
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa
File: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (raw, json)
Hash identifier: 4btki8MufbxcYjK/3ldd2OyHnoFsKyUfQZm8u1lkOas=
Subject key identifier: B9:C8:74:93:69:F6:FA:44:42:5C:8A:1E:89:37:58:C2:BD:DF:C7:0D
Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C
Certificate serial: 03ED
Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa
Signing time: Fri 03 Jul 2026 01:26:29 +0000
ROA not before: Fri 03 Jul 2026 01:26:29 +0000
ROA not after: Thu 30 Sep 2027 00:00:00 +0000
asID: 55720
IP address blocks: 103.169.90.0/24 maxlen: 24
103.169.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl
rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1005 (0x3ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C
Validity
Not Before: Jul 3 01:26:29 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=6a470fc5-4cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:18:8b:7b:de:36:0c:f4:19:51:5c:52:45:1a:
1e:4c:e2:d4:cc:7b:ae:f2:de:d6:d2:22:89:8a:20:
43:16:e0:b5:9a:71:45:7a:70:30:58:0c:7f:06:a4:
52:40:e5:c3:31:6c:7c:00:a4:34:c6:a3:10:00:d6:
d3:04:27:4d:c0:7c:49:e9:f2:bb:b1:f1:01:0f:42:
b4:e9:9b:36:f3:77:18:69:aa:f6:f4:ca:7b:12:b8:
d7:f4:a8:47:e2:b6:d0:cf:60:d0:b9:ed:82:fa:ec:
ec:54:68:a2:24:ac:2d:5d:d4:bf:57:09:eb:36:80:
47:b3:bd:e4:01:4c:97:4f:32:49:fa:f3:0a:da:83:
56:6a:45:db:d9:bb:c6:49:eb:ab:e2:58:4f:5e:57:
2a:b8:a3:14:5f:20:9b:78:81:ef:1a:42:c9:77:cf:
1b:2e:dd:41:ea:fa:01:86:2f:e3:10:f5:f6:b4:75:
12:65:ff:9c:64:05:d9:28:7a:1e:d5:f0:2d:7b:fb:
82:d7:c6:36:c5:24:64:a2:3e:be:96:e1:a1:2b:44:
91:53:1b:53:51:52:64:af:e3:de:8c:fc:ed:fb:b3:
ab:3d:a6:94:af:77:c9:be:9d:dd:0a:36:d6:6d:58:
2f:ea:de:ad:1a:d4:f1:79:fc:0b:fe:71:25:46:86:
da:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C8:74:93:69:F6:FA:44:42:5C:8A:1E:89:37:58:C2:BD:DF:C7:0D
X509v3 Authority Key Identifier:
keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.169.90.0/23
Signature Algorithm: sha256WithRSAEncryption
90:fe:5e:e1:a0:bf:ce:df:de:90:64:ca:2b:17:56:0a:da:37:
11:92:d9:4f:89:dd:8e:a9:af:d5:2d:d7:21:d9:5e:49:58:22:
1a:32:6e:02:32:4a:e2:23:05:91:19:67:d1:36:46:04:39:d5:
e0:97:a0:5c:36:fe:f4:6d:32:df:27:bd:b5:c7:a7:b2:25:47:
f0:f2:a3:42:b1:54:ce:29:eb:48:ef:f9:19:c8:a9:c1:21:54:
f1:7f:93:28:3b:3c:94:c4:04:f2:50:7c:27:10:01:fb:8b:1a:
41:6c:f2:ac:8c:70:48:aa:35:e5:c0:99:b3:a6:3d:3b:de:c5:
99:57:2a:7c:ed:36:8a:d3:55:20:be:e8:bd:09:22:63:9d:c1:
34:c1:31:94:eb:a6:20:43:f6:4f:81:7a:ee:35:a0:e7:20:a4:
f5:c0:59:b3:12:a8:5a:37:84:7c:29:5a:b5:08:ce:d1:33:37:
5b:5e:e9:05:e2:7f:aa:e3:16:99:9f:71:f2:69:07:30:df:b1:
5d:03:8e:c0:13:b0:59:a4:48:c6:64:82:32:7b:ea:81:b0:c8:
ea:b4:06:a3:2d:21:ba:fa:13:67:26:e2:ed:5e:3e:ab:db:f5:
a8:e9:53:b4:38:a9:dd:1b:cf:cf:88:69:27:93:a8:fb:ab:61:
8a:43:a1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 00:15:14 2026 by rpki-client