$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa File: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (raw, json) Hash identifier: EQlBcz9bqMpqpDriLFM35Owqk71TepDYe/4O7SV3TS4= Subject key identifier: 1D:E0:4C:B2:1E:A9:69:C0:2A:22:71:28:37:DD:32:35:D5:A1:5B:10 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 0239 Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:33:00 +0000 ROA not before: Wed 21 May 2025 04:12:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136463 IP address blocks: 103.9.42.0/24 maxlen: 24 103.9.43.0/24 maxlen: 24 103.89.18.0/24 maxlen: 24 103.89.19.0/24 maxlen: 24 103.105.140.0/24 maxlen: 24 103.105.141.0/24 maxlen: 24 2400:e940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: May 21 04:12:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3dd9c-e72e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f4:ad:10:ab:7f:d2:4b:18:b5:34:1d:70:18: 5c:88:71:87:cc:fb:2d:b9:61:2f:11:23:d3:b2:75: 1e:75:dc:b8:1f:db:d3:32:6f:e1:5a:bb:66:a3:c7: 09:53:6e:0a:b7:57:2b:45:0d:66:65:ad:0b:9c:94: 0b:91:8e:27:d7:df:11:bb:f4:c8:70:b2:1b:e8:84: fb:48:33:7a:38:b4:7d:c8:2e:60:3a:64:18:27:49: ae:7c:3c:29:d2:9a:de:47:39:82:e2:96:8c:8c:cb: 3c:cd:f0:93:9c:cb:61:76:a4:11:73:90:ff:f7:67: ab:57:9e:e8:b4:35:68:bd:1a:7d:5b:79:5a:00:d9: 10:6b:b8:f8:84:a1:26:f0:b4:35:c6:29:48:c9:69: 62:d7:ca:9b:28:29:31:11:95:d7:c1:d3:e2:14:b1: 9f:40:eb:7c:ee:e8:9a:4b:f1:8a:92:1e:67:e2:ea: bf:ea:e0:82:0d:e6:c0:a9:c9:e9:93:bb:4d:f2:b0: ac:f4:47:d6:a3:15:8f:c5:9f:15:72:a4:a7:21:fe: 43:eb:69:93:32:e9:01:84:1b:fd:9f:07:9c:8d:ae: 5e:ea:36:6c:a6:68:50:40:9f:cf:c4:11:09:5c:74: fe:d3:67:9a:c7:4c:a5:cd:c8:0c:4b:4c:b4:cb:c6: 52:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E0:4C:B2:1E:A9:69:C0:2A:22:71:28:37:DD:32:35:D5:A1:5B:10 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.42.0/23 103.89.18.0/23 103.105.140.0/23 IPv6: 2400:e940::/32 Signature Algorithm: sha256WithRSAEncryption 74:50:62:a1:a0:ad:a6:69:22:be:dd:39:47:58:bb:e2:9a:4e: 75:14:b2:9b:ee:5b:de:9e:85:e0:5c:93:1c:ab:53:bf:c2:69: a9:61:a1:ab:c6:1f:9b:5a:c4:e3:4f:04:34:29:49:52:d9:f0: 48:4f:e5:b2:b5:23:2b:52:c8:2e:66:b0:79:91:18:07:96:49: 8b:38:43:2c:a7:0b:59:0c:f2:ab:a9:15:2f:83:27:29:04:da: 00:9b:88:f1:53:05:b9:e1:9e:d1:2d:d4:d1:4a:5b:e9:58:6f: d5:90:de:03:fb:74:7f:72:bc:ab:1b:98:f7:f5:2f:dd:38:a1: 27:46:1a:f3:7a:68:0c:9f:ca:ff:67:1f:c7:14:ba:a4:50:da: 3e:99:43:62:5f:7b:fc:2b:81:c0:d8:ea:76:ea:7a:0b:cd:87: 45:d9:b5:96:ca:74:cd:76:51:90:4d:7b:0b:a6:df:c1:53:8e: b7:ed:f3:c1:d0:9c:e4:2b:22:e1:3b:5b:9c:5b:97:05:24:28: b4:19:af:1c:34:a4:35:cb:b5:a6:06:88:fc:2e:d9:58:09:88: c2:d1:fc:0e:9e:07:6a:9c:0c:a9:98:c4:cb:68:84:c2:3b:ba: 08:ce:d8:b5:47:1b:9c:c1:7c:f4:37:2f:f0:36:53:9a:5d:b4: 71:50:d3:9c -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUwNTIxMDQxMjU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGQ5Yy1lNzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvStEKt/0ksYtTQdcBhciHGHzPstuWEvESPTsnUeddy4H9vTMm/hWrtmo8cJ U24Kt1crRQ1mZa0LnJQLkY4n198Ru/TIcLIb6IT7SDN6OLR9yC5gOmQYJ0mufDwp 0preRzmC4paMjMs8zfCTnMthdqQRc5D/92erV57otDVovRp9W3laANkQa7j4hKEm 8LQ1xilIyWli18qbKCkxEZXXwdPiFLGfQOt87uiaS/GKkh5n4uq/6uCCDebAqcnp k7tN8rCs9EfWoxWPxZ8VcqSnIf5D62mTMukBhBv9nwecja5e6jZspmhQQJ/PxBEJ XHT+02eax0ylzcgMS0y0y8ZSLwIDAQABo4ICezCCAncwHQYDVR0OBBYEFB3gTLIe qWnAKiJxKDfdMjXVoVsQMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NDIvRTBFN0RCNTZDODM5MTFFREFDNzJCMTFDQzRGOUFFMDIvNjVFMDI2NzBD ODNFMTFFRDlGQUFGQTIyQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZwkqAwQBZ1kSAwQBZ2mMMA0EAgACMAcDBQAkAOlAMA0GCSqGSIb3 DQEBCwUAA4IBAQB0UGKhoK2maSK+3TlHWLvimk51FLKb7lvenoXgXJMcq1O/wmmp YaGrxh+bWsTjTwQ0KUlS2fBIT+WytSMrUsguZrB5kRgHlkmLOEMspwtZDPKrqRUv gycpBNoAm4jxUwW54Z7RLdTRSlvpWG/VkN4D+3R/cryrG5j39S/dOKEnRhrzemgM n8r/Zx/HFLqkUNo+mUNiX3v8K4HA2Op26noLzYdF2bWWynTNdlGQTXsLpt/BU463 7fPB0JzkKyLhO1ucW5cFJCi0Ga8cNKQ1y7WmBoj8LtlYCYjC0fwOngdqnAypmMTL aITCO7oIzti1RxucwXz0Ny/wNlOaXbRxUNOc -----END CERTIFICATE-----Generated at Fri Mar 27 01:07:28 2026 by rpki-client