$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa File: B8587822CBF611EFAE14812EC4F9AE02.roa (raw, json) Hash identifier: 16/ssMDX+/I1k87w5myFJlNdn8mVFtVtg6BKpi/1aLk= Subject key identifier: 3C:AA:6C:3A:A9:E6:93:10:07:89:53:83:FF:8E:AF:A8:E6:8D:B1:4C Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: DB Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:22:45 +0000 ROA not before: Sat 31 May 2025 06:59:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 395793 IP address blocks: 103.56.128.0/24 maxlen: 24 103.56.129.0/24 maxlen: 24 103.56.130.0/24 maxlen: 24 103.56.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43, serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Validity Not Before: May 31 06:59:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59d35-a56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:9b:75:dc:98:74:a3:78:75:7c:2d:b4:3a: f0:49:b2:97:42:07:bb:c6:71:ce:af:80:78:71:b0: aa:64:16:0b:48:70:c2:6a:aa:c3:65:fd:4c:e2:4d: 52:0c:51:39:b9:02:22:d4:7c:a1:57:5b:4b:47:bf: fb:c1:e3:00:cf:22:ba:d6:78:7f:8d:1e:a3:36:6a: a7:75:22:25:27:43:80:fd:0d:ef:cf:8b:11:2b:ce: fa:76:a0:96:a0:13:84:98:29:be:ed:dd:cb:67:22: f6:f2:82:9a:2d:90:a6:29:05:e6:5e:a6:8a:ca:2a: 36:cc:42:87:cb:ee:a3:da:d1:23:39:9a:b0:51:fa: 2f:2b:76:0e:02:31:a2:2b:dd:51:f3:6f:52:a1:24: 18:d9:db:ad:0c:dd:2c:af:21:0c:ec:12:45:61:1a: 87:0a:63:40:04:a6:9a:db:0d:2d:b3:85:37:67:67: 70:00:d5:56:c1:5a:20:99:ad:65:76:05:96:37:2e: 21:7b:d6:a2:26:76:1d:e7:01:fc:2b:6c:e4:bc:fa: fd:17:95:cd:9e:35:d9:5b:1d:1a:2e:8b:f5:fd:50: c7:b2:8b:64:4e:2b:a4:cc:cb:97:6d:8b:8e:94:71: 5b:1f:e4:3a:f9:94:06:a7:c0:c1:97:58:71:e6:fe: 32:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AA:6C:3A:A9:E6:93:10:07:89:53:83:FF:8E:AF:A8:E6:8D:B1:4C X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.56.128.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:c5:0f:7a:cf:39:f4:ff:ea:25:bd:91:37:ee:78:7e:eb:09: a4:75:d7:40:94:e4:ba:81:29:fb:62:9c:86:7f:c2:b3:68:ac: 21:6f:31:c7:52:50:98:91:03:f7:de:0d:68:96:a1:8f:6d:3d: bb:2f:3a:4c:ff:a9:62:5d:d7:bc:d5:f1:be:f9:59:4b:b3:85: 61:82:48:b9:88:47:dc:f6:c7:2e:2a:c8:d8:84:b8:8e:ba:0b: f6:63:0d:14:71:5d:a1:5d:a7:4f:70:68:4c:05:f5:01:46:10: c6:3b:6d:47:0a:a2:bc:84:9a:74:a0:16:f6:c2:90:73:a3:cf: fc:ba:b4:a7:0b:3c:f3:bb:7f:ab:96:a4:ed:cb:e8:08:63:e4: 3e:73:be:69:b5:c7:92:07:dc:50:e9:5c:9b:09:dd:b4:12:5a: b8:c0:3c:c9:b5:e9:d7:ba:11:07:c2:12:13:14:0d:16:3f:2f: 2c:f8:e0:47:29:10:44:12:8c:07:e3:ff:ef:42:3b:9b:81:63: 9e:e9:a3:69:86:85:47:a6:75:5d:50:3b:32:38:39:13:5d:64: 60:9e:d3:73:23:c1:d0:50:79:79:f2:10:89:33:45:2b:39:f8: 3a:c2:e8:e6:71:d5:a7:d0:ae:62:d6:8d:94:db:62:8a:78:90: cd:f3:78:f3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNDMxMTAvBgNVBAUTKDY0Q0Y1MzJDOEUyMEIxOTZEMjVCQzdDQzdFNTkzMjRG OTM4MTMyNzUwHhcNMjUwNTMxMDY1OTQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWQzNS1hNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/ybddyYdKN4dXwttDrwSbKXQge7xnHOr4B4cbCqZBYLSHDCaqrDZf1M4k1S DFE5uQIi1HyhV1tLR7/7weMAzyK61nh/jR6jNmqndSIlJ0OA/Q3vz4sRK876dqCW oBOEmCm+7d3LZyL28oKaLZCmKQXmXqaKyio2zEKHy+6j2tEjOZqwUfovK3YOAjGi K91R829SoSQY2dutDN0sryEM7BJFYRqHCmNABKaa2w0ts4U3Z2dwANVWwVogma1l dgWWNy4he9aiJnYd5wH8K2zkvPr9F5XNnjXZWx0aLov1/VDHsotkTiukzMuXbYuO lHFbH+Q6+ZQGp8DBl1hx5v4yfwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDyqbDqp 5pMQB4lTg/+Or6jmjbFMMB8GA1UdIwQYMBaAFGTPUyyOILGW0lvHzH5ZMk+TgTJ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY0My81OTlGRUI0NENC RjYxMUVGOUY1N0U5MkRDNEY5QUUwMi9aTTlUTEk0Z3NaYlNXOGZNZmxreVQ1T0JN blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1uVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGNDMvNTk5RkVCNDRDQkY2MTFFRjlGNTdFOTJEQzRGOUFFMDIvQjg1ODc4MjJD QkY2MTFFRkFFMTQ4MTJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZziAMA0GCSqGSIb3DQEBCwUAA4IBAQCKxQ96zzn0/+olvZE37nh+ 6wmkdddAlOS6gSn7YpyGf8KzaKwhbzHHUlCYkQP33g1olqGPbT27LzpM/6liXde8 1fG++VlLs4Vhgki5iEfc9scuKsjYhLiOugv2Yw0UcV2hXadPcGhMBfUBRhDGO21H CqK8hJp0oBb2wpBzo8/8urSnCzzzu3+rlqTty+gIY+Q+c75ptceSB9xQ6VybCd20 Elq4wDzJtenXuhEHwhITFA0WPy8s+OBHKRBEEowH4//vQjubgWOe6aNphoVHpnVd UDsyODkTXWRgntNzI8HQUHl58hCJM0UrOfg6wujmcdWn0K5i1o2U22KKeJDN83jz -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:03 2026 by rpki-client