$ rpki-client -vvf rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa File: C43988E4472611EE8CB34245C4F9AE02.roa (raw, json) Hash identifier: PZSS0Lk/xCF/5ioQ5ULIhRmgPu74E/AEMi2/vsULm5o= Subject key identifier: 65:B2:28:6D:41:84:26:DA:8E:6D:85:67:94:0D:91:52:37:EA:B7:A0 Certificate issuer: /CN=A9196480/serialNumber=A92F4CE489CD0E97D1676043F8C34F830679D8F7 Certificate serial: 01EF Authority key identifier: A9:2F:4C:E4:89:CD:0E:97:D1:67:60:43:F8:C3:4F:83:06:79:D8:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:35:32 +0000 ROA not before: Wed 09 Jul 2025 04:40:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58504 IP address blocks: 103.167.232.0/23 maxlen: 23 103.167.232.0/24 maxlen: 24 103.167.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.crl rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196480, serialNumber=A92F4CE489CD0E97D1676043F8C34F830679D8F7 Validity Not Before: Jul 9 04:40:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ec44-eaf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e1:0c:df:29:66:47:7a:67:97:bb:c4:bf:16: 2d:29:24:26:0d:a7:cd:86:05:c6:5e:3a:6c:f1:8d: a6:17:58:b5:ef:5b:5c:48:87:ee:22:ce:22:d6:e7: 54:69:91:97:26:2e:d8:f9:1c:7c:8f:f7:5b:d1:82: 43:8f:29:74:24:d0:74:8a:12:9f:17:9c:5d:8f:b5: b6:42:cb:04:2f:3a:33:c6:09:96:78:60:79:21:52: b1:05:d0:39:cf:21:f8:73:09:9f:d3:95:5b:b2:e1: d1:d9:48:5f:9a:1b:a0:57:6b:f5:6b:c0:a2:77:b1: ad:d8:1c:b8:f8:67:38:c3:2f:0a:9e:8a:b4:5d:13: d5:fa:c6:a9:8d:0e:85:2f:2b:40:2c:15:07:aa:ff: 1f:22:e9:5d:26:42:5a:b5:47:b7:a3:9f:60:24:76: 70:4d:6a:61:8f:88:30:f6:04:d0:84:b2:6e:9a:e5: 8d:c1:7d:fc:2b:9c:61:17:51:7f:a0:51:de:ad:c7: ca:6d:11:2c:20:c6:b6:ca:18:e3:f4:b5:27:2b:de: 29:f5:91:b5:fd:8b:c6:b4:7c:1c:27:1a:b4:15:37: 5e:b3:0d:e1:cc:34:1d:3d:20:70:96:a4:cb:ac:73: 22:ac:50:eb:12:5a:dc:4b:c7:1e:fd:d2:c4:45:4f: a7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B2:28:6D:41:84:26:DA:8E:6D:85:67:94:0D:91:52:37:EA:B7:A0 X509v3 Authority Key Identifier: keyid:A9:2F:4C:E4:89:CD:0E:97:D1:67:60:43:F8:C3:4F:83:06:79:D8:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qS9M5InNDpfRZ2BD-MNPgwZ52Pc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196480/45DA3FE62B8011EE9FF2F576C4F9AE02/C43988E4472611EE8CB34245C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.232.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:12:20:18:bd:0f:0e:88:28:0c:89:54:43:35:4c:d6:47:9e: 5f:d2:7d:fc:89:d5:f3:72:69:d8:8f:da:e3:16:75:28:c6:e2: 0f:15:51:d1:71:0a:ee:c4:4b:31:1b:d1:de:65:51:1f:a8:01: 4c:45:1d:8d:3d:68:80:6d:a3:27:9a:4d:eb:88:6f:15:92:5a: 23:8d:a8:4d:5f:8f:85:71:ce:7a:9c:58:33:d5:c4:47:f7:91: 66:bd:75:68:47:40:b6:7f:22:21:54:96:bd:0a:dc:9f:60:51: 25:8b:7e:c6:25:c6:38:4c:25:7f:e4:67:9f:3c:13:19:09:3c: 03:49:99:1f:54:0e:4a:c1:58:14:03:da:13:10:b8:b6:8c:5a: 20:01:5c:01:a6:c7:c6:bc:40:db:05:6e:1f:84:ea:17:9f:97: 6f:4f:1f:62:cc:07:e2:08:83:06:82:dc:d0:41:00:e9:c1:81: 82:c7:7d:77:b8:7d:1e:e0:55:18:a3:66:52:7a:66:31:8a:94: 66:42:fc:67:00:9f:28:89:df:29:08:d8:d3:d6:92:f4:b0:db: 1e:1b:52:1d:43:f0:be:b6:b4:40:08:0f:45:3c:23:06:26:e6: 33:78:50:f3:13:39:ab:cf:fd:be:ee:09:17:a9:d4:f4:7d:62: 40:2c:8c:8a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0ODAxMTAvBgNVBAUTKEE5MkY0Q0U0ODlDRDBFOTdEMTY3NjA0M0Y4QzM0Rjgz MDY3OUQ4RjcwHhcNMjUwNzA5MDQ0MDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWM0NC1lYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uEM3ylmR3pnl7vEvxYtKSQmDafNhgXGXjps8Y2mF1i171tcSIfuIs4i1udU aZGXJi7Y+Rx8j/db0YJDjyl0JNB0ihKfF5xdj7W2QssELzozxgmWeGB5IVKxBdA5 zyH4cwmf05VbsuHR2UhfmhugV2v1a8Cid7Gt2By4+Gc4wy8Knoq0XRPV+sapjQ6F LytALBUHqv8fIuldJkJatUe3o59gJHZwTWphj4gw9gTQhLJumuWNwX38K5xhF1F/ oFHercfKbREsIMa2yhjj9LUnK94p9ZG1/YvGtHwcJxq0FTdesw3hzDQdPSBwlqTL rHMirFDrElrcS8ce/dLERU+nSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGWyKG1B hCbajm2FZ5QNkVI36regMB8GA1UdIwQYMBaAFKkvTOSJzQ6X0WdgQ/jDT4MGedj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjQ4MC80NURBM0ZFNjJC ODAxMUVFOUZGMkY1NzZDNEY5QUUwMi9xUzlNNUluTkRwZlJaMkJELU1OUGd3WjUy UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTOU01SW5ORHBmUloyQkQtTU5QZ3daNTJQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0ODAvNDVEQTNGRTYyQjgwMTFFRTlGRjJGNTc2QzRGOUFFMDIvQzQzOTg4RTQ0 NzI2MTFFRThDQjM0MjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6foMA0GCSqGSIb3DQEBCwUAA4IBAQA7EiAYvQ8OiCgMiVRDNUzW R55f0n38idXzcmnYj9rjFnUoxuIPFVHRcQruxEsxG9HeZVEfqAFMRR2NPWiAbaMn mk3riG8VklojjahNX4+Fcc56nFgz1cRH95FmvXVoR0C2fyIhVJa9CtyfYFEli37G JcY4TCV/5GefPBMZCTwDSZkfVA5KwVgUA9oTELi2jFogAVwBpsfGvEDbBW4fhOoX n5dvTx9izAfiCIMGgtzQQQDpwYGCx313uH0e4FUYo2ZSemYxipRmQvxnAJ8oid8p CNjT1pL0sNseG1IdQ/C+trRACA9FPCMGJuYzeFDzEzmrz/2+7gkXqdT0fWJALIyK -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:04 2026 by rpki-client