$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/983A5536450611F093EC3A65C4F9AE02.roa File: 983A5536450611F093EC3A65C4F9AE02.roa (raw, json) Hash identifier: ijwzgpsaKu/9677qc+bwpPEiLD74pnpjkFQugVrQBxM= Subject key identifier: B0:56:95:5C:96:05:7B:63:8A:63:C1:93:73:9E:8F:5E:FF:D1:74:B2 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 14CD Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/983A5536450611F093EC3A65C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:19:56 +0000 ROA not before: Wed 16 Jul 2025 18:05:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 401701 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 116.204.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 16:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5325 (0x14cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jul 16 18:05:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4753c-22bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:0e:32:a1:69:45:25:b0:93:e5:8d:2a:9a: ba:0e:92:54:9b:22:b7:70:2d:dd:e5:ad:4e:43:56: 52:23:ea:05:33:56:8a:f4:06:de:ed:88:32:67:9c: 18:a2:8c:71:f9:ea:ef:10:a4:96:ea:31:0b:89:9b: b0:b4:26:c6:9e:b0:91:33:9a:36:83:19:ed:9e:14: 1e:15:0d:c8:22:0a:95:d8:be:cf:29:db:52:f5:5c: c1:33:48:61:2c:3a:f6:f4:79:70:e6:f2:97:aa:82: 02:b1:10:8e:f9:29:41:66:f8:f1:1a:61:b7:ba:e8: e2:f4:37:5e:7a:47:13:67:16:96:33:f1:58:84:3d: b2:b9:5b:80:5e:30:4d:d8:27:d0:44:81:ed:42:d2: 83:98:67:52:a2:8e:68:a7:1b:eb:9d:b1:f0:83:f7: 9f:95:12:b1:12:83:7e:62:c1:3a:93:7e:94:0d:2f: fd:5e:ae:5e:79:7d:a7:b5:4e:4d:c1:fe:16:35:d0: fd:05:85:e4:39:2d:98:8f:1b:a3:c1:53:c8:45:b3: b2:49:f2:28:9d:86:c7:79:69:f3:5b:d7:7e:d3:8d: d7:f4:cb:08:e6:9a:3c:2e:8f:6a:af:ab:7a:2d:df: d2:b7:5f:aa:ad:fd:b6:f7:30:f7:d1:45:87:ce:83: 8b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:56:95:5C:96:05:7B:63:8A:63:C1:93:73:9E:8F:5E:FF:D1:74:B2 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/983A5536450611F093EC3A65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 116.204.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:5c:51:f4:26:60:79:28:91:d8:01:82:c9:0c:04:4f:4e:3b: 5d:3e:2f:dd:a5:6a:1c:34:7a:bf:e2:c9:dc:6e:15:1d:38:b2: c3:14:3d:eb:23:4e:4a:d1:e6:08:64:1e:db:64:85:c2:de:38: 48:14:80:e0:3a:2e:ef:53:96:df:07:8c:0b:b9:d5:fa:26:a1: 18:bc:c0:56:75:f6:81:a3:6c:e6:90:63:2e:66:b3:0f:f3:22: 91:15:80:c1:17:9f:b0:f7:0f:cd:85:f3:85:c7:40:53:11:04: 4f:44:65:ba:4b:c5:82:d6:05:9f:fe:fb:70:b2:c2:7e:64:b7: 6b:77:f2:e1:9d:42:9a:4a:48:f3:41:b5:5b:5d:d5:b6:06:51: 7e:34:c0:56:7a:e4:c8:64:0e:bb:ac:67:ed:c7:21:98:81:22: 89:5a:d7:eb:52:5a:11:df:b4:d7:96:50:fd:4b:9b:0a:b5:25: 25:c9:65:03:a3:1b:fe:0d:bc:b0:ce:61:3b:4a:00:ab:ad:1b: b9:94:0a:d8:07:b9:c4:5d:8b:7e:36:04:4e:96:80:5d:5a:8d: 17:2c:81:64:bb:65:df:af:51:43:8f:be:4f:7f:8a:5a:20:50: 63:04:4c:a2:a9:ae:52:11:9a:cf:91:d7:5e:8a:af:aa:a0:33: 6c:4f:71:57 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICFM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwNzE2MTgwNTE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzUzYy0yMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZIOMqFpRSWwk+WNKpq6DpJUmyK3cC3d5a1OQ1ZSI+oFM1aK9Abe7YgyZ5wY ooxx+ervEKSW6jELiZuwtCbGnrCRM5o2gxntnhQeFQ3IIgqV2L7PKdtS9VzBM0hh LDr29Hlw5vKXqoICsRCO+SlBZvjxGmG3uuji9DdeekcTZxaWM/FYhD2yuVuAXjBN 2CfQRIHtQtKDmGdSoo5opxvrnbHwg/eflRKxEoN+YsE6k36UDS/9Xq5eeX2ntU5N wf4WNdD9BYXkOS2YjxujwVPIRbOySfIonYbHeWnzW9d+043X9MsI5po8Lo9qr6t6 Ld/St1+qrf229zD30UWHzoOLOQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLBWlVyW BXtjimPBk3Oej17/0XSyMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvOTgzQTU1MzY0 NTA2MTFGMDkzRUMzQTY1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ2q8AwQCZ3T0AwQCdMyEMA0GCSqGSIb3DQEBCwUAA4IBAQA/XFH0 JmB5KJHYAYLJDARPTjtdPi/dpWocNHq/4sncbhUdOLLDFD3rI05K0eYIZB7bZIXC 3jhIFIDgOi7vU5bfB4wLudX6JqEYvMBWdfaBo2zmkGMuZrMP8yKRFYDBF5+w9w/N hfOFx0BTEQRPRGW6S8WC1gWf/vtwssJ+ZLdrd/LhnUKaSkjzQbVbXdW2BlF+NMBW euTIZA67rGftxyGYgSKJWtfrUloR37TXllD9S5sKtSUlyWUDoxv+DbywzmE7SgCr rRu5lArYB7nEXYt+NgROloBdWo0XLIFku2Xfr1FDj75Pf4paIFBjBEyiqa5SEZrP kddeiq+qoDNsT3FX -----END CERTIFICATE-----Generated at Sat Mar 21 14:37:54 2026 by rpki-client