$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa File: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (raw, json) Hash identifier: k3WVwtkl6L7ZLGV3P7GhulqncgzNNGVUWm1IeT8xDNw= Subject key identifier: F7:27:D1:E7:69:04:C7:D9:1B:6D:E0:90:C7:4D:BC:5A:C4:F0:FB:2C Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 0251 Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa Signing time: Thu 09 Apr 2026 02:35:39 +0000 ROA not before: Thu 09 Apr 2026 02:35:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136463 IP address blocks: 103.9.42.0/24 maxlen: 24 103.9.43.0/24 maxlen: 24 103.89.18.0/24 maxlen: 24 103.89.19.0/24 maxlen: 24 103.105.140.0/24 maxlen: 24 103.105.141.0/24 maxlen: 24 2400:e940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Apr 9 02:35:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d7107b-e803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:21:9c:13:fa:59:a6:30:1f:d2:11:c0:88:d7: 18:ce:1c:2f:c6:47:40:fe:fc:e8:4c:83:22:87:4b: 97:c1:e0:22:32:7b:c4:e0:34:f2:83:9d:00:24:75: 73:46:25:cf:09:f1:f7:a2:39:22:55:22:61:3e:a5: 87:63:b5:3a:2d:3d:94:40:bb:8a:c3:33:10:d5:5c: 73:ed:01:ce:b7:b2:bb:10:9a:91:ee:3f:7d:e8:c3: 9f:e6:33:7c:2d:77:22:70:e7:44:e0:f5:2f:bd:7c: 40:5f:e8:87:d4:51:5c:b1:7c:41:eb:f8:20:1e:48: 40:25:24:0b:1f:4b:94:f5:7c:f2:17:3a:81:5f:96: 45:8f:c6:43:e1:bb:9f:6e:ed:f1:92:55:83:32:2d: d1:ab:84:95:1d:ee:2d:02:68:18:95:5c:60:17:28: e5:46:76:04:51:a0:a9:65:bd:51:e1:5d:60:16:90: 7e:83:4f:d1:47:15:61:49:02:a8:a5:0c:ec:9d:7e: 60:63:42:59:65:5b:d1:46:b1:31:1b:bd:27:96:79: f1:af:13:2f:a7:17:c8:d4:be:f1:71:f9:2c:26:c8: 4a:5d:6b:7d:c8:92:dc:8a:52:73:66:51:cd:16:8b: 0b:54:6d:84:71:b6:20:20:af:ed:c0:15:93:19:61: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:27:D1:E7:69:04:C7:D9:1B:6D:E0:90:C7:4D:BC:5A:C4:F0:FB:2C X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.42.0/23 103.89.18.0/23 103.105.140.0/23 IPv6: 2400:e940::/32 Signature Algorithm: sha256WithRSAEncryption 00:b0:44:4e:cf:44:dc:41:e5:4d:43:d9:5f:75:c3:ac:f6:12: 26:a7:b5:bb:e4:05:6d:54:94:6f:0c:d3:d0:c6:35:73:af:be: 60:41:f1:f3:61:30:94:46:f3:e2:a4:d5:4e:e9:9b:c7:04:94: 64:f1:92:c8:80:00:0c:13:c2:f4:ca:5f:a7:40:4a:55:46:59: 09:d5:8a:a3:82:6d:85:10:0d:90:aa:69:4e:e9:d3:bb:40:4a: 4d:fc:2b:20:03:8c:11:a7:e3:42:dc:53:41:76:35:f3:a5:a2: dc:0d:3c:79:e4:f3:85:4e:02:3a:40:78:83:98:6e:35:16:d2: 2e:42:b9:2a:79:18:14:19:76:f4:5b:a7:c0:14:f0:04:3b:c7: 47:c3:f6:59:d1:d9:ac:15:c0:5c:5c:3b:3e:41:96:ae:b1:83: 32:9f:8e:31:42:8e:00:3f:cd:0a:55:b5:d2:18:8a:2a:9a:6f: 3e:4d:37:ac:f4:0e:5e:8e:0b:8d:d6:c0:1f:b5:61:5f:64:f4: be:2e:47:7b:37:26:27:5b:76:c2:a9:a6:7c:6c:7a:92:6d:70: 65:74:b3:57:0c:f8:53:67:31:71:ee:71:8c:36:38:b9:d3:bb: d1:bf:f6:4d:c1:98:df:61:7a:14:66:8b:9b:e6:61:7f:6e:d9: d6:cc:1c:42 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjYwNDA5MDIzNTM5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MTA3Yi1lODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSGcE/pZpjAf0hHAiNcYzhwvxkdA/vzoTIMih0uXweAiMnvE4DTyg50AJHVz RiXPCfH3ojkiVSJhPqWHY7U6LT2UQLuKwzMQ1Vxz7QHOt7K7EJqR7j996MOf5jN8 LXcicOdE4PUvvXxAX+iH1FFcsXxB6/ggHkhAJSQLH0uU9XzyFzqBX5ZFj8ZD4buf bu3xklWDMi3Rq4SVHe4tAmgYlVxgFyjlRnYEUaCpZb1R4V1gFpB+g0/RRxVhSQKo pQzsnX5gY0JZZVvRRrExG70nlnnxrxMvpxfI1L7xcfksJshKXWt9yJLcilJzZlHN FosLVG2EcbYgIK/twBWTGWHOAQIDAQABo4ICezCCAncwHQYDVR0OBBYEFPcn0edp BMfZG23gkMdNvFrE8PssMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NDIvRTBFN0RCNTZDODM5MTFFREFDNzJCMTFDQzRGOUFFMDIvNjVFMDI2NzBD ODNFMTFFRDlGQUFGQTIyQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZwkqAwQBZ1kSAwQBZ2mMMA0EAgACMAcDBQAkAOlAMA0GCSqGSIb3 DQEBCwUAA4IBAQAAsEROz0TcQeVNQ9lfdcOs9hImp7W75AVtVJRvDNPQxjVzr75g QfHzYTCURvPipNVO6ZvHBJRk8ZLIgAAME8L0yl+nQEpVRlkJ1Yqjgm2FEA2QqmlO 6dO7QEpN/CsgA4wRp+NC3FNBdjXzpaLcDTx55POFTgI6QHiDmG41FtIuQrkqeRgU GXb0W6fAFPAEO8dHw/ZZ0dmsFcBcXDs+QZausYMyn44xQo4AP80KVbXSGIoqmm8+ TTes9A5ejguN1sAftWFfZPS+Lkd7NyYnW3bCqaZ8bHqSbXBldLNXDPhTZzFx7nGM Nji507vRv/ZNwZjfYXoUZoub5mF/btnWzBxC -----END CERTIFICATE-----Generated at Sat Apr 18 06:12:26 2026 by rpki-client