$ rpki-client -vvf rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa File: B71C4F80253711EFA1D2A943C4F9AE02.roa (raw, json) Hash identifier: Noab3uEs+xPwuZ2bTIDiOuTeew78OSESSBsHX4WRCNY= Subject key identifier: C9:BE:7F:A8:FA:CF:67:9B:2D:B5:6A:DD:71:E8:87:A8:19:E9:6A:12 Certificate issuer: /CN=A9157450/serialNumber=81A0CF9CE9AAA990ED1AFE8A830A707874F9AABE Certificate serial: 0149 Authority key identifier: 81:A0:CF:9C:E9:AA:A9:90:ED:1A:FE:8A:83:0A:70:78:74:F9:AA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:46:19 +0000 ROA not before: Sat 03 May 2025 05:42:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45152 IP address blocks: 103.9.56.0/22 maxlen: 22 103.9.56.0/24 maxlen: 24 103.9.57.0/24 maxlen: 24 103.9.58.0/24 maxlen: 24 103.9.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.crl rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157450, serialNumber=81A0CF9CE9AAA990ED1AFE8A830A707874F9AABE Validity Not Before: May 3 05:42:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a594aa-59c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:28:30:f0:e3:32:6f:d2:01:01:c6:49:ec: 09:5b:2f:85:25:97:dd:e8:e4:68:62:83:0a:1f:2f: 57:ad:b6:3e:0f:98:32:57:b1:95:0a:cb:52:b3:d4: 5f:96:46:c6:76:6d:e5:24:8d:98:b4:4f:f5:c1:00: 39:ac:f0:f7:ca:08:44:c9:f6:30:ba:33:d2:3c:ee: 67:cf:ee:dd:31:9b:dd:f8:80:b1:85:d2:dc:fd:6a: 9e:bb:c8:1b:92:e4:fa:1c:9a:19:54:34:02:86:77: 16:f9:c5:d2:29:02:f1:7b:3a:34:2d:19:13:78:71: e3:70:9a:56:5a:75:c0:d6:7b:33:84:6c:0e:2c:97: 39:34:e1:66:b7:1c:53:47:ba:dd:ec:79:3f:f9:fd: 34:e9:ec:28:6e:0e:b5:45:7b:f6:46:e7:1d:bf:78: 6b:bf:5d:97:75:b6:e0:97:04:b8:b9:ce:35:ab:81: a7:d9:e4:8f:10:00:ef:3d:19:64:f3:8a:be:bf:e2: f8:2d:a4:9f:5b:51:52:a9:bd:51:8c:e1:15:76:fc: ea:ed:af:ab:a2:1f:19:e0:e6:14:c9:de:6c:07:15: 38:02:60:db:bd:69:59:96:4d:2e:3e:ae:42:65:d8: c0:cc:40:ab:db:c7:dd:7f:6b:60:2d:d8:62:95:bf: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BE:7F:A8:FA:CF:67:9B:2D:B5:6A:DD:71:E8:87:A8:19:E9:6A:12 X509v3 Authority Key Identifier: keyid:81:A0:CF:9C:E9:AA:A9:90:ED:1A:FE:8A:83:0A:70:78:74:F9:AA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/gaDPnOmqqZDtGv6KgwpweHT5qr4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaDPnOmqqZDtGv6KgwpweHT5qr4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157450/82D9BA06253611EF9A1CEF23C4F9AE02/B71C4F80253711EFA1D2A943C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.56.0/22 Signature