$ rpki-client -vvf rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa File: F68B5808EF2C11F0B7002CAB4A6F56BC.roa (raw, json) Hash identifier: 9g1ZbeMySJhE9m9XTGlKhZJNGyJiT8VgunAMr+GCW50= Subject key identifier: 34:8C:97:C8:D8:43:85:B0:35:82:A9:3B:3B:E9:0A:67:E1:42:27:35 Certificate issuer: /CN=A911D3F3/serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Certificate serial: 06B9 Authority key identifier: 31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa Signing time: Sun 01 Mar 2026 18:40:59 +0000 ROA not before: Sun 11 Jan 2026 20:59:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9667 IP address blocks: 103.20.208.0/24 maxlen: 24 103.20.209.0/24 maxlen: 24 103.20.210.0/24 maxlen: 24 103.20.211.0/24 maxlen: 24 180.94.112.0/21 maxlen: 24 202.58.32.0/19 maxlen: 24 203.209.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D3F3, serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Validity Not Before: Jan 11 20:59:22 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4883a-7b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:4a:43:66:3f:f6:a3:50:85:84:69:e8:6b: 98:5f:12:f6:f2:d7:a6:74:ab:38:9a:32:51:14:8f: ff:46:c7:07:a5:87:6a:78:1e:da:d8:91:be:5d:46: e1:a3:24:e1:45:a9:3e:4e:b9:2a:4d:3d:a6:77:42: 9d:2f:db:3c:2a:ff:bd:53:b9:f4:2a:f7:e8:03:93: c8:3d:00:27:7d:2c:eb:01:b7:5b:5d:3e:e9:12:05: 4a:42:5e:02:36:85:a5:6a:68:53:ca:f3:d1:7f:90: 5f:4c:9b:cd:5b:3b:f3:94:64:10:c8:af:15:c2:e3: ce:b7:25:c4:56:e6:26:33:b1:a7:79:05:12:ef:02: e5:d8:e8:aa:31:a5:dd:47:56:af:a0:a4:d1:fb:94: 5c:8a:de:83:ad:54:aa:a9:2a:4c:37:9b:1f:94:35: 4c:1a:34:da:84:11:9d:e0:2b:4f:87:c8:67:68:db: cb:a8:c5:18:9d:ea:00:fe:7b:d4:8c:0a:92:60:e3: 4c:0d:ae:19:16:42:62:59:cc:ea:64:1a:58:6e:2f: f1:a3:32:37:20:d5:2a:67:d1:63:cd:fb:01:0b:f0: a0:75:4b:58:16:d2:96:0a:49:bf:fb:64:6b:2e:f2: aa:e2:f8:cf:05:4d:19:db:09:3c:2b:5f:42:f0:86: ec:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8C:97:C8:D8:43:85:B0:35:82:A9:3B:3B:E9:0A:67:E1:42:27:35 X509v3 Authority Key Identifier: keyid:31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/F68B5808EF2C11F0B7002CAB4A6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.20.208.0/22 180.94.112.0/21 202.58.32.0/19 203.209.221.0/24 Signature Algorithm: sha256WithRSAEncryption 53:a3:b5:e9:d6:09:09:59:8d:8c:86:fa:14:6d:ff:53:b9:76: 95:af:70:f9:b1:2e:9e:42:6a:d4:f8:24:a3:af:e9:7e:60:1b: e5:0b:20:5c:db:32:11:aa:8a:44:cd:64:69:08:bc:1b:0a:57: 23:f7:cd:e4:63:28:65:18:ff:3b:5f:ae:14:f2:a0:0a:f4:09: 6c:80:ba:8f:8e:bc:0b:df:2d:25:bf:0c:d7:f3:a5:01:ea:2b: 8d:0a:16:b2:13:32:4a:3b:4c:18:21:84:d8:29:2b:8a:75:06: 6b:f8:e8:32:4a:19:ab:a5:82:2e:4b:72:c6:93:29:0e:96:87: 86:11:7b:f8:f2:60:c0:14:28:f1:b1:34:f4:2a:af:26:78:fe: b9:e5:14:4c:4e:4f:a0:c2:e1:19:73:e2:6a:4d:a6:c1:b2:10: e7:2b:40:7f:d5:76:81:46:25:36:15:3f:e0:ab:f6:d5:70:ac: c9:d9:46:a4:7f:75:8e:75:5c:21:1b:d8:0f:62:2b:d2:a6:08: e3:52:2a:1a:a2:de:64:a1:7f:bd:8a:8b:4c:82:96:90:32:e0: 17:64:d1:d2:d2:4c:2e:09:e1:45:31:18:56:4e:c7:1b:c0:7c: c3:70:43:a5:22:d6:d0:cf:b4:da:54:7c:20:3b:e1:5a:c8:3b: cb:97:6b:4a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzRjMxMTAvBgNVBAUTKDMxN0MzMDdGRkM2RUNCNkNGNjU2RjI2QjgyODJGRkI5 RTYyRjkzNjUwHhcNMjYwMTExMjA1OTIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODgzYS03YjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYpKQ2Y/9qNQhYRp6GuYXxL28temdKs4mjJRFI//RscHpYdqeB7a2JG+XUbh oyThRak+TrkqTT2md0KdL9s8Kv+9U7n0KvfoA5PIPQAnfSzrAbdbXT7pEgVKQl4C NoWlamhTyvPRf5BfTJvNWzvzlGQQyK8VwuPOtyXEVuYmM7GneQUS7wLl2OiqMaXd R1avoKTR+5Rcit6DrVSqqSpMN5sflDVMGjTahBGd4CtPh8hnaNvLqMUYneoA/nvU jAqSYONMDa4ZFkJiWczqZBpYbi/xozI3INUqZ9FjzfsBC/CgdUtYFtKWCkm/+2Rr LvKq4vjPBU0Z2wk8K19C8IbsKwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFDSMl8jY Q4WwNYKpOzvpCmfhQic1MB8GA1UdIwQYMBaAFDF8MH/8bsts9lbya4KC/7nmL5Nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDNGMy9CMjU0NDgxQUNB MzQxMUVCOEM5MEQ5NDFDNEY5QUUwMi9NWHd3Zl94dXkyejJWdkpyZ29MX3VlWXZr MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Yd3dmX3h1eTJ6MlZ2SnJnb0xfdWVZdmsyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQzRjMvQjI1NDQ4MUFDQTM0MTFFQjhDOTBEOTQxQzRGOUFFMDIvRjY4QjU4MDhF RjJDMTFGMEI3MDAyQ0FCNEE2RjU2QkMucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCZxTQAwQDtF5wAwQFyjogAwQAy9HdMA0GCSqGSIb3DQEBCwUAA4IB AQBTo7Xp1gkJWY2MhvoUbf9TuXaVr3D5sS6eQmrU+CSjr+l+YBvlCyBc2zIRqopE zWRpCLwbClcj983kYyhlGP87X64U8qAK9AlsgLqPjrwL3y0lvwzX86UB6iuNChay EzJKO0wYIYTYKSuKdQZr+OgyShmrpYIuS3LGkykOloeGEXv48mDAFCjxsTT0Kq8m eP655RRMTk+gwuEZc+JqTabBshDnK0B/1XaBRiU2FT/gq/bVcKzJ2Uakf3WOdVwh G9gPYivSpgjjUioaot5koX+9iotMgpaQMuAXZNHS0kwuCeFFMRhWTscbwHzDcEOl ItbQz7TaVHwgO+FayDvLl2tK -----END CERTIFICATE-----Generated at Mon Mar 2 11:27:51 2026 by rpki-client