$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa File: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (raw, json) Hash identifier: FtB2tGvplGzCJWlj88NsorSrUzak1GMw1nVvvDj7yFA= Subject key identifier: 0D:5D:69:2E:D9:CC:48:C9:D4:1D:32:91:10:5C:B5:E1:2A:BE:5B:E0 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 159B Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:17:10 +0000 ROA not before: Mon 11 Aug 2025 15:37:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135131 IP address blocks: 103.114.166.0/24 maxlen: 24 2001:df5:f940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5531 (0x159b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Aug 11 15:37:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40416-51a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b9:27:1e:fc:59:22:ee:e9:3c:e6:a3:2c:b5: 86:12:b6:eb:d3:ef:f6:b1:a6:8f:f4:0a:54:18:0d: c6:8d:b2:a7:63:26:e0:1e:8f:63:7a:9f:e2:09:8f: ba:e0:08:77:83:a3:c8:e4:87:6b:e2:92:82:d2:38: 42:47:01:ac:19:0d:8c:62:a0:3c:ba:55:b2:21:fd: 82:8f:fb:66:e5:a9:a5:99:a0:1d:f1:57:bd:c3:53: ed:37:e4:03:e0:d2:3f:9f:7f:83:a1:a7:54:f3:6a: 6a:1e:8b:23:b5:69:8b:8c:c3:05:ac:52:6e:3f:2d: 93:46:9b:c4:02:63:c2:6d:c0:b3:67:6e:29:11:65: b6:0b:17:05:86:5d:ba:18:b6:ac:96:e6:3b:f0:5f: 02:99:08:cd:ea:0a:ad:88:95:df:69:ee:95:4b:0e: d2:fe:1e:f9:5c:99:66:df:6a:76:9d:00:4b:95:7a: 08:aa:6c:f3:2a:dc:61:dc:78:15:ca:26:71:09:0f: ee:8e:c3:fa:a5:e9:d4:7d:8e:06:f7:e1:5a:0b:e7: c1:e7:d5:f0:37:ea:63:4f:f0:8f:e1:d5:25:17:8e: 19:e3:bc:b2:d5:1a:cd:bc:ad:77:bb:cd:cf:70:48: a9:2a:63:31:46:ba:a7:16:9d:a0:a0:93:6a:e7:f4: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5D:69:2E:D9:CC:48:C9:D4:1D:32:91:10:5C:B5:E1:2A:BE:5B:E0 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/D9EDB272C44C11ECA07C2D77C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.114.166.0/24 IPv6: 2001:df5:f940::/48 Signature Algorithm: sha256WithRSAEncryption 46:5f:0f:ea:e7:b2:dd:ab:cf:c5:eb:0b:07:e5:eb:a1:2b:25: ae:44:f5:69:f6:00:4f:ce:82:85:77:2a:81:6f:8f:b2:8f:90: 56:ce:3d:09:b9:27:da:2a:4f:02:df:78:c9:dc:17:0a:b1:8e: 21:7b:d3:81:b7:9b:ad:af:ff:2c:37:b8:a9:a9:89:26:26:76: c8:80:06:43:21:e2:2c:9c:94:0c:81:fd:8b:a8:40:4d:b1:fa: 83:45:e5:70:e6:66:69:a1:e7:c4:75:d3:97:c9:de:b7:ed:87: f4:91:f3:f4:02:62:85:e9:c2:e8:aa:2f:3c:04:8b:42:2d:b4: 9e:71:6f:39:47:a1:ba:3c:87:2b:0f:01:93:b0:2e:60:7e:ae: 97:ae:03:c6:ca:70:6c:3e:db:9d:d8:45:70:8d:30:1a:4e:29: ee:da:73:b9:5d:55:ea:9a:e7:89:fa:0c:91:64:9b:05:6d:03: 1c:d2:c9:43:0e:33:d7:41:38:62:eb:01:64:c1:08:b3:84:5d: e2:db:79:60:a7:a4:76:f5:54:18:a2:fd:50:43:15:cd:c2:6f: f9:7d:69:eb:85:02:bd:e0:35:b3:c1:10:3c:1a:51:d9:27:26: cb:9f:10:52:c9:46:2d:24:a3:14:90:9f:16:cd:c3:de:ce:1a: 91:c0:1c:28 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICFZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjUwODExMTUzNzAwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQxNi01MWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bknHvxZIu7pPOajLLWGErbr0+/2saaP9ApUGA3GjbKnYybgHo9jep/iCY+6 4Ah3g6PI5Idr4pKC0jhCRwGsGQ2MYqA8ulWyIf2Cj/tm5amlmaAd8Ve9w1PtN+QD 4NI/n3+DoadU82pqHosjtWmLjMMFrFJuPy2TRpvEAmPCbcCzZ24pEWW2CxcFhl26 GLasluY78F8CmQjN6gqtiJXfae6VSw7S/h75XJlm32p2nQBLlXoIqmzzKtxh3HgV yiZxCQ/ujsP6penUfY4G9+FaC+fB59XwN+pjT/CP4dUlF44Z47yy1RrNvK13u83P cEipKmMxRrqnFp2goJNq5/Ts/QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFA1daS7Z zEjJ1B0ykRBcteEqvlvgMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQyQTMvRjZBQzYzODY0RUZEMTFFODg5MkI4NjgzQzRGOUFFMDIvRDlFREIyNzJD NDRDMTFFQ0EwN0MyRDc3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ3KmMA8EAgACMAkDBwAgAQ31+UAwDQYJKoZIhvcNAQELBQADggEB AEZfD+rnst2rz8XrCwfl66ErJa5E9Wn2AE/OgoV3KoFvj7KPkFbOPQm5J9oqTwLf eMncFwqxjiF704G3m62v/yw3uKmpiSYmdsiABkMh4iyclAyB/YuoQE2x+oNF5XDm Zmmh58R105fJ3rfth/SR8/QCYoXpwuiqLzwEi0IttJ5xbzlHobo8hysPAZOwLmB+ rpeuA8bKcGw+253YRXCNMBpOKe7ac7ldVeqa54n6DJFkmwVtAxzSyUMOM9dBOGLr AWTBCLOEXeLbeWCnpHb1VBii/VBDFc3Cb/l9aeuFAr3gNbPBEDwaUdknJsufEFLJ Ri0koxSQnxbNw97OGpHAHCg= -----END CERTIFICATE-----Generated at Sat Mar 28 13:40:56 2026 by rpki-client