$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa File: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (raw, json) Hash identifier: vWnJyVtLSPDbnLnMtUfpOpsMizJZ3OX7bmaYpD3gaL8= Subject key identifier: 40:EF:A3:C7:1C:FE:D5:A2:66:8F:59:43:3A:DD:17:AD:CB:2E:E4:72 Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: 017D Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:04:49 +0000 ROA not before: Fri 23 May 2025 04:55:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63981 IP address blocks: 103.167.140.0/24 maxlen: 24 103.167.141.0/24 maxlen: 24 103.197.28.0/22 maxlen: 24 2407:6bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: May 23 04:55:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a711-470f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fa:07:9e:df:ac:e9:3c:9c:25:c4:6c:1b:c0: 1e:18:5b:d0:06:3d:43:0b:4c:32:2e:cf:9e:fe:46: 79:31:da:b2:6b:e6:39:ae:72:f5:55:bb:8d:bc:15: 8e:9f:d5:61:26:2a:1f:c4:0a:cb:95:61:8d:c5:79: 04:83:1e:c6:af:a7:14:ca:51:fb:d8:1f:f8:45:f4: d6:df:f8:31:6c:cf:e5:2b:eb:6a:33:35:06:37:e4: 5b:9c:41:3f:0e:d6:49:20:e0:7d:f7:91:79:6d:87: ef:aa:8d:78:2b:11:2a:41:a1:dd:d2:a5:5f:ea:41: a8:ed:97:22:a6:06:5a:ee:73:14:4b:ff:ab:bf:8a: bb:1d:04:8f:0d:2e:70:06:5d:c7:6e:d4:a1:60:c3: 01:71:81:7c:e6:8e:32:6e:39:99:64:36:c3:23:4d: 70:77:f2:94:88:5c:66:15:ad:5e:fc:5e:c5:fa:47: ad:a7:05:b5:14:41:03:0c:39:59:f3:e0:49:67:29: 21:16:90:66:6e:5a:1a:c4:33:0e:a9:b2:b5:73:7a: 56:ef:f1:2d:7c:74:fc:7d:e2:74:f0:e2:78:12:bd: 14:d6:ec:d5:86:c3:b8:96:65:1a:71:0e:c1:dd:e7: 93:73:db:e9:3d:fe:cb:6e:24:38:02:b9:e0:d6:23: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EF:A3:C7:1C:FE:D5:A2:66:8F:59:43:3A:DD:17:AD:CB:2E:E4:72 X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.140.0/23 103.197.28.0/22 IPv6: 2407:6bc0::/32 Signature Algorithm: sha256WithRSAEncryption 53:c1:c5:8d:0b:f6:c1:f6:be:9b:9b:6f:44:08:10:15:83:ee: 5e:22:c9:0f:18:f1:19:40:a0:09:31:68:bb:3b:8f:c4:8b:0e: 1c:7b:cc:ab:1a:37:63:bb:05:50:a6:48:32:7a:d9:62:c0:12: f9:f9:ae:54:16:69:c3:a5:40:b6:b2:00:cb:14:2a:f6:9d:37: 4e:41:c2:8a:eb:d4:5e:f6:9a:75:17:2e:16:6f:dd:90:ae:18: 19:9e:9c:ee:91:1c:28:07:c4:a3:0e:e1:2e:7f:4f:c5:13:3a: e2:d6:42:ff:e1:a6:16:13:e0:65:80:d1:d2:c6:fb:2b:40:6c: c7:84:3b:7a:20:bc:d7:44:f8:d1:b1:7b:15:ad:aa:5d:5e:2e: 4b:f9:58:e4:3b:7e:22:50:18:2c:9b:7f:99:09:4c:64:30:88: 05:11:92:7c:54:85:ce:22:45:32:2c:0d:32:08:45:13:af:9d: 68:ea:78:cd:55:40:b6:aa:0e:56:f2:1c:e6:91:d8:4a:d9:8b: 67:da:dd:3f:43:ac:70:a8:9a:92:03:1a:33:31:1f:ee:48:cf: 39:c6:3b:d1:e4:60:ea:52:03:ca:fb:3e:7e:df:d5:c1:8a:28: cb:2a:41:ee:64:8b:9a:ad:95:35:86:45:91:ce:da:54:22:84: da:7f:23:b4 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdBNzIxMTAvBgNVBAUTKDkwQTQ3RjNDNjU5QjM3MThGREM4MkQzMDA3QTlEMzQy NDlDQ0M4RjQwHhcNMjUwNTIzMDQ1NTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTcxMS00NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfoHnt+s6TycJcRsG8AeGFvQBj1DC0wyLs+e/kZ5Mdqya+Y5rnL1VbuNvBWO n9VhJiofxArLlWGNxXkEgx7Gr6cUylH72B/4RfTW3/gxbM/lK+tqMzUGN+RbnEE/ DtZJIOB995F5bYfvqo14KxEqQaHd0qVf6kGo7ZcipgZa7nMUS/+rv4q7HQSPDS5w Bl3HbtShYMMBcYF85o4ybjmZZDbDI01wd/KUiFxmFa1e/F7F+ketpwW1FEEDDDlZ 8+BJZykhFpBmbloaxDMOqbK1c3pW7/EtfHT8feJ08OJ4Er0U1uzVhsO4lmUacQ7B 3eeTc9vpPf7LbiQ4Arng1iONqQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEDvo8cc /tWiZo9ZQzrdF63LLuRyMB8GA1UdIwQYMBaAFJCkfzxlmzcY/cgtMAep00JJzMj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0E3Mi8yMkZEMTIxQURD RjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9rS1JfUEdXYk54ajl5QzB3QjZuVFFrbk15 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdBNzIvMjJGRDEyMUFEQ0YwMTFFRUJDOTAzMTFFQzRGOUFFMDIvRjgxRjdFMEVF MkExMTFFRUEyREQ5RTE4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ6eMAwQCZ8UcMA0EAgACMAcDBQAkB2vAMA0GCSqGSIb3DQEBCwUA A4IBAQBTwcWNC/bB9r6bm29ECBAVg+5eIskPGPEZQKAJMWi7O4/Eiw4ce8yrGjdj uwVQpkgyetliwBL5+a5UFmnDpUC2sgDLFCr2nTdOQcKK69Re9pp1Fy4Wb92QrhgZ npzukRwoB8SjDuEuf0/FEzri1kL/4aYWE+BlgNHSxvsrQGzHhDt6ILzXRPjRsXsV rapdXi5L+VjkO34iUBgsm3+ZCUxkMIgFEZJ8VIXOIkUyLA0yCEUTr51o6njNVUC2 qg5W8hzmkdhK2Ytn2t0/Q6xwqJqSAxozMR/uSM85xjvR5GDqUgPK+z5+39XBiijL KkHuZIuarZU1hkWRztpUIoTafyO0 -----END CERTIFICATE-----Generated at Thu Mar 26 14:07:24 2026 by rpki-client