$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa File: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (raw, json) Hash identifier: Lqak49Os9Ya4UTOEGKBzKyCOhe/2umYec1RSzQZJSpk= Subject key identifier: F7:A4:0E:97:6A:03:E3:3B:9B:61:C0:57:04:7C:E0:2D:6C:CD:D0:B7 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 14C9 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:19:52 +0000 ROA not before: Wed 02 Jul 2025 17:25:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142032 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 16:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5321 (0x14c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jul 2 17:25:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47538-fd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:37:0b:c1:17:9e:4c:18:0c:b0:77:8f:c4: 45:a6:31:a6:f0:7e:7f:a8:2d:bc:fc:b7:5b:7f:36: 34:97:a1:02:6a:03:02:53:90:39:27:db:d6:f8:35: 2e:57:08:83:2f:c6:94:cd:8e:1b:18:b8:cc:7a:bf: 0b:d7:12:22:03:2c:14:65:21:e0:9d:10:02:17:20: 59:71:f9:85:d8:e9:e5:19:76:4d:60:f0:04:9e:50: fc:d3:06:68:30:26:66:db:18:a5:4a:7f:cd:4f:31: 67:67:63:91:bc:7b:18:74:32:36:4d:66:ed:4a:70: a1:1a:c0:f6:eb:47:ee:1f:44:10:01:09:0f:3e:64: 70:95:f3:f4:2c:22:ee:46:b3:15:d3:d5:5e:50:71: 00:89:5d:11:d7:ea:9a:ef:d6:5c:24:e3:ba:cb:17: 8f:ed:cb:d5:f5:28:4d:11:13:28:a7:a9:1f:be:ca: a1:94:a2:4b:e5:e2:35:f5:c4:41:5f:48:64:d6:26: f4:c0:1d:81:ed:ba:0b:af:6e:29:b5:d0:84:d6:1e: 6e:d2:84:7b:8e:37:87:6b:60:bf:ff:a6:f0:10:66: 77:25:cf:9f:40:87:75:eb:97:fa:3a:0a:ca:40:22: 61:20:57:48:d6:26:39:ef:92:1c:de:74:c7:9e:38: 9c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A4:0E:97:6A:03:E3:3B:9B:61:C0:57:04:7C:E0:2D:6C:CD:D0:B7 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:35:8c:18:a2:f1:7e:ca:c1:62:54:54:36:0f:13:d3:6f:9a: 80:40:7d:5a:3b:d4:24:c6:30:22:2d:36:83:e4:59:4c:34:8e: f2:c8:2a:af:14:83:80:bc:23:d1:22:04:9d:c7:29:88:32:20: 3b:d6:c5:76:ba:dc:73:da:88:4f:92:75:2a:a3:01:0a:d3:6d: 4f:c3:7b:b2:e1:9e:3e:ae:85:3d:39:b6:97:fe:de:a0:0f:74: e8:48:ce:76:7d:09:e4:a3:cb:34:96:0e:b6:39:a7:7b:12:73: be:f3:7d:01:04:25:b6:b6:bd:02:54:da:8f:64:5a:43:16:e4: ab:2c:fb:15:1f:85:87:84:23:df:77:fa:2d:c2:ee:82:60:3a: 64:46:83:f5:9e:e3:58:49:da:d9:dc:ea:27:d5:06:2d:73:3d: d9:4d:e2:96:de:07:d1:00:d2:2a:03:ab:36:fd:f4:7b:7a:2a: 29:44:e6:3e:e7:55:22:10:47:16:4f:2d:62:f1:48:5d:3a:9b: f1:11:e2:61:d3:8e:18:aa:00:3c:85:f0:46:47:66:ac:c2:5f: 3a:5e:bf:0e:fd:c5:db:2b:34:78:f8:6c:e2:46:f5:94:5c:89: 98:73:e9:d4:59:fb:a3:3d:72:bb:87:93:5f:6d:c5:d7:7a:3a: 2f:e1:91:41 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICFMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwNzAyMTcyNTI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzUzOC1mZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mU3C8EXnkwYDLB3j8RFpjGm8H5/qC28/LdbfzY0l6ECagMCU5A5J9vW+DUu VwiDL8aUzY4bGLjMer8L1xIiAywUZSHgnRACFyBZcfmF2OnlGXZNYPAEnlD80wZo MCZm2xilSn/NTzFnZ2ORvHsYdDI2TWbtSnChGsD260fuH0QQAQkPPmRwlfP0LCLu RrMV09VeUHEAiV0R1+qa79ZcJOO6yxeP7cvV9ShNERMop6kfvsqhlKJL5eI19cRB X0hk1ib0wB2B7boLr24ptdCE1h5u0oR7jjeHa2C//6bwEGZ3Jc+fQId165f6OgrK QCJhIFdI1iY575Ic3nTHnjic8wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPekDpdq A+M7m2HAVwR84C1szdC3MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvN0VBMkFEQzBD M0E0MTFFRDhFRkE2RjEzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ2q8AwQCZ3T0MA0GCSqGSIb3DQEBCwUAA4IBAQBfNYwYovF+ysFi VFQ2DxPTb5qAQH1aO9QkxjAiLTaD5FlMNI7yyCqvFIOAvCPRIgSdxymIMiA71sV2 utxz2ohPknUqowEK021Pw3uy4Z4+roU9ObaX/t6gD3ToSM52fQnko8s0lg62Oad7 EnO+830BBCW2tr0CVNqPZFpDFuSrLPsVH4WHhCPfd/otwu6CYDpkRoP1nuNYSdrZ 3Oon1QYtcz3ZTeKW3gfRANIqA6s2/fR7eiopROY+51UiEEcWTy1i8UhdOpvxEeJh 044YqgA8hfBGR2aswl86Xr8O/cXbKzR4+GziRvWUXImYc+nUWfujPXK7h5NfbcXX ejov4ZFB -----END CERTIFICATE-----Generated at Sat Mar 21 12:05:02 2026 by rpki-client