$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/C3C2560ABFDA11F0A858A529C4F9AE02.roa File: C3C2560ABFDA11F0A858A529C4F9AE02.roa (raw, json) Hash identifier: GhhSaA0xTyH5baipIEusOVelE8AEomQ82Qzg02jGkGw= Subject key identifier: B9:17:C9:FD:A8:F8:F3:19:E1:2B:94:F5:2B:72:BF:31:CE:5C:ED:5A Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 0299 Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/C3C2560ABFDA11F0A858A529C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:14:55 +0000 ROA not before: Wed 12 Nov 2025 15:17:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17941 IP address blocks: 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621, serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Nov 12 15:17:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4740e-5ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:0c:35:0d:0c:bd:18:a1:9b:9f:a7:80:ff: 32:ad:e5:bb:3d:36:93:50:76:47:e4:fc:c2:af:f7: a6:ed:47:ca:d8:f1:f9:a6:4a:7e:4f:aa:86:a4:f4: a5:6a:f4:9e:b8:4f:00:51:1c:47:01:99:52:4b:c6: 5d:07:f3:a5:ff:0f:f2:5c:eb:2c:6a:a1:0a:94:64: 89:1f:5b:2c:f1:f1:f6:ad:39:74:80:11:ca:d8:ef: 59:49:17:93:3f:31:80:d2:5b:a6:59:68:1d:f9:86: 64:98:64:b0:47:f9:bc:b1:b1:d1:22:69:5c:79:7c: 5a:ba:1e:2f:f2:c6:5c:d5:b7:91:e9:31:d3:92:f9: 82:d4:6c:99:c8:35:2c:12:ce:67:7b:15:f6:a7:69: 67:c9:85:39:f8:70:4d:40:8a:ca:1f:d3:84:2b:f9: 47:4e:01:19:50:e4:f7:37:96:65:75:6f:c5:a3:2a: a8:11:bb:d9:64:4c:4d:55:c8:e1:3e:da:3f:eb:ac: 31:17:6f:2c:83:2e:1a:2b:40:a6:eb:89:15:23:50: 49:51:1b:d8:5c:8f:3b:26:be:40:d5:9b:90:f1:ae: 35:ce:49:58:7d:6d:99:ca:17:0b:ed:2d:89:26:1d: 49:fc:a9:5f:04:02:b2:5f:78:3d:4d:a0:89:c5:76: ef:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:17:C9:FD:A8:F8:F3:19:E1:2B:94:F5:2B:72:BF:31:CE:5C:ED:5A X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/C3C2560ABFDA11F0A858A529C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.123.0/24 Signature Algorithm: sha256WithRSAEncryption a5:eb:8d:50:07:93:bd:fe:83:bf:a5:36:6d:25:39:f7:67:49: d7:af:09:d6:fa:8e:13:77:7c:af:f3:ac:cf:0d:99:f8:48:d5: d3:69:3c:9c:ba:53:d6:d1:e5:18:b2:93:b6:8f:7f:1b:6e:86: a1:8a:b0:88:86:70:b8:71:97:5e:22:a8:b8:d1:8a:58:d7:24: 85:1c:d5:fb:30:27:c8:bd:c6:e9:ec:ee:2e:0e:61:08:2d:0f: 33:d1:4d:19:6c:a1:f4:0a:15:8f:5f:ca:fc:a5:6f:ac:2c:22: 10:69:1b:79:2b:c5:3b:01:f9:86:95:cd:2c:89:3a:1c:2c:41: 0c:29:d2:ee:cb:b3:68:fc:7f:58:6a:46:17:da:0a:23:f2:a9: 54:8a:a4:fa:b9:b9:0e:60:9d:51:3c:a9:c8:9b:e3:98:c7:fa: 3b:dd:20:fa:04:8e:46:79:46:10:58:2e:f6:98:0d:9b:ce:8c: ea:c5:41:d5:7a:db:62:3e:2d:42:b2:c9:2e:7c:30:54:4a:ac: 69:31:b5:61:ca:38:bf:0b:0c:c0:0f:da:5a:20:19:ea:ac:c2: 40:a0:8c:a8:c4:ac:91:40:67:2d:90:c0:0b:6f:ff:00:a2:73: ab:cb:1e:c2:75:5b:a2:fd:d6:1e:d4:ec:3c:c4:36:0e:06:9a: 1f:f0:73:ea -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjUxMTEyMTUxNzU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQwZS01ZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG8MNQ0MvRihm5+ngP8yreW7PTaTUHZH5PzCr/em7UfK2PH5pkp+T6qGpPSl avSeuE8AURxHAZlSS8ZdB/Ol/w/yXOssaqEKlGSJH1ss8fH2rTl0gBHK2O9ZSReT PzGA0lumWWgd+YZkmGSwR/m8sbHRImlceXxauh4v8sZc1beR6THTkvmC1GyZyDUs Es5nexX2p2lnyYU5+HBNQIrKH9OEK/lHTgEZUOT3N5ZldW/FoyqoEbvZZExNVcjh Pto/66wxF28sgy4aK0Cm64kVI1BJURvYXI87Jr5A1ZuQ8a41zklYfW2ZyhcL7S2J Jh1J/KlfBAKyX3g9TaCJxXbviwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLkXyf2o +PMZ4SuU9StyvzHOXO1aMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvQzNDMjU2MEFC RkRBMTFGMEE4NThBNTI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1Z7MA0GCSqGSIb3DQEBCwUAA4IBAQCl641QB5O9/oO/pTZtJTn3 Z0nXrwnW+o4Td3yv86zPDZn4SNXTaTyculPW0eUYspO2j38bboahirCIhnC4cZde Iqi40YpY1ySFHNX7MCfIvcbp7O4uDmEILQ8z0U0ZbKH0ChWPX8r8pW+sLCIQaRt5 K8U7AfmGlc0siTocLEEMKdLuy7No/H9YakYX2goj8qlUiqT6ubkOYJ1RPKnIm+OY x/o73SD6BI5GeUYQWC72mA2bzozqxUHVettiPi1CsskufDBUSqxpMbVhyji/CwzA D9paIBnqrMJAoIyoxKyRQGctkMALb/8AonOryx7CdVui/dYe1Ow8xDYOBpof8HPq -----END CERTIFICATE-----Generated at Mon Mar 2 09:00:27 2026 by rpki-client