$ rpki-client -vvf rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa File: 0C3D8674345511EFA05D0C10C4F9AE02.roa (raw, json) Hash identifier: HRou4YD/uzujxN885LS4SB7lyLQ56IuCpK60S++EpqE= Subject key identifier: B9:DE:89:62:38:C1:F8:33:47:C2:E5:0E:79:34:C7:BA:67:32:D8:D9 Certificate issuer: /CN=A918DA0C/serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Certificate serial: 05E9 Authority key identifier: 6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:59:12 +0000 ROA not before: Tue 02 Sep 2025 23:43:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142595 IP address blocks: 103.170.172.0/23 maxlen: 23 103.170.172.0/24 maxlen: 24 103.170.173.0/24 maxlen: 24 2001:df7:2180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1513 (0x5e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DA0C, serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Validity Not Before: Sep 2 23:43:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42a10-bb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:69:56:6e:11:3b:c4:4c:f5:cc:91:17:1a:db: 2d:9c:f0:ea:4c:f0:33:db:1c:dc:9d:ca:90:78:b2: ed:01:de:5f:95:85:70:38:eb:f1:63:73:fc:3f:c1: 28:55:21:99:59:b3:46:aa:c8:79:83:ef:c5:12:f6: 02:8d:55:61:b9:db:07:f1:70:45:33:50:f2:1f:5f: fa:72:3e:62:9f:bc:50:75:b5:c3:4e:ae:05:27:7f: 84:56:85:87:08:92:50:eb:88:ff:5b:99:d9:6c:54: 2c:0e:40:6d:af:11:04:df:3b:c5:1f:25:32:2a:ff: 20:29:e5:85:b6:1d:1f:58:dc:83:9b:bd:04:2b:ce: c5:48:e9:76:41:a9:22:3c:ac:c6:8d:93:30:60:22: 9f:22:fc:9f:5a:31:32:31:c5:44:6a:ed:5c:e1:3d: 2d:15:a9:7a:0e:6b:af:8c:7c:16:32:e1:b1:f8:c0: 46:f7:da:c1:e6:20:8b:d5:82:25:c1:21:92:35:50: e7:6b:76:d6:0c:ad:b4:c8:39:b1:63:77:6f:5b:dc: 89:20:57:ee:53:b9:f0:15:3a:8a:bc:83:b5:cc:b8: c7:9c:26:c9:a0:7e:dc:d5:2b:bb:52:7d:51:1a:19: c8:1d:c4:ff:52:9a:95:b4:cf:43:19:ff:1f:8f:9a: 8c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DE:89:62:38:C1:F8:33:47:C2:E5:0E:79:34:C7:BA:67:32:D8:D9 X509v3 Authority Key Identifier: keyid:6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.170.172.0/23 IPv6: 2001:df7:2180::/48 Signature Algorithm: sha256WithRSAEncryption 21:52:43:8b:fa:9e:6a:d8:be:84:e8:5b:27:3c:ed:5a:84:4f: 1d:7f:62:5e:36:70:9f:dd:39:37:21:0d:bc:b7:a9:6c:93:20: 41:b3:91:27:28:f3:29:2a:68:bf:5b:bd:79:00:e9:35:9a:f1: bb:b5:b3:c6:e9:d0:b9:b1:18:2b:fa:78:6a:1b:fa:f6:3f:96: 81:fd:2a:e3:6f:5c:62:a7:f5:25:96:af:d4:b5:72:90:6f:5a: cf:6c:96:0b:f9:2d:ee:9c:35:ff:de:2f:df:ea:95:d8:99:a1: de:5c:64:1c:e5:aa:ef:e9:2a:8c:9c:df:2d:3f:48:39:34:fc: 3f:b0:14:fb:7f:11:ec:8d:f7:92:fe:ce:a3:59:4c:66:f9:55: 08:47:d6:8e:bc:9c:6a:9d:9d:f0:35:7a:a1:32:6f:fd:80:cc: 19:3a:42:27:6d:42:e3:63:fb:07:1b:71:f8:89:3e:b3:4f:07: 41:05:3c:4d:ea:d6:04:a5:55:b8:99:a4:ed:28:57:97:b8:89: a9:59:60:08:39:17:88:98:25:b0:be:39:38:80:57:22:75:94: 29:2a:a3:5c:3c:0d:77:aa:65:34:0f:0d:73:7b:4f:9d:06:69: 93:1c:3e:27:8d:23:af:37:7c:4a:8f:ee:d3:98:d2:e4:e4:c1: b3:8a:d3:19 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERBMEMxMTAvBgNVBAUTKDZBOTU0ODFDRThGNDBERDg4OTVEMUZCN0FFRTkwRTU5 NTlCQTgzQzEwHhcNMjUwOTAyMjM0MzU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmExMC1iYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymlWbhE7xEz1zJEXGtstnPDqTPAz2xzcncqQeLLtAd5flYVwOOvxY3P8P8Eo VSGZWbNGqsh5g+/FEvYCjVVhudsH8XBFM1DyH1/6cj5in7xQdbXDTq4FJ3+EVoWH CJJQ64j/W5nZbFQsDkBtrxEE3zvFHyUyKv8gKeWFth0fWNyDm70EK87FSOl2Qaki PKzGjZMwYCKfIvyfWjEyMcVEau1c4T0tFal6DmuvjHwWMuGx+MBG99rB5iCL1YIl wSGSNVDna3bWDK20yDmxY3dvW9yJIFfuU7nwFTqKvIO1zLjHnCbJoH7c1Su7Un1R GhnIHcT/UpqVtM9DGf8fj5qMQQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLneiWI4 wfgzR8LlDnk0x7pnMtjZMB8GA1UdIwQYMBaAFGqVSBzo9A3YiV0ft67pDllZuoPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REEwQy9CNkRFMTMxMkYw NDkxMUVCOTQxRkZCMzJDNEY5QUUwMi9hcFZJSE9qMERkaUpYUi0zcnVrT1dWbTZn OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwVklIT2owRGRpSlhSLTNydWtPV1ZtNmc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERBMEMvQjZERTEzMTJGMDQ5MTFFQjk0MUZGQjMyQzRGOUFFMDIvMEMzRDg2NzQz NDU1MTFFRkEwNUQwQzEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6qsMA8EAgACMAkDBwAgAQ33IYAwDQYJKoZIhvcNAQELBQADggEB ACFSQ4v6nmrYvoToWyc87VqETx1/Yl42cJ/dOTchDby3qWyTIEGzkSco8ykqaL9b vXkA6TWa8bu1s8bp0LmxGCv6eGob+vY/loH9KuNvXGKn9SWWr9S1cpBvWs9slgv5 Le6cNf/eL9/qldiZod5cZBzlqu/pKoyc3y0/SDk0/D+wFPt/EeyN95L+zqNZTGb5 VQhH1o68nGqdnfA1eqEyb/2AzBk6QidtQuNj+wcbcfiJPrNPB0EFPE3q1gSlVbiZ pO0oV5e4ialZYAg5F4iYJbC+OTiAVyJ1lCkqo1w8DXeqZTQPDXN7T50GaZMcPieN I683fEqP7tOY0uTkwbOK0xk= -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:37 2026 by rpki-client