$ rpki-client -vvf rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa File: 9CD74392C9E411EC956B0A3CC4F9AE02.roa (raw, json) Hash identifier: vd7/c73lLNTzKiOupkJvInFXPhKY9E+Gw/hTf0zKkVY= Subject key identifier: 2F:BC:6B:A5:71:C3:7F:07:64:DC:9B:34:05:93:1D:6A:3B:72:6B:35 Certificate issuer: /CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Certificate serial: 03C8 Authority key identifier: 44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:01:20 +0000 ROA not before: Sat 05 Jul 2025 01:39:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45858 IP address blocks: 103.227.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171235, serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Validity Not Before: Jul 5 01:39:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42a90-7577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a0:62:a6:8e:20:97:76:db:4d:13:da:73:1f: 85:a7:e3:b0:ec:dd:3e:c2:78:7e:92:5d:0d:54:4c: d9:04:9a:a7:dd:39:22:6d:7c:82:81:1c:52:b9:3a: eb:41:65:7f:27:c7:5c:1e:b6:b0:f4:ad:2e:de:50: 03:35:26:33:25:fa:31:5f:3f:05:f9:5b:78:a4:f0: d3:47:83:ab:5f:f7:5e:90:c0:25:a1:5e:a5:b7:fd: df:df:4f:b6:e4:16:9d:fc:84:d0:25:8c:60:67:5f: b7:3f:1d:53:3c:eb:b0:3d:74:5e:49:dc:9c:f6:fc: 1b:e9:bd:20:df:94:0e:3e:9d:0a:0a:39:85:cf:8d: 6a:18:e0:e6:a0:82:79:9c:fe:f6:a2:a3:9a:3c:23: 41:a4:84:78:4e:38:05:79:3d:b6:3c:b1:82:13:2f: ac:f7:1a:64:74:ff:07:cd:59:2f:fe:63:0f:eb:59: 71:4d:9f:5e:23:3a:08:88:b0:c1:27:04:10:28:ac: fd:3c:c7:92:c0:21:ba:dc:6a:ef:a5:fc:60:d0:00: 60:33:8f:a5:25:69:a4:05:c1:e0:5d:31:8a:30:a5: 5d:2d:40:3b:fb:cc:65:48:44:69:42:3a:c0:34:9c: f0:46:9b:42:e6:34:72:e8:95:bf:c6:8a:e8:69:92: 8c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BC:6B:A5:71:C3:7F:07:64:DC:9B:34:05:93:1D:6A:3B:72:6B:35 X509v3 Authority Key Identifier: keyid:44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.227.44.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:ba:54:e3:c8:5b:e3:c0:1b:c6:e2:0b:23:77:54:60:a2:2b: fa:5f:1d:d1:b7:37:96:9f:40:04:29:64:68:dc:3d:17:dd:04: e3:c6:87:a7:b1:a6:89:0a:e8:00:ab:d6:03:4c:1a:e5:d3:49: 86:9d:d4:0d:26:f3:71:70:41:e3:ed:01:d7:56:bc:48:9d:56: c6:39:9f:33:50:db:9e:15:5a:75:55:9d:9f:cf:58:97:ec:37: bf:9c:24:c9:30:06:9a:d1:49:f4:34:a8:fc:8b:ca:88:e6:7e: b9:1e:70:e5:78:2f:c6:bf:3a:c6:30:59:0c:34:67:1e:88:15: 73:0a:f0:d9:d4:8a:55:6d:66:18:00:96:23:e4:94:b0:11:c1: 9e:4f:7b:e2:11:74:2a:e3:16:a4:7f:eb:10:c2:49:b1:e1:65: fc:ed:b9:03:7e:be:27:63:b6:f9:30:b0:da:a9:c9:da:f9:03: a9:b2:a6:c4:ae:25:35:01:1e:d8:09:3f:fe:80:d4:5e:33:a3: 57:79:4c:b0:5e:f5:6a:ba:f0:59:1b:a9:70:c9:17:61:1a:b7: 3b:c4:c1:ab:4e:49:3d:87:52:7b:b7:fd:d2:7c:ed:74:d5:77: b3:33:b2:fe:7c:4f:4d:3d:1d:94:dc:04:b3:b3:ec:25:33:d1: 13:70:a0:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyMzUxMTAvBgNVBAUTKDQ0MUNCMEQ4NkE5MkNFREZCRTgwODNERUQ2OTdBMjZE NjIzRUU2NTUwHhcNMjUwNzA1MDEzOTEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmE5MC03NTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16Bipo4gl3bbTRPacx+Fp+Ow7N0+wnh+kl0NVEzZBJqn3TkibXyCgRxSuTrr QWV/J8dcHraw9K0u3lADNSYzJfoxXz8F+Vt4pPDTR4OrX/dekMAloV6lt/3f30+2 5Bad/ITQJYxgZ1+3Px1TPOuwPXReSdyc9vwb6b0g35QOPp0KCjmFz41qGODmoIJ5 nP72oqOaPCNBpIR4TjgFeT22PLGCEy+s9xpkdP8HzVkv/mMP61lxTZ9eIzoIiLDB JwQQKKz9PMeSwCG63Grvpfxg0ABgM4+lJWmkBcHgXTGKMKVdLUA7+8xlSERpQjrA NJzwRptC5jRy6JW/xoroaZKMsQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC+8a6Vx w38HZNybNAWTHWo7cms1MB8GA1UdIwQYMBaAFEQcsNhqks7fvoCD3taXom1iPuZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTIzNS9ERDYxRTIyRUM1 REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0LS1nSVBlMXBlaWJXSS01 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCeXcyR3FTenQtLWdJUGUxcGVpYldJLTVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzEyMzUvREQ2MUUyMkVDNUREMTFFQ0JFRjQyQzc3QzRGOUFFMDIvOUNENzQzOTJD OUU0MTFFQzk1NkIwQTNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+MsMA0GCSqGSIb3DQEBCwUAA4IBAQA8ulTjyFvjwBvG4gsjd1Rg oiv6Xx3RtzeWn0AEKWRo3D0X3QTjxoensaaJCugAq9YDTBrl00mGndQNJvNxcEHj 7QHXVrxInVbGOZ8zUNueFVp1VZ2fz1iX7De/nCTJMAaa0Un0NKj8i8qI5n65HnDl eC/GvzrGMFkMNGceiBVzCvDZ1IpVbWYYAJYj5JSwEcGeT3viEXQq4xakf+sQwkmx 4WX87bkDfr4nY7b5MLDaqcna+QOpsqbEriU1AR7YCT/+gNReM6NXeUywXvVquvBZ G6lwyRdhGrc7xMGrTkk9h1J7t/3SfO101XezM7L+fE9NPR2U3ASzs+wlM9ETcKCk -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:19 2026 by rpki-client