$ rpki-client -vvf rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa File: 4F038F1007C511EFB3AD2E14C4F9AE02.roa (raw, json) Hash identifier: mFAmKqQMHnaEa7oOMEM+iEc0u908fb6eF/TL+UUY7jc= Subject key identifier: BF:58:4D:B9:BD:D6:3C:11:C8:E0:93:F7:F2:3C:50:AE:7C:14:72:B8 Certificate issuer: /CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Certificate serial: 016A Authority key identifier: EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:47:04 +0000 ROA not before: Fri 03 Oct 2025 05:32:00 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134185 IP address blocks: 103.157.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165772, serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Validity Not Before: Oct 3 05:32:00 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a594d7-6d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:01:0d:b7:e6:01:8f:0f:a6:c3:6c:47:65: 0c:e8:32:c1:f8:5c:6b:d8:5a:ad:50:fc:af:49:e6: c6:7a:de:7a:91:c1:ba:6d:04:45:5d:8c:d4:3f:05: 14:fe:23:b5:7d:09:83:ad:cc:67:e3:35:8a:d8:c5: bc:88:ca:7e:ec:36:79:ff:8c:3a:d7:b0:11:06:42: e5:08:88:aa:6b:50:54:85:4b:78:f6:00:aa:b2:54: 6c:a9:e0:4e:25:62:2b:f1:01:56:2b:9b:cb:21:7d: c6:22:97:cb:4e:bf:be:af:86:b3:68:ee:ac:9d:12: 97:6b:e4:1f:35:b2:63:cc:c1:52:78:32:1a:a4:53: f8:7f:d0:22:c4:2c:08:59:33:e1:5d:9a:dd:59:fa: cc:30:63:26:ff:66:b1:70:17:5f:75:af:f6:70:19: f4:bd:96:b9:d6:3a:41:b1:9f:00:28:dc:fb:4a:f8: 30:96:67:38:2d:8e:8b:00:bd:e0:29:19:b3:f2:70: 8b:ea:a3:89:66:24:e9:fe:dd:4d:52:f2:33:54:f0: da:80:e6:33:e3:d6:f3:ee:c3:85:26:5e:15:56:91: b7:88:a6:8a:6a:06:09:cf:92:71:92:e8:da:66:e3: b8:76:7a:3b:77:c2:f7:79:b8:fd:75:ed:86:a0:e2: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:58:4D:B9:BD:D6:3C:11:C8:E0:93:F7:F2:3C:50:AE:7C:14:72:B8 X509v3 Authority Key Identifier: keyid:EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/4F038F1007C511EFB3AD2E14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.157.56.0/24 Signature Algorithm: sha256WithRSAEncryption b6:cd:ee:ca:0d:e7:e9:6b:31:ab:96:43:f5:a2:16:d6:dc:de: 87:8c:e9:a9:61:81:56:06:5b:25:1b:c9:b0:14:87:b3:4e:14: 4c:a5:dc:e6:46:2a:b1:58:21:de:f3:7f:33:66:bc:38:ad:e8: 44:44:8d:2a:94:32:32:78:7a:4a:bd:8a:7b:ef:f8:8d:1f:38: 76:d9:05:cf:0f:6c:68:d6:2c:5a:46:26:d8:93:8a:e0:e2:f8: b7:c7:28:76:96:d8:ec:5a:ad:23:eb:a5:01:f0:7f:fd:2e:43: c3:fc:f3:fb:8b:83:3f:13:46:51:fa:cf:2b:b3:c3:f6:c2:d4: e8:c1:f3:54:a1:90:ef:94:b2:80:65:37:8b:58:0e:db:75:74: 8e:19:3e:3e:fe:fc:d3:c6:36:09:82:88:70:1b:89:8a:56:b1: 90:5c:5e:e7:5b:91:1b:9e:d9:df:89:fb:34:e4:cd:90:ce:ad: 11:27:55:54:af:fc:24:33:80:84:77:dc:a3:74:a1:e3:cc:d5: 42:6d:b8:34:c1:b8:ea:be:f9:89:47:b4:66:25:ed:29:42:14: 05:87:ab:cc:e1:db:76:da:19:59:4f:c3:73:87:61:f7:84:5c: 6a:65:bd:7e:ab:39:3b:07:f3:9f:c5:8f:f8:4c:a3:46:7a:9d: 10:5f:c2:4f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3NzIxMTAvBgNVBAUTKEVBOEIwNDNFODY4Rjc1NTczQkNDNDU0MEFENDk1NDEw MkRDOTIyQjgwHhcNMjUxMDAzMDUzMjAwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTRkNy02ZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/MBDbfmAY8PpsNsR2UM6DLB+Fxr2FqtUPyvSebGet56kcG6bQRFXYzUPwUU /iO1fQmDrcxn4zWK2MW8iMp+7DZ5/4w617ARBkLlCIiqa1BUhUt49gCqslRsqeBO JWIr8QFWK5vLIX3GIpfLTr++r4azaO6snRKXa+QfNbJjzMFSeDIapFP4f9AixCwI WTPhXZrdWfrMMGMm/2axcBdfda/2cBn0vZa51jpBsZ8AKNz7Svgwlmc4LY6LAL3g KRmz8nCL6qOJZiTp/t1NUvIzVPDagOYz49bz7sOFJl4VVpG3iKaKagYJz5Jxkuja ZuO4dno7d8L3ebj9de2GoOKUEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL9YTbm9 1jwRyOCT9/I8UK58FHK4MB8GA1UdIwQYMBaAFOqLBD6Gj3VXO8xFQK1JVBAtySK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTc3Mi8wNEJEMUE2QzA3 QzQxMUVGODUyRENDN0RDNEY5QUUwMi82b3NFUG9hUGRWYzd6RVZBclVsVUVDM0pJ cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvc0VQb2FQZFZjN3pFVkFyVWxVRUMzSklyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU3NzIvMDRCRDFBNkMwN0M0MTFFRjg1MkRDQzdEQzRGOUFFMDIvNEYwMzhGMTAw N0M1MTFFRkIzQUQyRTE0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ504MA0GCSqGSIb3DQEBCwUAA4IBAQC2ze7KDefpazGrlkP1ohbW 3N6HjOmpYYFWBlslG8mwFIezThRMpdzmRiqxWCHe838zZrw4rehERI0qlDIyeHpK vYp77/iNHzh22QXPD2xo1ixaRibYk4rg4vi3xyh2ltjsWq0j66UB8H/9LkPD/PP7 i4M/E0ZR+s8rs8P2wtTowfNUoZDvlLKAZTeLWA7bdXSOGT4+/vzTxjYJgohwG4mK VrGQXF7nW5Ebntnfifs05M2Qzq0RJ1VUr/wkM4CEd9yjdKHjzNVCbbg0wbjqvvmJ R7RmJe0pQhQFh6vM4dt22hlZT8Nzh2H3hFxqZb1+qzk7B/OfxY/4TKNGep0QX8JP -----END CERTIFICATE-----Generated at Thu Mar 26 18:54:32 2026 by rpki-client