$ rpki-client -vvf rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa File: 7FAEDE3A03B411EBBB548A5EC4F9AE02.roa (raw, json) Hash identifier: IukELGpabDdGm9dh0mRYoQIuev5GllWS4FmX9CKUBYs= Subject key identifier: 48:C3:B1:81:CB:6C:C7:A3:B8:DB:95:72:BA:DD:23:D6:85:72:66:34 Certificate issuer: /CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Certificate serial: 083A Authority key identifier: 7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:04:57 +0000 ROA not before: Mon 26 May 2025 21:19:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9288 IP address blocks: 103.90.212.0/22 maxlen: 22 103.90.212.0/24 maxlen: 24 103.90.213.0/24 maxlen: 24 103.90.214.0/24 maxlen: 24 103.90.215.0/24 maxlen: 24 123.253.0.0/22 maxlen: 22 123.253.0.0/24 maxlen: 24 123.253.1.0/24 maxlen: 24 123.253.2.0/24 maxlen: 24 123.253.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173060, serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Validity Not Before: May 26 21:19:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58af9-92a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:36:d3:10:f2:e0:26:ef:77:f2:82:60:3f: 16:27:41:d8:18:24:dd:45:41:fe:24:a0:41:dc:f7: 75:e7:33:34:77:76:3d:e8:e5:b7:4b:a0:3d:92:73: 60:99:16:fb:4c:85:92:0f:bd:6c:80:94:4a:11:49: ae:3d:4a:0e:20:20:71:f7:5c:0d:1b:17:c4:df:31: 16:30:b5:fd:ed:d9:f1:3f:32:1c:b4:9f:6d:bd:1d: ee:c2:cc:76:36:5f:d5:0f:f1:96:45:23:60:ad:05: 69:4d:59:e1:8f:85:2e:b1:f1:b1:83:c4:43:19:ea: cf:7f:db:1f:ef:e1:73:64:ce:1e:39:af:04:84:e5: 41:29:de:04:f8:45:23:d8:ef:2e:95:04:0b:cd:f5: 9c:24:cb:4a:0e:67:09:53:5a:b3:24:e4:29:bf:a7: 0d:f4:b9:5f:9e:db:c8:35:3f:17:59:9f:8d:dd:86: cc:86:8e:77:97:64:e2:0b:29:0b:20:a0:32:50:1d: bf:ce:d6:59:59:00:13:5f:ab:27:0f:40:bf:4a:a7: a0:e6:5d:1d:51:47:3b:30:19:cf:52:a8:47:85:2e: 49:2c:97:54:ed:97:84:73:11:58:9e:fe:20:d5:f6: 55:4b:05:ce:58:0a:70:b8:ae:71:fb:fc:47:b7:7d: d6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C3:B1:81:CB:6C:C7:A3:B8:DB:95:72:BA:DD:23:D6:85:72:66:34 X509v3 Authority Key Identifier: keyid:7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.212.0/22 123.253.0.0/22 Signature Algorithm: sha256WithRSAEncryption a8:8c:c6:a6:ef:2b:9a:ad:7f:04:d9:91:b4:b7:73:a0:01:37: e0:e8:f4:79:44:1a:03:af:58:74:66:20:14:d3:3a:6b:b5:bb: 60:0d:f4:09:76:80:6f:5b:15:50:2f:58:3d:7c:56:1f:4e:19: 18:24:f6:c9:6d:a2:82:d7:d1:1c:87:ae:31:be:df:31:0e:89: 02:70:57:22:32:92:66:7c:37:84:60:43:98:fc:c2:8f:b2:41: 72:9b:51:d0:d9:52:44:ca:1f:77:4f:b5:e8:25:fa:4c:1f:0a: c9:0b:20:e6:f0:60:9b:38:b7:6e:ae:b8:2e:bc:33:d7:23:f5: af:39:52:f7:04:14:10:2d:29:7e:6e:b1:bf:07:c8:72:ba:4d: 24:73:b1:13:3c:61:b6:30:8c:9b:02:d0:b5:1b:6c:58:2b:7a: 22:43:e5:a6:7c:eb:69:8e:e4:36:b9:62:e1:0e:2e:f4:42:1f: 86:c2:45:eb:ac:2f:4c:b2:45:f9:51:d2:93:40:10:9e:1e:25: ea:38:f3:d8:83:80:a4:3a:dc:8e:b0:be:cb:da:87:ee:ac:43: 58:3b:2d:f3:c7:40:98:be:10:f6:f6:be:e9:99:2e:8c:6f:74: df:b0:60:45:92:62:65:e0:6c:cc:37:d9:5a:f5:69:56:25:74: bc:f0:3f:d0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMwNjAxMTAvBgNVBAUTKDdGREY2MjE4RkEwMTVEMEEwMDc0QTg0NDI0NTE4MDZB MjhGOURERjUwHhcNMjUwNTI2MjExOTUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGFmOS05MmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMA20xDy4Cbvd/KCYD8WJ0HYGCTdRUH+JKBB3Pd15zM0d3Y96OW3S6A9knNg mRb7TIWSD71sgJRKEUmuPUoOICBx91wNGxfE3zEWMLX97dnxPzIctJ9tvR3uwsx2 Nl/VD/GWRSNgrQVpTVnhj4UusfGxg8RDGerPf9sf7+FzZM4eOa8EhOVBKd4E+EUj 2O8ulQQLzfWcJMtKDmcJU1qzJOQpv6cN9LlfntvINT8XWZ+N3YbMho53l2TiCykL IKAyUB2/ztZZWQATX6snD0C/Sqeg5l0dUUc7MBnPUqhHhS5JLJdU7ZeEcxFYnv4g 1fZVSwXOWApwuK5x+/xHt33WMQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEjDsYHL bMejuNuVcrrdI9aFcmY0MB8GA1UdIwQYMBaAFH/fYhj6AV0KAHSoRCRRgGoo+d31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzA2MC9BNzI1ODZCMDAz QjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhRb0FkS2hFSkZHQWFpajUz ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y5OWlHUG9CWFFvQWRLaEVKRkdBYWlqNTNmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMwNjAvQTcyNTg2QjAwM0IxMTFFQjg0M0E3NzU2QzRGOUFFMDIvN0ZBRURFM0Ew M0I0MTFFQkJCNTQ4QTVFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ1rUAwQCe/0AMA0GCSqGSIb3DQEBCwUAA4IBAQCojMam7yuarX8E 2ZG0t3OgATfg6PR5RBoDr1h0ZiAU0zprtbtgDfQJdoBvWxVQL1g9fFYfThkYJPbJ baKC19Ech64xvt8xDokCcFciMpJmfDeEYEOY/MKPskFym1HQ2VJEyh93T7XoJfpM HwrJCyDm8GCbOLdurrguvDPXI/WvOVL3BBQQLSl+brG/B8hyuk0kc7ETPGG2MIyb AtC1G2xYK3oiQ+WmfOtpjuQ2uWLhDi70Qh+GwkXrrC9MskX5UdKTQBCeHiXqOPPY g4CkOtyOsL7L2ofurENYOy3zx0CYvhD29r7pmS6Mb3TfsGBFkmJl4GzMN9la9WlW JXS88D/Q -----END CERTIFICATE-----Generated at Thu Mar 26 05:49:09 2026 by rpki-client