$ rpki-client -vvf rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa File: 7FAEDE3A03B411EBBB548A5EC4F9AE02.roa (raw, json) Hash identifier: +BeHLx7VaH6/51C+W2jAqccPL251vmtUI5jSFWjaXuk= Subject key identifier: E1:67:EF:98:C9:7A:BB:86:1B:98:92:E6:2F:4C:43:9A:AF:70:8D:30 Certificate issuer: /CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Certificate serial: 0864 Authority key identifier: 7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa Signing time: Sat 16 May 2026 21:25:28 +0000 ROA not before: Sat 16 May 2026 21:25:28 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 9288 IP address blocks: 103.90.212.0/22 maxlen: 22 103.90.212.0/24 maxlen: 24 103.90.213.0/24 maxlen: 24 103.90.214.0/24 maxlen: 24 103.90.215.0/24 maxlen: 24 123.253.0.0/22 maxlen: 22 123.253.0.0/24 maxlen: 24 123.253.1.0/24 maxlen: 24 123.253.2.0/24 maxlen: 24 123.253.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 20:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173060, serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Validity Not Before: May 16 21:25:28 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a08e0c8-691d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1a:e2:30:23:1c:47:97:81:7e:12:7f:29:11: 32:8c:17:71:1f:44:18:c6:7b:53:5a:cd:b1:41:cf: 5a:21:c1:28:95:97:39:81:c9:d3:12:86:51:3a:82: e8:c1:19:24:58:d8:f2:f7:b4:a4:13:e2:c8:9b:f2: 0c:86:36:cc:21:88:92:90:a6:76:f5:09:c0:b9:2e: 0b:33:a1:da:d0:88:3e:6d:ce:44:08:87:32:5e:71: 95:62:1d:75:1c:a9:aa:8c:32:64:5a:1d:13:c9:02: 93:7c:0e:28:eb:9a:fb:b3:c0:3e:77:84:af:84:70: 33:5f:43:fb:79:f4:fb:aa:ee:01:76:b7:fa:d8:34: bb:99:ce:96:2a:56:ea:11:fb:8d:63:f1:f2:18:62: fa:c0:df:cd:8a:54:fa:d7:21:24:e4:12:3a:2a:f1: 54:09:65:50:98:0a:a5:79:d2:da:47:bf:2c:26:0c: 97:87:20:49:57:a7:8b:5d:34:59:d8:f2:a3:e7:5c: 90:98:5f:68:cf:2b:c6:3c:f1:b8:a2:85:52:d0:e1: aa:74:df:dd:5c:05:7c:e7:a2:6f:e6:98:d0:97:27: 61:b7:9f:3a:a9:b0:8d:55:df:70:1d:d0:69:a9:cb: 88:10:80:fc:d4:24:54:19:cc:d8:7b:65:63:38:e2: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:67:EF:98:C9:7A:BB:86:1B:98:92:E6:2F:4C:43:9A:AF:70:8D:30 X509v3 Authority Key Identifier: keyid:7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/7FAEDE3A03B411EBBB548A5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.212.0/22 123.253.0.0/22 Signature Algorithm: sha256WithRSAEncryption 54:42:07:da:f0:1c:bc:fc:e0:08:6b:6d:40:67:85:a7:0b:36: 1b:c1:5f:b0:7f:34:d4:76:11:94:b9:37:06:f3:8f:db:6f:9d: 0c:6c:24:99:95:4a:04:02:28:93:42:83:15:97:51:ac:b0:c9: 3c:f0:c8:dd:bb:1a:84:63:1f:1d:88:27:09:bc:3e:2b:ea:19: b3:ae:35:4f:76:e5:16:d3:0f:c0:97:ff:1f:63:a7:f3:d9:71: b0:73:d7:1f:c3:0f:be:33:0f:e0:1b:f5:c3:55:df:2e:50:12: b6:68:34:e4:96:51:8d:25:af:e4:0e:17:8c:78:ab:9b:12:f3: 21:d9:38:d7:6c:cc:be:2e:33:b9:db:25:79:44:52:af:a7:f2: 89:84:1d:dc:0e:9e:b3:34:5b:53:e4:6e:69:ae:81:82:a1:7f: ed:3e:3a:9c:26:d5:44:81:76:da:2f:87:80:aa:8f:d2:3d:b8: e0:16:6e:07:dd:a5:8d:d9:89:bb:9b:c1:39:45:45:03:36:68: 9f:1c:16:f0:f3:10:7a:59:85:92:5b:10:35:23:de:cc:99:53: 5b:04:09:f9:e8:2a:e3:11:62:ac:29:f4:d5:15:d1:dd:fa:6a: 3b:37:76:df:bc:21:02:b8:0b:e8:03:33:02:61:d0:5d:3e:df: db:8f:69:64 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMwNjAxMTAvBgNVBAUTKDdGREY2MjE4RkEwMTVEMEEwMDc0QTg0NDI0NTE4MDZB MjhGOURERjUwHhcNMjYwNTE2MjEyNTI4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA4ZTBjOC02OTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhriMCMcR5eBfhJ/KREyjBdxH0QYxntTWs2xQc9aIcEolZc5gcnTEoZROoLo wRkkWNjy97SkE+LIm/IMhjbMIYiSkKZ29QnAuS4LM6Ha0Ig+bc5ECIcyXnGVYh11 HKmqjDJkWh0TyQKTfA4o65r7s8A+d4SvhHAzX0P7efT7qu4Bdrf62DS7mc6WKlbq EfuNY/HyGGL6wN/NilT61yEk5BI6KvFUCWVQmAqledLaR78sJgyXhyBJV6eLXTRZ 2PKj51yQmF9ozyvGPPG4ooVS0OGqdN/dXAV856Jv5pjQlydht586qbCNVd9wHdBp qcuIEID81CRUGczYe2VjOOL2qwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOFn75jJ eruGG5iS5i9MQ5qvcI0wMB8GA1UdIwQYMBaAFH/fYhj6AV0KAHSoRCRRgGoo+d31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzA2MC9BNzI1ODZCMDAz QjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhRb0FkS2hFSkZHQWFpajUz ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y5OWlHUG9CWFFvQWRLaEVKRkdBYWlqNTNmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMwNjAvQTcyNTg2QjAwM0IxMTFFQjg0M0E3NzU2QzRGOUFFMDIvN0ZBRURFM0Ew M0I0MTFFQkJCNTQ4QTVFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ1rUAwQCe/0AMA0GCSqGSIb3DQEBCwUAA4IBAQBUQgfa8By8/OAI a21AZ4WnCzYbwV+wfzTUdhGUuTcG84/bb50MbCSZlUoEAiiTQoMVl1GssMk88Mjd uxqEYx8diCcJvD4r6hmzrjVPduUW0w/Al/8fY6fz2XGwc9cfww++Mw/gG/XDVd8u UBK2aDTkllGNJa/kDheMeKubEvMh2TjXbMy+LjO52yV5RFKvp/KJhB3cDp6zNFtT 5G5proGCoX/tPjqcJtVEgXbaL4eAqo/SPbjgFm4H3aWN2Ym7m8E5RUUDNmifHBbw 8xB6WYWSWxA1I97MmVNbBAn56CrjEWKsKfTVFdHd+mo7N3bfvCECuAvoAzMCYdBd Pt/bj2lk -----END CERTIFICATE-----Generated at Wed Jun 24 12:36:02 2026 by rpki-client