$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa File: 0DA7D6ACBEF111ED9634C070C4F9AE02.roa (raw, json) Hash identifier: GMNbFj5OMAYQTJHJmZ3/lLnrwOgYll7c/asD4WCaS0E= Subject key identifier: 39:42:E1:A0:F8:41:A4:84:9F:FF:E5:47:69:93:38:4A:85:A2:09:65 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 085F Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:02:42 +0000 ROA not before: Sun 02 Nov 2025 21:11:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133929 IP address blocks: 43.225.59.0/24 maxlen: 24 103.252.16.0/22 maxlen: 22 103.252.16.0/23 maxlen: 24 103.252.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18, serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Nov 2 21:11:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47f42-a310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:8f:95:42:60:f3:9b:90:bd:eb:32:ce:66: d9:0e:76:6a:59:01:0d:5b:5b:a5:29:7f:77:c4:b4: 88:9c:ed:db:bc:6b:43:f1:33:65:1b:b3:51:a4:1d: d0:dd:f6:2d:7a:9b:77:b4:b2:19:bf:fb:02:3e:94: 8d:6e:b7:f2:4e:f1:f2:9d:9a:1d:97:09:70:13:99: 29:ef:d3:cd:bf:16:45:4d:2a:38:a4:81:37:dc:a1: 28:fa:78:b4:6b:f4:44:28:ce:b3:3f:71:91:4a:05: 0e:25:3c:5e:f6:0b:a1:16:56:27:2f:d8:11:e9:24: 16:54:84:db:45:49:f6:72:00:4e:8a:34:af:e0:37: 99:56:b7:26:86:92:0d:8a:a5:40:c0:ae:27:49:f8: 02:6f:65:77:33:4f:39:1c:d7:88:df:4e:55:f9:41: c4:56:36:70:3b:a4:64:2c:12:5e:b8:6e:75:16:db: d3:3e:1a:43:7b:57:24:99:e4:38:a1:a4:97:0b:9f: 31:87:24:11:b1:ad:a6:19:51:f4:6d:d3:97:2d:11: 9c:2d:25:f2:df:ba:32:26:e8:41:08:5f:55:38:8b: 02:d2:23:30:38:33:a3:dd:76:9f:07:ca:d9:86:c4: e6:5b:c3:65:9a:d9:ea:83:26:a3:23:c5:9e:04:35: 3c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:42:E1:A0:F8:41:A4:84:9F:FF:E5:47:69:93:38:4A:85:A2:09:65 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.225.59.0/24 103.252.16.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:5e:4e:8b:0b:ea:c7:58:86:39:3f:3a:66:3b:33:a9:32:0f: 1c:b2:ec:9e:f8:9f:18:4a:dc:4d:e2:6f:14:28:d6:ab:4f:c7: ec:6e:ce:5e:07:31:16:7b:36:e7:03:2c:09:b2:ed:5b:50:db: e1:95:f6:f5:a2:77:36:a6:77:08:69:82:09:d9:65:a0:35:71: 1f:95:ff:4c:38:e6:9d:33:2f:6c:fb:f2:73:7f:89:0a:1d:c7: c0:ed:e9:05:0e:2f:73:3d:68:2f:16:ea:c6:55:5c:0b:40:cf: b1:57:af:54:9d:6b:e6:67:1f:1a:0e:04:a7:1b:36:f7:b7:f4: 28:b6:5c:d0:3a:8d:da:ad:10:a0:9f:a9:66:bd:44:ce:c2:16: 71:34:b1:34:be:f8:63:51:bd:1d:81:a7:26:60:40:64:3f:b2: aa:e0:7d:0d:14:8c:17:32:49:29:63:0d:84:fb:47:33:fe:59: b1:2d:6a:54:c2:53:d9:3d:d9:dd:fe:7d:9c:0a:2a:15:fe:84: b9:72:e2:27:10:e5:1e:16:23:8c:61:0d:29:54:69:86:0b:ad: d4:87:e8:07:9d:7c:7e:7c:02:4b:ce:5c:b5:db:91:1b:1e:5f: 75:11:07:e5:21:c7:f5:59:0c:fc:c4:4a:88:68:be:c9:97:c4: 40:69:9f:59 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjUxMTAyMjExMTEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Y0Mi1hMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA112PlUJg85uQvesyzmbZDnZqWQENW1ulKX93xLSInO3bvGtD8TNlG7NRpB3Q 3fYtept3tLIZv/sCPpSNbrfyTvHynZodlwlwE5kp79PNvxZFTSo4pIE33KEo+ni0 a/REKM6zP3GRSgUOJTxe9guhFlYnL9gR6SQWVITbRUn2cgBOijSv4DeZVrcmhpIN iqVAwK4nSfgCb2V3M085HNeI305V+UHEVjZwO6RkLBJeuG51FtvTPhpDe1ckmeQ4 oaSXC58xhyQRsa2mGVH0bdOXLRGcLSXy37oyJuhBCF9VOIsC0iMwODOj3XafB8rZ hsTmW8NlmtnqgyajI8WeBDU8VwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDlC4aD4 QaSEn//lR2mTOEqFogllMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvMERBN0Q2QUNC RUYxMTFFRDk2MzRDMDcwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+E7AwQCZ/wQMA0GCSqGSIb3DQEBCwUAA4IBAQAuXk6LC+rHWIY5 PzpmOzOpMg8csuye+J8YStxN4m8UKNarT8fsbs5eBzEWezbnAywJsu1bUNvhlfb1 onc2pncIaYIJ2WWgNXEflf9MOOadMy9s+/Jzf4kKHcfA7ekFDi9zPWgvFurGVVwL QM+xV69UnWvmZx8aDgSnGzb3t/QotlzQOo3arRCgn6lmvUTOwhZxNLE0vvhjUb0d gacmYEBkP7Kq4H0NFIwXMkkpYw2E+0cz/lmxLWpUwlPZPdnd/n2cCioV/oS5cuIn EOUeFiOMYQ0pVGmGC63Uh+gHnXx+fAJLzly125EbHl91EQflIcf1WQz8xEqIaL7J l8RAaZ9Z -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:38 2026 by rpki-client