$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa File: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (raw, json) Hash identifier: Uz5YIB2qHzCEXEXaaIxzPkDCZiRONtPBbETQ8up2rL4= Subject key identifier: C9:AF:9D:5A:0A:F4:F1:2E:B2:E8:8B:1B:9B:6D:5C:B3:A5:23:E0:B1 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01EA Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:17:37 +0000 ROA not before: Thu 31 Jul 2025 22:31:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 396982 IP address blocks: 167.103.171.0/24 maxlen: 24 167.103.172.0/24 maxlen: 24 167.103.173.0/24 maxlen: 24 167.103.174.0/24 maxlen: 24 167.103.175.0/24 maxlen: 24 167.103.176.0/24 maxlen: 24 167.103.177.0/24 maxlen: 24 167.103.178.0/24 maxlen: 24 167.103.179.0/24 maxlen: 24 167.103.180.0/24 maxlen: 24 167.103.181.0/24 maxlen: 24 167.103.182.0/24 maxlen: 24 167.103.183.0/24 maxlen: 24 167.103.184.0/24 maxlen: 24 167.103.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 03:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jul 31 22:31:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a474b0-5c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:87:ab:fc:c4:d7:d8:b2:df:6e:4c:f3:17:07: 79:bf:4d:18:a9:8f:c7:c6:9b:71:d8:26:3a:1f:c3: 75:ca:d9:34:d5:55:3d:36:1c:89:87:8a:b1:d7:22: 04:2f:96:5a:89:a6:a2:b3:5d:8b:37:7f:00:1b:ed: d2:7b:6f:b5:8f:36:aa:d8:4d:da:be:ab:d0:95:b7: be:4b:cf:fb:37:f1:96:57:98:04:dc:e2:52:f1:35: 66:c8:80:e5:e5:6f:4c:bb:64:94:72:28:d8:b0:ce: eb:8b:67:b3:9b:7d:2f:e1:b3:b4:9c:a8:ac:f2:07: 3e:24:4e:60:e3:61:5d:1f:b6:7b:06:86:38:41:b7: 23:74:6e:fc:e7:fc:f7:cb:a7:b2:7c:28:8b:fe:7f: 18:bb:06:ee:31:11:43:e7:07:97:2a:72:5f:60:3f: 21:a7:9b:23:27:9a:40:1d:b3:a8:c3:bc:b2:9d:60: 29:91:8e:81:59:d5:10:e1:dc:e7:4b:25:85:fc:36: e8:5c:e6:86:c8:f0:7a:02:74:f0:6a:20:be:c4:aa: 3a:2e:a4:8d:2e:a1:f9:70:ac:e6:85:08:ea:48:15: fc:f0:e2:d7:81:19:51:68:eb:24:42:dd:dc:c1:df: 34:13:98:a5:6a:7a:a6:d5:2f:48:11:22:0b:e8:bd: 02:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:AF:9D:5A:0A:F4:F1:2E:B2:E8:8B:1B:9B:6D:5C:B3:A5:23:E0:B1 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.103.171.0-167.103.184.255 167.103.236.0/24 Signature Algorithm: sha256WithRSAEncryption 85:ed:f9:3f:c5:ba:7d:32:88:25:65:ed:68:40:0b:53:ef:db: 9f:a2:bb:a9:4c:27:2c:8c:a5:2e:ad:b8:40:07:33:c8:7c:91: 3b:69:18:49:d9:c7:ef:9b:30:e5:f4:d8:80:28:84:f8:80:c4: 60:87:08:22:be:dc:15:ef:fc:af:92:c0:1d:da:e0:61:a4:fa: 2f:5d:3a:b0:16:d7:b4:54:00:9a:28:7d:8f:65:aa:d5:cd:10: 66:02:9b:f1:f9:ad:d1:2f:fc:35:48:a9:dd:cd:c2:0a:33:7f: 66:41:c0:54:79:d8:f9:45:34:6b:0e:f8:1a:b7:8d:35:b0:69: be:5c:92:b6:49:9e:14:42:6f:87:e8:01:3d:3f:76:98:66:22: fa:7f:49:a2:7c:bd:a5:8e:5c:05:b2:4a:4a:63:a9:19:c5:22: 49:25:9e:b3:90:55:4c:28:de:dc:fc:a2:56:68:5f:ca:77:7a: 7e:0a:a5:8e:77:e9:db:ea:23:3f:d6:05:4f:aa:90:96:65:8e: 92:b3:95:f5:3b:bb:85:bf:8f:f1:d1:52:9e:e6:88:00:cd:de: f8:e1:61:fa:79:17:b6:f8:84:71:b0:3f:2c:d1:21:2e:90:1c: d3:a7:92:07:db:26:a9:ec:21:04:11:38:48:1a:ff:ef:f2:1b: 57:9d:c3:8a -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNzMxMjIzMTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzRiMC01YzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroer/MTX2LLfbkzzFwd5v00YqY/Hxptx2CY6H8N1ytk01VU9NhyJh4qx1yIE L5Zaiaais12LN38AG+3Se2+1jzaq2E3avqvQlbe+S8/7N/GWV5gE3OJS8TVmyIDl 5W9Mu2SUcijYsM7ri2ezm30v4bO0nKis8gc+JE5g42FdH7Z7BoY4QbcjdG785/z3 y6eyfCiL/n8YuwbuMRFD5weXKnJfYD8hp5sjJ5pAHbOow7yynWApkY6BWdUQ4dzn SyWF/DboXOaGyPB6AnTwaiC+xKo6LqSNLqH5cKzmhQjqSBX88OLXgRlRaOskQt3c wd80E5ilanqm1S9IESIL6L0CawIDAQABo4ICbjCCAmowHQYDVR0OBBYEFMmvnVoK 9PEusuiLG5ttXLOlI+CxMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvNzJFOTdCM0Ex QkRCMTFGMEI3N0IxMzQ0QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBACnZ6sDBACnZ7gDBACnZ+wwDQYJKoZIhvcNAQELBQADggEBAIXt +T/Fun0yiCVl7WhAC1Pv25+iu6lMJyyMpS6tuEAHM8h8kTtpGEnZx++bMOX02IAo hPiAxGCHCCK+3BXv/K+SwB3a4GGk+i9dOrAW17RUAJoofY9lqtXNEGYCm/H5rdEv /DVIqd3Nwgozf2ZBwFR52PlFNGsO+Bq3jTWwab5ckrZJnhRCb4foAT0/dphmIvp/ SaJ8vaWOXAWySkpjqRnFIkklnrOQVUwo3tz8olZoX8p3en4KpY536dvqIz/WBU+q kJZljpKzlfU7u4W/j/HRUp7miADN3vjhYfp5F7b4hHGwPyzRIS6QHNOnkgfbJqns IQQROEga/+/yG1edw4o= -----END CERTIFICATE-----Generated at Thu Mar 12 20:08:22 2026 by rpki-client