$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa File: C885D0C8374B11EEA2157233C4F9AE02.roa (raw, json) Hash identifier: gEivaAocnPzbfGGrI76pBSo4q7wx40/Yh+2RzkOkzLo= Subject key identifier: 29:68:7E:9D:C5:33:A9:9E:AF:8C:9B:E2:52:68:3F:1A:F3:99:8E:82 Certificate issuer: /CN=A9194A8C/serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Certificate serial: 01E7 Authority key identifier: CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:55:22 +0000 ROA not before: Fri 09 May 2025 00:16:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142121 IP address blocks: 103.166.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Validity Not Before: May 9 00:16:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48b9a-c6ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8b:14:2b:8e:be:b1:fb:90:9d:ac:a2:00:17: 32:c9:2e:82:4e:40:73:03:30:39:a9:6d:9a:f5:50: c9:82:a1:03:7d:ba:92:a4:4c:5e:41:53:57:19:2c: 1a:38:d0:78:29:c7:fe:3e:63:c3:47:a9:9c:d2:32: 52:4b:15:1a:19:6d:2c:ef:17:11:51:c3:b2:2d:06: a4:00:5b:5a:73:61:a1:13:29:d0:e9:1a:cd:7a:5c: 59:3e:96:1f:aa:7b:f6:ad:5c:1e:d7:7e:1b:12:3c: ad:22:38:6b:24:bc:e2:9b:da:8b:d3:12:44:5a:1a: a8:2f:54:42:d3:d9:74:7c:fc:8b:34:71:5d:19:31: e5:e4:a0:85:b4:9a:0b:6c:42:0f:1b:9a:f5:93:d5: 0e:e1:51:0f:a2:ce:c3:21:1a:b9:93:9e:a1:35:ab: a7:76:fd:74:40:1d:ac:85:82:58:eb:d9:a4:92:63: b8:82:34:20:0b:81:ae:22:f7:93:94:f3:8e:5e:4c: cb:8e:dd:2e:ba:36:60:54:23:89:f0:09:f5:2a:f1: ed:35:1c:f8:45:7d:a3:e8:57:18:f8:a7:92:4c:37: a7:4b:29:5b:c4:6a:88:b1:6d:48:13:73:ad:97:ba: 68:f1:8c:b4:bc:cb:d3:f6:a7:da:fd:a2:48:7f:4f: 56:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:68:7E:9D:C5:33:A9:9E:AF:8C:9B:E2:52:68:3F:1A:F3:99:8E:82 X509v3 Authority Key Identifier: keyid:CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.168.0/23 Signature Algorithm: sha256WithRSAEncryption 84:bf:fd:96:7b:6d:ca:fe:36:c4:12:ba:5a:c6:47:a8:bd:ec: 8f:6d:74:36:fb:94:d3:8a:28:35:76:09:84:61:e2:ab:87:25: 78:30:87:83:31:4c:53:f8:e0:12:d2:c5:da:ab:79:e2:44:ac: fa:b3:46:63:8e:b3:b4:59:8b:77:4b:93:8f:fe:9d:cb:8b:c1: 0d:e8:50:97:3b:70:5f:24:7c:2c:ca:4a:17:0b:4a:b9:a8:82: fa:f1:9b:ed:4f:97:85:b1:8f:c8:96:ea:15:4e:46:f5:14:57: 17:b3:7d:9f:0f:d6:ca:34:77:c0:3c:cc:97:22:6e:a7:e3:03: ff:90:37:eb:55:7f:25:01:74:da:a1:b2:5c:c6:44:e0:11:06: d4:f4:5f:0c:2f:a4:37:8c:a0:1f:87:90:f3:cb:59:d5:76:28: ce:87:83:0f:69:cb:80:14:fe:79:44:59:5d:70:44:e5:d8:4d: 9c:dc:ca:ce:8f:c7:40:e3:55:5f:f3:52:90:79:de:1d:d7:9c: a8:cc:d6:a5:27:a6:10:31:ce:ed:8f:6f:d4:6e:ad:b7:53:6d: 98:49:c5:5f:26:e0:c8:a0:ad:47:05:74:20:e2:d4:f6:2e:01: 53:fe:2f:b9:9a:76:e3:7e:46:ac:89:69:97:4a:aa:05:be:a1: c2:99:ab:03 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKENBODk5MDg5NUM0RjREMEU1RkUzREY4MTU4ODBCMjAz NTkwRkIyN0EwHhcNMjUwNTA5MDAxNjIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI5YS1jNmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9osUK46+sfuQnayiABcyyS6CTkBzAzA5qW2a9VDJgqEDfbqSpExeQVNXGSwa ONB4Kcf+PmPDR6mc0jJSSxUaGW0s7xcRUcOyLQakAFtac2GhEynQ6RrNelxZPpYf qnv2rVwe134bEjytIjhrJLzim9qL0xJEWhqoL1RC09l0fPyLNHFdGTHl5KCFtJoL bEIPG5r1k9UO4VEPos7DIRq5k56hNaundv10QB2shYJY69mkkmO4gjQgC4GuIveT lPOOXkzLjt0uujZgVCOJ8An1KvHtNRz4RX2j6FcY+KeSTDenSylbxGqIsW1IE3Ot l7po8Yy0vMvT9qfa/aJIf09WMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFClofp3F M6mer4yb4lJoPxrzmY6CMB8GA1UdIwQYMBaAFMqJkIlcT00OX+PfgViAsgNZD7J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi95b21RaVZ4UFRRNWY0OS1CV0lDeUExa1Bz bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvbVFpVnhQVFE1ZjQ5LUJXSUN5QTFrUHNuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBOEMvOUU2NzExQTQyQjFDMTFFQzk1OTk3NDA5QzRGOUFFMDIvQzg4NUQwQzgz NzRCMTFFRUEyMTU3MjMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6aoMA0GCSqGSIb3DQEBCwUAA4IBAQCEv/2We23K/jbEErpaxkeo veyPbXQ2+5TTiig1dgmEYeKrhyV4MIeDMUxT+OAS0sXaq3niRKz6s0ZjjrO0WYt3 S5OP/p3Li8EN6FCXO3BfJHwsykoXC0q5qIL68ZvtT5eFsY/IluoVTkb1FFcXs32f D9bKNHfAPMyXIm6n4wP/kDfrVX8lAXTaobJcxkTgEQbU9F8ML6Q3jKAfh5Dzy1nV dijOh4MPacuAFP55RFldcETl2E2c3MrOj8dA41Vf81KQed4d15yozNalJ6YQMc7t j2/Ubq23U22YScVfJuDIoK1HBXQg4tT2LgFT/i+5mnbjfkasiWmXSqoFvqHCmasD -----END CERTIFICATE-----Generated at Mon Mar 2 21:13:53 2026 by rpki-client