$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa File: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: X4uS0rI/nqhGkS7n3+3yxAC8v3e2kcE3Z3BQmxfknoQ= Subject key identifier: 63:A8:57:AE:0A:C5:B1:98:DE:92:B9:5C:9F:13:0D:9A:CC:29:3E:3D Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 23EB Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:39:33 +0000 ROA not before: Sun 24 Aug 2025 15:53:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58629 IP address blocks: 103.12.72.0/22 maxlen: 24 2001:df0:2c5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9195 (0x23eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Aug 24 15:53:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a44195-1a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d6:32:60:40:bf:74:c0:e5:46:f4:6c:80:fd: 91:70:47:17:38:3c:c9:4f:90:a6:b3:bc:83:a0:a8: bb:cd:f7:7a:8a:10:7c:8f:d4:b4:5d:2e:a0:0e:d3: 9b:50:22:bc:62:da:b5:c4:3e:75:f5:e2:ea:08:5a: 0b:7e:a7:0e:3a:c1:a7:9c:80:8e:f6:25:db:85:32: 8d:a8:72:c7:d8:36:52:48:5e:b4:7b:fb:dc:b6:5c: f8:b8:12:cb:dd:cd:76:40:4d:f8:92:fd:12:47:da: 8c:e1:eb:88:aa:d9:ed:f1:2a:33:05:80:d1:35:27: 90:39:cb:00:c5:08:1a:cb:27:21:26:ff:8f:e4:1e: 18:74:5a:26:3a:43:52:a8:9a:67:9f:6a:27:3d:06: 67:7f:64:2c:ee:5c:a6:2a:3a:c7:21:6a:a6:5c:ae: 81:ce:84:45:a6:c5:01:96:92:0f:a5:28:33:f0:99: 0c:f1:1a:0b:64:5f:2b:b6:09:ce:52:9d:52:22:59: d7:10:47:5d:ff:f9:4a:ff:b3:2b:90:26:b3:c4:b2: 4e:57:a7:b7:62:49:e5:ab:45:8b:f1:78:93:c2:7c: 3d:1a:1c:40:d7:08:d5:b5:b5:68:a9:7c:d3:6e:33: 96:f1:53:ab:e4:c7:00:96:e6:55:51:fb:2a:6e:d5: 0f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A8:57:AE:0A:C5:B1:98:DE:92:B9:5C:9F:13:0D:9A:CC:29:3E:3D X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.12.72.0/22 IPv6: 2001:df0:2c5::/48 Signature Algorithm: sha256WithRSAEncryption 09:99:63:ad:5b:de:26:a3:55:77:40:5e:7d:2e:06:97:14:ee: 7a:9b:25:d6:1f:55:2e:9a:25:68:ea:e8:39:76:be:b5:0b:22: f6:a6:1a:05:fc:c7:5c:03:93:d2:e9:35:ca:09:d5:16:c0:89: 31:0d:cf:16:4f:4c:42:5c:40:c4:21:51:ef:34:a4:29:2c:ac: b8:01:4d:20:0f:9d:75:05:20:e4:a6:32:da:16:4d:88:b4:a7: 2f:41:5f:10:aa:61:08:cd:12:a4:de:c3:d6:68:80:93:5a:95: 39:93:49:ce:3d:f2:7a:91:36:38:d5:08:94:e9:16:6f:22:e8: ea:f1:74:94:9e:83:61:a0:44:63:ee:0b:a7:f5:0f:e1:d9:5e: 9a:42:a0:a3:59:4d:49:a8:32:d6:18:43:11:75:93:9c:7d:0d: d2:2c:bd:7f:76:59:2b:dd:79:7e:f7:8b:f5:66:e4:6f:65:58: 60:ac:7b:e9:be:20:07:2c:a8:eb:90:f1:72:c6:14:8a:f0:04: 9f:51:7d:76:87:5f:62:78:8f:7d:4d:8a:b7:6e:72:d7:5b:53: 16:a1:b9:6b:a7:97:ce:75:f3:5e:27:06:d5:2d:fb:a6:1d:32: ae:c8:b9:b5:48:65:df:79:f4:a5:a0:4f:c8:40:39:2e:1e:de: 8c:b8:33:35 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICI+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUwODI0MTU1MzIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDE5NS0xYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9YyYEC/dMDlRvRsgP2RcEcXODzJT5Cms7yDoKi7zfd6ihB8j9S0XS6gDtOb UCK8Ytq1xD519eLqCFoLfqcOOsGnnICO9iXbhTKNqHLH2DZSSF60e/vctlz4uBLL 3c12QE34kv0SR9qM4euIqtnt8SozBYDRNSeQOcsAxQgayychJv+P5B4YdFomOkNS qJpnn2onPQZnf2Qs7lymKjrHIWqmXK6BzoRFpsUBlpIPpSgz8JkM8RoLZF8rtgnO Up1SIlnXEEdd//lK/7MrkCazxLJOV6e3Yknlq0WL8XiTwnw9GhxA1wjVtbVoqXzT bjOW8VOr5McAluZVUfsqbtUPHwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGOoV64K xbGY3pK5XJ8TDZrMKT49MB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZCRDgvQzU4M0QyMzI4N0EyMTFFNTlFNTFGMjUxQzRGOUFFMDIvQzczQkU4QTY1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZwxIMA8EAgACMAkDBwAgAQ3wAsUwDQYJKoZIhvcNAQELBQADggEB AAmZY61b3iajVXdAXn0uBpcU7nqbJdYfVS6aJWjq6Dl2vrULIvamGgX8x1wDk9Lp NcoJ1RbAiTENzxZPTEJcQMQhUe80pCksrLgBTSAPnXUFIOSmMtoWTYi0py9BXxCq YQjNEqTew9ZogJNalTmTSc498nqRNjjVCJTpFm8i6OrxdJSeg2GgRGPuC6f1D+HZ XppCoKNZTUmoMtYYQxF1k5x9DdIsvX92WSvdeX73i/Vm5G9lWGCse+m+IAcsqOuQ 8XLGFIrwBJ9RfXaHX2J4j31NirductdbUxahuWunl851814nBtUt+6YdMq7IubVI Zd959KWgT8hAOS4e3oy4MzU= -----END CERTIFICATE-----Generated at Mon Mar 2 13:21:50 2026 by rpki-client