$ rpki-client -vvf rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa File: BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa (raw, json) Hash identifier: I0fdKsHvXdyMww8h7AjfWaIz+Z8MPQG9V3zDhTuhz2k= Subject key identifier: B3:18:90:DD:4D:16:A1:D2:38:99:D8:CD:91:87:BE:08:39:EB:99:1C Certificate issuer: /CN=A9131067/serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Certificate serial: 0731 Authority key identifier: B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa Signing time: Wed 20 May 2026 22:27:26 +0000 ROA not before: Wed 20 May 2026 22:27:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142063 IP address blocks: 103.166.102.0/24 maxlen: 24 103.166.103.0/24 maxlen: 24 2001:df1:b340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1841 (0x731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131067, serialNumber=B2C47C2E3D4FC7EDC99AE20E46B174B10A0375F6 Validity Not Before: May 20 22:27:26 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a0e354e-f6a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:3c:5d:03:da:45:eb:22:9d:2f:6a:c3:bd: 12:8f:0e:47:ff:3a:2c:cf:ce:0e:81:d6:98:6f:a3: 11:5a:94:37:47:73:b8:72:5e:d5:77:2f:c2:20:58: 22:3b:65:da:5e:44:c9:4f:19:b3:1b:ed:e5:31:d9: 1f:d7:db:68:cb:65:69:93:23:b2:3d:a7:b0:00:12: 95:84:e7:55:77:17:64:44:75:bd:57:f4:6a:28:f7: 17:36:9b:0b:49:79:fd:1b:09:b1:8c:ae:98:2e:92: c0:ad:10:f7:ad:19:8a:0d:7f:e1:f7:40:0f:ac:53: 19:c9:a0:d8:61:b6:ff:2e:e5:9a:d8:8e:87:08:84: 09:d2:64:14:ee:df:b4:62:d2:e2:cb:4b:41:be:3c: 6e:f6:f5:3c:3a:ea:e7:03:08:40:77:ff:f1:53:83: 5a:83:74:47:86:01:de:77:57:42:80:df:bb:92:68: b3:8c:d2:f1:32:f1:c2:73:b0:2a:cb:a8:67:fd:31: ea:08:5f:4f:ff:0e:36:c1:ea:13:bb:06:4f:71:e0: bf:9d:68:19:25:8a:1f:8e:48:7b:2d:f9:2e:bc:66: 21:d5:95:65:c2:2c:9c:d6:8f:00:9f:3e:78:09:de: 93:cc:96:23:57:aa:46:ee:53:9d:b0:30:d1:c9:b5: c2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:18:90:DD:4D:16:A1:D2:38:99:D8:CD:91:87:BE:08:39:EB:99:1C X509v3 Authority Key Identifier: keyid:B2:C4:7C:2E:3D:4F:C7:ED:C9:9A:E2:0E:46:B1:74:B1:0A:03:75:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/ssR8Lj1Px-3JmuIORrF0sQoDdfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ssR8Lj1Px-3JmuIORrF0sQoDdfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131067/8DD00F56A6AD11EB827FC11CC4F9AE02/BD9AE4AE55D111F0A7CFBB2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.102.0/23 IPv6: 2001:df1:b340::/48 Signature Algorithm: