$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa File: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (raw, json) Hash identifier: NqH5a+mXAbgiI1Lm08irrgE1MllN5dr8UASRRlEklP8= Subject key identifier: 49:0E:FE:6C:16:35:C6:EB:35:EB:2B:40:91:82:E0:EA:DA:DB:D4:ED Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0CBE Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:41:24 +0000 ROA not before: Thu 20 Mar 2025 18:57:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138659 IP address blocks: 103.135.232.0/24 maxlen: 24 103.135.233.0/24 maxlen: 24 2404:86c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Mar 20 18:57:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a425e4-d320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e2:b3:0e:83:e0:ae:ef:0a:3c:f2:20:e9:d3: 94:b4:5f:54:86:4f:ea:64:ce:c0:66:e0:a8:6b:d4: a8:dd:f1:57:3b:4f:4d:1f:aa:e2:e0:0a:d6:06:34: da:14:18:c5:ce:d3:3a:00:95:9b:fe:96:77:48:69: 28:6b:48:45:07:37:9f:cf:a4:f3:fa:e5:a2:42:03: bd:a6:08:73:1e:8c:95:31:d2:84:cd:b7:9c:96:37: b9:55:80:ea:ae:4b:b1:6e:dc:de:59:61:1b:61:76: 25:c4:9a:8f:41:41:e2:a9:68:33:52:b5:41:48:d7: 66:5d:5e:84:58:c0:d7:97:07:a2:b0:1f:2d:2c:b1: 53:c3:4f:34:93:6b:ce:9a:47:f8:37:af:52:b4:94: 9d:ca:48:38:ff:6f:6e:44:81:25:ff:65:be:ca:9f: c8:2b:e9:f2:42:78:b6:f6:73:8a:c8:cb:cf:13:65: 74:59:60:c0:a4:a8:6b:88:7e:6a:28:b9:47:17:0e: 11:82:81:09:08:05:25:0a:d2:8c:b8:5b:12:27:e0: f0:25:d5:55:62:4a:47:2e:24:49:88:3b:dd:2e:92: 05:51:71:c2:fc:fd:6a:e3:eb:0c:23:d4:f2:2a:ad: 7a:79:37:6b:f6:9c:9f:88:57:ed:94:25:bd:ae:23: ca:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0E:FE:6C:16:35:C6:EB:35:EB:2B:40:91:82:E0:EA:DA:DB:D4:ED X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.232.0/23 IPv6: 2404:86c0::/32 Signature Algorithm: sha256WithRSAEncryption a3:1b:cf:07:92:2f:0f:ae:3a:60:26:56:4e:11:0c:45:0c:e5: 1e:fc:d5:24:8a:4b:bf:92:5b:a6:9e:bc:97:bb:d1:54:55:66: 81:f4:3b:29:c7:58:02:5d:2d:b9:8d:10:d4:07:19:59:90:d8: 34:d8:68:55:08:a1:86:51:d1:fd:db:b8:a6:12:f7:8a:a0:47: f1:d8:42:e8:7a:69:2e:28:f2:b6:72:cb:1b:10:f4:0f:a5:91: 31:8e:29:f5:02:98:b9:29:92:18:ef:6b:f6:15:e7:ec:db:d2: 69:3b:db:8a:1f:89:12:67:54:93:e2:c1:16:1a:db:15:21:4a: f8:a9:bf:33:8e:8c:f2:93:f3:96:47:8d:c9:9a:65:4f:49:13: 27:5c:13:b1:31:46:31:df:1b:ce:cd:a6:50:fb:5b:5e:64:40: 8a:ef:84:3f:17:9c:d3:f8:a0:65:40:b3:e6:6f:c0:74:a8:22: 6a:c6:56:bd:0a:dc:4d:6a:91:92:6a:30:4d:29:f3:d7:6e:cd: 59:82:c5:7f:d3:c5:92:ff:89:2e:65:e2:13:2e:8b:51:0d:5e: a3:0d:16:dc:49:91:15:6a:1f:d4:f9:38:b7:5d:b6:a2:32:d7: 67:84:16:bc:10:84:7d:44:03:bb:13:2b:cd:c8:27:24:61:c9: 57:5f:32:7d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUwMzIwMTg1NzU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjVlNC1kMzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eKzDoPgru8KPPIg6dOUtF9Uhk/qZM7AZuCoa9So3fFXO09NH6ri4ArWBjTa FBjFztM6AJWb/pZ3SGkoa0hFBzefz6Tz+uWiQgO9pghzHoyVMdKEzbeclje5VYDq rkuxbtzeWWEbYXYlxJqPQUHiqWgzUrVBSNdmXV6EWMDXlweisB8tLLFTw080k2vO mkf4N69StJSdykg4/29uRIEl/2W+yp/IK+nyQni29nOKyMvPE2V0WWDApKhriH5q KLlHFw4RgoEJCAUlCtKMuFsSJ+DwJdVVYkpHLiRJiDvdLpIFUXHC/P1q4+sMI9Ty Kq16eTdr9pyfiFftlCW9riPKywIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEkO/mwW NcbrNesrQJGC4Ora29TtMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNGMDMvNjRGNkMyOEUwREUxMTFFQTk5NjY5ODg1QzRGOUFFMDIvMUYzQzZFM0M2 RTY4MTFFRjkzRjBBNjRFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4foMA0EAgACMAcDBQAkBIbAMA0GCSqGSIb3DQEBCwUAA4IBAQCj G88Hki8PrjpgJlZOEQxFDOUe/NUkiku/klumnryXu9FUVWaB9Dspx1gCXS25jRDU BxlZkNg02GhVCKGGUdH927imEveKoEfx2ELoemkuKPK2cssbEPQPpZExjin1Api5 KZIY72v2Fefs29JpO9uKH4kSZ1ST4sEWGtsVIUr4qb8zjozyk/OWR43JmmVPSRMn XBOxMUYx3xvOzaZQ+1teZECK74Q/F5zT+KBlQLPmb8B0qCJqxla9CtxNapGSajBN KfPXbs1ZgsV/08WS/4kuZeITLotRDV6jDRbcSZEVah/U+Ti3XbaiMtdnhBa8EIR9 RAO7EyvNyCckYclXXzJ9 -----END CERTIFICATE-----Generated at Mon Mar 2 22:19:20 2026 by rpki-client