$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa File: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (raw, json) Hash identifier: tuFhPkM88OAOhbJHPJWo76XV19a6w7QlA1gqkoBuKS8= Subject key identifier: AC:0E:67:95:C2:95:83:3C:9D:C3:E9:EC:1A:36:05:9F:6A:13:38:97 Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 199D Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:34:33 +0000 ROA not before: Sat 20 Dec 2025 16:13:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136004 IP address blocks: 103.79.117.0/24 maxlen: 24 103.99.176.0/23 maxlen: 23 103.99.176.0/24 maxlen: 24 103.99.177.0/24 maxlen: 24 103.120.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6557 (0x199d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Dec 20 16:13:54 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44e78-9798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:be:36:0c:ef:bb:22:40:ab:50:84:b4:a3:7c: d1:53:61:4e:32:c6:ca:98:db:a5:d5:59:93:15:ce: f4:9c:62:28:fd:7d:db:6d:b7:f0:61:81:df:72:9b: 39:f7:ac:a4:16:7e:d4:88:2b:4a:8d:8b:e2:6d:d8: da:21:43:8f:07:c5:73:65:76:06:9d:23:59:01:f6: 27:14:a8:32:b3:bb:e2:90:0d:72:47:86:42:a9:3a: ef:e9:a5:5f:07:3a:3e:40:88:b4:89:78:b6:cc:6c: 20:fc:9d:fc:97:97:dd:4e:9e:e5:14:83:af:11:1b: e9:e4:f9:a6:dd:b9:33:05:91:fb:a6:1f:53:e9:d1: 22:42:5b:4b:87:6a:41:50:87:60:cf:15:ce:3e:e9: 59:17:bb:a7:31:98:ee:20:bc:0c:35:a8:4e:c9:ed: af:29:58:00:b6:3b:08:91:61:89:9f:48:0c:f1:a1: a0:27:7f:f4:08:bc:d1:a8:59:af:93:8a:75:41:a6: f8:4a:6c:f8:3c:1d:03:e6:2b:c1:3c:01:78:2d:04: fa:83:ad:c5:3c:eb:11:6e:05:26:6c:b1:dd:a0:b3: 03:ea:eb:a4:ee:93:31:69:94:96:f6:47:6e:8a:9d: c6:c4:af:65:71:b6:b1:ad:5d:62:6a:3b:d9:e3:3b: 21:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0E:67:95:C2:95:83:3C:9D:C3:E9:EC:1A:36:05:9F:6A:13:38:97 X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.117.0/24 103.99.176.0/23 103.120.110.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:7b:e8:16:80:b8:8d:f9:fd:1b:85:32:1a:11:6e:9c:29:24: 0b:98:da:8b:01:9c:90:57:22:8d:4e:cd:cd:c8:68:37:e1:a3: a4:a3:f1:79:fe:58:7f:37:6c:fb:7b:bc:35:c4:6a:7c:ba:04: 7b:e9:cc:32:30:18:ea:6f:1d:b8:63:47:e7:a4:da:41:6d:3a: 36:1c:f7:c3:47:70:7a:de:53:dd:eb:d6:e6:97:e7:59:34:89: 94:0e:d5:02:91:bf:ef:5d:d5:21:b3:cb:a0:31:5e:c2:78:14: 59:23:59:bb:e9:2c:de:8f:ff:47:55:95:5c:ee:57:58:e2:71: e4:df:ca:0c:d0:ca:98:5b:0c:2e:15:c2:da:0f:30:f7:01:58: 37:e1:4a:51:b7:c3:1b:f5:70:d9:a5:ed:89:f0:da:7b:4d:20: e8:e6:7d:2e:31:af:f6:df:e6:2a:6e:db:fa:4f:88:be:6f:64: e6:ad:67:c7:5a:b2:63:99:63:79:61:59:39:54:81:78:de:04: 4f:41:8f:b4:00:d7:06:f4:01:50:e8:ec:8f:89:1f:96:21:58: f1:ae:76:b9:78:cf:43:5b:2c:0d:90:4a:b7:44:8c:f0:71:db: 6f:33:e9:9c:32:91:54:e0:bc:48:30:47:90:c4:29:10:1e:02: 2d:05:b0:34 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjUxMjIwMTYxMzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGU3OC05Nzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5742DO+7IkCrUIS0o3zRU2FOMsbKmNul1VmTFc70nGIo/X3bbbfwYYHfcps5 96ykFn7UiCtKjYvibdjaIUOPB8VzZXYGnSNZAfYnFKgys7vikA1yR4ZCqTrv6aVf Bzo+QIi0iXi2zGwg/J38l5fdTp7lFIOvERvp5Pmm3bkzBZH7ph9T6dEiQltLh2pB UIdgzxXOPulZF7unMZjuILwMNahOye2vKVgAtjsIkWGJn0gM8aGgJ3/0CLzRqFmv k4p1Qab4Smz4PB0D5ivBPAF4LQT6g63FPOsRbgUmbLHdoLMD6uuk7pMxaZSW9kdu ip3GxK9lcbaxrV1iajvZ4zshFwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFKwOZ5XC lYM8ncPp7Bo2BZ9qEziXMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDOEEvRTdGRkM1RjQ4NkY3MTFFNzg2MzRFQzdFQzRGOUFFMDIvOUZENUM4RjQ4 RUZFMTFFODhDNkVCRDM3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ091AwQBZ2OwAwQAZ3huMA0GCSqGSIb3DQEBCwUAA4IBAQCee+gW gLiN+f0bhTIaEW6cKSQLmNqLAZyQVyKNTs3NyGg34aOko/F5/lh/N2z7e7w1xGp8 ugR76cwyMBjqbx24Y0fnpNpBbTo2HPfDR3B63lPd69bml+dZNImUDtUCkb/vXdUh s8ugMV7CeBRZI1m76Szej/9HVZVc7ldY4nHk38oM0MqYWwwuFcLaDzD3AVg34UpR t8Mb9XDZpe2J8Np7TSDo5n0uMa/23+Yqbtv6T4i+b2TmrWfHWrJjmWN5YVk5VIF4 3gRPQY+0ANcG9AFQ6OyPiR+WIVjxrna5eM9DWywNkEq3RIzwcdtvM+mcMpFU4LxI MEeQxCkQHgItBbA0 -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:11 2026 by rpki-client