$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa File: B0D3DA64107B11F097717C77C4F9AE02.roa (raw, json) Hash identifier: KBwZ0Bh81Ox2IUFyz9I7ijbEOAfndojyLmDer3zkH74= Subject key identifier: 7A:B4:F0:5C:98:0B:A7:AB:7C:1A:A0:6D:97:41:9C:D6:09:88:9B:00 Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: 0170 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:59:14 +0000 ROA not before: Wed 24 Dec 2025 07:04:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149296 IP address blocks: 43.255.52.0/24 maxlen: 24 43.255.53.0/24 maxlen: 24 43.255.54.0/24 maxlen: 24 43.255.55.0/24 maxlen: 24 103.129.52.0/22 maxlen: 22 103.129.54.0/23 maxlen: 23 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 2401:bbe0:200::/40 maxlen: 40 2401:bbe0:500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Dec 24 07:04:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47e72-8914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:10:1e:07:9a:cc:44:98:78:34:da:c6:57: cc:95:e9:a0:54:bd:f4:05:4d:b6:9c:55:45:81:f8: 66:34:a6:d8:9c:99:e4:95:bb:1f:e5:a9:84:09:67: 01:8e:9c:4b:56:70:08:64:29:a0:ca:36:ec:ed:a4: 31:ed:4c:00:3d:fb:4a:be:d9:2e:35:7b:1e:d8:46: fd:79:8f:31:5c:fa:9f:61:5f:38:85:2a:fd:4a:de: ae:a4:90:50:c7:d4:40:9d:e7:73:18:10:19:d1:4d: 14:01:0e:a5:a8:dc:aa:07:d3:a4:66:45:5f:c8:8d: 07:40:97:6a:e2:10:e2:f2:e1:4a:29:6b:01:7c:cc: 6c:a8:9a:52:fc:12:bf:c1:8a:73:84:45:45:f5:31: ef:d7:3c:57:b4:ab:18:26:5e:e6:92:63:a5:59:48: 9d:02:e8:81:41:6d:50:c4:5d:e1:ca:b6:41:ed:28: ae:8a:5d:d4:5f:9f:0f:8a:52:f2:cc:fb:8c:f8:68: 60:d2:25:5e:ee:85:58:06:b6:83:ff:94:d4:69:07: 80:f4:0f:df:8b:2e:33:4e:b8:7c:bc:8e:e7:b8:90: 0b:9d:d9:8e:c9:27:43:aa:0a:e6:42:9f:a5:02:b3: 04:86:3f:b1:b4:39:80:ef:5a:eb:ed:bf:a1:b0:67: ba:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B4:F0:5C:98:0B:A7:AB:7C:1A:A0:6D:97:41:9C:D6:09:88:9B:00 X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/B0D3DA64107B11F097717C77C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.255.52.0/22 103.129.52.0/22 IPv6: 2401:bbe0:200::/40 2401:bbe0:500::/40 Signature Algorithm: sha256WithRSAEncryption 90:05:f1:f5:99:3b:d1:eb:d1:54:59:7a:2f:1f:42:84:18:c0: 75:64:7a:2b:a5:ce:16:de:a7:09:8e:f7:b5:88:5f:8d:06:4b: 04:33:91:22:0a:17:f9:31:5a:37:8c:3b:b0:3e:09:15:ca:64: 54:25:29:e2:f0:fc:54:86:be:05:e8:0d:55:54:0f:29:87:b6: 9c:81:d4:26:b9:ac:b7:15:5e:63:02:19:0d:01:0f:fc:31:ec: e3:33:b5:81:7e:c2:49:4c:fa:b5:6a:22:d5:37:4f:a8:d9:c2: 8c:9e:62:66:72:79:4a:64:9e:b9:6c:97:74:2b:34:66:2a:8e: 18:d1:f0:78:80:65:e5:60:be:ae:d4:61:ae:91:93:d5:3e:6b: 95:00:19:50:17:de:31:bc:08:b7:53:32:42:ba:0e:5a:bf:c7: 2e:92:b2:f2:0d:6f:6d:84:15:64:f9:4e:ae:78:9a:64:1e:93: a1:45:53:cb:19:fc:1b:ab:83:42:46:e8:b7:3b:a4:45:95:ff: 13:2c:7e:24:99:a1:5d:3d:9b:9b:38:57:8d:5a:2e:29:21:a4: f9:f2:a5:93:05:97:56:d7:0e:0b:d9:b8:02:2e:e1:08:f5:21: 08:3b:8f:37:cc:94:1f:33:cc:ab:d0:5b:da:bb:60:46:48:79: ed:ca:c4:f6 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDA1NzM5NUI0ODc4RkIxQTY3RkNCQUQ1ODI2MTdCN0JB QUYyQzMxRkYwHhcNMjUxMjI0MDcwNDQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2U3Mi04OTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IcQHgeazESYeDTaxlfMlemgVL30BU22nFVFgfhmNKbYnJnklbsf5amECWcB jpxLVnAIZCmgyjbs7aQx7UwAPftKvtkuNXse2Eb9eY8xXPqfYV84hSr9St6upJBQ x9RAnedzGBAZ0U0UAQ6lqNyqB9OkZkVfyI0HQJdq4hDi8uFKKWsBfMxsqJpS/BK/ wYpzhEVF9THv1zxXtKsYJl7mkmOlWUidAuiBQW1QxF3hyrZB7Siuil3UX58PilLy zPuM+Ghg0iVe7oVYBraD/5TUaQeA9A/fiy4zTrh8vI7nuJALndmOySdDqgrmQp+l ArMEhj+xtDmA71rr7b+hsGe6MQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFHq08FyY C6erfBqgbZdBnNYJiJsAMB8GA1UdIwQYMBaAFAVzlbSHj7Gmf8utWCYXt7qvLDH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GQTBFMDVBNDZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9CWE9WdEllUHNhWl95NjFZSmhlM3VxOHNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZDOEYvRkEwRTA1QTQ2QjVBMTFFRkJDOTk5MjVDQzRGOUFFMDIvQjBEM0RBNjQx MDdCMTFGMDk3NzE3Qzc3QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQCK/80AwQCZ4E0MBYEAgACMBADBgAkAbvgAgMGACQBu+AFMA0GCSqG SIb3DQEBCwUAA4IBAQCQBfH1mTvR69FUWXovH0KEGMB1ZHorpc4W3qcJjve1iF+N BksEM5EiChf5MVo3jDuwPgkVymRUJSni8PxUhr4F6A1VVA8ph7acgdQmuay3FV5j AhkNAQ/8MezjM7WBfsJJTPq1aiLVN0+o2cKMnmJmcnlKZJ65bJd0KzRmKo4Y0fB4 gGXlYL6u1GGukZPVPmuVABlQF94xvAi3UzJCug5av8cukrLyDW9thBVk+U6ueJpk HpOhRVPLGfwbq4NCRui3O6RFlf8TLH4kmaFdPZubOFeNWi4pIaT58qWTBZdW1w4L 2bgCLuEI9SEIO483zJQfM8yr0Fvau2BGSHntysT2 -----END CERTIFICATE-----Generated at Thu Mar 26 07:01:54 2026 by rpki-client