$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa File: D0A263DCB09A11F0937ACB4DC4F9AE02.roa (raw, json) Hash identifier: sGhpkR6yhXyOK18x4RQlxvcaTO+7oSqNbdwtlNU5FBw= Subject key identifier: 24:D2:59:18:E6:0E:47:1C:9E:F4:30:86:01:4A:8D:90:45:C4:FA:1E Certificate issuer: /CN=A9171D3F/serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Certificate serial: 024B Authority key identifier: EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa Signing time: Tue 03 Mar 2026 07:06:49 +0000 ROA not before: Tue 03 Mar 2026 07:06:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24323 IP address blocks: 103.39.196.0/23 maxlen: 23 103.39.196.0/24 maxlen: 24 103.39.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3F, serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Validity Not Before: Mar 3 07:06:49 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a68889-b45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:18:a6:ae:a3:7f:68:e6:7b:9f:13:f9:22: 3f:89:80:07:a9:e1:e5:d2:94:9c:47:5a:fb:88:33: c2:bc:dc:7c:37:c5:85:56:79:ac:b6:60:78:2c:19: fa:12:61:5b:80:ab:b6:05:30:5a:db:6e:c4:23:5b: 69:49:c0:bc:86:c1:45:e0:32:dd:4c:46:90:bf:c1: ca:f1:c8:3d:47:27:0c:99:b6:b4:b9:5c:06:83:09: 8c:5e:a5:43:cb:cc:a6:8a:45:b5:5f:15:20:9c:7b: 2d:38:55:23:8e:83:65:58:33:1a:84:ed:27:07:ec: da:3c:b5:24:e4:f3:02:e8:79:94:14:52:4b:9e:d0: 04:d4:16:e9:a0:27:77:28:5c:b4:72:45:02:df:9b: 7f:6c:87:8d:73:9a:de:77:69:f6:dc:1c:76:90:22: f4:ca:fc:16:5a:10:e0:9d:a4:fb:af:25:5b:77:26: 64:f2:98:be:1b:6d:0c:b1:e6:9d:91:c7:24:73:9c: 42:2f:70:93:d7:1a:26:ee:c2:44:51:aa:eb:21:1c: 42:c7:53:97:b5:01:1e:d7:e0:37:9a:3b:d1:95:bb: e0:f4:2d:ae:53:71:b5:1f:aa:9b:ac:cf:5e:01:e6: 71:02:5f:c3:84:4e:51:c4:ca:f8:6f:09:1e:2c:56: a8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D2:59:18:E6:0E:47:1C:9E:F4:30:86:01:4A:8D:90:45:C4:FA:1E X509v3 Authority Key Identifier: keyid:EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/D0A263DCB09A11F0937ACB4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.39.196.0/23 Signature Algorithm: sha256WithRSAEncryption 03:1c:f0:4a:6d:11:37:28:1c:b0:d5:d0:26:c9:9a:a7:2f:c9: 8c:64:0e:b4:1e:b3:8a:30:a5:ba:0f:37:84:48:d7:70:fd:f2: e6:c9:9f:0a:17:3b:c5:4d:68:76:50:bf:ff:d0:76:d7:5a:7b: 50:c6:e5:21:73:d0:81:8d:d3:e6:74:12:9b:db:37:81:b6:0b: 1d:d3:fc:90:10:dc:4b:e5:94:95:0a:4b:df:3e:6d:f9:b1:d2: 3a:17:04:10:93:f5:40:17:2d:b4:66:cc:74:03:9a:c3:6e:09: a4:19:6c:03:2d:58:03:fc:28:31:19:88:68:15:e5:ea:75:c2: 71:95:a3:bf:b6:e5:0d:69:dd:82:5b:9c:5d:e9:6a:94:ac:d9: 6f:2c:34:0c:e4:dd:ec:ec:20:79:ca:82:ce:62:96:39:f8:9b: 98:65:72:26:ce:c4:db:59:6a:41:75:ff:86:e7:61:55:be:06: 4f:f1:44:56:57:90:a4:c1:80:f3:ac:82:93:79:50:bf:e6:7e: b6:60:73:52:e3:55:4d:5c:70:1d:b5:9c:63:38:35:7c:4e:8c: 25:5a:34:91:26:4f:9e:c1:d9:5d:69:f6:84:37:1b:2a:d8:79: 1c:07:98:e3:95:e6:70:f4:95:c5:08:2d:1c:af:88:b2:5d:fa: 0f:88:90:a7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0YxMTAvBgNVBAUTKEVGRDg4RjhBMjg5QjE0Qzc5NDQzMTI4QkJCQjc5MUI1 MkRBNTExQUQwHhcNMjYwMzAzMDcwNjQ5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2ODg4OS1iNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwYYpq6jf2jme58T+SI/iYAHqeHl0pScR1r7iDPCvNx8N8WFVnmstmB4LBn6 EmFbgKu2BTBa227EI1tpScC8hsFF4DLdTEaQv8HK8cg9RycMmba0uVwGgwmMXqVD y8ymikW1XxUgnHstOFUjjoNlWDMahO0nB+zaPLUk5PMC6HmUFFJLntAE1BbpoCd3 KFy0ckUC35t/bIeNc5red2n23Bx2kCL0yvwWWhDgnaT7ryVbdyZk8pi+G20Msead kcckc5xCL3CT1xom7sJEUarrIRxCx1OXtQEe1+A3mjvRlbvg9C2uU3G1H6qbrM9e AeZxAl/DhE5RxMr4bwkeLFaoWwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCTSWRjm DkccnvQwhgFKjZBFxPoeMB8GA1UdIwQYMBaAFO/Yj4oomxTHlEMSi7u3kbUtpRGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzRi85QjlDOEU2QUIx QjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZNZVVReEtMdTdlUnRTMmxF YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5aVBpaWliRk1lVVF4S0x1N2VSdFMybEVhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0YvOUI5QzhFNkFCMUI1MTFFRDk5RTMyNjY5QzRGOUFFMDIvRDBBMjYzRENC MDlBMTFGMDkzN0FDQjREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZyfEMA0GCSqGSIb3DQEBCwUAA4IBAQADHPBKbRE3KByw1dAmyZqn L8mMZA60HrOKMKW6DzeESNdw/fLmyZ8KFzvFTWh2UL//0HbXWntQxuUhc9CBjdPm dBKb2zeBtgsd0/yQENxL5ZSVCkvfPm35sdI6FwQQk/VAFy20Zsx0A5rDbgmkGWwD LVgD/CgxGYhoFeXqdcJxlaO/tuUNad2CW5xd6WqUrNlvLDQM5N3s7CB5yoLOYpY5 +JuYZXImzsTbWWpBdf+G52FVvgZP8URWV5CkwYDzrIKTeVC/5n62YHNS41VNXHAd tZxjODV8TowlWjSRJk+ewdldafaENxsq2HkcB5jjleZw9JXFCC0cr4iyXfoPiJCn -----END CERTIFICATE-----Generated at Thu Mar 26 15:40:48 2026 by rpki-client