$ rpki-client -vvf rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa File: BF195C829CD211EBA0E3CB58C4F9AE02.roa (raw, json) Hash identifier: pNUOiOJjn9KqMvjMWHaV4thj8q+M2YmvS3bbZCHTfyI= Subject key identifier: 85:B0:8E:DE:3F:D7:FB:AF:39:22:49:84:51:6D:49:48:51:EF:E8:44 Certificate issuer: /CN=A913C437/serialNumber=79DF10253535F0D67FA11DB68A4C7634AA6A447C Certificate serial: 06E2 Authority key identifier: 79:DF:10:25:35:35:F0:D6:7F:A1:1D:B6:8A:4C:76:34:AA:6A:44:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa Signing time: Sun 10 May 2026 22:27:38 +0000 ROA not before: Sun 10 May 2026 22:27:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142054 IP address blocks: 103.166.24.0/23 maxlen: 24 2001:df6:7a80::/48 maxlen: 48 2001:df6:7a80::/50 maxlen: 50 2001:df6:7a80:4000::/50 maxlen: 50 2001:df6:7a80:8000::/50 maxlen: 50 2001:df6:7a80:c000::/50 maxlen: 50 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.crl rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1762 (0x6e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C437, serialNumber=79DF10253535F0D67FA11DB68A4C7634AA6A447C Validity Not Before: May 10 22:27:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a01065a-a8da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fd:31:2d:78:e4:46:c4:96:a3:23:32:df:6f: 99:74:2b:be:b1:97:ca:b5:df:cf:98:f0:32:11:51: ac:eb:fe:5d:6a:1d:2f:a1:73:b2:03:75:20:e8:f5: a3:d7:cd:f0:fb:0b:6f:40:b0:8a:ba:04:0f:c3:de: b2:b4:18:f1:ba:ac:29:a0:6a:21:3e:73:14:68:90: b0:63:32:6c:e3:01:38:80:fa:da:c0:a4:ce:62:08: a7:8a:dd:92:2a:68:51:df:20:c9:ad:d2:b3:87:10: 07:f8:24:54:a4:fd:3f:48:51:ac:fa:02:58:13:13: 73:02:fa:38:7c:cb:0f:ef:09:b8:31:dc:ca:1d:32: 8d:5c:3a:f4:50:0e:50:41:e0:f1:2b:ee:4c:b9:9a: c1:53:81:41:bb:e6:47:50:22:48:37:9e:00:31:3d: cd:43:15:f4:4a:51:49:66:c2:2b:fd:fc:32:34:0c: a4:fc:52:75:a3:1f:cd:ea:14:95:1f:0b:65:6e:45: c9:14:60:75:d0:4f:b8:37:cd:2d:85:0d:a7:30:2a: 19:bb:17:b8:8c:3a:5c:76:e0:68:0d:0e:d4:bd:5e: 11:74:00:92:f8:95:a3:17:e2:08:79:a0:68:56:f3: 9a:6c:ba:74:82:c7:ad:41:43:54:b9:25:cd:0d:2e: 3b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B0:8E:DE:3F:D7:FB:AF:39:22:49:84:51:6D:49:48:51:EF:E8:44 X509v3 Authority Key Identifier: keyid:79:DF:10:25:35:35:F0:D6:7F:A1:1D:B6:8A:4C:76:34:AA:6A:44:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/ed8QJTU18NZ_oR22ikx2NKpqRHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ed8QJTU18NZ_oR22ikx2NKpqRHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C437/663D183E9CD111EBA8D0BB57C4F9AE02/BF195C829CD211EBA0E3CB58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.24.0/23 