$ rpki-client -vvf rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa File: 46106B5077E811F0B822833AC4F9AE02.roa (raw, json) Hash identifier: hVi8R5MoEeImI8jjWziXAy2bRDHXtAtcy1qMeWpfzVo= Subject key identifier: 10:2D:8B:EA:55:2E:84:97:76:F5:D9:98:09:72:33:5E:B5:F7:FB:58 Certificate issuer: /CN=A9169DB2/serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Certificate serial: 0960 Authority key identifier: 9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa Signing time: Thu 02 Apr 2026 03:04:27 +0000 ROA not before: Thu 02 Apr 2026 03:04:27 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 56301 IP address blocks: 103.17.108.0/23 maxlen: 23 103.48.116.0/24 maxlen: 24 103.87.69.0/24 maxlen: 24 183.81.170.0/23 maxlen: 24 202.37.109.0/24 maxlen: 24 203.26.188.0/24 maxlen: 24 203.26.189.0/24 maxlen: 24 218.100.84.0/24 maxlen: 24 2401:fd40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2400 (0x960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169DB2, serialNumber=9B8259F7B3C1DEDD4719BC0ADC587B3DB89E7BDB Validity Not Before: Apr 2 03:04:27 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69cddcba-1a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c7:a6:91:cf:7d:26:4f:3d:f7:b6:72:e1:6c: 49:6c:a5:af:55:47:e7:29:49:71:0b:bb:1d:f2:07: 27:bc:89:99:94:9b:88:21:43:93:e5:ce:48:ea:d6: 97:bb:1d:2c:40:b2:22:7a:12:6c:5a:c8:2e:c3:a5: 06:27:e9:4a:45:47:88:6f:5f:49:51:a3:f4:d6:82: 1f:bc:71:43:87:16:ef:b9:9e:71:3d:34:c1:da:9c: 6b:09:9f:4c:65:2f:49:3c:ff:b5:05:aa:b8:8e:7b: c0:fb:ea:fa:2b:5e:54:b3:ad:eb:8e:3a:23:e5:f5: cc:37:bf:6b:60:3f:65:c9:4b:91:5f:49:cb:f3:da: 28:93:51:6f:8d:a4:36:ec:ef:ec:f6:28:f0:93:4d: 70:13:fa:0c:84:5b:a5:7d:47:11:7a:62:ca:01:c6: be:6f:09:f9:70:da:c6:e3:c4:ac:ba:d3:35:e0:af: ce:0d:4a:cb:80:15:39:09:1e:20:f6:c7:f1:3c:16: 6f:ad:76:c1:9a:6b:6b:d9:ca:91:09:dc:f4:c0:a3: e4:a6:79:0f:c8:41:48:d3:9f:d7:7e:c7:e4:c7:60: 78:25:e4:21:71:ed:8d:2c:76:97:b8:70:cc:26:a8: aa:82:c8:f7:3d:60:29:6e:fe:2a:86:9d:35:82:48: 76:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2D:8B:EA:55:2E:84:97:76:F5:D9:98:09:72:33:5E:B5:F7:FB:58 X509v3 Authority Key Identifier: keyid:9B:82:59:F7:B3:C1:DE:DD:47:19:BC:0A:DC:58:7B:3D:B8:9E:7B:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m4JZ97PB3t1HGbwK3Fh7Pbiee9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169DB2/A9CC49B6B9BB11EABDD0FD84C4F9AE02/46106B5077E811F0B822833AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.108.0/23 103.48.116.0/24 103.87.69.0/24 183.81.170.0/23 202.37.109.0/24 203.26.188.0/23 218.100.84.0/24 IPv6: 2401:fd40::/32 Signature