sha256WithRSAEncryption 61:3b:b4:54:6c:7f:a0:3e:98:b8:87:5a:13:6c:10:68:7c:6a: f8:f6:f5:97:a8:ea:c4:56:98:f9:70:31:ef:63:be:9f:d4:b2: 26:6f:a0:2e:4d:2b:4a:3a:ea:77:62:2f:6a:3c:94:e2:65:63: 04:33:07:14:e9:9e:c3:d1:b8:82:d3:d5:ce:d3:57:ff:6b:7f: c0:6d:48:d0:47:6e:05:e5:7a:f8:c9:3c:06:fe:a9:2e:8f:3f: 10:0b:79:5e:99:dd:7d:7c:b6:ac:7c:98:82:65:46:42:89:2c: 16:98:99:32:f5:cd:3c:ec:e0:aa:ff:2b:fd:7a:9e:59:ba:5e: 94:71:65:e4:6c:47:3c:c8:c2:e0:de:32:7d:f7:37:ae:a5:6a: e7:f6:f5:51:2a:d6:8c:07:8e:38:bd:8e:43:9a:a3:fa:c9:63: 8f:22:b1:dc:50:8f:0c:c6:75:85:39:24:20:59:a1:63:81:9d: 82:6a:51:63:78:22:0d:41:e2:ad:cd:99:aa:95:27:fe:56:19: 5c:0f:d6:71:e1:d2:79:7f:14:d7:28:7f:59:fc:e6:2f:b7:0c: a8:48:55:26:61:2e:35:c0:d5:49:27:ab:58:55:fe:3e:a9:8b: 84:94:c7:a2:d5:e7:c1:00:eb:fc:59:be:57:fd:10:f3:b5:a9: a5:14:a7:50 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEwNjcxMTAvBgNVBAUTKEIyQzQ3QzJFM0Q0RkM3RURDOTlBRTIwRTQ2QjE3NEIx MEEwMzc1RjYwHhcNMjYwNTIwMjIyNzI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlMzU0ZS1mNmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaw8XQPaResinS9qw70Sjw5H/zosz84OgdaYb6MRWpQ3R3O4cl7Vdy/CIFgi O2XaXkTJTxmzG+3lMdkf19toy2VpkyOyPaewABKVhOdVdxdkRHW9V/RqKPcXNpsL SXn9GwmxjK6YLpLArRD3rRmKDX/h90APrFMZyaDYYbb/LuWa2I6HCIQJ0mQU7t+0 YtLiy0tBvjxu9vU8OurnAwhAd//xU4Nag3RHhgHed1dCgN+7kmizjNLxMvHCc7Aq y6hn/THqCF9P/w42weoTuwZPceC/nWgZJYofjkh7LfkuvGYh1ZVlwiyc1o8Anz54 Cd6TzJYjV6pG7lOdsDDRybXCZwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLMYkN1N FqHSOJnYzZGHvgg565kcMB8GA1UdIwQYMBaAFLLEfC49T8ftyZriDkaxdLEKA3X2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTA2Ny84REQwMEY1NkE2 QUQxMUVCODI3RkMxMUNDNEY5QUUwMi9zc1I4TGoxUHgtM0ptdUlPUnJGMHNRb0Rk ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NzUjhMajFQeC0zSm11SU9SckYwc1FvRGRmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzEwNjcvOEREMDBGNTZBNkFEMTFFQjgyN0ZDMTFDQzRGOUFFMDIvQkQ5QUU0QUU1 NUQxMTFGMEE3Q0ZCQjJCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6ZmMA8EAgACMAkDBwAgAQ3xs0AwDQYJKoZIhvcNAQELBQADggEB AGE7tFRsf6A+mLiHWhNsEGh8avj29Zeo6sRWmPlwMe9jvp/UsiZvoC5NK0o66ndi L2o8lOJlYwQzBxTpnsPRuILT1c7TV/9rf8BtSNBHbgXlevjJPAb+qS6PPxALeV6Z 3X18tqx8mIJlRkKJLBaYmTL1zTzs4Kr/K/16nlm6XpRxZeRsRzzIwuDeMn33N66l auf29VEq1owHjji9jkOao/rJY48isdxQjwzGdYU5JCBZoWOBnYJqUWN4Ig1B4q3N maqVJ/5WGVwP1nHh0nl/FNcof1n85i+3DKhIVSZhLjXA1Uknq1hV/j6pi4SUx6LV 58EA6/xZvlf9EPO1qaUUp1A= -----END CERTIFICATE-----Generated at Thu May 21 11:08:13 2026 by rpki-client