$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa File: 9BC1D2907EDF11EE86C6A27BC4F9AE02.roa (raw, json) Hash identifier: /sW7La6h9x+hyUPvzqNyMJ8vxN6nXJwOe40nIYe1WC0= Subject key identifier: 28:6B:10:43:40:08:F8:A8:8D:1C:9D:31:C1:8F:40:3D:CF:8F:CB:F4 Certificate issuer: /CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Certificate serial: 0221 Authority key identifier: 4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:21:02 +0000 ROA not before: Sun 21 Dec 2025 20:33:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150142 IP address blocks: 103.213.38.0/24 maxlen: 24 103.213.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3C, serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Validity Not Before: Dec 21 20:33:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a43d3e-b0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:43:eb:69:e1:a9:34:2e:8e:2b:be:3a:4d:40: 78:c4:34:f6:79:ef:8d:40:ef:56:e7:d4:d8:53:04: 2d:4f:ad:8d:3f:f5:16:5d:35:35:2c:1a:b9:4e:a2: e8:d0:cf:68:05:ad:aa:7a:38:4d:18:0e:36:c3:e0: 4c:95:8c:5c:0f:a8:c1:83:42:50:45:b8:8a:7b:a5: 2d:0f:66:6d:25:d9:b9:fd:a1:00:42:ef:09:fd:0f: 3e:ef:87:a0:38:51:4a:be:0d:f8:91:55:c1:5a:ab: a5:27:c9:be:42:21:68:6d:41:06:f4:39:bd:16:f8: a4:dc:1b:a9:37:56:47:8f:e5:55:f1:eb:b1:b8:76: 11:fa:1b:f9:3e:9c:45:66:5b:75:0c:d6:c8:21:a5: 6f:03:98:ff:24:3a:a2:9f:32:47:d0:e2:68:fb:8f: 13:0c:ca:14:b3:15:6e:a5:9b:fb:87:18:92:2e:a6: b0:5e:2b:aa:61:06:0c:13:39:51:7d:d5:f6:31:6e: c9:ba:37:94:ca:c1:2a:0b:d0:89:3d:1f:17:cc:e0: 41:9a:ca:ff:2d:dd:df:3f:bc:ce:a6:8f:0d:d1:78: 28:58:3a:6f:84:3f:9c:ab:a7:ec:6e:e9:17:e4:88: b3:49:b0:f3:d5:5d:48:3d:26:15:b6:4a:e0:af:7f: d9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6B:10:43:40:08:F8:A8:8D:1C:9D:31:C1:8F:40:3D:CF:8F:CB:F4 X509v3 Authority Key Identifier: keyid:4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.38.0/23 Signature Algorithm: sha256WithRSAEncryption c9:e7:cd:c9:f4:5b:2a:66:af:8c:9c:68:48:84:3d:a4:cd:2c: 07:6b:97:c6:3e:af:20:69:df:c3:71:3a:d3:51:49:60:2e:9f: 25:0b:c9:e9:bd:16:47:81:5f:5b:4d:02:c9:e3:6f:3e:42:19: bd:62:ee:94:99:a3:11:f7:0f:0a:55:3c:3f:f2:2f:e4:66:06: 46:1e:7e:00:3d:73:35:d0:52:42:b1:40:b1:d2:e0:9e:c9:80: ac:72:89:df:8c:bf:fd:46:43:97:7c:3d:50:f6:03:65:9e:9f: 16:10:c1:16:29:02:67:87:45:06:13:0c:cd:4d:74:78:4c:5d: 90:0f:89:fe:8d:68:dc:ac:f3:e0:32:8e:fc:b8:c5:2a:b6:06: fd:dd:61:72:45:33:19:b7:38:23:13:aa:bc:03:17:d4:2f:81: 6b:37:ed:11:47:06:bc:42:d2:b0:e9:b9:de:ad:cb:84:d9:9b: 23:6d:c9:e9:db:c6:9d:f2:9b:f1:eb:d3:f0:e1:94:58:21:0d: 59:d9:00:46:bf:f4:d4:ef:19:df:63:9d:88:d3:bc:9d:69:43: 41:4c:40:ef:7f:c4:7d:72:64:cd:d1:f9:ed:08:ba:e2:88:b8: eb:1e:64:69:ba:85:21:f8:bb:6a:d0:ec:37:8b:51:89:1f:bf: 3c:cb:51:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0MxMTAvBgNVBAUTKDRERUUwODM2RkEwRjdFRTkyQzJFNkE2QzE5ODAxNkRF OENGOEJGMTYwHhcNMjUxMjIxMjAzMzM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2QzZS1iMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kPraeGpNC6OK746TUB4xDT2ee+NQO9W59TYUwQtT62NP/UWXTU1LBq5TqLo 0M9oBa2qejhNGA42w+BMlYxcD6jBg0JQRbiKe6UtD2ZtJdm5/aEAQu8J/Q8+74eg OFFKvg34kVXBWqulJ8m+QiFobUEG9Dm9Fvik3BupN1ZHj+VV8euxuHYR+hv5PpxF Zlt1DNbIIaVvA5j/JDqinzJH0OJo+48TDMoUsxVupZv7hxiSLqawXiuqYQYMEzlR fdX2MW7JujeUysEqC9CJPR8XzOBBmsr/Ld3fP7zOpo8N0XgoWDpvhD+cq6fsbukX 5IizSbDz1V1IPSYVtkrgr3/Z5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFChrEENA CPiojRydMcGPQD3Pj8v0MB8GA1UdIwQYMBaAFE3uCDb6D37pLC5qbBmAFt6M+L8W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzQy8xMjcxNTdGMjA1 NkExMUVFQjg4NzAwMTNDNEY5QUUwMi9UZTRJTnZvUGZ1a3NMbXBzR1lBVzNvejR2 eFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlNElOdm9QZnVrc0xtcHNHWUFXM296NHZ4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0MvMTI3MTU3RjIwNTZBMTFFRUI4ODcwMDEzQzRGOUFFMDIvOUJDMUQyOTA3 RURGMTFFRTg2QzZBMjdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9UmMA0GCSqGSIb3DQEBCwUAA4IBAQDJ583J9FsqZq+MnGhIhD2k zSwHa5fGPq8gad/DcTrTUUlgLp8lC8npvRZHgV9bTQLJ428+Qhm9Yu6UmaMR9w8K VTw/8i/kZgZGHn4APXM10FJCsUCx0uCeyYCsconfjL/9RkOXfD1Q9gNlnp8WEMEW KQJnh0UGEwzNTXR4TF2QD4n+jWjcrPPgMo78uMUqtgb93WFyRTMZtzgjE6q8AxfU L4FrN+0RRwa8QtKw6bnercuE2Zsjbcnp28ad8pvx69Pw4ZRYIQ1Z2QBGv/TU7xnf Y52I07ydaUNBTEDvf8R9cmTN0fntCLriiLjrHmRpuoUh+Ltq0Ow3i1GJH788y1HX -----END CERTIFICATE-----Generated at Thu Mar 26 10:08:58 2026 by rpki-client