Algorithm: sha256WithRSAEncryption 06:1b:88:3c:28:79:c5:6a:38:2b:ae:2e:a0:67:26:92:ab:e4: cd:7e:b0:f6:38:42:c2:99:2d:7d:2e:6d:4a:54:6a:8d:d4:d2: 56:80:c4:2e:3b:3b:98:6d:59:60:c7:45:f9:0b:cb:f1:52:26: dd:cf:7d:5d:3a:37:1f:fc:b1:03:31:08:6d:3a:9f:9c:a1:c0: 78:ae:bf:9e:c1:01:41:ee:61:e8:cb:fb:85:70:e0:68:93:5a: 5f:da:2d:ec:b9:c5:3a:0c:e7:49:fb:a6:a9:a0:b3:5b:f9:f7: 4a:05:3f:42:c6:fb:06:f6:2b:ae:ac:cb:e6:78:d3:bb:a1:59: a8:29:80:94:ef:d1:c7:6b:37:31:ab:cd:bd:d2:c0:b9:4b:be: b2:71:b8:a7:17:2b:a4:72:0e:9d:11:fe:8d:fe:ed:ce:db:de: 93:a7:be:28:a2:91:ff:e0:08:02:2f:82:b8:ba:66:f2:53:6f: 1e:eb:cf:ae:86:2c:cb:9f:de:7b:c7:26:55:0f:01:73:08:97: 5d:85:3b:a4:48:aa:2a:63:71:2e:fc:4d:e6:e1:39:27:93:96: b6:b0:4e:79:79:7c:b5:e3:1d:9a:45:27:b4:83:d3:3e:b3:93: a1:1d:f2:7c:01:d0:da:5b:9b:58:e7:3f:22:75:b5:32:ff:87: 91:0b:18:d3 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICCWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlEQjIxMTAvBgNVBAUTKDlCODI1OUY3QjNDMURFREQ0NzE5QkMwQURDNTg3QjNE Qjg5RTdCREIwHhcNMjYwNDAyMDMwNDI3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNkZGNiYS0xYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssemkc99Jk8997Zy4WxJbKWvVUfnKUlxC7sd8gcnvImZlJuIIUOT5c5I6taX ux0sQLIiehJsWsguw6UGJ+lKRUeIb19JUaP01oIfvHFDhxbvuZ5xPTTB2pxrCZ9M ZS9JPP+1Baq4jnvA++r6K15Us63rjjoj5fXMN79rYD9lyUuRX0nL89ook1FvjaQ2 7O/s9ijwk01wE/oMhFulfUcRemLKAca+bwn5cNrG48SsutM14K/ODUrLgBU5CR4g 9sfxPBZvrXbBmmtr2cqRCdz0wKPkpnkPyEFI05/Xfsfkx2B4JeQhce2NLHaXuHDM Jqiqgsj3PWApbv4qhp01gkh2VQIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFBAti+pV LoSXdvXZmAlyM1619/tYMB8GA1UdIwQYMBaAFJuCWfezwd7dRxm8CtxYez24nnvb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OURCMi9BOUNDNDlCNkI5 QkIxMUVBQkREMEZEODRDNEY5QUUwMi9tNEpaOTdQQjN0MUhHYndLM0ZoN1BiaWVl OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL200Slo5N1BCM3QxSEdid0szRmg3UGJpZWU5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlEQjIvQTlDQzQ5QjZCOUJCMTFFQUJERDBGRDg0QzRGOUFFMDIvNDYxMDZCNTA3 N0U4MTFGMEI4MjI4MzNBQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQBZxFsAwQAZzB0AwQAZ1dFAwQBt1GqAwQAyiVtAwQByxq8AwQA2mRU MA0EAgACMAcDBQAkAf1AMA0GCSqGSIb3DQEBCwUAA4IBAQAGG4g8KHnFajgrri6g ZyaSq+TNfrD2OELCmS19Lm1KVGqN1NJWgMQuOzuYbVlgx0X5C8vxUibdz31dOjcf /LEDMQhtOp+cocB4rr+ewQFB7mHoy/uFcOBok1pf2i3sucU6DOdJ+6apoLNb+fdK BT9CxvsG9iuurMvmeNO7oVmoKYCU79HHazcxq8290sC5S76ycbinFyukcg6dEf6N /u3O296Tp74oopH/4AgCL4K4umbyU28e68+uhizLn957xyZVDwFzCJddhTukSKoq Y3Eu/E3m4Tknk5a2sE55eXy14x2aRSe0g9M+s5OhHfJ8AdDaW5tY5z8idbUy/4eR CxjT -----END CERTIFICATE-----Generated at Mon Apr 6 11:26:30 2026 by rpki-client