$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa File: 668242F49C4511EDB73A4379C4F9AE02.roa (raw, json) Hash identifier: pfvrI1kQlT/P1ZWjhgTdXeNg4qENFgB1Nnr2MrXGD4Q= Subject key identifier: 5F:27:9B:0C:B1:5F:E7:95:52:E3:A4:83:0F:ED:2C:4A:96:89:27:D2 Certificate issuer: /CN=A9178C7A/serialNumber=40DBAE2C83198BC6FAD2582998823456A37763AB Certificate serial: 024A Authority key identifier: 40:DB:AE:2C:83:19:8B:C6:FA:D2:58:29:98:82:34:56:A3:77:63:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:26:55 +0000 ROA not before: Thu 05 Jun 2025 02:29:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133501 IP address blocks: 103.87.216.0/24 maxlen: 24 103.232.140.0/24 maxlen: 24 103.232.141.0/24 maxlen: 24 203.32.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.crl rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C7A, serialNumber=40DBAE2C83198BC6FAD2582998823456A37763AB Validity Not Before: Jun 5 02:29:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ea3e-8f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:58:2e:b3:5d:c4:e8:50:e8:54:c7:77:07:db: 6a:f7:2a:e0:53:22:64:d5:6e:05:93:62:e8:07:ae: bb:b7:46:d4:4f:d3:10:20:da:09:66:8b:8d:93:6f: d9:c3:b9:1f:a4:6b:cb:96:45:0d:8e:a2:c9:91:15: dc:56:fb:51:5b:bd:ed:98:18:d3:60:ee:ec:d7:d2: fb:8c:7a:e8:43:1a:42:31:f4:63:32:c6:76:a1:22: 31:5d:73:f7:44:1d:72:00:11:0f:98:11:07:cf:f9: 2a:4a:9e:3c:25:cd:aa:b7:99:5e:a1:52:55:fa:93: 1c:0d:19:ec:b5:a8:c6:46:01:ef:44:64:b7:e9:86: 74:c6:19:00:45:e5:76:90:41:6e:c5:b8:e4:9b:d9: 23:a7:b1:6b:44:4e:01:81:01:cc:c5:57:9f:ed:ff: 3e:5b:2e:22:63:95:1c:59:15:f6:a6:e1:6b:d8:b7: ef:90:8e:df:e3:8a:17:32:6c:3a:26:aa:fb:07:9e: cf:e9:c2:f0:79:36:07:c5:65:bf:2a:e3:66:05:3c: 46:d5:49:5c:d1:ce:46:9f:ae:06:38:10:b6:40:f2: a8:e9:29:b3:15:d4:7d:e7:f0:e7:f2:5b:0a:f3:17: 16:84:08:55:30:3b:21:83:37:f5:38:b8:db:54:73: 78:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:27:9B:0C:B1:5F:E7:95:52:E3:A4:83:0F:ED:2C:4A:96:89:27:D2 X509v3 Authority Key Identifier: keyid:40:DB:AE:2C:83:19:8B:C6:FA:D2:58:29:98:82:34:56:A3:77:63:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/QNuuLIMZi8b60lgpmII0VqN3Y6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNuuLIMZi8b60lgpmII0VqN3Y6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C7A/AC45962E9C4011ED97008470C4F9AE02/668242F49C4511EDB73A4379C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.216.0/24 103.232.140.0/23 203.32.33.0/24 Signature Algorithm: