$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa File: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (raw, json) Hash identifier: gwFMK8dXQ0BUy50EitJsxHltkOumkaciXIm9wu0O67s= Subject key identifier: 15:CC:AD:34:0D:EB:95:4D:0A:FA:2C:EC:A5:FA:39:1C:40:43:70:EE Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 08C2 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:10:11 +0000 ROA not before: Wed 22 Oct 2025 21:39:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45177 IP address blocks: 103.123.164.0/22 maxlen: 22 103.123.164.0/24 maxlen: 24 103.123.165.0/24 maxlen: 24 103.123.166.0/24 maxlen: 24 103.123.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Oct 22 21:39:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a51bb3-adb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5b:9c:ba:5a:40:17:ef:5c:fe:94:d7:a5:60: 6d:bc:58:f1:d1:ef:ce:91:76:a4:40:ad:66:7d:51: ee:d3:42:07:d5:ee:15:56:29:b4:0b:e5:76:66:07: fe:04:35:df:02:8a:95:2b:7c:a2:7f:b3:91:65:14: f6:68:0b:9d:c4:b7:98:3a:52:88:b8:dd:1b:f9:65: 87:58:fc:be:62:90:1c:a4:43:3a:83:a9:92:d7:22: 30:e3:a1:94:05:c2:b4:f0:f1:cf:0b:7d:46:01:ad: 9d:c6:cf:af:f3:f3:46:21:6e:0b:a6:25:e2:9a:4b: d9:0a:3b:44:63:f1:75:ea:06:e7:46:d9:9a:3f:e2: db:f5:28:f4:3b:10:59:fb:ee:72:57:46:16:66:66: 46:d4:0a:66:ac:74:d5:ff:f5:20:81:d3:2b:b5:e1: 61:07:56:aa:d4:63:97:b1:a5:7e:55:f9:06:8f:5a: af:a5:20:1e:77:13:a8:c3:e3:e2:2d:28:ee:7c:71: 0a:e8:d9:47:eb:61:b6:b8:a1:29:e7:93:4d:de:c4: 27:c3:19:72:2c:ab:89:48:6b:82:5b:3b:9f:d7:7e: 9d:b2:45:96:24:51:59:df:08:b7:c5:56:11:cc:e7: c5:11:a1:52:cc:23:c1:53:c3:02:8c:36:69:13:96: ff:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CC:AD:34:0D:EB:95:4D:0A:FA:2C:EC:A5:FA:39:1C:40:43:70:EE X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/4B3AC7DC5FC811ED869A6956C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.123.164.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:c7:71:7b:a5:59:d2:c1:b4:12:f2:a8:e4:0c:20:24:78:e1: f8:94:3b:96:83:68:75:45:68:b9:61:28:3a:69:e8:94:d4:64: 7b:c8:c3:40:1c:9b:3f:1b:63:6f:39:7c:a0:50:cb:bc:88:d4: 43:38:41:c7:1f:90:9c:91:a9:c9:f6:94:b4:fa:3f:63:cd:7d: 24:08:14:b5:83:39:31:de:16:77:09:45:83:88:61:77:32:b7: 95:d9:a3:91:a0:2c:6b:24:1a:cf:8a:b1:23:13:fe:f0:cb:59: 0f:5f:24:1e:17:fe:0b:5a:e7:b7:72:b6:75:1f:40:59:77:c6: aa:00:68:2c:1d:33:25:86:f0:18:f5:b8:ec:2c:b8:16:66:bc: 72:f9:2a:c6:d6:62:71:e6:15:9c:81:7f:48:e3:08:e1:6d:57: b3:d5:aa:e1:ec:ac:2b:3f:48:e3:3a:0c:a7:47:55:27:7a:86: 6d:98:fa:c6:a5:60:08:a9:ce:ad:c1:d1:16:e3:1b:8a:d8:32: 7e:f5:65:a5:ee:04:54:42:bd:1f:9c:34:07:33:cd:53:7f:17: f6:00:60:38:9f:d7:80:ea:96:ad:08:ee:ba:9e:e7:04:2f:5c: 4e:fe:ce:9c:ab:39:8f:e9:d2:90:5e:98:9e:31:74:7a:e1:31: 1a:d9:a3:27 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMDIyMjEzOTM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWJiMy1hZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwluculpAF+9c/pTXpWBtvFjx0e/OkXakQK1mfVHu00IH1e4VVim0C+V2Zgf+ BDXfAoqVK3yif7ORZRT2aAudxLeYOlKIuN0b+WWHWPy+YpAcpEM6g6mS1yIw46GU BcK08PHPC31GAa2dxs+v8/NGIW4LpiXimkvZCjtEY/F16gbnRtmaP+Lb9Sj0OxBZ ++5yV0YWZmZG1ApmrHTV//UggdMrteFhB1aq1GOXsaV+VfkGj1qvpSAedxOow+Pi LSjufHEK6NlH62G2uKEp55NN3sQnwxlyLKuJSGuCWzuf136dskWWJFFZ3wi3xVYR zOfFEaFSzCPBU8MCjDZpE5b/QwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBXMrTQN 65VNCvos7KX6ORxAQ3DuMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRGRTcvNUEyRDg5RUFEQjdEMTFFQUJDRjNFQzNFQzRGOUFFMDIvNEIzQUM3REM1 RkM4MTFFRDg2OUE2OTU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3ukMA0GCSqGSIb3DQEBCwUAA4IBAQAex3F7pVnSwbQS8qjkDCAk eOH4lDuWg2h1RWi5YSg6aeiU1GR7yMNAHJs/G2NvOXygUMu8iNRDOEHHH5CckanJ 9pS0+j9jzX0kCBS1gzkx3hZ3CUWDiGF3MreV2aORoCxrJBrPirEjE/7wy1kPXyQe F/4LWue3crZ1H0BZd8aqAGgsHTMlhvAY9bjsLLgWZrxy+SrG1mJx5hWcgX9I4wjh bVez1arh7KwrP0jjOgynR1UneoZtmPrGpWAIqc6twdEW4xuK2DJ+9WWl7gRUQr0f nDQHM81Tfxf2AGA4n9eA6patCO66nucEL1xO/s6cqzmP6dKQXpieMXR64TEa2aMn -----END CERTIFICATE-----Generated at Thu Mar 26 11:10:04 2026 by rpki-client