$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa File: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (raw, json) Hash identifier: CJxCZ91gQ/TkNwvCeFeEgqG0eXQ29QCZ4qulq2Vzv/Q= Subject key identifier: 63:C9:74:2F:6A:93:72:75:5A:2E:79:4F:1C:5F:02:ED:DE:51:BD:70 Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 06A0 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:47:17 +0000 ROA not before: Fri 18 Apr 2025 23:23:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142060 IP address blocks: 103.166.74.0/23 maxlen: 23 103.166.74.0/24 maxlen: 24 103.166.75.0/24 maxlen: 24 2001:df6:8280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Apr 18 23:23:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fd15-60cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:a2:c3:f4:54:73:a3:d6:41:49:ea:d3:e9: 8e:f6:13:71:7e:99:d2:57:c5:dc:97:ce:7d:2a:71: 8b:08:c9:12:ef:b0:58:70:83:5b:52:23:54:bc:1c: e3:0a:c6:de:5c:96:ce:93:b9:43:57:0c:11:12:46: a1:84:15:7a:2f:a8:76:bd:a7:b7:f3:9d:bf:3d:ee: 49:e3:f6:fe:f6:58:73:87:c9:fa:f6:43:9e:51:8d: 9e:f7:d0:2c:76:ad:99:a4:d9:af:c7:19:d7:ee:4e: f7:12:f3:cd:1c:53:8f:80:63:58:34:ad:91:fc:dc: 8a:36:6e:dc:fc:fa:3b:07:9b:3a:bf:ee:5f:fa:bd: d5:96:5f:29:db:40:d9:ea:ca:ef:8e:ec:37:00:fc: 33:31:75:b8:f7:07:57:0d:58:0e:40:67:e4:d8:c0: 9a:63:7d:4a:45:35:b9:06:e3:e5:ec:80:18:b0:a1: 58:1a:ef:75:73:dd:51:86:36:9e:71:08:0f:7c:ea: 53:c0:ed:52:a9:67:48:79:14:05:b4:c0:e7:da:42: 3f:80:a5:5c:74:3b:b4:34:12:3f:b8:cd:8d:78:b2: 35:2b:1d:6c:37:46:f7:56:98:ef:df:a2:ee:60:53: 00:57:62:9e:f7:26:d2:f9:f6:86:80:c6:fc:9c:a1: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C9:74:2F:6A:93:72:75:5A:2E:79:4F:1C:5F:02:ED:DE:51:BD:70 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.74.0/23 IPv6: 2001:df6:8280::/48 Signature Algorithm: sha256WithRSAEncryption 65:50:21:75:79:25:ce:42:92:40:ad:1e:f4:0b:ae:cd:69:c6: 92:d5:6b:c7:ef:5d:f6:df:ef:1a:f1:47:f0:12:7c:dc:6a:5c: af:9c:bc:49:23:7e:9d:c2:5b:e2:72:9c:dd:57:05:17:d7:7f: c4:be:4f:54:0b:4f:7a:f8:a6:43:53:45:44:e4:40:cd:69:c6: a0:87:ce:6b:d2:20:6d:c1:55:c7:29:33:e7:e2:64:76:66:26: 3f:1f:64:f4:22:b5:14:47:f9:46:9c:de:aa:8d:41:86:94:8d: 29:76:c7:4e:40:8d:07:d6:a5:7a:ec:c6:4f:e0:60:93:fc:0a: 56:35:1f:a8:d2:02:b0:3f:6f:de:31:2f:23:5a:b9:71:f7:78: f1:46:9d:16:8e:af:c9:ab:32:f6:ef:7d:e7:c3:a1:d8:3f:93: 2f:04:27:35:20:54:54:47:23:ae:a4:1b:54:44:cb:2b:5b:2e: 61:5c:32:65:83:d2:7e:7c:cb:a5:d5:d5:f5:94:ae:17:97:63: 99:77:fc:80:f1:8b:56:c9:ec:a2:9e:f2:d2:a0:ea:60:9c:3a: 02:27:7a:19:0b:ff:da:9d:58:fb:68:c8:43:2b:4f:35:d9:e5: 40:c4:22:c8:f4:10:71:5b:9b:d3:b9:99:b9:7a:05:41:8b:f1: 02:89:f3:3a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUwNDE4MjMyMzI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmQxNS02MGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuqiw/RUc6PWQUnq0+mO9hNxfpnSV8Xcl859KnGLCMkS77BYcINbUiNUvBzj CsbeXJbOk7lDVwwREkahhBV6L6h2vae3852/Pe5J4/b+9lhzh8n69kOeUY2e99As dq2ZpNmvxxnX7k73EvPNHFOPgGNYNK2R/NyKNm7c/Po7B5s6v+5f+r3Vll8p20DZ 6srvjuw3APwzMXW49wdXDVgOQGfk2MCaY31KRTW5BuPl7IAYsKFYGu91c91Rhjae cQgPfOpTwO1SqWdIeRQFtMDn2kI/gKVcdDu0NBI/uM2NeLI1Kx1sN0b3Vpjv36Lu YFMAV2Ke9ybS+faGgMb8nKEVKwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGPJdC9q k3J1Wi55TxxfAu3eUb1wMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU3M0UvNjc2ODk3OEVBNUE0MTFFQjk4QzMyOTBGQzRGOUFFMDIvQjY3RTBCQjRB NUE1MTFFQjk0QzBERTBGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6ZKMA8EAgACMAkDBwAgAQ32goAwDQYJKoZIhvcNAQELBQADggEB AGVQIXV5Jc5CkkCtHvQLrs1pxpLVa8fvXfbf7xrxR/ASfNxqXK+cvEkjfp3CW+Jy nN1XBRfXf8S+T1QLT3r4pkNTRUTkQM1pxqCHzmvSIG3BVccpM+fiZHZmJj8fZPQi tRRH+Uac3qqNQYaUjSl2x05AjQfWpXrsxk/gYJP8ClY1H6jSArA/b94xLyNauXH3 ePFGnRaOr8mrMvbvfefDodg/ky8EJzUgVFRHI66kG1REyytbLmFcMmWD0n58y6XV 1fWUrheXY5l3/IDxi1bJ7KKe8tKg6mCcOgInehkL/9qdWPtoyEMrTzXZ5UDEIsj0 EHFbm9O5mbl6BUGL8QKJ8zo= -----END CERTIFICATE-----Generated at Mon Mar 2 16:28:23 2026 by rpki-client