$ rpki-client -vvf rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa File: BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa (raw, json) Hash identifier: mjocAbD55sni/MpKHvpZIoG9vwTBNbsg26qx5ur9R1A= Subject key identifier: 29:C8:9F:78:A7:F0:69:16:4D:E3:9E:E6:2D:88:BC:35:4E:5D:E4:4D Certificate issuer: /CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Certificate serial: 0705 Authority key identifier: B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:14:56 +0000 ROA not before: Sat 14 Feb 2026 22:20:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142063 IP address blocks: 103.166.102.0/24 maxlen: 24 103.166.103.0/24 maxlen: 24 2001:df1:b340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131067, serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Validity Not Before: Feb 14 22:20:03 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a970-ef68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cb:92:3e:9e:51:b5:75:17:32:43:8b:3e:4f: aa:e3:19:b1:9d:bd:1e:a8:c7:98:0c:6a:3b:6d:9d: ea:f9:ea:2b:17:0b:9b:c0:b5:39:04:10:a2:a1:0c: 8f:e9:07:9a:b4:e5:0f:f5:07:1d:8e:1f:99:dc:ac: 03:fe:95:e1:57:ab:64:f7:50:d3:f9:d2:3a:82:8b: 73:05:f3:0b:86:37:c8:11:37:bb:2c:8b:58:a6:b3: a5:0e:b6:40:4d:08:1e:aa:b6:e2:47:b5:44:57:1c: 2e:2d:ac:5a:66:1d:b0:ab:3b:23:23:1c:a9:77:57: 35:88:35:5b:4e:c7:0a:6f:14:40:8d:45:6b:c2:54: 08:8a:e9:65:e6:e2:d3:c0:06:fb:fb:bc:11:b5:ed: 5d:c5:26:48:54:c7:93:9e:c5:b6:b2:26:6f:a6:cd: 95:ef:9a:18:5c:38:ac:c1:a3:b1:73:b9:c5:5f:ea: d0:1c:43:6f:76:48:fd:3a:6d:41:0c:bb:a5:59:75: 16:c2:c2:97:fc:d8:ee:7c:4d:57:4d:f8:a5:e4:03: dd:8c:96:a5:2b:e2:b6:fb:1b:7f:5c:cd:ed:eb:19: 37:f7:66:ad:b0:70:1d:38:d8:29:3a:ba:93:bd:18: 3c:18:65:8e:c7:81:21:cb:b6:0e:89:06:9f:f1:91: b5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C8:9F:78:A7:F0:69:16:4D:E3:9E:E6:2D:88:BC:35:4E:5D:E4:4D X509v3 Authority Key Identifier: keyid:B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.102.0/23 IPv6: 2001:df1:b340::/48 Signature Algorithm: sha256WithRSAEncryption 44:04:23:3e:cd:18:dd:40:39:ea:23:b5:24:b6:40:ed:10:ee: a7:c3:b0:2f:54:46:73:d4:2f:6d:a1:93:83:39:59:1b:da:8b: f4:b2:6d:40:a6:c3:64:d5:e1:00:d1:9e:36:97:13:ea:63:ca: 1d:13:ce:8b:79:b4:94:91:dd:3e:26:0c:32:80:b2:03:d7:43: 92:86:5d:e1:b9:53:e4:2d:44:9b:0b:aa:ab:81:49:09:ae:14: d4:43:07:f2:1e:57:31:bf:82:cb:b5:d2:f5:13:69:20:e4:99: d2:a2:e6:b0:29:4b:ca:26:b2:e8:ba:9f:62:c0:04:da:3d:75: c3:d3:fe:14:1b:38:ea:88:be:9f:0c:2e:1e:c2:1c:f2:a8:13: 98:17:ab:e2:e8:39:36:79:6a:af:a1:ec:4c:af:c2:95:3a:9a: 16:b2:d8:76:55:f1:32:e8:6a:a0:f2:b6:8e:00:58:2f:bd:9a: a9:6e:2e:63:1c:7a:75:5d:a8:fc:c1:53:9e:29:0f:06:65:5a: 67:83:81:f0:01:b9:a7:87:6a:e1:a9:2d:b2:14:e9:20:4b:7d: 5c:7d:a0:27:89:14:c1:77:6f:ec:31:b3:f3:09:49:e6:13:e5: b9:bd:08:c9:99:a2:70:90:33:1e:e3:c2:0c:23:cb:5a:a8:54: 72:80:66:12 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEwNjcxMTAvBgNVBAUTKEIyQzQ3QzJFM0Q0RkM3RURDOTlBRTIwRTQ2QjE3NEIx MEEwMzc1RjYwHhcNMjYwMjE0MjIyMDAzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTk3MC1lZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MuSPp5RtXUXMkOLPk+q4xmxnb0eqMeYDGo7bZ3q+eorFwubwLU5BBCioQyP 6QeatOUP9Qcdjh+Z3KwD/pXhV6tk91DT+dI6gotzBfMLhjfIETe7LItYprOlDrZA TQgeqrbiR7VEVxwuLaxaZh2wqzsjIxypd1c1iDVbTscKbxRAjUVrwlQIiull5uLT wAb7+7wRte1dxSZIVMeTnsW2siZvps2V75oYXDiswaOxc7nFX+rQHENvdkj9Om1B DLulWXUWwsKX/NjufE1XTfil5APdjJalK+K2+xt/XM3t6xk392atsHAdONgpOrqT vRg8GGWOx4Ehy7YOiQaf8ZG1QQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCnIn3in 8GkWTeOe5i2IvDVOXeRNMB8GA1UdIwQYMBaAFLLEfC49T8ftyZriDkaxdLEKA3X2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTA2Ny84REQwMEY1NkE2 QUQxMUVCODI3RkMxMUNDNEY5QUUwMi9zc1I4TGoxUHgtM0ptdUlPUnJGMHNRb0Rk ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NzUjhMajFQeC0zSm11SU9SckYwc1FvRGRmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzEwNjcvOEREMDBGNTZBNkFEMTFFQjgyN0ZDMTFDQzRGOUFFMDIvQkQ5QUU0QUU1 NUQxMTFGMEE3Q0ZCQjJCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6ZmMA8EAgACMAkDBwAgAQ3xs0AwDQYJKoZIhvcNAQELBQADggEB AEQEIz7NGN1AOeojtSS2QO0Q7qfDsC9URnPUL22hk4M5WRvai/SybUCmw2TV4QDR njaXE+pjyh0Tzot5tJSR3T4mDDKAsgPXQ5KGXeG5U+QtRJsLqquBSQmuFNRDB/Ie VzG/gsu10vUTaSDkmdKi5rApS8omsui6n2LABNo9dcPT/hQbOOqIvp8MLh7CHPKo E5gXq+LoOTZ5aq+h7EyvwpU6mhay2HZV8TLoaqDyto4AWC+9mqluLmMcenVdqPzB U54pDwZlWmeDgfABuaeHauGpLbIU6SBLfVx9oCeJFMF3b+wxs/MJSeYT5bm9CMmZ onCQMx7jwgwjy1qoVHKAZhI= -----END CERTIFICATE-----Generated at Sat Mar 28 12:16:22 2026 by rpki-client