$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/8109B4CA9DF211F0B1ED220FC4F9AE02.roa File: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (raw, json) Hash identifier: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo= Subject key identifier: 3C:82:E0:54:1E:45:57:98:EE:67:06:EB:E5:03:53:0A:FD:60:12:66 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 0197 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/8109B4CA9DF211F0B1ED220FC4F9AE02.roa Signing time: Fri 27 Mar 2026 04:39:44 +0000 ROA not before: Fri 27 Mar 2026 04:39:44 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152648 IP address blocks: 202.71.180.0/24 maxlen: 24 202.71.181.0/24 maxlen: 24 2001:df3:8e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Mar 27 04:39:44 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c60a10-86c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:12:a4:6c:0c:c2:cc:e3:83:d8:44:fb:76:b9: 46:23:24:81:af:c6:f6:d8:20:cf:21:76:74:23:f9: b3:ad:12:66:be:59:41:14:73:89:1e:ce:5e:a6:26: 33:48:3a:c8:84:c7:b5:7a:51:35:26:9d:93:b9:15: 88:1f:fd:08:9e:d5:e2:f1:88:34:49:a9:b4:78:44: f5:05:72:0d:d6:71:a7:25:d2:c5:4a:bd:12:39:e8: d4:93:59:6c:81:26:62:6a:b7:08:ba:f7:19:c5:3e: a1:1c:d8:41:d6:7d:99:a5:eb:ca:5d:6e:52:63:12: ad:38:4c:9b:12:d0:17:51:72:7b:69:0c:c1:50:0d: 3c:fa:e3:a2:73:f5:a8:51:5e:55:92:41:7c:f4:82: 8f:3d:6b:d5:31:cc:af:08:13:e4:60:64:18:f0:c7: b0:e1:56:4a:f3:2b:1e:34:06:c4:38:82:76:a5:96: 01:c1:d3:4b:93:45:fb:0b:86:05:0a:f5:a7:1a:96: 5c:55:53:03:c8:d7:39:e5:a9:ca:e2:e1:3e:72:5c: ae:49:38:19:e8:3d:fc:81:13:4d:6f:d0:97:56:7a: bc:86:ff:03:6d:04:91:1d:b6:a8:0a:41:e3:45:2b: 4f:0a:b5:22:c0:26:0f:42:65:d3:97:0d:9e:19:b2: 16:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:82:E0:54:1E:45:57:98:EE:67:06:EB:E5:03:53:0A:FD:60:12:66 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/8109B4CA9DF211F0B1ED220FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.71.180.0/23 IPv6: 2001:df3:8e40::/48 Signature Algorithm: sha256WithRSAEncryption 53:3d:46:cf:e5:8c:a7:57:12:49:a8:84:b6:40:21:36:ae:ed: dc:95:e2:b4:7f:42:82:51:83:41:56:5b:7b:c3:16:d6:4d:da: 01:34:7a:5e:f1:af:a4:72:2a:79:43:1b:80:b7:2e:c5:ce:fc: f4:a1:09:fc:d6:5e:99:eb:d7:70:9d:37:de:da:99:07:eb:ae: 05:74:57:a9:5e:94:2c:e3:8d:e3:67:b6:c8:32:cd:79:d4:93: af:67:8b:57:42:e9:20:83:92:b4:a8:a3:80:5d:91:68:14:af: b0:b7:41:4a:45:63:ef:22:26:e8:34:4f:c5:b3:89:4a:c6:01: 18:1f:79:3e:dd:cb:98:39:7b:7e:6b:f5:38:13:ec:9d:b4:d0: 37:47:40:e1:71:b3:c1:d5:63:09:7a:1d:48:73:f4:1a:58:2a: d9:fd:ef:e7:e3:08:63:ee:7a:19:8b:a8:55:9f:18:13:c2:40: 73:87:ff:c7:7f:67:fe:9c:e7:d1:f1:29:00:18:4f:ad:ba:bc: 64:b8:37:1d:7a:c8:06:0f:2c:ca:d6:9a:e8:74:8a:79:59:8e: 43:5e:ae:7d:8a:43:91:fe:f5:32:d9:61:22:db:c4:d1:aa:93: d3:ab:90:57:5a:13:96:1a:77:0c:cc:ac:d4:7d:5d:b9:4f:67: ee:4b:cc:55 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwMzI3MDQzOTQ0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM2MGExMC04NmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBKkbAzCzOOD2ET7drlGIySBr8b22CDPIXZ0I/mzrRJmvllBFHOJHs5epiYz SDrIhMe1elE1Jp2TuRWIH/0IntXi8Yg0Sam0eET1BXIN1nGnJdLFSr0SOejUk1ls gSZiarcIuvcZxT6hHNhB1n2ZpevKXW5SYxKtOEybEtAXUXJ7aQzBUA08+uOic/Wo UV5VkkF89IKPPWvVMcyvCBPkYGQY8Mew4VZK8yseNAbEOIJ2pZYBwdNLk0X7C4YF CvWnGpZcVVMDyNc55anK4uE+clyuSTgZ6D38gRNNb9CXVnq8hv8DbQSRHbaoCkHj RStPCrUiwCYPQmXTlw2eGbIWbQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDyC4FQe RVeY7mcG6+UDUwr9YBJmMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZBRkYvNDBDRDFCNTRFNTAyMTFFRTlBQkY3NjU1QzRGOUFFMDIvODEwOUI0Q0E5 REYyMTFGMEIxRUQyMjBGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQByke0MA8EAgACMAkDBwAgAQ3zjkAwDQYJKoZIhvcNAQELBQADggEB AFM9Rs/ljKdXEkmohLZAITau7dyV4rR/QoJRg0FWW3vDFtZN2gE0el7xr6RyKnlD G4C3LsXO/PShCfzWXpnr13CdN97amQfrrgV0V6lelCzjjeNntsgyzXnUk69ni1dC 6SCDkrSoo4BdkWgUr7C3QUpFY+8iJug0T8WziUrGARgfeT7dy5g5e35r9TgT7J20 0DdHQOFxs8HVYwl6HUhz9BpYKtn97+fjCGPuehmLqFWfGBPCQHOH/8d/Z/6c59Hx KQAYT626vGS4Nx16yAYPLMrWmuh0inlZjkNern2KQ5H+9TLZYSLbxNGqk9OrkFda E5YadwzMrNR9XblPZ+5LzFU= -----END CERTIFICATE-----Generated at Mon Apr 6 15:11:15 2026 by rpki-client