$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa File: ACE844F047AA11ECA0F05026C4F9AE02.roa (raw, json) Hash identifier: xF2IvoVXmAincHuvdv8xT2emt6/vG3hUCriU6a0X2F4= Subject key identifier: E9:7E:7E:92:9E:A6:27:1C:5D:A4:41:AA:27:BD:59:19:3E:4D:2F:8F Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0529 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:07:47 +0000 ROA not before: Fri 28 Nov 2025 22:54:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132075 IP address blocks: 103.23.24.0/22 maxlen: 22 103.23.24.0/23 maxlen: 23 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/23 maxlen: 23 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Nov 28 22:54:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46453-e914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:06:90:2c:5c:10:30:2d:21:8c:20:a5:de:92: 33:12:a9:be:9e:15:4c:50:f8:a8:0b:fd:e3:82:34: ad:e8:c4:dd:4b:d1:75:0b:87:9e:ad:91:0e:19:e9: 3b:1f:75:9e:12:5c:0d:f3:1e:50:0c:6b:00:05:b9: 04:31:43:7f:d2:99:ae:25:7a:76:2d:23:55:2c:c0: bf:76:84:9a:8a:b4:9b:6e:1f:44:d5:4b:53:12:eb: f8:09:bf:69:13:5c:67:01:5e:87:de:4d:b1:be:bf: 79:bd:ef:a7:c9:1a:59:c8:e5:71:74:50:63:78:61: a5:de:b0:0c:8a:09:72:2b:6b:73:23:d5:91:27:d4: 8e:42:79:e3:29:33:8d:7c:b2:f6:fc:78:f8:db:5c: 6c:11:7b:c2:7f:ec:1c:a0:6c:66:d8:6e:a6:52:a2: c0:c9:a6:05:00:fb:9e:c1:6f:c9:44:b3:24:3a:ba: a7:10:9a:b8:4e:05:3c:59:52:2d:c1:0f:16:a1:cc: 26:98:52:4c:e4:ff:9e:c0:1a:3a:32:96:08:ea:6f: 39:b6:e0:e2:58:33:be:cf:94:98:a5:0f:a4:a7:5e: 6e:8c:2e:47:8e:e1:0d:d4:57:73:a9:6f:95:e3:b3: d9:97:38:fc:fd:5e:6e:20:87:dd:b6:0b:75:0d:19: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7E:7E:92:9E:A6:27:1C:5D:A4:41:AA:27:BD:59:19:3E:4D:2F:8F X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption 40:43:8b:ab:ce:c0:d1:99:98:a0:ad:21:88:d9:af:80:39:9b: 4e:2f:f6:23:13:3f:33:b4:32:d9:10:9f:e6:18:13:7a:97:42: 8e:45:d6:34:22:e4:05:f3:f6:d7:89:97:23:13:89:41:d5:63: d3:f8:0f:d1:47:7e:e3:eb:54:50:54:dd:c6:3a:ad:af:62:69: 26:3f:0e:0b:2f:58:ee:c1:02:42:9d:48:5e:24:fe:51:85:a1: 42:cc:0c:8f:fe:3d:f9:17:0f:48:1a:f6:64:74:c0:0b:6e:73: 9c:8f:ac:a5:62:33:1b:2e:98:fb:f3:b4:7e:c0:be:f1:fb:4b: 3f:a4:42:49:cd:75:79:ee:f6:c5:1a:6f:fd:db:1e:82:1e:7c: 2c:49:a5:42:f9:9f:97:21:4c:b6:d3:5e:b4:8a:1c:3c:45:a4: 9f:73:83:d7:c3:2e:0c:2b:82:c9:05:1c:01:aa:12:05:7d:04: ac:57:d8:70:74:e0:ee:c3:78:91:2d:a8:65:1f:0c:4f:eb:05: af:c1:27:1c:16:58:7b:e1:99:64:8b:32:17:38:6d:b7:8f:3c: 53:91:b2:26:80:d0:13:c6:1f:cf:4d:30:c2:89:f3:5b:a2:21: 9c:35:85:be:2b:46:11:55:3f:99:03:2a:49:1b:d9:a5:95:30: 97:26:7f:46 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMTI4MjI1NDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ1My1lOTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQaQLFwQMC0hjCCl3pIzEqm+nhVMUPioC/3jgjSt6MTdS9F1C4eerZEOGek7 H3WeElwN8x5QDGsABbkEMUN/0pmuJXp2LSNVLMC/doSairSbbh9E1UtTEuv4Cb9p E1xnAV6H3k2xvr95ve+nyRpZyOVxdFBjeGGl3rAMiglyK2tzI9WRJ9SOQnnjKTON fLL2/Hj421xsEXvCf+wcoGxm2G6mUqLAyaYFAPuewW/JRLMkOrqnEJq4TgU8WVIt wQ8WocwmmFJM5P+ewBo6MpYI6m85tuDiWDO+z5SYpQ+kp15ujC5HjuEN1FdzqW+V 47PZlzj8/V5uIIfdtgt1DRmqdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOl+fpKe piccXaRBqie9WRk+TS+PMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvQUNFODQ0RjA0 N0FBMTFFQ0EwRjA1MDI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZxcYMA0GCSqGSIb3DQEBCwUAA4IBAQBAQ4urzsDRmZigrSGI2a+A OZtOL/YjEz8ztDLZEJ/mGBN6l0KORdY0IuQF8/bXiZcjE4lB1WPT+A/RR37j61RQ VN3GOq2vYmkmPw4LL1juwQJCnUheJP5RhaFCzAyP/j35Fw9IGvZkdMALbnOcj6yl YjMbLpj787R+wL7x+0s/pEJJzXV57vbFGm/92x6CHnwsSaVC+Z+XIUy20160ihw8 RaSfc4PXwy4MK4LJBRwBqhIFfQSsV9hwdODuw3iRLahlHwxP6wWvwSccFlh74Zlk izIXOG23jzxTkbImgNATxh/PTTDCifNboiGcNYW+K0YRVT+ZAypJG9mllTCXJn9G -----END CERTIFICATE-----Generated at Sat Mar 7 20:46:49 2026 by rpki-client