$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa File: AD2ACD6423F411EB8FBA6A83C4F9AE02.roa (raw, json) Hash identifier: zArHLPyUOwzC5wrJDHxZnBSa0d8NNiuW6qZzem5qNxc= Subject key identifier: 48:6A:9D:16:0B:54:16:A5:0A:D9:5B:DA:31:27:C2:D3:2A:3D:53:DE Certificate issuer: /CN=A9173D07/serialNumber=BE2FF97B9B534D538DA41A09B6C08D02332E8655 Certificate serial: 07FA Authority key identifier: BE:2F:F9:7B:9B:53:4D:53:8D:A4:1A:09:B6:C0:8D:02:33:2E:86:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vi_5e5tTTVONpBoJtsCNAjMuhlU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:25:52 +0000 ROA not before: Sat 08 Nov 2025 20:41:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141353 IP address blocks: 103.157.108.0/23 maxlen: 24 2001:df5:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/vi_5e5tTTVONpBoJtsCNAjMuhlU.crl rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/vi_5e5tTTVONpBoJtsCNAjMuhlU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vi_5e5tTTVONpBoJtsCNAjMuhlU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D07, serialNumber=BE2FF97B9B534D538DA41A09B6C08D02332E8655 Validity Not Before: Nov 8 20:41:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43050-d662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:01:61:91:62:84:d1:59:0d:08:dc:5d:c5:5e: 2f:c1:c2:4f:50:de:e9:01:0c:c7:8a:a6:36:42:c9: f7:34:29:2e:67:92:26:7e:96:19:f0:e7:87:9b:3c: e4:0d:2b:4d:0b:d9:89:50:0e:77:8c:1c:70:f8:99: f5:90:6e:f8:04:c0:2f:1d:f4:1b:10:eb:c8:40:9d: fc:ff:7d:85:e8:ba:cb:c4:43:3c:46:ee:f5:af:df: 42:6c:0b:a4:6f:e7:47:94:bc:74:ee:ac:82:53:4c: 67:f9:8f:2a:4a:36:4c:cc:92:c6:c5:09:30:86:07: ec:39:56:dc:4b:96:5d:a9:9b:ad:25:61:e8:ce:16: 29:9f:75:4d:b1:e6:bd:4a:cb:51:56:66:58:0e:b4: 0f:92:57:62:d1:bc:ec:28:76:e5:a3:95:e4:7a:34: b4:b9:36:91:92:4d:76:d5:c7:7a:bd:31:8c:08:9b: 3a:cb:a8:c2:c3:f7:7b:cc:29:6c:6d:bc:df:e3:82: cf:0e:e6:e3:4e:b3:86:ad:d6:f9:a3:da:46:35:78: 3f:ef:b9:55:c9:09:97:2a:95:64:30:43:96:88:20: 21:de:ae:a1:01:78:c9:f3:db:20:39:48:d8:c1:d5: ae:08:c6:7d:29:15:84:59:7a:e2:c4:5d:74:2f:01: 74:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6A:9D:16:0B:54:16:A5:0A:D9:5B:DA:31:27:C2:D3:2A:3D:53:DE X509v3 Authority Key Identifier: keyid:BE:2F:F9:7B:9B:53:4D:53:8D:A4:1A:09:B6:C0:8D:02:33:2E:86:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/vi_5e5tTTVONpBoJtsCNAjMuhlU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vi_5e5tTTVONpBoJtsCNAjMuhlU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D07/BF9AFF4C1CD211EB99D58B2CC4F9AE02/AD2ACD6423F411EB8FBA6A83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.157.108.0/23 