$ rpki-client -vvf rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa File: CCB2690EED0B11F0949792B43C6F56BC.roa (raw, json) Hash identifier: ZB/ULJRoBGb/gcATfxowXu3Mcvz58isc65+AiNaWIZA= Subject key identifier: 8D:71:14:91:1F:4C:77:A5:A6:C5:F9:00:E4:29:55:E7:ED:40:52:59 Certificate issuer: /CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Certificate serial: 08E5 Authority key identifier: 65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa Signing time: Thu 04 Jun 2026 20:27:11 +0000 ROA not before: Thu 04 Jun 2026 20:27:11 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 137386 IP address blocks: 103.218.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2277 (0x8e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157A68, serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Validity Not Before: Jun 4 20:27:11 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a21df9f-63b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a8:5c:e1:33:92:df:b0:20:56:62:d2:d3:97: 7a:52:ad:f3:c8:9e:51:f5:41:86:42:99:3f:8b:a5: 47:ae:93:ed:4a:aa:1f:b0:40:50:01:48:5c:00:7f: bf:0b:e3:53:4e:0c:91:9e:e7:0b:84:fa:39:85:7d: ce:94:7d:07:cb:e5:86:5b:02:87:5f:be:a1:43:21: 18:68:59:8d:5d:71:12:97:11:4a:c0:f9:f6:0a:c1: e6:3d:72:de:67:3c:68:55:65:c6:b9:cd:c2:f6:81: 41:a9:9d:e9:22:dc:35:94:e1:5e:7d:5f:e6:5c:82: 3b:de:aa:f9:ae:5f:00:3d:8e:ec:db:ec:32:52:bc: d6:f5:94:25:05:29:6f:eb:6a:52:c3:d2:38:0e:7d: 41:bc:fc:3d:7a:89:ba:41:9c:cc:13:c0:3a:cf:25: ba:3e:44:30:53:ad:8e:e0:6a:cf:ae:aa:57:0a:ff: e7:c2:fb:05:21:74:a6:78:5b:a3:26:13:eb:cb:79: 04:30:2f:ea:60:ef:1a:28:50:0d:f3:57:e3:b9:b9: 00:40:35:01:b9:17:50:c1:7e:c4:b5:74:45:cb:c6: 62:87:3a:7f:c8:8d:6e:c8:42:bd:55:16:6e:64:08: 02:65:d2:37:2a:1c:0c:ed:62:b8:57:95:82:69:48: 3c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:71:14:91:1F:4C:77:A5:A6:C5:F9:00:E4:29:55:E7:ED:40:52:59 X509v3 Authority Key Identifier: keyid:65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.218.4.0/24 Signature Algorithm: sha256WithRSAEncryption 92:8e:10:7c:d8:52:f6:4d:b0:49:a9:38:85:d3:df:a5:18:d2: 9e:04:44:26:c5:9e:86:9d:a4:db:87:e3:c6:98:14:c5:46:2d: 1f:ea:23:54:cb:6b:5b:82:06:75:9d:b4:1a:21:25:23:e5:04: 47:ec:1e:54:3c:ee:d8:97:d5:87:83:ae:be:05:14:8a:95:7e: 38:e5:5e:03:e0:d0:9c:fb:72:96:d3:26:93:7b:73:9f:67:9f: 55:7c:e7:2e:16:9c:ed:ef:c0:e3:7b:7d:d0:49:ab:1c:ca:02: e6:f0:8c:1b:91:73:04:e6:0a:b3:73:3d:b5:01:ee:dc:db:c3: 45:52:5e:b7:f3:14:0e:cd:10:00:cc:e6:db:b9:1f:5e:53:73: bf:96:10:ac:2e:1d:55:42:a9:9a:0f:c7:f9:60:16:ba:bc:6a: 66:40:a8:bd:a2:32:4f:bc:7b:69:58:98:96:63:f5:4e:f4:1b: b0:d5:78:d7:52:75:81:17:57:1b:84:aa:78:90:0c:5e:0c:9c: e7:d9:06:57:fa:9d:98:5d:c9:7f:cb:75:59:23:3f:f5:b5:37: df:fc:46:5c:ae:15:22:70:30:fb:52:56:ab:b1:1a:7a:2d:57: 34:44:3e:07:14:c6:9e:a0:5e:25:f1:04:e9:79:ae:0e:9c:30: 61:d1:2d:c0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBNjgxMTAvBgNVBAUTKDY1QjdBRDk2NzVCMzgwOUVDRTA0QUYzMDFDMkVCNzAz N0ZGMDJCQkIwHhcNMjYwNjA0MjAyNzExWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZGY5Zi02M2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqhc4TOS37AgVmLS05d6Uq3zyJ5R9UGGQpk/i6VHrpPtSqofsEBQAUhcAH+/ C+NTTgyRnucLhPo5hX3OlH0Hy+WGWwKHX76hQyEYaFmNXXESlxFKwPn2CsHmPXLe ZzxoVWXGuc3C9oFBqZ3pItw1lOFefV/mXII73qr5rl8APY7s2+wyUrzW9ZQlBSlv 62pSw9I4Dn1BvPw9eom6QZzME8A6zyW6PkQwU62O4GrPrqpXCv/nwvsFIXSmeFuj JhPry3kEMC/qYO8aKFAN81fjubkAQDUBuRdQwX7EtXRFy8Zihzp/yI1uyEK9VRZu ZAgCZdI3KhwM7WK4V5WCaUg8jQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI1xFJEf THelpsX5AOQpVeftQFJZMB8GA1UdIwQYMBaAFGW3rZZ1s4CezgSvMBwutwN/8Cu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0E2OC80QjM2QjlCOERC REExMUVBOUE4RDI4NDBDNEY5QUUwMi9aYmV0bG5XemdKN09CSzh3SEM2M0EzX3dL N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1piZXRsbld6Z0o3T0JLOHdIQzYzQTNfd0s3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdBNjgvNEIzNkI5QjhEQkRBMTFFQTlBOEQyODQwQzRGOUFFMDIvQ0NCMjY5MEVF RDBCMTFGMDk0OTc5MkI0M0M2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ9oEMA0GCSqGSIb3DQEBCwUAA4IBAQCSjhB82FL2TbBJqTiF09+l GNKeBEQmxZ6GnaTbh+PGmBTFRi0f6iNUy2tbggZ1nbQaISUj5QRH7B5UPO7Yl9WH g66+BRSKlX445V4D4NCc+3KW0yaTe3OfZ59VfOcuFpzt78Dje33QSascygLm8Iwb kXME5gqzcz21Ae7c28NFUl638xQOzRAAzObbuR9eU3O/lhCsLh1VQqmaD8f5YBa6 vGpmQKi9ojJPvHtpWJiWY/VO9Buw1XjXUnWBF1cbhKp4kAxeDJzn2QZX+p2YXcl/ y3VZIz/1tTff/EZcrhUicDD7UlarsRp6LVc0RD4HFMaeoF4l8QTpea4OnDBh0S3A -----END CERTIFICATE-----Generated at Sat Jun 13 13:30:11 2026 by rpki-client