$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/0C1EB10A3A5011ED8B4A2570C4F9AE02.roa File: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (raw, json) Hash identifier: akPAZSOa93x2Wngs9MzKkfgLP+esBNNQavCi79ZhFO4= Subject key identifier: BB:A3:0F:35:02:EA:1E:52:AD:B7:B1:86:A4:54:D4:50:2E:7C:1F:4D Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0298 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/0C1EB10A3A5011ED8B4A2570C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:08:58 +0000 ROA not before: Fri 19 Sep 2025 02:39:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150138 IP address blocks: 103.16.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Sep 19 02:39:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42c59-f283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:34:54:cc:03:d3:0d:07:f3:76:26:9d:ec: e9:28:f9:96:c0:d5:b6:29:f2:71:18:71:15:cd:19: 9a:76:f8:da:64:d5:ea:9d:d9:d9:3c:1e:2d:03:05: b6:52:69:06:09:80:99:96:be:dd:72:de:c1:70:63: 9e:c7:55:3a:29:69:a7:6a:fe:94:aa:fa:c1:ed:0c: e0:d0:8c:73:03:43:21:76:55:11:65:72:6f:18:60: 0b:9e:ce:2f:d2:d9:f5:23:2e:43:16:16:60:45:e8: 4e:e2:62:fe:28:1a:00:e9:36:c3:6e:e4:70:c6:74: c3:dc:27:b2:83:28:23:a3:ad:64:bf:2b:c7:0d:1e: af:3a:fe:4e:0f:8f:5c:e9:a3:ae:1b:4c:e2:45:c1: 11:3d:b9:ff:7b:78:13:27:3a:47:ce:4d:c7:ae:1e: 72:76:3e:af:d6:3e:9f:ca:5d:95:c7:70:d7:75:3a: 78:68:76:e1:1b:12:26:7a:ea:c3:9e:01:27:96:55: ca:ff:ef:ad:07:1e:07:43:e8:d0:2e:1a:86:94:ad: f8:e0:42:af:dd:1b:d6:76:1d:c2:d8:07:db:be:0c: 17:6b:6b:af:c0:1e:9c:5f:dd:a3:36:66:39:f1:6c: 14:8d:aa:bf:68:b8:e4:e1:0f:78:58:09:6c:1c:5c: 65:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A3:0F:35:02:EA:1E:52:AD:B7:B1:86:A4:54:D4:50:2E:7C:1F:4D X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/0C1EB10A3A5011ED8B4A2570C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.16.208.0/23 Signature Algorithm: sha256WithRSAEncryption a2:7c:f3:88:17:76:e5:2e:f4:db:67:bc:e5:0b:76:d0:71:05: 26:3b:db:40:36:29:2c:c8:cb:5e:ce:0b:d6:64:07:f4:97:b1: a2:86:8e:ac:f3:2d:ee:42:95:2a:6c:e8:99:22:b4:c3:a3:45: 29:17:4a:9c:71:50:69:31:3a:a2:38:3f:38:4b:a0:00:cb:5b: 60:55:22:b1:1b:e6:b3:1c:e5:f5:ce:ff:6d:33:d2:1b:fc:8d: b2:de:f2:81:e2:1f:67:06:21:bb:d4:86:ba:4c:2d:f0:0b:a1: d7:fc:ca:31:6a:60:2f:8a:7b:33:a8:99:15:22:a4:88:6f:bf: 3c:e1:3a:39:cb:1d:7f:be:bb:17:7d:5e:f6:1c:14:dd:c8:20: dc:d2:5c:d6:3c:fe:96:be:9d:01:9a:eb:de:81:11:d9:cb:f3: a0:89:51:25:52:8b:ce:d6:22:bf:73:94:4d:01:d0:30:14:79: b5:fc:59:af:8e:bf:35:5e:cb:8f:1f:c2:7d:4a:52:51:b0:c1: 14:2d:f0:5f:b7:af:52:4b:f2:e6:60:a4:83:86:5e:2b:4a:23: 7d:29:f9:17:0b:8d:f3:d4:d2:50:e2:0b:0f:a0:04:8c:a0:42: ca:aa:08:59:06:d5:60:e9:bb:ca:43:ca:af:99:ca:71:70:c9: 13:4a:93:bc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwOTE5MDIzOTI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmM1OS1mMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZ00VMwD0w0H83YmnezpKPmWwNW2KfJxGHEVzRmadvjaZNXqndnZPB4tAwW2 UmkGCYCZlr7dct7BcGOex1U6KWmnav6UqvrB7Qzg0IxzA0MhdlURZXJvGGALns4v 0tn1Iy5DFhZgRehO4mL+KBoA6TbDbuRwxnTD3Ceygygjo61kvyvHDR6vOv5OD49c 6aOuG0ziRcERPbn/e3gTJzpHzk3Hrh5ydj6v1j6fyl2Vx3DXdTp4aHbhGxImeurD ngEnllXK/++tBx4HQ+jQLhqGlK344EKv3RvWdh3C2AfbvgwXa2uvwB6cX92jNmY5 8WwUjaq/aLjk4Q94WAlsHFxlVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLujDzUC 6h5SrbexhqRU1FAufB9NMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk0NTEvNzFEQjY3RDQzQTREMTFFRDkwMERFMjZFQzRGOUFFMDIvMEMxRUIxMEEz QTUwMTFFRDhCNEEyNTcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxDQMA0GCSqGSIb3DQEBCwUAA4IBAQCifPOIF3blLvTbZ7zlC3bQ cQUmO9tANiksyMtezgvWZAf0l7Giho6s8y3uQpUqbOiZIrTDo0UpF0qccVBpMTqi OD84S6AAy1tgVSKxG+azHOX1zv9tM9Ib/I2y3vKB4h9nBiG71Ia6TC3wC6HX/Mox amAvinszqJkVIqSIb7884To5yx1/vrsXfV72HBTdyCDc0lzWPP6Wvp0BmuvegRHZ y/OgiVElUovO1iK/c5RNAdAwFHm1/Fmvjr81XsuPH8J9SlJRsMEULfBft69SS/Lm YKSDhl4rSiN9KfkXC43z1NJQ4gsPoASMoELKqghZBtVg6bvKQ8qvmcpxcMkTSpO8 -----END CERTIFICATE-----Generated at Fri Mar 27 02:39:35 2026 by rpki-client