IPv6: 2001:df5:1d80::/48 Signature Algorithm: sha256WithRSAEncryption af:49:09:e9:90:d8:8d:01:51:b2:b0:81:c1:8b:ac:53:32:d2: 36:73:94:eb:64:4a:34:ee:0b:24:34:bd:e3:33:af:7a:8f:ec: 44:b0:08:44:70:89:4d:b9:9f:93:8a:67:ee:a3:84:0e:8a:d6: 2a:a0:99:48:2d:e7:cf:81:bd:4f:3d:d8:44:23:38:ff:4b:62: 71:1b:5b:f6:3f:3d:a2:35:4b:4a:a6:e8:5e:2e:57:8c:f5:04: f7:58:f6:4e:b2:97:e6:54:ea:1d:3b:23:11:b0:36:04:68:28: 64:a4:23:76:ed:3b:97:8d:2a:36:44:ef:0c:01:53:b8:4b:e4: 94:1b:d4:4a:62:c0:36:63:59:8d:9e:6e:07:51:da:08:1f:a7: cc:ab:e1:c5:ec:ee:fd:b5:42:51:79:b6:48:ce:68:0d:3d:39: c7:bc:40:c2:81:a0:9d:44:9c:4c:0d:43:f0:f7:ed:e0:00:8f: a6:98:66:40:d2:53:2b:65:ff:e3:4d:5c:fa:34:d8:d8:4b:85: df:0b:32:88:12:55:80:c4:74:a7:7a:88:2f:5b:9c:a7:bc:2c: b8:c7:fc:93:3d:0b:fd:e8:d7:53:0b:a8:de:7d:e3:53:02:81: ca:ca:d3:4f:e6:31:45:32:6b:8f:9d:49:31:0f:b2:37:47:ce: 7c:d0:79:ea -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEMDcxMTAvBgNVBAUTKEJFMkZGOTdCOUI1MzRENTM4REE0MUEwOUI2QzA4RDAy MzMyRTg2NTUwHhcNMjUxMTA4MjA0MTMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzA1MC1kNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwFhkWKE0VkNCNxdxV4vwcJPUN7pAQzHiqY2Qsn3NCkuZ5ImfpYZ8OeHmzzk DStNC9mJUA53jBxw+Jn1kG74BMAvHfQbEOvIQJ38/32F6LrLxEM8Ru71r99CbAuk b+dHlLx07qyCU0xn+Y8qSjZMzJLGxQkwhgfsOVbcS5ZdqZutJWHozhYpn3VNsea9 SstRVmZYDrQPkldi0bzsKHblo5XkejS0uTaRkk121cd6vTGMCJs6y6jCw/d7zCls bbzf44LPDubjTrOGrdb5o9pGNXg/77lVyQmXKpVkMEOWiCAh3q6hAXjJ89sgOUjY wdWuCMZ9KRWEWXrixF10LwF0FwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEhqnRYL VBalCtlb2jEnwtMqPVPeMB8GA1UdIwQYMBaAFL4v+XubU01TjaQaCbbAjQIzLoZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0QwNy9CRjlBRkY0QzFD RDIxMUVCOTlENThCMkNDNEY5QUUwMi92aV81ZTV0VFRWT05wQm9KdHNDTkFqTXVo bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZpXzVlNXRUVFZPTnBCb0p0c0NOQWpNdWhsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEMDcvQkY5QUZGNEMxQ0QyMTFFQjk5RDU4QjJDQzRGOUFFMDIvQUQyQUNENjQy M0Y0MTFFQjhGQkE2QTgzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ51sMA8EAgACMAkDBwAgAQ31HYAwDQYJKoZIhvcNAQELBQADggEB AK9JCemQ2I0BUbKwgcGLrFMy0jZzlOtkSjTuCyQ0veMzr3qP7ESwCERwiU25n5OK Z+6jhA6K1iqgmUgt58+BvU892EQjOP9LYnEbW/Y/PaI1S0qm6F4uV4z1BPdY9k6y l+ZU6h07IxGwNgRoKGSkI3btO5eNKjZE7wwBU7hL5JQb1EpiwDZjWY2ebgdR2ggf p8yr4cXs7v21QlF5tkjOaA09Oce8QMKBoJ1EnEwNQ/D37eAAj6aYZkDSUytl/+NN XPo02NhLhd8LMogSVYDEdKd6iC9bnKe8LLjH/JM9C/3o11MLqN5941MCgcrK00/m MUUya4+dSTEPsjdHznzQeeo= -----END CERTIFICATE-----Generated at Thu Mar 26 13:47:10 2026 by rpki-client