$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa File: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (raw, json) Hash identifier: YlLnh1haCAguuDMWLHxz+klHykWczeyMGFHRpbzDxJg= Subject key identifier: B7:36:6C:6D:47:0B:E3:10:E6:0F:FE:F1:20:E8:2C:FA:43:9C:60:5A Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 052B Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:07:49 +0000 ROA not before: Fri 28 Nov 2025 22:54:40 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 6453 IP address blocks: 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1323 (0x52b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Nov 28 22:54:40 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46455-6873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:46:33:ce:e4:1b:c0:64:c1:2e:de:d4:b2:67: 0d:6d:e9:a9:c5:a5:68:e1:53:ec:78:08:36:b7:05: 9a:2d:4f:5d:4e:76:10:ee:a9:93:81:0a:8c:c6:af: b5:28:ab:fe:f8:91:e5:79:76:92:57:32:f6:38:81: c0:43:96:72:ce:85:8b:de:3e:db:4d:69:1d:2e:b8: aa:ca:7e:f6:74:9d:19:92:1d:d0:e2:1e:af:54:1e: c9:be:ff:9f:68:8c:b4:8f:42:4e:11:c2:af:02:f4: 95:f6:52:93:a7:17:62:27:b8:da:5c:75:ef:89:0e: b8:6a:58:e6:54:b7:5b:91:4f:ed:d2:07:2a:f1:27: 8b:3d:1d:f4:12:dc:d6:98:9e:fc:da:d0:9f:15:73: 2b:34:b2:fb:7a:ce:91:9c:cf:e6:c4:b3:87:32:90: 08:2e:3e:86:f1:28:c1:11:f6:fe:aa:bf:af:93:b0: 4d:ba:c7:39:5f:c2:81:07:d2:c8:0c:b6:8e:ae:ca: 85:54:4f:62:2e:64:fd:1b:70:56:2e:c9:1d:3d:77: 84:d3:1f:35:f4:66:5e:6e:dc:0f:4d:6f:eb:9b:2c: 02:1c:44:ec:f9:ac:b1:1b:3f:65:5a:3a:bc:ca:91: 7f:64:74:47:2c:b7:38:b4:48:4c:31:55:ce:3b:c6: 1b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:36:6C:6D:47:0B:E3:10:E6:0F:FE:F1:20:E8:2C:FA:43:9C:60:5A X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:28:13:10:70:7f:b9:62:ba:49:8d:a2:c8:ad:14:d2:e8:71: 05:50:73:60:b7:f6:54:de:e6:40:ac:90:10:45:a7:51:fa:e3: 7a:a9:25:23:04:a1:d9:4f:39:9b:1d:81:02:b6:3f:18:52:38: 7e:cb:80:46:5d:27:14:fc:47:4b:20:26:54:af:ad:1e:8b:67: b6:1d:a1:92:98:5e:c2:b9:a4:bf:25:00:95:e4:4a:ad:54:a8: d9:0b:8d:3c:00:63:d8:5a:f4:6c:da:df:1e:96:4a:06:bd:7d: 7c:0b:bd:ea:18:61:57:5f:80:37:6f:a7:6f:00:d6:e2:0f:35: 01:7a:25:e3:6e:24:10:2c:27:ee:73:b9:b1:60:ee:f8:d6:fd: f7:f1:af:b7:15:66:3e:72:4f:45:9b:19:95:45:40:41:33:e1: 99:4a:ee:59:39:7c:e5:8e:a6:0c:04:ea:01:13:1e:99:c7:c8: 14:85:d6:0f:2e:de:9f:50:14:7c:3b:29:e1:b5:5e:47:47:2e: d3:77:99:27:5e:2e:ac:f8:e5:c4:b8:66:11:3c:1c:5b:3f:ce: 83:4b:04:fc:6a:55:6e:1d:4e:1c:3a:62:20:8d:5a:c9:7c:84: f7:16:89:bf:7d:cd:12:c2:ac:fe:69:d4:3c:44:5d:e7:17:81: 51:87:d1:33 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMTI4MjI1NDQwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ1NS02ODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkYzzuQbwGTBLt7UsmcNbempxaVo4VPseAg2twWaLU9dTnYQ7qmTgQqMxq+1 KKv++JHleXaSVzL2OIHAQ5ZyzoWL3j7bTWkdLriqyn72dJ0Zkh3Q4h6vVB7Jvv+f aIy0j0JOEcKvAvSV9lKTpxdiJ7jaXHXviQ64aljmVLdbkU/t0gcq8SeLPR30EtzW mJ782tCfFXMrNLL7es6RnM/mxLOHMpAILj6G8SjBEfb+qr+vk7BNusc5X8KBB9LI DLaOrsqFVE9iLmT9G3BWLskdPXeE0x819GZebtwPTW/rmywCHETs+ayxGz9lWjq8 ypF/ZHRHLLc4tEhMMVXOO8YbhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLc2bG1H C+MQ5g/+8SDoLPpDnGBaMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvNjMzNzk2M0U0 QzNEMTFFQ0I1RkY4NDRGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZxcYMA0GCSqGSIb3DQEBCwUAA4IBAQBMKBMQcH+5YrpJjaLIrRTS 6HEFUHNgt/ZU3uZArJAQRadR+uN6qSUjBKHZTzmbHYECtj8YUjh+y4BGXScU/EdL ICZUr60ei2e2HaGSmF7CuaS/JQCV5EqtVKjZC408AGPYWvRs2t8elkoGvX18C73q GGFXX4A3b6dvANbiDzUBeiXjbiQQLCfuc7mxYO741v338a+3FWY+ck9FmxmVRUBB M+GZSu5ZOXzljqYMBOoBEx6Zx8gUhdYPLt6fUBR8OynhtV5HRy7Td5knXi6s+OXE uGYRPBxbP86DSwT8alVuHU4cOmIgjVrJfIT3Fom/fc0Swqz+adQ8RF3nF4FRh9Ez -----END CERTIFICATE-----Generated at Sat Mar 7 17:25:23 2026 by rpki-client