$ rpki-client -vvf rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa File: 87C1A5F8245711F083602A0BC4F9AE02.roa (raw, json) Hash identifier: xYfOlV7ly8PaoVxzHciXWWKH9nbZzy74G8B+L2wVsHk= Subject key identifier: 9E:9E:AD:59:C1:25:D3:5D:DD:F3:3F:72:F2:FF:C6:75:E2:94:8D:B2 Certificate issuer: /CN=A9173780/serialNumber=9BC66CFF809A8A71212005DD9C27047AB418C8A7 Certificate serial: 0AAC Authority key identifier: 9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:01:02 +0000 ROA not before: Sat 08 Nov 2025 19:09:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 24479 IP address blocks: 203.3.167.0/24 maxlen: 24 203.28.212.0/24 maxlen: 24 203.170.2.0/23 maxlen: 23 203.170.2.0/24 maxlen: 24 203.170.4.0/22 maxlen: 22 203.170.8.0/21 maxlen: 21 203.170.8.0/24 maxlen: 24 203.170.9.0/24 maxlen: 24 203.170.10.0/24 maxlen: 24 203.170.11.0/24 maxlen: 24 203.170.12.0/24 maxlen: 24 203.170.13.0/24 maxlen: 24 203.170.14.0/24 maxlen: 24 2402:4d40::/32 maxlen: 32 2402:4d40::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.crl rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173780, serialNumber=9BC66CFF809A8A71212005DD9C27047AB418C8A7 Validity Not Before: Nov 8 19:09:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4469e-9e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3f:0b:49:7e:d6:70:be:3c:03:40:18:2d:a2: b8:51:1a:c1:69:bc:5e:c9:df:89:de:9d:22:8a:d1: f9:d9:b4:34:4d:a8:0d:fd:47:e2:b5:de:86:da:51: 83:85:a6:d9:2f:bb:bc:fd:df:a0:0f:92:f8:11:a1: da:e9:68:a4:d3:d0:82:3b:df:dc:5f:28:b9:64:01: 69:06:68:2b:60:9c:1f:84:aa:0a:c7:0d:d2:01:94: 7c:80:33:20:1c:6f:02:cc:aa:cc:2f:dc:6e:ac:38: bb:cc:08:cb:cf:5b:e9:97:4f:ae:10:e2:6b:0f:33: 29:68:be:97:6b:67:f0:29:eb:68:ae:14:b9:d8:30: af:39:93:70:33:61:c3:2e:59:1b:43:ff:1b:f1:0c: 07:12:ce:af:be:93:ea:fd:12:7f:79:76:44:7b:1c: a8:2f:b9:9d:60:e5:ef:b4:83:f0:9c:e0:d2:d9:c9: 6e:9b:dd:db:fe:a4:37:5a:19:19:58:17:1d:f2:13: a3:a6:04:83:0b:fe:ee:5a:d9:4a:c6:2d:28:d6:2e: 72:a3:75:80:05:01:c1:32:7b:73:04:30:72:a5:13: 7f:b2:ca:00:c7:f9:89:2e:36:c5:ad:e9:98:42:28: 6a:e2:37:01:7e:e1:bb:00:8d:47:2e:42:42:ee:01: d0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9E:AD:59:C1:25:D3:5D:DD:F3:3F:72:F2:FF:C6:75:E2:94:8D:B2 X509v3 Authority Key Identifier: keyid:9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/87C1A5F8245711F083602A0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.3.167.0/24 203.28.212.0/24 203.170.2.0-203.170.15.255 IPv6: 2402:4d40::/32 Signature Algorithm: