8a:39:cd:3d:a0:18:16:58:82:de:27:5a:5a: 71:91:86:03:c8:9a:cc:bd:9d:b2:e3:3d:89:cd:63: 53:84:cf:4b:c5:6c:49:3c:b6:03:ca:1a:17:3c:48: 8d:78:9c:66:fb:e6:f5:c4:c8:be:14:84:cb:0e:1a: ca:c6:2f:10:70:cd:3c:75:83:25:6a:98:14:18:14: 87:b5:a5:0c:98:0b:e7:dd:70:e4:1f:5e:ca:9c:cc: 8a:e3:12:34:a2:7a:b8:0d:27:28:89:05:1c:e5:3d: 7f:a4:c5:8f:8d:c9:0d:5a:5b:a9:c5:c0:ad:d2:f6: 04:ad:1b:95:57:d7:86:67:3f:61:55:44:8b:df:54: b7:18:d7:dc:96:79:39:9a:b2:3c:64:fd:1c:3e:6f: 60:0c:6e:df:9b:5a:ec:20:e5:2b:7e:bc:70:da:ec: 9c:07:6c:6d:bb:9e:2f:67:c6:58:a6:91:5c:d7:e3: 74:00:88:f3:39:23:64:da:86:30:68:7b:91:9c:92: ac:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:86:A8:4E:05:DA:A9:BC:82:F8:0A:AB:45:35:95:61:66:B3:2C:BB X509v3 Authority Key Identifier: keyid:2F:53:3E:A0:E4:08:19:DF:56:3E:3F:7F:E3:FE:87:42:8D:52:A0:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/L1M-oOQIGd9WPj9_4_6HQo1SoNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1M-oOQIGd9WPj9_4_6HQo1SoNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172999/B1C1B0DA031E11ED96E25620C4F9AE02/88E1581E93C611F093DD4E26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.40.8.0/22 103.180.160.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:e4:f5:95:78:d4:3b:ad:55:b1:af:6d:71:a2:53:87:b5:1b: c4:7f:82:e9:de:e9:9f:ff:6b:27:74:2c:ba:7f:df:5b:ab:ac: 0b:a6:d8:92:c3:13:e6:85:d7:cb:6b:c7:26:0a:a2:dd:35:6b: 5c:37:34:c3:42:70:be:f3:65:fe:ce:fa:7f:6f:d8:13:d8:c8: 81:0c:e3:4d:73:20:af:bf:53:28:a6:db:aa:69:56:4a:1b:cf: 9a:1b:2e:6f:bf:a8:5b:ad:95:07:3a:29:c3:50:71:57:e2:bd: 92:0c:57:cf:c6:d0:ed:b1:0b:39:79:1c:89:70:e4:08:e7:c4: f2:92:50:35:28:b4:00:94:62:e2:f8:f1:1f:15:47:02:79:ce: cf:c5:9c:49:2c:82:1f:c1:31:e5:d8:3e:b3:63:76:14:46:cd: 35:b8:07:c7:68:0b:3e:01:54:50:5f:67:a8:b9:2c:b4:79:a5: f6:fc:fe:e0:ad:1e:27:4f:d9:bd:dd:66:47:da:f6:ea:c7:9a: a6:14:f6:3d:31:46:c4:63:72:83:3a:ee:03:73:8f:87:53:51: ee:6d:c1:e2:9c:0e:ea:68:e9:67:eb:78:35:2c:ac:5a:ba:cf: 9a:01:6a:3f:d9:07:21:62:bf:96:b8:14:60:1f:c0:7f:97:16: 47:9e:51:7b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5OTkxMTAvBgNVBAUTKDJGNTMzRUEwRTQwODE5REY1NjNFM0Y3RkUzRkU4NzQy OEQ1MkEwRDUwHhcNMjYwNDAzMDEzMzE2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMThkYy03MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVaklvHeqM9SoYhToot8tDC1AxHkVGrP2Hgz/6+lKWwYLX4EWMjnR2RS91BS JNwHGzs/qEB9NCn6F+0xbYo5zT2gGBZYgt4nWlpxkYYDyJrMvZ2y4z2JzWNThM9L xWxJPLYDyhoXPEiNeJxm++b1xMi+FITLDhrKxi8QcM08dYMlapgUGBSHtaUMmAvn 3XDkH17KnMyK4xI0onq4DScoiQUc5T1/pMWPjckNWlupxcCt0vYErRuVV9eGZz9h VUSL31S3GNfclnk5mrI8ZP0cPm9gDG7fm1rsIOUrfrxw2uycB2xtu54vZ8ZYppFc 1+N0AIjzOSNk2oYwaHuRnJKszwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOCGqE4F 2qm8gvgKq0U1lWFmsyy7MB8GA1UdIwQYMBaAFC9TPqDkCBnfVj4/f+P+h0KNUqDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk5OS9CMUMxQjBEQTAz MUUxMUVEOTZFMjU2MjBDNEY5QUUwMi9MMU0tb09RSUdkOVdQajlfNF82SFFvMVNv TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxTS1vT1FJR2Q5V1BqOV80XzZIUW8xU29OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5OTkvQjFDMUIwREEwMzFFMTFFRDk2RTI1NjIwQzRGOUFFMDIvODhFMTU4MUU5 M0M2MTFGMDkzREQ0RTI2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZygIAwQBZ7SgMA0GCSqGSIb3DQEBCwUAA4IBAQB95PWVeNQ7rVWx r21xolOHtRvEf4Lp3umf/2sndCy6f99bq6wLptiSwxPmhdfLa8cmCqLdNWtcNzTD QnC+82X+zvp/b9gT2MiBDONNcyCvv1MoptuqaVZKG8+aGy5vv6hbrZUHOinDUHFX 4r2SDFfPxtDtsQs5eRyJcOQI58TyklA1KLQAlGLi+PEfFUcCec7PxZxJLIIfwTHl 2D6zY3YURs01uAfHaAs+AVRQX2eouSy0eaX2/P7grR4nT9m93WZH2vbqx5qmFPY9 MUbEY3KDOu4Dc4+HU1HubcHinA7qaOln63g1LKxaus+aAWo/2QchYr+WuBRgH8B/ lxZHnlF7 -----END CERTIFICATE-----Generated at Fri Apr 17 12:59:50 2026 by rpki-client