$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa File: 688DF576450C11F0A7A54A80C4F9AE02.roa (raw, json) Hash identifier: yG5g5l4ahe8+QX5msDDHM+u5qeGduBK/xW+5zLNGkzs= Subject key identifier: 8D:24:6B:B3:6F:C4:0E:B8:0A:19:F8:FB:4B:3A:22:BD:49:06:04:B5 Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 01D6 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:22:30 +0000 ROA not before: Mon 09 Jun 2025 08:33:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 401701 IP address blocks: 103.149.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Jun 9 08:33:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a43d95-0c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ca:40:b9:95:1d:89:7e:27:ba:cb:2c:0b:7c: 95:c4:e2:11:b0:d5:0e:61:f8:01:ca:99:25:bb:b1: 15:85:2d:13:1c:02:57:2d:f4:48:89:dc:06:24:18: 5e:7f:ca:6b:7d:6d:00:25:aa:ee:19:29:aa:31:b1: 16:23:ff:96:9b:6d:af:89:23:7a:6b:44:13:2b:c4: 5c:05:90:69:02:28:b8:55:8d:fa:e9:18:10:67:f9: 94:28:d3:0d:0b:16:0a:97:05:76:80:b6:57:5e:3c: 8e:03:3d:e1:36:f9:2e:94:b0:db:48:9a:88:51:d3: 2e:ca:ef:5f:45:10:99:a1:68:d4:e7:57:7f:3e:19: 54:67:94:fd:34:89:c4:1a:eb:a4:94:75:6c:79:91: 7a:04:0d:fa:bd:fa:3a:ca:c2:87:89:7f:ac:01:ac: 22:d8:a5:80:c4:07:81:20:96:04:6c:02:eb:e4:f6: 82:4a:68:3b:94:a4:df:60:b8:ec:0a:44:59:8c:bb: d1:04:9d:cb:f3:c6:16:ba:0b:5d:47:42:af:d3:2f: 92:90:81:e6:0f:f6:c7:42:b5:6e:2b:fb:c3:0e:9e: 73:15:8b:1c:27:26:11:96:3a:c8:50:76:a4:91:2a: 08:a8:68:3a:86:36:6e:25:3d:21:5c:46:b6:91:73: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:24:6B:B3:6F:C4:0E:B8:0A:19:F8:FB:4B:3A:22:BD:49:06:04:B5 X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/688DF576450C11F0A7A54A80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.200.0/23 Signature Algorithm: sha256WithRSAEncryption 65:39:cb:dd:21:21:e5:47:af:86:ec:83:f0:e1:b8:bd:4c:c8: 13:4a:6f:09:b6:45:88:6b:e2:8e:a5:89:c1:28:c6:61:d5:db: 2c:e0:1d:7e:ca:bd:f0:bb:33:52:2a:8e:5e:d6:4c:dc:fd:62: 2f:f6:fd:c3:0a:36:38:e7:ad:0e:c8:f6:58:57:0c:f5:b2:0a: ed:db:71:da:08:25:fe:18:73:8a:8f:86:94:fb:30:49:3d:ed: ce:cd:8f:8a:68:bd:e0:1c:58:2c:7d:85:72:0b:7b:8c:3a:4a: 48:b8:34:c8:a2:86:80:eb:a0:85:b8:14:8d:e9:f3:f8:b4:78: f6:f2:8b:cd:37:1f:20:d9:8e:72:41:1c:38:66:f1:86:65:ac: ce:ad:9e:2c:e5:60:e5:96:9c:d5:ee:82:1e:19:c2:71:6d:1f: 71:a6:df:cb:76:27:a5:d8:31:f0:40:17:a3:cf:6a:c5:06:df: c9:a2:aa:e4:e8:0a:73:e5:78:d3:5c:02:b9:6a:29:9b:57:64: bd:a7:3d:58:26:ba:89:9e:9b:da:ca:66:8e:85:2a:64:2e:f9: 00:98:52:65:42:70:50:33:cc:40:af:d6:99:70:b0:d9:7e:11: ef:71:cb:1a:36:74:51:ff:47:9f:d9:2f:ff:a6:2b:ff:e6:2b: 2e:b5:c3:3f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUwNjA5MDgzMzI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2Q5NS0wYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcpAuZUdiX4nusssC3yVxOIRsNUOYfgBypklu7EVhS0THAJXLfRIidwGJBhe f8prfW0AJaruGSmqMbEWI/+Wm22viSN6a0QTK8RcBZBpAii4VY366RgQZ/mUKNMN CxYKlwV2gLZXXjyOAz3hNvkulLDbSJqIUdMuyu9fRRCZoWjU51d/PhlUZ5T9NInE GuuklHVseZF6BA36vfo6ysKHiX+sAawi2KWAxAeBIJYEbALr5PaCSmg7lKTfYLjs CkRZjLvRBJ3L88YWugtdR0Kv0y+SkIHmD/bHQrVuK/vDDp5zFYscJyYRljrIUHak kSoIqGg6hjZuJT0hXEa2kXNXgwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI0ka7Nv xA64Chn4+0s6Ir1JBgS1MB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZDN0MvMkI1Q0FBRTg2OUU1MTFFRUJCNjY4MjQ2QzRGOUFFMDIvNjg4REY1NzY0 NTBDMTFGMEE3QTU0QTgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5XIMA0GCSqGSIb3DQEBCwUAA4IBAQBlOcvdISHlR6+G7IPw4bi9 TMgTSm8JtkWIa+KOpYnBKMZh1dss4B1+yr3wuzNSKo5e1kzc/WIv9v3DCjY4560O yPZYVwz1sgrt23HaCCX+GHOKj4aU+zBJPe3OzY+KaL3gHFgsfYVyC3uMOkpIuDTI ooaA66CFuBSN6fP4tHj28ovNNx8g2Y5yQRw4ZvGGZazOrZ4s5WDllpzV7oIeGcJx bR9xpt/Ldiel2DHwQBejz2rFBt/Joqrk6Apz5XjTXAK5aimbV2S9pz1YJrqJnpva ymaOhSpkLvkAmFJlQnBQM8xAr9aZcLDZfhHvccsaNnRR/0ef2S//piv/5isutcM/ -----END CERTIFICATE-----Generated at Mon Mar 2 05:58:14 2026 by rpki-client