IPv6: 2001:df6:7a80::/48 Signature Algorithm: sha256WithRSAEncryption a5:dc:c6:4f:8c:39:f8:60:f3:92:3d:3b:19:64:a6:95:2e:8b: e3:ae:3d:84:42:2d:09:d7:5f:34:62:1e:b0:b1:99:87:41:4a: 83:3c:58:e6:83:f6:6e:96:fd:71:15:26:41:6d:07:3a:0c:0e: 21:11:6a:49:a9:7e:1c:87:50:c2:5d:da:4c:7e:da:b6:7e:57: 7e:91:ed:be:47:e1:ac:8b:9a:96:51:18:d3:52:3c:a6:f4:0a: c5:4e:d6:df:f7:1f:41:46:17:4c:d3:b9:f8:49:5d:4f:18:05: 5d:2f:6a:0e:e6:7d:2a:f3:fa:45:d4:1a:e8:4e:4a:f4:e2:da: a7:c7:17:0d:6c:3e:e7:a8:35:ff:36:fd:2d:0d:f1:9f:fd:20: 3d:74:e6:9f:d7:35:43:d5:a9:39:a6:84:29:c7:8a:4f:01:0c: 02:d6:d8:5c:23:0f:f3:0c:cb:5c:7f:69:2a:6d:97:7e:80:22: 9f:c3:ee:5c:5e:43:94:46:46:8a:72:93:3a:ff:92:aa:03:69: 68:73:65:bd:64:01:53:37:aa:ec:c3:5b:ee:e2:14:8f:b8:ad: 74:27:e5:a4:bb:f5:6b:82:b4:60:29:78:6c:9c:b4:ad:2a:a2: c3:30:d8:88:c4:16:bd:3e:3d:ad:83:c5:70:9a:7f:41:83:8f: 5f:bd:87:45 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzcxMTAvBgNVBAUTKDc5REYxMDI1MzUzNUYwRDY3RkExMURCNjhBNEM3NjM0 QUE2QTQ0N0MwHhcNMjYwNTEwMjIyNzM4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAxMDY1YS1hOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/0xLXjkRsSWoyMy32+ZdCu+sZfKtd/PmPAyEVGs6/5dah0voXOyA3Ug6PWj 183w+wtvQLCKugQPw96ytBjxuqwpoGohPnMUaJCwYzJs4wE4gPrawKTOYginit2S KmhR3yDJrdKzhxAH+CRUpP0/SFGs+gJYExNzAvo4fMsP7wm4MdzKHTKNXDr0UA5Q QeDxK+5MuZrBU4FBu+ZHUCJIN54AMT3NQxX0SlFJZsIr/fwyNAyk/FJ1ox/N6hSV HwtlbkXJFGB10E+4N80thQ2nMCoZuxe4jDpcduBoDQ7UvV4RdACS+JWjF+IIeaBo VvOabLp0gsetQUNUuSXNDS47kQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIWwjt4/ 1/uvOSJJhFFtSUhR7+hEMB8GA1UdIwQYMBaAFHnfECU1NfDWf6EdtopMdjSqakR8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzNy82NjNEMTgzRTlD RDExMUVCQThEMEJCNTdDNEY5QUUwMi9lZDhRSlRVMThOWl9vUjIyaWt4Mk5LcHFS SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkOFFKVFUxOE5aX29SMjJpa3gyTktwcVJIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzcvNjYzRDE4M0U5Q0QxMTFFQkE4RDBCQjU3QzRGOUFFMDIvQkYxOTVDODI5 Q0QyMTFFQkEwRTNDQjU4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6YYMA8EAgACMAkDBwAgAQ32eoAwDQYJKoZIhvcNAQELBQADggEB AKXcxk+MOfhg85I9OxlkppUui+OuPYRCLQnXXzRiHrCxmYdBSoM8WOaD9m6W/XEV JkFtBzoMDiERakmpfhyHUMJd2kx+2rZ+V36R7b5H4ayLmpZRGNNSPKb0CsVO1t/3 H0FGF0zTufhJXU8YBV0vag7mfSrz+kXUGuhOSvTi2qfHFw1sPueoNf82/S0N8Z/9 ID105p/XNUPVqTmmhCnHik8BDALW2FwjD/MMy1x/aSptl36AIp/D7lxeQ5RGRopy kzr/kqoDaWhzZb1kAVM3quzDW+7iFI+4rXQn5aS79WuCtGApeGyctK0qosMw2IjE Fr0+Pa2DxXCaf0GDj1+9h0U= -----END CERTIFICATE-----Generated at Sat Jun 13 23:16:41 2026 by rpki-client