$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa File: C885D0C8374B11EEA2157233C4F9AE02.roa (raw, json) Hash identifier: jQVly8FPPuFgOZcXUN0l/eQQVf0qa488CPB3wrBLOsc= Subject key identifier: EF:A9:70:A9:6D:1C:51:95:05:08:06:23:F6:34:32:8C:98:73:7C:29 Certificate issuer: /CN=A9194A8C/serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Certificate serial: 0200 Authority key identifier: CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa Signing time: Fri 10 Apr 2026 23:29:38 +0000 ROA not before: Fri 10 Apr 2026 23:29:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142121 IP address blocks: 103.166.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Validity Not Before: Apr 10 23:29:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d987e2-a90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a0:a0:4e:74:49:96:f6:bb:8b:a0:83:d1:6c: d3:95:40:9e:f8:80:ff:ff:ee:eb:d6:ad:b4:2a:13: f4:34:8c:44:d1:10:a4:29:40:96:8b:cb:74:d8:3a: 62:88:80:d3:7b:2b:56:50:24:bb:94:1c:41:f4:b9: ed:1f:a3:62:1c:a5:c6:a3:cd:eb:9a:76:0f:e2:08: 39:31:56:84:5c:36:13:91:71:41:23:0c:a3:03:ef: 00:d5:7d:08:35:4a:b2:96:88:f5:a2:46:71:4f:84: e9:e3:c4:c2:c1:e1:9e:36:6e:34:e4:6e:d8:20:58: e0:d4:5e:6b:6d:05:c2:9e:06:ac:4a:fe:e3:f8:df: a0:f6:14:6f:0b:4f:37:63:84:ae:e4:ad:84:a5:7a: 66:09:b7:d1:9e:69:87:63:78:e6:7a:a4:0d:48:13: 25:07:04:73:f0:4a:89:2d:e4:97:d2:85:3f:0b:a2: 00:2f:cc:42:51:8c:f4:0d:b4:e7:0f:64:1d:70:50: 34:32:e7:aa:b5:6c:3a:5d:e1:0a:14:c0:30:1f:8d: 8e:98:2e:66:a5:5b:17:d1:40:82:ef:c7:4c:53:0d: cb:cb:2b:b0:95:03:ab:2d:82:48:86:cc:3a:30:97: bb:21:c2:47:7d:1b:ce:e3:fc:62:1a:8d:18:98:6c: 21:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A9:70:A9:6D:1C:51:95:05:08:06:23:F6:34:32:8C:98:73:7C:29 X509v3 Authority Key Identifier: keyid:CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.168.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:08:ab:07:17:b8:6f:b6:ca:a3:8c:60:78:af:d2:0e:cf:85: ce:55:cd:82:06:93:c4:48:75:23:60:a2:51:99:af:2f:c2:31: d4:7f:eb:0e:55:75:65:18:47:a3:66:38:a1:07:fe:1d:b1:57: 02:d8:75:76:b0:29:87:c2:6a:e4:4d:e6:a9:77:f3:2c:47:0c: 26:75:62:74:f4:11:38:f8:48:c0:44:60:11:f6:7a:67:cc:88: 51:13:19:28:b3:6f:e7:f1:97:f8:27:de:5e:58:21:49:24:51: 02:02:4c:e6:16:f1:b1:42:41:f6:f7:67:fc:54:29:b4:50:0b: a0:f7:64:05:db:dc:86:dc:57:63:6e:f0:88:80:ef:e9:70:dc: b6:7f:f2:04:ee:aa:c7:be:13:45:e4:c5:d5:ca:69:fd:63:25: ff:01:e3:ce:a8:bf:6b:a0:b8:47:99:59:8a:d9:e0:ec:28:89: 70:49:ae:48:94:17:c1:d3:95:94:71:6d:6f:35:4f:09:a5:24: 6f:a0:9d:57:d9:49:d9:e3:46:f7:83:fa:eb:34:56:7c:ae:bc: 86:58:3c:de:8f:39:05:49:f6:4e:11:95:7f:8f:81:86:7f:62: 38:5c:47:3b:56:67:b3:8f:e1:74:6c:87:25:67:16:fb:b4:8c: df:18:ed:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKENBODk5MDg5NUM0RjREMEU1RkUzREY4MTU4ODBCMjAz NTkwRkIyN0EwHhcNMjYwNDEwMjMyOTM4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5ODdlMi1hOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaCgTnRJlva7i6CD0WzTlUCe+ID//+7r1q20KhP0NIxE0RCkKUCWi8t02Dpi iIDTeytWUCS7lBxB9LntH6NiHKXGo83rmnYP4gg5MVaEXDYTkXFBIwyjA+8A1X0I NUqyloj1okZxT4Tp48TCweGeNm405G7YIFjg1F5rbQXCngasSv7j+N+g9hRvC083 Y4Su5K2EpXpmCbfRnmmHY3jmeqQNSBMlBwRz8EqJLeSX0oU/C6IAL8xCUYz0DbTn D2QdcFA0MueqtWw6XeEKFMAwH42OmC5mpVsX0UCC78dMUw3LyyuwlQOrLYJIhsw6 MJe7IcJHfRvO4/xiGo0YmGwhBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO+pcKlt HFGVBQgGI/Y0MoyYc3wpMB8GA1UdIwQYMBaAFMqJkIlcT00OX+PfgViAsgNZD7J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi95b21RaVZ4UFRRNWY0OS1CV0lDeUExa1Bz bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvbVFpVnhQVFE1ZjQ5LUJXSUN5QTFrUHNuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBOEMvOUU2NzExQTQyQjFDMTFFQzk1OTk3NDA5QzRGOUFFMDIvQzg4NUQwQzgz NzRCMTFFRUEyMTU3MjMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6aoMA0GCSqGSIb3DQEBCwUAA4IBAQB+CKsHF7hvtsqjjGB4r9IO z4XOVc2CBpPESHUjYKJRma8vwjHUf+sOVXVlGEejZjihB/4dsVcC2HV2sCmHwmrk Teapd/MsRwwmdWJ09BE4+EjARGAR9npnzIhRExkos2/n8Zf4J95eWCFJJFECAkzm FvGxQkH292f8VCm0UAug92QF29yG3FdjbvCIgO/pcNy2f/IE7qrHvhNF5MXVymn9 YyX/AePOqL9roLhHmVmK2eDsKIlwSa5IlBfB05WUcW1vNU8JpSRvoJ1X2UnZ40b3 g/rrNFZ8rryGWDzejzkFSfZOEZV/j4GGf2I4XEc7Vmezj+F0bIclZxb7tIzfGO1j -----END CERTIFICATE-----Generated at Sat Apr 18 00:40:31 2026 by rpki-client