sha256WithRSAEncryption 31:fb:52:a1:c1:27:83:01:86:73:3b:56:3f:f2:01:18:ea:ae: e7:22:23:bf:00:d8:ca:04:8d:f8:35:6b:81:83:d3:da:84:aa: 3e:82:7f:66:4f:68:20:3d:94:5c:14:86:af:0a:f1:ce:ca:92: 90:b3:7d:d8:50:a9:32:c0:2a:1b:15:1b:c8:11:f9:78:cc:eb: 87:a6:97:55:59:8a:30:16:42:60:3c:b3:8b:85:4e:ec:41:15: 56:33:ee:fa:4d:7f:84:d2:e0:94:3b:38:75:9e:ab:79:5d:08: e2:e4:f4:2b:97:ff:4f:24:44:6d:a9:8b:59:37:32:b7:da:57: ac:57:ca:6a:e6:d8:4a:2f:90:f6:8d:c4:75:24:8c:c0:ac:02: 12:1f:ae:74:e9:7c:b7:bf:49:2c:65:54:a3:40:0c:47:d8:18: a8:5e:0c:7a:1b:c0:9b:c6:fd:c5:f6:ca:3b:27:1c:bb:71:64: 8b:32:87:b2:f8:2c:9a:1b:82:65:b0:fe:f1:ab:60:eb:5d:26: 05:3d:44:98:c9:55:ae:a5:f6:dc:6e:c0:7d:9b:c2:16:25:3a: 24:fb:32:9f:0b:93:6d:c6:4c:2a:35:d4:9c:95:1b:ec:e0:c9: e0:b2:bc:c7:37:90:d9:20:f7:be:7c:46:a4:2a:b0:cf:59:a3: be:23:0c:ab -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDN0ExMTAvBgNVBAUTKDQwREJBRTJDODMxOThCQzZGQUQyNTgyOTk4ODIzNDU2 QTM3NzYzQUIwHhcNMjUwNjA1MDIyOTUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWEzZS04ZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+1gus13E6FDoVMd3B9tq9yrgUyJk1W4Fk2LoB667t0bUT9MQINoJZouNk2/Z w7kfpGvLlkUNjqLJkRXcVvtRW73tmBjTYO7s19L7jHroQxpCMfRjMsZ2oSIxXXP3 RB1yABEPmBEHz/kqSp48Jc2qt5leoVJV+pMcDRnstajGRgHvRGS36YZ0xhkAReV2 kEFuxbjkm9kjp7FrRE4BgQHMxVef7f8+Wy4iY5UcWRX2puFr2LfvkI7f44oXMmw6 Jqr7B57P6cLweTYHxWW/KuNmBTxG1Ulc0c5Gn64GOBC2QPKo6SmzFdR95/Dn8lsK 8xcWhAhVMDshgzf1OLjbVHN4UwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFF8nmwyx X+eVUuOkgw/tLEqWiSfSMB8GA1UdIwQYMBaAFEDbriyDGYvG+tJYKZiCNFajd2Or MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEM3QS9BQzQ1OTYyRTlD NDAxMUVEOTcwMDg0NzBDNEY5QUUwMi9RTnV1TElNWmk4YjYwbGdwbUlJMFZxTjNZ NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdXVMSU1aaThiNjBsZ3BtSUkwVnFOM1k2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhDN0EvQUM0NTk2MkU5QzQwMTFFRDk3MDA4NDcwQzRGOUFFMDIvNjY4MjQyRjQ5 QzQ1MTFFREI3M0E0Mzc5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ1fYAwQBZ+iMAwQAyyAhMA0GCSqGSIb3DQEBCwUAA4IBAQAx+1Kh wSeDAYZzO1Y/8gEY6q7nIiO/ANjKBI34NWuBg9PahKo+gn9mT2ggPZRcFIavCvHO ypKQs33YUKkywCobFRvIEfl4zOuHppdVWYowFkJgPLOLhU7sQRVWM+76TX+E0uCU Ozh1nqt5XQji5PQrl/9PJERtqYtZNzK32lesV8pq5thKL5D2jcR1JIzArAISH650 6Xy3v0ksZVSjQAxH2BioXgx6G8Cbxv3F9so7Jxy7cWSLMoey+CyaG4JlsP7xq2Dr XSYFPUSYyVWupfbcbsB9m8IWJTok+zKfC5NtxkwqNdSclRvs4MngsrzHN5DZIPe+ fEakKrDPWaO+Iwyr -----END CERTIFICATE-----Generated at Sat Mar 28 13:23:43 2026 by rpki-client