$ rpki-client -vvf rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa File: 698A914EAE2711F096416455C4F9AE02.roa (raw, json) Hash identifier: y+r9i7TzL2RD/9MvqzeTGW3javTKIi4osSyKTznpviY= Subject key identifier: 36:7A:FC:CA:21:B4:09:0B:3D:06:B6:1B:BF:6D:38:70:B7:1E:8A:B2 Certificate issuer: /CN=A9136359/serialNumber=792C4566B9B0258AB16553822F19DFFE84A2DCB8 Certificate serial: 46 Authority key identifier: 79:2C:45:66:B9:B0:25:8A:B1:65:53:82:2F:19:DF:FE:84:A2:DC:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:10:48 +0000 ROA not before: Tue 21 Oct 2025 02:41:15 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38911 IP address blocks: 203.100.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.crl rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136359, serialNumber=792C4566B9B0258AB16553822F19DFFE84A2DCB8 Validity Not Before: Oct 21 02:41:15 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d867-0ece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:92:b5:53:78:9f:e8:cf:93:0b:7d:1a:c0: 54:72:b1:94:04:0a:fa:2b:11:aa:c3:e8:bf:c6:a4: 79:5d:78:38:c4:a3:90:ff:01:a5:b7:51:a0:81:fe: 15:17:13:dd:9a:f9:90:eb:29:11:97:fb:7b:0d:91: 42:89:b8:9e:ca:37:08:fa:83:27:00:66:9b:2f:cc: 1f:5b:ed:12:bd:5a:29:10:9d:44:fd:30:86:b5:c4: 2b:23:02:a8:ab:ed:34:c1:46:2e:9c:8a:6a:e9:1a: 7e:4b:c6:93:02:53:59:37:2e:df:c0:87:cf:38:e1: 75:c2:9d:b3:0b:c2:81:91:33:ef:49:5a:1a:53:b8: ce:d6:84:47:29:7a:af:71:ea:da:78:d8:f7:61:dd: 65:c1:0f:98:32:cf:7e:c5:18:e7:41:bf:1d:e7:2d: 52:d3:62:a1:b9:e4:0d:31:08:eb:97:07:30:fd:02: 62:21:d7:de:cd:36:b6:9e:2d:87:45:8e:dc:dc:9d: 29:18:cb:08:06:13:1f:16:99:e0:c9:6f:1d:a6:87: a2:4b:06:8b:f7:e3:53:6f:c8:c3:b8:97:e1:30:5e: e6:46:fd:9b:00:ac:3f:35:68:e6:d8:6d:3d:9b:a1: 91:8d:d8:b5:dc:d7:38:47:1e:9a:b0:c5:fd:9e:63: 6e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7A:FC:CA:21:B4:09:0B:3D:06:B6:1B:BF:6D:38:70:B7:1E:8A:B2 X509v3 Authority Key Identifier: keyid:79:2C:45:66:B9:B0:25:8A:B1:65:53:82:2F:19:DF:FE:84:A2:DC:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.100.59.0/24 Signature Algorithm: sha256WithRSAEncryption 87:fd:f4:52:9f:ba:82:93:f1:82:fb:8c:a2:c1:95:e2:aa:d3: 6e:fa:b5:e4:fe:9b:78:05:b8:e5:70:f3:ad:7a:60:c3:6c:bc: 72:37:04:70:06:09:a8:c0:f8:8f:e2:a6:d7:1f:eb:57:d8:90: cc:55:7b:9b:3c:fa:96:6f:1b:c3:97:95:2a:7d:46:34:34:40: 19:b7:d1:e5:67:b6:aa:01:4a:db:0b:f6:e2:77:1e:1b:4f:27: 91:b5:97:37:a1:82:1c:d0:7d:2c:4f:cd:ef:27:6b:bc:ac:39: 99:41:38:f8:b5:ed:07:77:00:c9:f7:0b:ef:6a:fb:75:2b:01: 23:1e:ae:c1:fe:57:fc:d6:68:96:ad:4f:33:0a:83:c7:b2:13: 9d:72:10:e9:b0:83:21:7f:f6:7a:5d:4e:3c:c8:4e:57:11:8e: c4:fa:a6:7b:80:39:3d:0e:6c:9a:b5:78:bd:34:e9:ae:e5:57: c2:a8:57:0a:96:08:fe:ec:bd:40:2b:20:16:a2:27:95:ea:35: f0:ea:b2:e4:9f:1c:09:88:40:f6:19:a3:76:ea:ee:ff:00:ff: 8a:3c:aa:42:30:28:ec:af:19:38:5b:fc:e9:7c:35:9f:57:74: 25:b2:51:c2:43:6e:45:5b:69:db:f3:e8:9d:e4:fa:c5:4a:25: fc:7b:df:3e -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjM1OTExMC8GA1UEBRMoNzkyQzQ1NjZCOUIwMjU4QUIxNjU1MzgyMkYxOURGRkU4 NEEyRENCODAeFw0yNTEwMjEwMjQxMTVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODY3LTBlY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuUJK1U3if6M+TC30awFRysZQECvorEarD6L/GpHldeDjEo5D/AaW3UaCB/hUX E92a+ZDrKRGX+3sNkUKJuJ7KNwj6gycAZpsvzB9b7RK9WikQnUT9MIa1xCsjAqir 7TTBRi6cimrpGn5LxpMCU1k3Lt/Ah8844XXCnbMLwoGRM+9JWhpTuM7WhEcpeq9x 6tp42Pdh3WXBD5gyz37FGOdBvx3nLVLTYqG55A0xCOuXBzD9AmIh197NNraeLYdF jtzcnSkYywgGEx8WmeDJbx2mh6JLBov341NvyMO4l+EwXuZG/ZsArD81aObYbT2b oZGN2LXc1zhHHpqwxf2eY273AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUNnr8yiG0 CQs9BrYbv204cLceirIwHwYDVR0jBBgwFoAUeSxFZrmwJYqxZVOCLxnf/oSi3Lgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzU5LzY2NjBEODhBQUUy NjExRjBCQ0ZGODA1M0M0RjlBRTAyL2VTeEZacm13SllxeFpWT0NMeG5mX29TaTNM Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZVN4RlpybXdKWXF4WlZPQ0x4bmZfb1NpM0xnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjM1OS82NjYwRDg4QUFFMjYxMUYwQkNGRjgwNTNDNEY5QUUwMi82OThBOTE0RUFF MjcxMUYwOTY0MTY0NTVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLZDswDQYJKoZIhvcNAQELBQADggEBAIf99FKfuoKT8YL7jKLBleKq 0276teT+m3gFuOVw8616YMNsvHI3BHAGCajA+I/iptcf61fYkMxVe5s8+pZvG8OX lSp9RjQ0QBm30eVntqoBStsL9uJ3HhtPJ5G1lzehghzQfSxPze8na7ysOZlBOPi1 7Qd3AMn3C+9q+3UrASMersH+V/zWaJatTzMKg8eyE51yEOmwgyF/9npdTjzITlcR jsT6pnuAOT0ObJq1eL006a7lV8KoVwqWCP7svUArIBaiJ5XqNfDqsuSfHAmIQPYZ o3bq7v8A/4o8qkIwKOyvGThb/Ol8NZ9XdCWyUcJDbkVbadvz6J3k+sVKJfx73z4= -----END CERTIFICATE-----Generated at Mon Mar 2 15:11:32 2026 by rpki-client