$ rpki-client -vvf rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa File: CCB2690EED0B11F0949792B43C6F56BC.roa (raw, json) Hash identifier: CZgH9sRalQIh6CRftMF2d66cWrAC6h6CJtvjvDnCQhA= Subject key identifier: C7:41:06:7E:2B:CA:CD:A9:AE:45:89:E8:C8:92:6B:01:7A:B3:E0:8B Certificate issuer: /CN=A9157A68/serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Certificate serial: 08AD Authority key identifier: 65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa Signing time: Sun 01 Mar 2026 16:33:30 +0000 ROA not before: Fri 09 Jan 2026 03:32:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137386 IP address blocks: 103.218.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2221 (0x8ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157A68, serialNumber=65B7AD9675B3809ECE04AF301C2EB7037FF02BBB Validity Not Before: Jan 9 03:32:18 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46a59-0fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:47:8a:95:2e:7e:1f:bf:f0:ae:31:3e:6b:13: fc:74:a4:09:fc:90:57:0a:14:82:0a:65:28:7e:92: f1:94:b9:85:a1:11:b7:49:de:9f:5d:36:79:f2:98: 77:6e:fc:6d:6b:38:11:eb:88:b9:c5:2c:a7:1a:d4: 33:52:65:d9:94:12:b8:1e:fc:fa:a5:82:fe:56:5d: d3:c5:84:01:26:34:d7:01:be:4e:66:84:00:8c:8c: 62:cd:af:75:24:57:a0:76:bd:d1:47:58:59:72:a0: 12:85:8b:fc:a8:bb:2b:ea:0a:34:a6:d4:56:a7:c7: d1:4c:43:47:d4:ba:1f:9a:51:59:51:1e:21:3c:d2: 36:2b:5a:df:60:79:f6:1a:14:ea:1d:7b:2f:bc:b8: b8:e9:a7:16:d1:8b:42:04:1d:08:0f:37:1a:40:d4: 96:3e:9f:4b:12:fb:1f:4a:30:e8:00:a8:0c:19:ff: 35:f2:d0:49:f8:ef:e1:45:2c:15:03:6a:f6:ae:30: a9:4e:36:34:a7:53:d8:c2:91:30:14:16:9f:84:8e: 8d:9e:db:42:73:c6:85:af:01:4e:08:ce:8a:a2:7e: ab:25:6f:96:55:14:46:39:4e:ab:ea:b7:00:35:16: a3:e5:6f:fd:35:29:ca:06:c8:64:23:d8:df:a1:db: f5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:41:06:7E:2B:CA:CD:A9:AE:45:89:E8:C8:92:6B:01:7A:B3:E0:8B X509v3 Authority Key Identifier: keyid:65:B7:AD:96:75:B3:80:9E:CE:04:AF:30:1C:2E:B7:03:7F:F0:2B:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/ZbetlnWzgJ7OBK8wHC63A3_wK7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZbetlnWzgJ7OBK8wHC63A3_wK7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157A68/4B36B9B8DBDA11EA9A8D2840C4F9AE02/CCB2690EED0B11F0949792B43C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.218.4.0/24 Signature Algorithm: sha256WithRSAEncryption bd:e9:7f:0b:6b:aa:d4:d0:c1:d6:fd:82:7f:1c:b0:ac:d5:5d: 41:1a:69:50:12:50:ae:d0:2b:f7:26:77:42:f7:46:87:d2:5e: 02:60:34:33:5f:87:1f:07:ee:cf:28:94:d6:ce:ec:74:8a:04: 30:ab:be:d7:d4:68:9f:08:45:2e:f6:7d:54:4e:a5:6e:a0:f3: 3d:d5:18:53:18:e3:7b:f4:a2:6f:62:fa:96:bf:b3:51:ca:7a: 93:38:9c:7a:fe:22:22:66:0f:18:53:a2:08:4f:9a:f0:27:c0: f0:f4:75:a5:0c:74:3f:4c:46:1c:2f:41:4d:a3:0d:47:65:e8: 89:a4:8c:0b:7c:59:80:f3:21:9c:cc:ad:2c:b3:fb:47:0f:34: d9:3a:3c:5f:38:97:57:bd:8a:01:3c:1c:2c:82:4a:9a:52:fc: bf:df:85:b5:5f:15:59:c1:08:48:80:29:06:12:e2:02:44:a4: ea:e9:3f:13:56:e9:9f:88:1c:f1:84:59:59:10:3a:68:bc:25: 77:74:57:18:02:df:9f:cb:4e:85:53:2e:6a:66:be:d9:87:cc: 0c:f5:29:1d:26:c3:09:01:f3:e8:8f:a2:97:f3:a0:3e:58:52: 85:f1:b9:94:1c:7e:99:cf:10:2a:1d:54:8f:2e:84:60:05:95: c4:da:25:65 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBNjgxMTAvBgNVBAUTKDY1QjdBRDk2NzVCMzgwOUVDRTA0QUYzMDFDMkVCNzAz N0ZGMDJCQkIwHhcNMjYwMTA5MDMzMjE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE1OS0wZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEeKlS5+H7/wrjE+axP8dKQJ/JBXChSCCmUofpLxlLmFoRG3Sd6fXTZ58ph3 bvxtazgR64i5xSynGtQzUmXZlBK4Hvz6pYL+Vl3TxYQBJjTXAb5OZoQAjIxiza91 JFegdr3RR1hZcqAShYv8qLsr6go0ptRWp8fRTENH1LofmlFZUR4hPNI2K1rfYHn2 GhTqHXsvvLi46acW0YtCBB0IDzcaQNSWPp9LEvsfSjDoAKgMGf818tBJ+O/hRSwV A2r2rjCpTjY0p1PYwpEwFBafhI6NnttCc8aFrwFOCM6Kon6rJW+WVRRGOU6r6rcA NRaj5W/9NSnKBshkI9jfodv1MQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMdBBn4r ys2prkWJ6MiSawF6s+CLMB8GA1UdIwQYMBaAFGW3rZZ1s4CezgSvMBwutwN/8Cu7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0E2OC80QjM2QjlCOERC REExMUVBOUE4RDI4NDBDNEY5QUUwMi9aYmV0bG5XemdKN09CSzh3SEM2M0EzX3dL N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1piZXRsbld6Z0o3T0JLOHdIQzYzQTNfd0s3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdBNjgvNEIzNkI5QjhEQkRBMTFFQTlBOEQyODQwQzRGOUFFMDIvQ0NCMjY5MEVF RDBCMTFGMDk0OTc5MkI0M0M2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ9oEMA0GCSqGSIb3DQEBCwUAA4IBAQC96X8La6rU0MHW/YJ/HLCs 1V1BGmlQElCu0Cv3JndC90aH0l4CYDQzX4cfB+7PKJTWzux0igQwq77X1GifCEUu 9n1UTqVuoPM91RhTGON79KJvYvqWv7NRynqTOJx6/iIiZg8YU6IIT5rwJ8Dw9HWl DHQ/TEYcL0FNow1HZeiJpIwLfFmA8yGczK0ss/tHDzTZOjxfOJdXvYoBPBwsgkqa Uvy/34W1XxVZwQhIgCkGEuICRKTq6T8TVumfiBzxhFlZEDpovCV3dFcYAt+fy06F Uy5qZr7Zh8wM9SkdJsMJAfPoj6KX86A+WFKF8bmUHH6ZzxAqHVSPLoRgBZXE2iVl -----END CERTIFICATE-----Generated at Mon Mar 2 13:12:09 2026 by rpki-client