$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa File: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (raw, json) Hash identifier: MARAw22DhIJFp/wfG19G5Gz01JcFPueQuJN4T376eTY= Subject key identifier: B1:D8:D0:C4:3C:B4:3C:60:95:7D:3C:A8:C9:07:19:7F:97:84:66:48 Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 058E Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:08:40 +0000 ROA not before: Fri 26 Sep 2025 23:56:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147017 IP address blocks: 103.173.2.0/23 maxlen: 23 103.173.2.0/24 maxlen: 24 103.173.3.0/24 maxlen: 24 2001:df7:8280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Sep 26 23:56:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a7f8-22fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:be:8b:a0:23:7d:d5:7a:57:d8:09:a1:a8: 6d:9c:b8:33:cb:8e:e5:8a:c1:c6:9f:95:eb:c7:d6: 01:3d:b7:28:e6:6f:10:9e:59:94:51:29:f6:5a:35: af:5a:d2:00:ad:72:78:7c:87:dd:7d:0a:f6:12:11: 71:a2:7d:4a:95:e9:2f:8b:a5:80:18:d1:29:e5:16: 5a:43:57:84:61:2f:16:c2:71:83:0b:9b:a5:ec:cc: df:da:92:76:0b:84:c7:9a:cb:3f:da:e6:41:de:55: 60:a1:fb:15:10:aa:e1:ce:f7:5a:65:68:bd:e5:0e: 69:56:97:a9:11:80:26:28:5c:2b:57:a6:19:d0:cc: 13:d3:c5:36:f2:da:fa:6d:95:bc:43:7b:bd:99:e8: e8:73:77:79:9f:12:4e:3c:63:99:be:56:4f:1c:c7: 3b:42:6b:ce:ea:8f:46:3a:4a:62:0e:78:20:ca:a4: ac:1a:06:5f:9c:b8:50:35:0d:fb:d8:c4:7b:35:9d: 70:11:a9:7c:65:59:4d:4f:f1:1e:9a:2f:1b:ba:b6: 90:c9:ba:54:ab:a7:f9:1d:ad:a7:cd:f7:ff:a9:14: e8:b0:ed:07:70:8d:9d:51:b4:bd:d7:0c:a7:41:8b: 32:c2:ad:51:3b:0d:95:cc:57:f2:ac:59:cf:b3:f4: 53:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D8:D0:C4:3C:B4:3C:60:95:7D:3C:A8:C9:07:19:7F:97:84:66:48 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.2.0/23 IPv6: 2001:df7:8280::/48 Signature Algorithm: sha256WithRSAEncryption 4e:b0:5d:8d:63:80:0c:c3:0b:b8:34:13:00:a4:37:e9:86:88: 3a:41:e7:af:39:de:43:30:95:91:47:35:cb:34:d4:8d:72:b3: 0a:d5:ad:d5:42:ea:14:49:e8:f4:08:27:cf:10:98:2e:79:c9: b4:1d:8e:e6:c7:50:c5:95:4f:e8:5c:33:40:4e:d1:bd:84:01: ef:41:95:70:e2:a5:c6:b7:1c:02:41:52:42:3e:03:03:f6:78: 40:ad:fb:b7:1c:06:c0:56:ef:8b:cd:bc:df:59:44:16:42:4d: 6c:53:5a:f4:e1:53:5d:20:db:da:98:5e:85:dc:dc:90:17:bb: 0e:20:97:c6:d4:fb:d7:d6:77:b3:e6:50:81:25:2d:ee:1f:92: 82:fb:d5:9c:17:57:6b:5a:8d:36:4a:c9:1a:88:e4:91:db:d9: 94:cd:f7:16:ab:73:39:fd:d5:13:9b:c4:00:ce:7c:e5:b2:b2: 7e:aa:85:1d:7f:b8:60:63:00:38:60:9b:bc:0f:8f:a7:12:59: 12:75:43:ec:12:0f:f7:ef:50:f1:ce:86:40:0d:a2:ca:30:bd: 98:16:e4:cf:b1:d0:d8:7e:c8:f5:66:24:57:13:10:6d:d6:ec: b0:e6:50:08:5f:d4:92:b1:93:8e:19:83:26:e5:7a:29:1a:1c: 1c:86:1b:58 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwOTI2MjM1NjE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTdmOC0yMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLO+i6AjfdV6V9gJoahtnLgzy47lisHGn5Xrx9YBPbco5m8QnlmUUSn2WjWv WtIArXJ4fIfdfQr2EhFxon1Klekvi6WAGNEp5RZaQ1eEYS8WwnGDC5ul7Mzf2pJ2 C4THmss/2uZB3lVgofsVEKrhzvdaZWi95Q5pVpepEYAmKFwrV6YZ0MwT08U28tr6 bZW8Q3u9mejoc3d5nxJOPGOZvlZPHMc7QmvO6o9GOkpiDnggyqSsGgZfnLhQNQ37 2MR7NZ1wEal8ZVlNT/Eemi8buraQybpUq6f5Ha2nzff/qRTosO0HcI2dUbS91wyn QYsywq1ROw2VzFfyrFnPs/RTIQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLHY0MQ8 tDxglX08qMkHGX+XhGZIMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBBRTkvMDkxMjAzODAxMDg2MTFFQzgxRTc3MDNGQzRGOUFFMDIvNUQ3Nzc5QTYx MDhBMTFFQzlFMUYzRDQ5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ60CMA8EAgACMAkDBwAgAQ33goAwDQYJKoZIhvcNAQELBQADggEB AE6wXY1jgAzDC7g0EwCkN+mGiDpB56853kMwlZFHNcs01I1yswrVrdVC6hRJ6PQI J88QmC55ybQdjubHUMWVT+hcM0BO0b2EAe9BlXDipca3HAJBUkI+AwP2eECt+7cc BsBW74vNvN9ZRBZCTWxTWvThU10g29qYXoXc3JAXuw4gl8bU+9fWd7PmUIElLe4f koL71ZwXV2tajTZKyRqI5JHb2ZTN9xarczn91RObxADOfOWysn6qhR1/uGBjADhg m7wPj6cSWRJ1Q+wSD/fvUPHOhkANosowvZgW5M+x0Nh+yPVmJFcTEG3W7LDmUAhf 1JKxk44ZgybleikaHByGG1g= -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:12 2026 by rpki-client