$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa File: 96D7EE96AF0111EB8FE37446C4F9AE02.roa (raw, json) Hash identifier: ra5Gb6PZs/OzsXnjVHyYomyoOxgiF9l7qD/G8v55rJE= Subject key identifier: 03:AA:E1:08:72:02:1E:F3:BE:F6:3D:E9:3B:53:45:E4:3D:FC:C3:AF Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 06A9 Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:05:13 +0000 ROA not before: Fri 18 Jul 2025 23:35:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132585 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 2403:4240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 22:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50, serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 18 23:35:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a463b8-1681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:18:f5:b7:f3:77:b0:d6:d3:c8:a8:38:ec:a7: e7:fd:4f:13:f0:71:bc:23:bc:8d:ce:66:f5:23:ff: 3b:e0:9c:ac:15:b5:f9:f1:93:35:7a:2b:13:f6:88: ef:97:99:60:88:6f:89:e3:8a:66:87:24:81:c4:c7: 23:e3:8d:40:c4:91:d1:ba:24:17:41:ea:a5:74:c9: 90:95:f5:33:b7:76:92:f1:16:88:a3:d0:a3:3d:a0: 43:42:75:d6:da:91:ca:c1:69:b2:f9:bb:3a:96:19: eb:cf:64:05:89:bb:86:a1:b5:b3:f0:66:63:6c:41: 47:10:c1:62:fa:d0:42:8f:ff:81:0e:e3:2e:dd:22: 4a:f9:33:42:ce:0c:1d:a9:ad:62:b2:03:8a:db:77: a9:10:5a:01:48:e4:8b:91:53:6b:94:e6:cd:db:85: fe:33:fc:69:51:cd:42:07:34:ff:a8:02:56:d4:74: ba:03:a4:a0:2a:32:54:c2:4c:c5:69:ba:62:1e:77: 9e:19:26:c7:bf:1d:ea:0a:6f:2d:66:cb:e3:3f:e2: 13:8c:33:35:e3:27:30:bf:1b:b7:8f:29:60:28:67: bc:95:a9:fb:fd:2f:42:18:9b:52:e4:82:71:71:e2: 15:4d:6f:0e:2c:a2:f1:75:13:e6:42:29:de:ab:ad: 9a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AA:E1:08:72:02:1E:F3:BE:F6:3D:E9:3B:53:45:E4:3D:FC:C3:AF X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption a0:c1:e6:58:e0:c8:fd:43:af:6f:9d:20:d6:8f:b5:51:21:d4: b0:77:2c:2c:1a:61:d2:8a:45:20:c1:e2:57:15:57:8c:66:5a: 6f:e9:8b:d1:a1:b4:3f:d2:46:c4:0b:e7:3a:a0:5d:c5:1b:22: f3:a5:8a:b1:ef:d1:68:4b:69:fb:b4:14:97:35:3a:32:6e:72: 2c:b8:5d:61:17:90:02:9a:1b:31:39:a8:53:da:87:9d:ab:80: 84:1c:b5:64:65:24:75:08:16:9b:05:40:69:20:f7:3a:62:a8: d2:26:77:c3:72:9c:3c:ee:74:5a:e0:ba:3b:c6:d1:1f:f9:d2: 88:55:4a:72:5d:e5:46:55:c0:8b:90:58:40:02:18:80:29:f5: 2f:b3:2f:d2:ef:ff:53:72:c9:53:5b:5d:f6:d5:5e:5b:75:ae: 02:ff:c1:d9:7e:67:52:61:25:5e:93:8c:19:30:40:f5:2f:39: a3:27:a6:12:ce:c8:6c:ca:e1:03:fe:b4:4e:1f:5a:02:73:25: cf:ef:3f:d7:ba:cd:54:81:d6:9c:83:39:ff:b7:94:a1:0e:52: b2:c4:fb:4f:f7:e3:06:cd:96:1c:1f:9f:2f:79:70:67:a1:1d: 0d:2d:90:93:92:3f:1d:b9:ed:4d:c0:6f:e7:82:a6:d4:5a:f4: c2:1a:04:2e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjUwNzE4MjMzNTIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjNiOC0xNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhj1t/N3sNbTyKg47Kfn/U8T8HG8I7yNzmb1I/874JysFbX58ZM1eisT9ojv l5lgiG+J44pmhySBxMcj441AxJHRuiQXQeqldMmQlfUzt3aS8RaIo9CjPaBDQnXW 2pHKwWmy+bs6lhnrz2QFibuGobWz8GZjbEFHEMFi+tBCj/+BDuMu3SJK+TNCzgwd qa1isgOK23epEFoBSOSLkVNrlObN24X+M/xpUc1CBzT/qAJW1HS6A6SgKjJUwkzF abpiHneeGSbHvx3qCm8tZsvjP+ITjDM14ycwvxu3jylgKGe8lan7/S9CGJtS5IJx ceIVTW8OLKLxdRPmQineq62aYwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAOq4Qhy Ah7zvvY96TtTReQ9/MOvMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvOTZEN0VFOTZB RjAxMTFFQjhGRTM3NDQ2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3doMA0EAgACMAcDBQAkA0JAMA0GCSqGSIb3DQEBCwUAA4IBAQCg weZY4Mj9Q69vnSDWj7VRIdSwdywsGmHSikUgweJXFVeMZlpv6YvRobQ/0kbEC+c6 oF3FGyLzpYqx79FoS2n7tBSXNToybnIsuF1hF5ACmhsxOahT2oedq4CEHLVkZSR1 CBabBUBpIPc6YqjSJnfDcpw87nRa4Lo7xtEf+dKIVUpyXeVGVcCLkFhAAhiAKfUv sy/S7/9TcslTW1321V5bda4C/8HZfmdSYSVek4wZMED1LzmjJ6YSzshsyuED/rRO H1oCcyXP7z/Xus1Ugdacgzn/t5ShDlKyxPtP9+MGzZYcH58veXBnoR0NLZCTkj8d ue1NwG/ngqbUWvTCGgQu -----END CERTIFICATE-----Generated at Thu Mar 12 19:51:12 2026 by rpki-client