$ rpki-client -vvf rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa File: 1ECF63EE674511EEBD995841C4F9AE02.roa (raw, json) Hash identifier: iThWY1Te53u7qY3P9l4W83gV/0c/JXwrsnbyFaLKk8k= Subject key identifier: 60:60:27:02:82:85:60:B5:48:11:51:6E:4B:2A:0F:1C:6A:59:A0:2E Certificate issuer: /CN=A9162744/serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Certificate serial: 01C8 Authority key identifier: BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:22:33 +0000 ROA not before: Fri 19 Sep 2025 04:41:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151834 IP address blocks: 103.217.70.0/23 maxlen: 23 103.217.70.0/24 maxlen: 24 103.217.71.0/24 maxlen: 24 2401:40e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162744, serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Validity Not Before: Sep 19 04:41:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a41369-8cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:be:8e:96:1c:d3:49:d7:78:ee:bd:7f:09:e1: 66:6b:74:60:e1:30:b0:a7:ea:73:68:7a:67:1b:47: f3:b9:3b:72:0b:24:55:b4:6c:fa:37:b1:78:08:79: b9:44:16:ec:8c:98:04:73:c3:7c:2a:41:7e:e8:87: 24:22:97:7a:98:5c:92:79:a9:bf:1b:32:c2:0e:97: ef:0a:06:19:37:1e:27:e2:cd:f7:f4:64:2a:16:66: 05:41:b6:92:d8:cd:a2:0c:64:ce:c9:87:20:e5:94: c8:9d:b5:f2:a0:70:31:87:4c:a1:8b:7b:21:a0:d8: e6:de:68:ae:68:1a:b2:a6:25:e7:c8:29:24:01:84: d8:f3:b3:96:02:42:0c:ac:4f:db:88:d0:7c:43:44: 36:8d:b4:cb:d0:fe:0b:72:2f:84:e8:3c:34:58:fa: dc:ad:ac:9b:b5:3c:18:23:a5:20:48:57:84:ae:22: 67:6d:cc:0a:08:28:d5:84:4e:57:63:25:27:97:3f: 24:8d:a8:a1:19:22:87:43:9e:e5:54:56:ff:0e:5d: 7f:e2:45:5e:63:ce:77:82:d6:82:eb:92:1a:96:b4: 94:9f:cc:b1:ae:bd:26:a9:07:dc:c0:63:3f:e1:a7: b2:3c:76:c4:33:67:0a:0c:79:01:d5:8a:a7:1d:66: bd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:60:27:02:82:85:60:B5:48:11:51:6E:4B:2A:0F:1C:6A:59:A0:2E X509v3 Authority Key Identifier: keyid:BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.217.70.0/23 IPv6: 2401:40e0::/32 Signature Algorithm: sha256WithRSAEncryption ac:70:86:be:20:a2:16:ff:b9:04:ee:23:6e:f0:a2:08:58:da: 2c:b6:fc:64:43:5f:24:b3:84:bd:60:fd:75:8a:31:d3:c5:3f: 9a:91:58:fb:30:4c:cd:14:01:a6:d2:7a:fa:91:f7:5f:6d:90: 18:a7:df:de:3d:20:26:ed:fd:14:ab:d4:ab:97:84:80:a1:dd: 0a:de:bf:71:cf:fb:aa:9d:da:83:6c:d6:10:3a:ec:8e:f5:00: 82:1b:7b:71:18:9b:83:f2:35:fc:81:6b:f2:78:2d:b7:5c:16: 03:6e:37:44:aa:61:7d:cd:0a:cd:6d:f5:e5:df:af:5e:67:77: 90:00:60:8c:c7:5e:39:87:85:5f:e8:44:30:90:11:6f:87:90: e9:f2:a5:1d:1b:d9:5d:74:47:0d:1e:c9:a4:e1:51:72:11:62: 05:39:77:8d:d9:c8:4a:04:1b:f6:71:23:5e:29:56:cd:0d:94: e3:83:81:8d:9d:76:90:84:62:f2:19:82:d4:08:55:24:64:ae: 6e:6d:81:d5:58:d3:71:9c:fa:9b:57:0e:8f:62:8a:3f:00:22: 9f:41:1c:08:e6:26:05:2a:18:b2:7f:a8:4e:45:d4:ae:9e:da: af:85:3f:1b:3a:a5:18:d2:a3:03:be:80:3d:e1:a6:42:4b:c0: 1d:c2:be:02 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3NDQxMTAvBgNVBAUTKEJEMjFCRTk4MzA3NTQyOTE2RDgxRTBGRUQ5RjhGNTMy NDA0OTQ0ODAwHhcNMjUwOTE5MDQ0MTU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTM2OS04Y2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr6OlhzTSdd47r1/CeFma3Rg4TCwp+pzaHpnG0fzuTtyCyRVtGz6N7F4CHm5 RBbsjJgEc8N8KkF+6IckIpd6mFySeam/GzLCDpfvCgYZNx4n4s339GQqFmYFQbaS 2M2iDGTOyYcg5ZTInbXyoHAxh0yhi3shoNjm3miuaBqypiXnyCkkAYTY87OWAkIM rE/biNB8Q0Q2jbTL0P4Lci+E6Dw0WPrcraybtTwYI6UgSFeEriJnbcwKCCjVhE5X YyUnlz8kjaihGSKHQ57lVFb/Dl1/4kVeY853gtaC65IalrSUn8yxrr0mqQfcwGM/ 4aeyPHbEM2cKDHkB1YqnHWa9rwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGBgJwKC hWC1SBFRbksqDxxqWaAuMB8GA1UdIwQYMBaAFL0hvpgwdUKRbYHg/tn49TJASUSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mjc0NC84RThCOUM5RTY3 NDQxMUVFOEE5MkY4M0ZDNEY5QUUwMi92U0ctbURCMVFwRnRnZUQtMmZqMU1rQkpS SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZTRy1tREIxUXBGdGdlRC0yZmoxTWtCSlJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI3NDQvOEU4QjlDOUU2NzQ0MTFFRThBOTJGODNGQzRGOUFFMDIvMUVDRjYzRUU2 NzQ1MTFFRUJEOTk1ODQxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ9lGMA0EAgACMAcDBQAkAUDgMA0GCSqGSIb3DQEBCwUAA4IBAQCs cIa+IKIW/7kE7iNu8KIIWNostvxkQ18ks4S9YP11ijHTxT+akVj7MEzNFAGm0nr6 kfdfbZAYp9/ePSAm7f0Uq9Srl4SAod0K3r9xz/uqndqDbNYQOuyO9QCCG3txGJuD 8jX8gWvyeC23XBYDbjdEqmF9zQrNbfXl369eZ3eQAGCMx145h4Vf6EQwkBFvh5Dp 8qUdG9lddEcNHsmk4VFyEWIFOXeN2chKBBv2cSNeKVbNDZTjg4GNnXaQhGLyGYLU CFUkZK5ubYHVWNNxnPqbVw6PYoo/ACKfQRwI5iYFKhiyf6hORdSuntqvhT8bOqUY 0qMDvoA94aZCS8Adwr4C -----END CERTIFICATE-----Generated at Sat Mar 28 13:40:53 2026 by rpki-client