$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa File: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (raw, json) Hash identifier: jtNA4DSxailzGixhCLBv/XtkHLhwf6qcSCB3BjEuN/U= Subject key identifier: CA:ED:8C:60:8E:63:43:6F:B5:49:86:27:1D:12:8E:8F:3A:34:40:84 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0C89 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:42:35 +0000 ROA not before: Mon 26 Jan 2026 18:15:45 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139841 IP address blocks: 103.146.16.0/24 maxlen: 24 103.146.17.0/24 maxlen: 24 2406:fb40::/32 maxlen: 40 2406:fb40:1::/48 maxlen: 48 2406:fb40:2::/48 maxlen: 48 2406:fb40:3::/48 maxlen: 48 2406:fb40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Jan 26 18:15:45 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4505b-507e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4d:b5:cc:3f:76:05:cb:1e:e7:10:aa:5f:f6: 79:52:ca:62:28:98:ff:29:b8:e5:d5:ae:98:20:8e: 2a:2c:bc:d9:b0:7a:fd:ce:bc:2e:34:a6:38:3d:45: bd:b7:6c:16:a4:54:59:0b:07:72:45:d7:86:c6:cd: 2d:f2:10:6e:22:8b:4c:57:fb:7e:aa:48:f4:15:a1: 26:38:14:d5:06:b5:0a:92:45:96:2e:c0:7e:72:92: 5e:77:90:90:70:96:4f:31:4e:17:ae:eb:48:cf:42: e6:4a:04:e2:f4:96:4e:45:d9:d8:02:99:6b:5b:8b: c6:84:cf:e6:2a:1e:c8:7c:b4:8d:75:d1:8f:dc:f4: 6b:75:16:37:ef:26:5d:c3:f0:66:9e:06:55:f6:1a: 76:56:82:cd:ec:14:61:85:26:ec:a6:8b:97:cb:05: c2:7e:4f:df:60:5b:ce:3c:c3:7b:c7:bf:af:bc:b9: ca:22:39:a1:0c:0a:fc:88:02:02:b2:5c:34:03:fe: 74:c8:01:b6:1b:2d:17:16:e7:ba:e5:27:42:b0:9d: be:4c:88:cb:a5:20:5a:7f:35:8a:bb:3e:63:2e:45: e8:df:e4:4a:ee:25:91:a1:c4:37:8b:51:15:35:88: 58:bc:0b:6d:5a:8a:dc:c2:a5:74:e2:ea:cb:79:06: f3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:ED:8C:60:8E:63:43:6F:B5:49:86:27:1D:12:8E:8F:3A:34:40:84 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.146.16.0/23 IPv6: 2406:fb40::/32 Signature Algorithm: sha256WithRSAEncryption ad:8b:5c:fd:f1:66:e0:24:0e:b2:2f:06:69:01:fc:b2:b9:2a: fd:6e:47:44:d0:62:df:a9:a3:2b:c6:d1:f3:54:bb:81:f7:c7: 13:b7:3b:a0:20:ba:75:0c:9e:4b:41:82:43:61:31:c4:98:8b: c5:34:0b:9d:9c:a0:c2:da:cc:ef:64:60:56:7d:24:4a:26:fb: 34:d9:ba:39:da:42:e3:12:34:f4:81:01:e8:e2:f9:75:7a:68: 78:c6:26:f1:21:49:d7:74:19:bd:64:c3:51:fa:d7:0f:c1:6c: 75:ab:41:7f:a4:3f:4e:1c:a6:31:78:67:11:c9:5e:4a:e8:17: b4:c1:e0:5a:9e:d2:d8:77:c5:30:46:78:37:1e:95:d6:90:3d: 8b:af:cf:e1:61:76:8f:a1:b6:66:1f:25:7a:ce:a9:a5:12:15: ef:3d:69:cf:50:2b:9c:89:ea:a9:d4:44:ff:6f:8c:07:51:40: a8:1c:f5:5e:29:48:cf:8d:da:da:65:d1:b4:7f:7e:ba:c3:09: 8f:25:c6:a7:0c:7c:7b:c0:4a:d9:86:97:c3:e7:3d:a3:df:c5: fc:3f:bb:a8:a0:cd:c2:7a:5b:8b:c9:ed:9f:d0:1a:81:e7:4e: 38:2b:b6:19:c6:a5:41:54:be:e0:b1:c9:20:8c:4a:01:a0:97: 67:03:bf:e3 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjYwMTI2MTgxNTQ1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTA1Yi01MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1E21zD92Bcse5xCqX/Z5UspiKJj/Kbjl1a6YII4qLLzZsHr9zrwuNKY4PUW9 t2wWpFRZCwdyRdeGxs0t8hBuIotMV/t+qkj0FaEmOBTVBrUKkkWWLsB+cpJed5CQ cJZPMU4XrutIz0LmSgTi9JZORdnYAplrW4vGhM/mKh7IfLSNddGP3PRrdRY37yZd w/BmngZV9hp2VoLN7BRhhSbspouXywXCfk/fYFvOPMN7x7+vvLnKIjmhDAr8iAIC slw0A/50yAG2Gy0XFue65SdCsJ2+TIjLpSBafzWKuz5jLkXo3+RK7iWRocQ3i1EV NYhYvAttWorcwqV04urLeQbzRQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMrtjGCO Y0NvtUmGJx0Sjo86NECEMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM4QjcvNjY5QjQ1NTIxNzU5MTFFQThCNEE4MDRGQzRGOUFFMDIvRjY2RDNFNEMx NzU5MTFFQTlEOEVGNDRGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5IQMA0EAgACMAcDBQAkBvtAMA0GCSqGSIb3DQEBCwUAA4IBAQCt i1z98WbgJA6yLwZpAfyyuSr9bkdE0GLfqaMrxtHzVLuB98cTtzugILp1DJ5LQYJD YTHEmIvFNAudnKDC2szvZGBWfSRKJvs02bo52kLjEjT0gQHo4vl1emh4xibxIUnX dBm9ZMNR+tcPwWx1q0F/pD9OHKYxeGcRyV5K6Be0weBantLYd8UwRng3HpXWkD2L r8/hYXaPobZmHyV6zqmlEhXvPWnPUCucieqp1ET/b4wHUUCoHPVeKUjPjdraZdG0 f366wwmPJcanDHx7wErZhpfD5z2j38X8P7uooM3CeluLye2f0BqB5044K7YZxqVB VL7gsckgjEoBoJdnA7/j -----END CERTIFICATE-----Generated at Mon Mar 2 09:47:39 2026 by rpki-client