sha256WithRSAEncryption b6:f0:52:c4:fb:0a:d2:43:e6:4d:fa:37:d6:c3:30:c4:c1:2b: fc:19:92:3d:3e:cd:7e:8e:01:1c:37:e2:46:cd:9a:d2:a5:a3: f3:cb:ac:23:18:8f:b2:1a:b7:fe:cb:e1:e1:01:de:b2:34:fd: 7b:23:8f:49:08:78:15:24:20:a2:60:be:a8:b0:70:58:29:f2: 88:90:77:bd:f4:d5:fa:5a:b3:1c:04:bd:84:c1:78:57:12:0f: 9c:5d:92:02:9c:1e:d5:92:51:8f:ed:64:d6:de:0b:e7:27:de: 91:0f:62:6f:67:20:44:8e:da:18:21:3c:45:0d:74:55:80:1b: d9:05:be:59:c0:7c:12:cd:b0:af:91:90:6a:aa:11:2b:27:90: 06:3c:01:7f:cd:dc:59:7a:36:4e:27:df:62:a2:1f:32:e5:e6: b7:a1:56:b1:33:d0:48:b5:96:55:4b:85:1f:a6:32:df:28:e3: a2:2c:47:1c:64:69:8c:cc:fd:1a:f4:e5:e5:69:66:e8:2c:64: ad:6c:4a:c9:a1:68:5b:e2:77:0f:e4:28:22:15:20:2c:7f:e4: e5:e2:60:94:f9:75:04:4a:b8:e4:7e:ef:91:51:3a:fb:01:c2: 66:65:5b:c0:88:de:6a:b3:e7:cd:ab:58:76:55:9f:51:4f:06: c0:df:ce:3a -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM3ODAxMTAvBgNVBAUTKDlCQzY2Q0ZGODA5QThBNzEyMTIwMDVERDlDMjcwNDdB QjQxOEM4QTcwHhcNMjUxMTA4MTkwOTM5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDY5ZS05ZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD8LSX7WcL48A0AYLaK4URrBabxeyd+J3p0iitH52bQ0TagN/Ufitd6G2lGD habZL7u8/d+gD5L4EaHa6Wik09CCO9/cXyi5ZAFpBmgrYJwfhKoKxw3SAZR8gDMg HG8CzKrML9xurDi7zAjLz1vpl0+uEOJrDzMpaL6Xa2fwKetorhS52DCvOZNwM2HD LlkbQ/8b8QwHEs6vvpPq/RJ/eXZEexyoL7mdYOXvtIPwnODS2clum93b/qQ3WhkZ WBcd8hOjpgSDC/7uWtlKxi0o1i5yo3WABQHBMntzBDBypRN/ssoAx/mJLjbFremY Qihq4jcBfuG7AI1HLkJC7gHQuwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFJ6erVnB JdNd3fM/cvL/xnXilI2yMB8GA1UdIwQYMBaAFJvGbP+AmopxISAF3ZwnBHq0GMin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mzc4MC84RUI2MkRGQTc3 RUQxMUVBQUE0Q0M0MjJDNEY5QUUwMi9tOFpzXzRDYWluRWhJQVhkbkNjRWVyUVl5 S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204WnNfNENhaW5FaElBWGRuQ2NFZXJRWXlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM3ODAvOEVCNjJERkE3N0VEMTFFQUFBNENDNDIyQzRGOUFFMDIvODdDMUE1Rjgy NDU3MTFGMDgzNjAyQTBCQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaAwQAywOnAwQAyxzUMAwDBAHLqgIDBATLqgAwDQQCAAIwBwMFACQCTUAw DQYJKoZIhvcNAQELBQADggEBALbwUsT7CtJD5k36N9bDMMTBK/wZkj0+zX6OARw3 4kbNmtKlo/PLrCMYj7Iat/7L4eEB3rI0/Xsjj0kIeBUkIKJgvqiwcFgp8oiQd730 1fpasxwEvYTBeFcSD5xdkgKcHtWSUY/tZNbeC+cn3pEPYm9nIESO2hghPEUNdFWA G9kFvlnAfBLNsK+RkGqqESsnkAY8AX/N3Fl6Nk4n32KiHzLl5rehVrEz0Ei1llVL hR+mMt8o46IsRxxkaYzM/Rr05eVpZugsZK1sSsmhaFvidw/kKCIVICx/5OXiYJT5 dQRKuOR+75FROvsBwmZlW8CI3mqz582rWHZVn1FPBsDfzjo= -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:14 2026 by rpki-client