
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/C8B7607C4B8D11F0B198C040C4F9AE02.roa
File: C8B7607C4B8D11F0B198C040C4F9AE02.roa (raw, json)
Hash identifier: /3jM5BkK6pvPgFqYvCzaq1dAThzpXod/u92p3Udy9No=
Subject key identifier: B3:9A:44:96:03:1B:46:7B:08:8E:D0:9F:98:B6:5F:E5:DC:76:E5:4A
Certificate issuer: /CN=A9142769/serialNumber=9ED56429D1AE9F6004FB6FB6788E93FAF6225759
Certificate serial: B7
Authority key identifier: 9E:D5:64:29:D1:AE:9F:60:04:FB:6F:B6:78:8E:93:FA:F6:22:57:59
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntVkKdGun2AE-2-2eI6T-vYiV1k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/C8B7607C4B8D11F0B198C040C4F9AE02.roa
Signing time: Wed 27 May 2026 07:39:56 +0000
ROA not before: Wed 27 May 2026 07:39:56 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 133069
IP address blocks: 203.13.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/ntVkKdGun2AE-2-2eI6T-vYiV1k.crl
rsync://rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/ntVkKdGun2AE-2-2eI6T-vYiV1k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntVkKdGun2AE-2-2eI6T-vYiV1k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 05:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183 (0xb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9142769, serialNumber=9ED56429D1AE9F6004FB6FB6788E93FAF6225759
Validity
Not Before: May 27 07:39:56 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a169fcc-665f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:72:32:63:34:fe:13:c1:be:9b:44:04:64:
dc:a2:db:a0:54:4a:07:9a:92:03:06:13:e0:0d:b3:
fc:55:db:3c:fb:70:2b:56:f8:fd:b0:64:18:c4:2a:
c4:87:41:b5:fe:86:aa:c7:bf:a2:e8:f3:c2:00:64:
1f:fa:9d:90:6c:2e:b3:45:49:6c:e3:54:9b:ef:6d:
7d:51:7f:53:5f:f1:0c:d5:fd:2f:ac:14:c2:5e:4d:
b9:e3:f6:01:9e:ab:28:73:48:19:f5:e3:3e:7a:df:
77:98:0f:73:d2:d4:2b:ce:8a:d4:c1:0a:c9:7b:8a:
23:b4:c2:f6:22:9c:27:4d:5d:ec:c3:bb:9c:0d:48:
61:07:bb:b9:ce:c4:0e:35:75:2a:60:c2:17:67:a8:
15:3a:f1:b4:88:65:24:a4:e6:49:fa:fa:ab:f6:e0:
65:04:3e:f8:ef:f4:5a:dc:88:82:d8:11:9f:79:5c:
3a:eb:00:05:fe:01:b2:0d:46:2f:27:12:04:d1:5b:
f1:32:7e:22:cf:b8:e5:42:62:3b:13:f3:6b:67:a9:
87:1e:59:83:06:82:f3:fb:ce:02:07:8b:44:07:cd:
cb:19:28:23:3d:6e:b9:b4:fc:9e:78:cc:b0:d1:71:
68:8c:b8:74:53:d0:23:8d:80:22:15:29:f2:d4:dd:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9A:44:96:03:1B:46:7B:08:8E:D0:9F:98:B6:5F:E5:DC:76:E5:4A
X509v3 Authority Key Identifier:
keyid:9E:D5:64:29:D1:AE:9F:60:04:FB:6F:B6:78:8E:93:FA:F6:22:57:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/ntVkKdGun2AE-2-2eI6T-vYiV1k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntVkKdGun2AE-2-2eI6T-vYiV1k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142769/46BD55C24B8D11F0A3F4FF3FC4F9AE02/C8B7607C4B8D11F0B198C040C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
203.13.166.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:eb:36:12:ef:25:43:fe:bc:bb:50:f3:a3:78:ef:aa:d5:96:
8c:0b:2d:87:dc:5c:ca:94:c0:59:b9:4e:8e:2a:24:23:06:8d:
4e:d3:83:bc:f4:05:13:df:d7:e7:6b:39:74:eb:7e:40:3f:41:
88:96:bd:c5:ec:32:58:5a:32:05:72:e4:e8:d2:af:0a:bd:11:
45:6b:3a:c4:c8:e3:0f:2d:d3:19:15:86:f8:ea:97:5e:c8:42:
e9:2a:77:d1:de:04:ca:1f:29:61:2e:19:e4:f7:e6:02:c5:ff:
e8:99:90:e9:b3:05:55:dd:49:d5:e8:37:96:a3:0a:44:37:a3:
f3:02:b0:24:d9:0a:a3:c4:9c:e5:ff:77:94:9d:7c:f2:12:da:
2c:0f:39:d8:4a:03:cb:4f:03:b1:83:22:e6:ee:1a:2a:64:5a:
75:4f:95:8a:21:bd:f2:08:49:fd:b8:58:23:06:4e:66:00:41:
a0:2a:1b:05:ce:e9:a9:2f:9e:77:19:71:4c:53:d3:b5:2d:04:
3f:5b:bf:14:bf:c4:63:15:e6:c3:11:ed:f2:17:5d:59:67:7b:
5c:4f:43:30:a4:96:c0:6b:dd:f2:5a:7f:94:3f:93:c2:02:05:
31:0c:f9:68:8f:4e:0a:9a:fb:c9:d9:00:1b:d6:15:40:98:60:
ce:9b:29:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 09:23:41 2026 by rpki-client