$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa File: C4149072C8FF11F0AC8AE779C4F9AE02.roa (raw, json) Hash identifier: e26HjI6IThHSTcyiS5wewUgNVLH1ZtA87nwKAQOfEN8= Subject key identifier: 23:C4:85:37:1B:9A:46:3E:A7:56:A6:C7:73:88:45:51:EF:AA:DC:C8 Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 02C3 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:10:58 +0000 ROA not before: Mon 24 Nov 2025 06:35:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 401783 IP address blocks: 103.120.22.0/24 maxlen: 24 103.120.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 00:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Nov 24 06:35:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46512-d712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:90:a6:de:5c:f5:d5:11:32:08:ae:2d:07:9e: b8:30:ca:a3:bb:1e:35:88:8e:d4:6e:9f:56:75:27: fe:11:7f:c0:59:35:2e:28:cc:5e:2e:97:35:49:ed: 54:f6:0d:ae:4a:bb:ef:ac:0e:de:17:1f:48:14:a5: 3c:84:85:71:28:d7:5a:1c:4b:24:a0:7f:8a:b5:92: bf:5c:e1:0f:70:a7:9b:78:83:00:70:fe:63:3d:2e: 7e:99:2b:a0:97:6e:74:67:97:d3:32:59:07:8e:eb: e5:30:07:90:3f:3c:00:10:27:10:af:59:58:41:67: f2:5f:08:ac:c7:6d:6e:fc:13:d5:67:6a:77:7e:3e: ba:36:f8:01:9f:33:57:c0:8f:ba:91:76:37:f2:d7: 45:68:4a:ef:fb:43:4b:8c:57:7d:a7:91:41:36:a2: 1f:ff:24:d9:a8:2d:e5:ba:eb:26:7b:99:9c:76:74: 88:d2:d1:34:58:87:a0:d2:65:88:96:6a:06:bf:d7: 83:ea:4c:06:5a:6f:85:ba:35:0d:b9:04:9f:18:cc: 7e:0e:0b:42:08:cf:3c:6c:67:46:83:74:ff:48:c4: 1f:93:fa:d0:7f:96:1e:24:f8:24:0b:37:1a:99:1d: d9:15:70:f5:8e:20:5f:b3:11:30:d3:63:19:e0:60: 49:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C4:85:37:1B:9A:46:3E:A7:56:A6:C7:73:88:45:51:EF:AA:DC:C8 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/C4149072C8FF11F0AC8AE779C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.22.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:57:2d:92:f7:95:4d:58:a5:1a:b7:82:2b:e9:80:f5:23:81: 33:5c:97:9b:02:c9:42:5e:3a:21:1b:e8:2f:de:25:8d:08:aa: 7c:ff:ba:b8:ad:96:8a:53:2c:52:17:8f:9d:c1:f0:85:88:eb: 80:58:2d:6f:9e:b5:ca:80:73:0f:1e:0d:74:d4:2f:0c:6a:95: 87:c9:a3:11:ef:fd:bc:c1:e3:6f:c2:4d:31:1f:a8:fe:cf:2b: 06:cb:7a:b1:5a:f9:6c:9c:7b:52:8e:a3:53:ba:fc:02:fd:21: 3f:67:85:d9:5f:b1:57:b1:57:8b:f1:e9:fe:aa:13:87:1a:5a: 78:8b:0b:28:f3:0c:6f:66:32:a5:eb:3f:b4:12:9f:5f:b0:86: 6e:2d:0b:42:7d:3b:e8:17:a5:6c:cf:5b:93:84:98:f6:c4:9f: 31:75:21:e3:e3:9f:40:28:4a:77:ab:2d:73:ab:f9:7d:25:3a: 3a:d6:f4:e6:f1:1f:1b:ee:32:ff:33:0f:46:f5:b2:e1:9f:05: c9:fc:55:01:8a:f1:f4:ab:b8:6f:83:af:63:b1:73:ba:1f:21: 39:63:6d:01:09:1d:ae:a5:ec:c3:56:3a:7d:fe:0c:9a:ca:65: 83:37:6a:2e:9a:43:8a:1f:90:c3:78:9c:43:93:43:b1:7f:ee: 5a:38:8b:2b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUxMTI0MDYzNTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjUxMi1kNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JCm3lz11REyCK4tB564MMqjux41iI7Ubp9WdSf+EX/AWTUuKMxeLpc1Se1U 9g2uSrvvrA7eFx9IFKU8hIVxKNdaHEskoH+KtZK/XOEPcKebeIMAcP5jPS5+mSug l250Z5fTMlkHjuvlMAeQPzwAECcQr1lYQWfyXwisx21u/BPVZ2p3fj66NvgBnzNX wI+6kXY38tdFaErv+0NLjFd9p5FBNqIf/yTZqC3luusme5mcdnSI0tE0WIeg0mWI lmoGv9eD6kwGWm+FujUNuQSfGMx+DgtCCM88bGdGg3T/SMQfk/rQf5YeJPgkCzca mR3ZFXD1jiBfsxEw02MZ4GBJbQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCPEhTcb mkY+p1amx3OIRVHvqtzIMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCMzIvNzM4Nzk2MTgyRjM4MTFFRDlFN0UwMjdEQzRGOUFFMDIvQzQxNDkwNzJD OEZGMTFGMEFDOEFFNzc5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3gWMA0GCSqGSIb3DQEBCwUAA4IBAQCaVy2S95VNWKUat4Ir6YD1 I4EzXJebAslCXjohG+gv3iWNCKp8/7q4rZaKUyxSF4+dwfCFiOuAWC1vnrXKgHMP Hg101C8MapWHyaMR7/28weNvwk0xH6j+zysGy3qxWvlsnHtSjqNTuvwC/SE/Z4XZ X7FXsVeL8en+qhOHGlp4iwso8wxvZjKl6z+0Ep9fsIZuLQtCfTvoF6Vsz1uThJj2 xJ8xdSHj459AKEp3qy1zq/l9JTo61vTm8R8b7jL/Mw9G9bLhnwXJ/FUBivH0q7hv g69jsXO6HyE5Y20BCR2upezDVjp9/gyaymWDN2oumkOKH5DDeJxDk0Oxf+5aOIsr -----END CERTIFICATE-----Generated at Thu Mar 5 14:06:44 2026 by rpki-client