$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa File: F8CE85E2B30211EBA63AE482C4F9AE02.roa (raw, json) Hash identifier: 2Lk4CmVFEj2uOR0iFzgVtffOiiM041R6QTALbm/THG0= Subject key identifier: 46:03:58:7D:6B:C7:14:50:81:CF:04:8E:6D:06:28:6A:12:E3:1B:C2 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 068B Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:47:40 +0000 ROA not before: Thu 10 Apr 2025 23:04:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142027 IP address blocks: 103.166.72.0/24 maxlen: 24 103.166.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Apr 10 23:04:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fd2c-15d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:57:cc:f3:21:19:3f:10:c1:45:2c:14:cf:50: 96:4a:0c:4f:de:b9:e4:68:38:ab:f1:44:4f:ca:51: f2:a8:19:09:40:46:da:d0:3a:eb:ea:19:cd:f7:68: 0c:79:57:3d:ad:44:87:eb:35:27:fd:c0:f9:eb:27: e2:ef:96:eb:99:fb:05:02:ec:ac:f0:25:93:70:8e: 31:a9:fd:fc:23:39:5c:d7:03:86:b7:60:9d:ab:d5: 49:dd:11:c8:07:c0:ee:c1:97:e3:4a:8f:d0:40:41: b1:0c:f2:ef:e1:79:7a:1b:68:e1:a9:92:76:34:9a: b1:06:2d:c6:d4:c8:91:c2:2d:d7:c3:82:59:08:95: 1f:f8:99:56:6a:aa:a9:f1:4e:eb:4f:67:e6:f5:94: a3:86:61:82:57:bc:29:08:a5:74:61:02:11:51:df: 85:d2:af:dd:74:15:74:24:09:26:3d:1c:3a:4d:c1: e6:9c:8c:c1:66:bc:e4:ad:66:53:74:aa:27:7d:af: a6:cf:94:e0:b0:ec:ab:01:fa:bb:1f:54:13:cf:6a: f2:86:f7:e3:c5:23:0b:b6:b2:79:2f:77:b6:1f:78: a8:d2:1e:2e:39:d0:c1:c8:f6:71:2d:8a:e6:f2:b9: 05:48:72:a7:7d:5a:40:76:f4:28:11:e0:35:57:9e: 98:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:03:58:7D:6B:C7:14:50:81:CF:04:8E:6D:06:28:6A:12:E3:1B:C2 X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.72.0/23 Signature Algorithm: sha256WithRSAEncryption 81:10:2e:a8:c9:4f:f9:9c:22:43:cb:41:4f:b3:26:ba:dc:df: 49:6b:ac:52:52:dd:f9:d3:05:7e:b4:b5:89:08:85:05:dc:5f: 62:a6:94:cb:7d:cf:7b:17:c8:7d:02:3f:cb:4f:c5:9b:d8:1c: 93:84:2c:cb:59:87:43:c6:6b:99:c4:d7:7d:0b:24:fa:23:f1: ff:e5:9d:27:4b:34:e1:c8:79:29:7e:33:7b:c5:78:7b:ab:7b: 41:c3:3d:5a:88:01:f7:f5:28:d6:75:3a:6c:71:79:af:9a:a3: fc:a6:3b:48:3e:39:24:fa:c9:82:bf:21:45:0d:73:de:74:60: f2:c2:c8:da:b5:08:b0:cf:e4:5b:c9:c0:a7:61:05:23:4a:c6: a0:21:b5:e8:1a:67:2c:5a:2a:5a:f9:77:f2:dc:ac:43:02:86: 71:0e:f3:fa:25:a8:ca:c9:1c:3d:aa:4e:11:9e:1f:ea:be:10: cf:7a:17:da:cc:25:d0:00:18:f9:98:7a:38:c1:25:2f:84:f1: be:82:02:4c:e4:4c:6e:6f:72:f5:e4:b7:09:0e:f3:b2:6d:ec: 2a:ad:dc:b2:52:9b:f0:c4:18:00:fa:98:94:e1:1b:e5:5e:34: 64:30:47:12:53:2c:d7:6d:01:5b:a3:1b:77:b0:fd:87:ba:c5: 1c:77:a9:c0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNDEwMjMwNDA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmQyYy0xNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VfM8yEZPxDBRSwUz1CWSgxP3rnkaDir8URPylHyqBkJQEba0Drr6hnN92gM eVc9rUSH6zUn/cD56yfi75brmfsFAuys8CWTcI4xqf38Izlc1wOGt2Cdq9VJ3RHI B8DuwZfjSo/QQEGxDPLv4Xl6G2jhqZJ2NJqxBi3G1MiRwi3Xw4JZCJUf+JlWaqqp 8U7rT2fm9ZSjhmGCV7wpCKV0YQIRUd+F0q/ddBV0JAkmPRw6TcHmnIzBZrzkrWZT dKonfa+mz5TgsOyrAfq7H1QTz2ryhvfjxSMLtrJ5L3e2H3io0h4uOdDByPZxLYrm 8rkFSHKnfVpAdvQoEeA1V56YFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEYDWH1r xxRQgc8Ejm0GKGoS4xvCMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0REYvNUNGMUY3QTJBRDVFMTFFQkFERDkwNTc5QzRGOUFFMDIvRjhDRTg1RTJC MzAyMTFFQkE2M0FFNDgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6ZIMA0GCSqGSIb3DQEBCwUAA4IBAQCBEC6oyU/5nCJDy0FPsya6 3N9Ja6xSUt350wV+tLWJCIUF3F9ippTLfc97F8h9Aj/LT8Wb2ByThCzLWYdDxmuZ xNd9CyT6I/H/5Z0nSzThyHkpfjN7xXh7q3tBwz1aiAH39SjWdTpscXmvmqP8pjtI Pjkk+smCvyFFDXPedGDywsjatQiwz+RbycCnYQUjSsagIbXoGmcsWipa+Xfy3KxD AoZxDvP6JajKyRw9qk4Rnh/qvhDPehfazCXQABj5mHo4wSUvhPG+ggJM5Exub3L1 5LcJDvOybewqrdyyUpvwxBgA+piU4RvlXjRkMEcSUyzXbQFboxt3sP2HusUcd6nA -----END CERTIFICATE-----Generated at Mon Mar 2 05:29:23 2026 by rpki-client