$ rpki-client -vvf rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa File: DCAC0B64C22011EB9C4C3B31C4F9AE02.roa (raw, json) Hash identifier: TOu4rTok/YTcP4XYz+qFAKVXMljHMOdt2vuAWSKuetQ= Subject key identifier: 70:04:98:3A:3E:A5:29:86:0C:1B:E9:0E:73:B1:29:7B:DA:6F:5D:C9 Certificate issuer: /CN=A9137C94/serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Certificate serial: 0657 Authority key identifier: 13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:37:00 +0000 ROA not before: Wed 09 Jul 2025 00:04:42 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142299 IP address blocks: 103.167.192.0/24 maxlen: 24 103.167.193.0/24 maxlen: 24 2407:7040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137C94, serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Validity Not Before: Jul 9 00:04:42 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a432ec-992c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:71:3e:b0:c7:ec:c2:51:6c:11:94:92:90:31: 6b:64:6c:d4:bb:40:9e:06:4f:65:0d:45:aa:44:06: 68:6d:76:9a:d1:c8:c8:39:d3:e8:c1:78:c1:15:f1: c6:6c:6d:7f:26:0a:da:ce:82:12:e8:5d:32:09:f5: 04:c0:ef:d9:72:ce:f7:a3:12:00:47:5f:81:61:2f: d6:39:86:9c:bf:24:9a:30:48:61:ce:bd:1a:87:53: d0:bc:87:de:3a:c4:e5:03:ff:98:ea:16:9a:45:13: 0d:99:77:f4:4e:a7:8b:f1:e5:87:51:fe:b0:ca:5d: af:33:79:a8:64:ef:27:3b:39:04:09:c7:c2:76:67: f0:0a:a5:b8:a4:24:61:2d:89:bb:df:3a:c1:67:cc: 8b:f1:7c:f8:e1:a1:09:f1:67:ac:ba:3e:f3:ca:1b: 96:6a:02:c2:09:82:69:04:2f:3d:f7:b4:85:cf:88: 3f:e8:23:95:cd:0a:36:d0:be:c6:14:99:55:a6:22: 21:eb:79:54:87:79:42:ac:78:08:20:e2:36:5b:b5: f3:53:3f:df:cf:e0:55:36:26:d2:56:1d:93:e7:89: a5:1c:8c:8a:16:7a:60:42:22:99:73:eb:c0:9f:c4: 6d:2c:ca:d4:bf:3e:bf:84:39:66:4b:cc:04:b2:42: 33:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:04:98:3A:3E:A5:29:86:0C:1B:E9:0E:73:B1:29:7B:DA:6F:5D:C9 X509v3 Authority Key Identifier: keyid:13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.192.0/23 IPv6: 2407:7040::/32 Signature Algorithm: sha256WithRSAEncryption 55:ee:a5:d3:1d:24:c2:27:9e:4c:2d:8e:ba:ec:2f:33:4e:fc: 17:a6:93:4b:d9:6d:6b:d2:4b:3a:44:6f:66:d2:02:cb:ab:64: ad:85:e8:8d:3f:0e:7b:df:ab:73:6e:47:fe:74:bd:52:3a:b8: 24:65:3b:5e:a2:44:34:19:a1:b8:3f:b5:8f:94:cb:b0:d5:66: 4e:9e:5f:d4:cb:7a:6b:16:8a:8e:e2:8a:4d:1d:50:6d:37:b7: 12:11:3e:f1:b4:87:b5:83:35:2b:fc:c6:8b:0e:d2:24:12:bd: 05:9d:fb:b0:77:c6:2e:bc:bf:5c:13:84:01:fa:d2:2e:cc:20: 91:10:05:13:7b:91:9c:63:88:eb:c7:c1:4d:3c:a1:8b:c9:bb: 10:3b:e9:87:d2:e7:9b:f1:6e:22:22:de:78:32:31:ad:97:a4: 0a:ad:b3:32:15:e4:d3:82:03:5a:d4:e2:d8:05:c3:3d:7f:7a: 58:8e:be:af:e8:1c:00:9f:61:bf:52:5c:07:3c:17:84:5c:09: d2:43:c4:b1:f7:4c:66:a5:8d:e6:3c:33:17:55:95:3c:ff:b6: 83:ed:27:ad:d4:b5:10:fc:0d:d1:07:23:18:8a:1e:08:a6:d7: 48:9b:25:d8:af:16:87:56:83:7e:4b:cb:d8:dd:80:d0:51:ef: d4:dc:1b:6e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdDOTQxMTAvBgNVBAUTKDEzMTIyQUNEMzhFMDE5MTY5OTg2MkNDQTdFRjI0Nzc2 MzBENTcwRTkwHhcNMjUwNzA5MDAwNDQyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzJlYy05OTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHE+sMfswlFsEZSSkDFrZGzUu0CeBk9lDUWqRAZobXaa0cjIOdPowXjBFfHG bG1/JgrazoIS6F0yCfUEwO/Zcs73oxIAR1+BYS/WOYacvySaMEhhzr0ah1PQvIfe OsTlA/+Y6haaRRMNmXf0TqeL8eWHUf6wyl2vM3moZO8nOzkECcfCdmfwCqW4pCRh LYm73zrBZ8yL8Xz44aEJ8Wesuj7zyhuWagLCCYJpBC8997SFz4g/6COVzQo20L7G FJlVpiIh63lUh3lCrHgIIOI2W7XzUz/fz+BVNibSVh2T54mlHIyKFnpgQiKZc+vA n8RtLMrUvz6/hDlmS8wEskIzbQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHAEmDo+ pSmGDBvpDnOxKXvab13JMB8GA1UdIwQYMBaAFBMSKs044BkWmYYsyn7yR3Yw1XDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0M5NC9CRDBGRDM1Q0My MUMxMUVCQTUxRUMyMjlDNEY5QUUwMi9FeElxelRqZ0dSYVpoaXpLZnZKSGRqRFZj T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4SXF6VGpnR1JhWmhpektmdkpIZGpEVmNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdDOTQvQkQwRkQzNUNDMjFDMTFFQkE1MUVDMjI5QzRGOUFFMDIvRENBQzBCNjRD MjIwMTFFQjlDNEMzQjMxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6fAMA0EAgACMAcDBQAkB3BAMA0GCSqGSIb3DQEBCwUAA4IBAQBV 7qXTHSTCJ55MLY667C8zTvwXppNL2W1r0ks6RG9m0gLLq2StheiNPw5736tzbkf+ dL1SOrgkZTteokQ0GaG4P7WPlMuw1WZOnl/Uy3prFoqO4opNHVBtN7cSET7xtIe1 gzUr/MaLDtIkEr0Fnfuwd8YuvL9cE4QB+tIuzCCREAUTe5GcY4jrx8FNPKGLybsQ O+mH0ueb8W4iIt54MjGtl6QKrbMyFeTTggNa1OLYBcM9f3pYjr6v6BwAn2G/UlwH PBeEXAnSQ8Sx90xmpY3mPDMXVZU8/7aD7Set1LUQ/A3RByMYih4IptdImyXYrxaH VoN+S8vY3YDQUe/U3Btu -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:15 2026 by rpki-client