Algorithm: sha256WithRSAEncryption 32:87:03:79:93:bd:b3:30:3f:72:45:bc:65:81:b7:af:ef:e6: 3c:88:35:f2:90:88:32:83:02:d2:d1:de:92:69:b7:34:a8:9b: d0:7f:16:56:33:94:6a:ac:fe:31:dc:48:75:df:46:80:ce:5d: db:d2:7f:4f:86:27:82:19:b4:ae:c4:63:25:2c:42:a9:cb:80: 0a:60:d0:33:ca:a2:56:02:23:79:6a:2e:8a:03:17:19:57:5b: 3c:3a:e3:40:f6:5f:37:1c:10:99:a7:c8:fc:eb:0f:30:07:d8: dd:c4:73:ba:bd:30:0b:0e:c0:95:73:9d:2e:83:bd:40:7c:4a: 56:63:ec:8b:46:19:40:bf:35:02:6a:cb:8f:6b:70:21:d2:6e: cf:d7:31:09:6b:f0:b5:cd:e8:be:65:62:76:d2:c5:c5:c3:54: 67:53:8c:4c:ba:37:c5:37:fa:3d:49:54:7b:98:ed:c5:67:89: 27:c1:0c:66:10:f1:a4:2f:51:db:92:4f:b8:ba:7b:f4:c7:7d: e8:e7:77:a1:a3:8b:8d:ed:55:2b:db:8d:fd:d5:9d:50:03:70: 80:06:27:4a:12:73:73:0c:63:8a:c4:bd:a5:16:0f:f2:6e:08: 54:1a:bd:9e:6a:ab:22:f3:8c:3e:11:2c:bc:e5:42:ea:81:03: fe:3b:67:48 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc0NTAxMTAvBgNVBAUTKDgxQTBDRjlDRTlBQUE5OTBFRDFBRkU4QTgzMEE3MDc4 NzRGOUFBQkUwHhcNMjUwNTAzMDU0MjIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTRhYS01OWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulcoMPDjMm/SAQHGSewJWy+FJZfd6ORoYoMKHy9XrbY+D5gyV7GVCstSs9Rf lkbGdm3lJI2YtE/1wQA5rPD3yghEyfYwujPSPO5nz+7dMZvd+ICxhdLc/Wqeu8gb kuT6HJoZVDQChncW+cXSKQLxezo0LRkTeHHjcJpWWnXA1nszhGwOLJc5NOFmtxxT R7rd7Hk/+f006ewobg61RXv2Rucdv3hrv12XdbbglwS4uc41q4Gn2eSPEADvPRlk 84q+v+L4LaSfW1FSqb1RjOEVdvzq7a+roh8Z4OYUyd5sBxU4AmDbvWlZlk0uPq5C ZdjAzECr28fdf2tgLdhilb/EewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMm+f6j6 z2ebLbVq3XHoh6gZ6WoSMB8GA1UdIwQYMBaAFIGgz5zpqqmQ7Rr+ioMKcHh0+aq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzQ1MC84MkQ5QkEwNjI1 MzYxMUVGOUExQ0VGMjNDNEY5QUUwMi9nYURQbk9tcXFaRHRHdjZLZ3dwd2VIVDVx cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhRFBuT21xcVpEdEd2Nktnd3B3ZUhUNXFyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTc0NTAvODJEOUJBMDYyNTM2MTFFRjlBMUNFRjIzQzRGOUFFMDIvQjcxQzRGODAy NTM3MTFFRkExRDJBOTQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwk4MA0GCSqGSIb3DQEBCwUAA4IBAQAyhwN5k72zMD9yRbxlgbev 7+Y8iDXykIgygwLS0d6Sabc0qJvQfxZWM5RqrP4x3Eh130aAzl3b0n9PhieCGbSu xGMlLEKpy4AKYNAzyqJWAiN5ai6KAxcZV1s8OuNA9l83HBCZp8j86w8wB9jdxHO6 vTALDsCVc50ug71AfEpWY+yLRhlAvzUCasuPa3Ah0m7P1zEJa/C1zei+ZWJ20sXF w1RnU4xMujfFN/o9SVR7mO3FZ4knwQxmEPGkL1Hbkk+4unv0x33o53eho4uN7VUr 24391Z1QA3CABidKEnNzDGOKxL2lFg/ybghUGr2eaqsi84w+ESy85ULqgQP+O2dI -----END CERTIFICATE-----Generated at Thu Mar 26 07:26:29 2026 by rpki-client