$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa File: 688029EE184B11EA85906435C4F9AE02.roa (raw, json) Hash identifier: BTyWUWai/r1aM5SoTihMaD4LN+heriqG2N5/461Okac= Subject key identifier: 67:2E:4A:7C:CD:82:8E:DF:6F:89:6A:B7:33:40:48:F3:D6:20:FB:7C Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A44 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:21:58 +0000 ROA not before: Fri 16 Jan 2026 16:13:02 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 45.116.157.0/24 maxlen: 24 45.116.158.0/24 maxlen: 24 45.116.159.0/24 maxlen: 24 103.54.93.0/24 maxlen: 24 103.54.94.0/24 maxlen: 24 103.54.95.0/24 maxlen: 24 103.104.132.0/24 maxlen: 24 103.104.133.0/24 maxlen: 24 103.104.134.0/24 maxlen: 24 103.104.135.0/24 maxlen: 24 103.111.196.0/24 maxlen: 24 103.111.197.0/24 maxlen: 24 103.111.198.0/24 maxlen: 24 103.111.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14916 (0x3a44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:02 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4adf6-7df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:81:21:ba:d8:35:10:5c:20:35:d9:02:68:bc: 7d:86:13:f9:05:fc:b2:a2:9a:a3:58:81:97:be:59: a3:85:b5:48:19:12:b3:e4:34:a0:b7:8b:a4:0c:eb: b2:40:76:32:e3:3f:1e:20:dd:d7:fd:40:37:15:51: 69:b3:26:3e:3d:41:07:51:e3:dd:20:35:49:e2:cf: bb:92:9d:83:44:89:33:99:a1:4c:3b:5a:5e:1a:b0: 05:ca:76:28:fb:e0:16:ec:a6:09:2c:87:e9:ce:14: b1:fd:90:0e:6f:c2:fa:a7:ca:83:95:97:40:98:74: 32:ef:ca:33:4b:5f:68:5f:48:62:4b:13:ed:ab:bc: 51:82:15:3e:24:f9:4c:9f:1d:09:05:25:f7:a2:fd: 0e:5d:ea:53:b8:8a:5d:c9:d3:82:f5:83:b4:08:2b: b8:45:26:09:ba:56:e9:a2:d8:9f:7d:7a:c0:15:c8: 85:79:b1:a4:37:13:5f:f3:09:e2:b8:bb:04:58:06: 0c:82:eb:67:15:9e:9d:ff:82:a4:72:f0:5b:71:2e: 99:d2:ae:02:a5:64:2f:8e:f3:b4:27:56:da:61:53: 96:4c:e6:1f:05:61:f3:15:0e:d0:73:5b:1b:f5:d3: b1:17:25:79:04:30:63:f8:79:d1:29:66:9a:95:5d: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2E:4A:7C:CD:82:8E:DF:6F:89:6A:B7:33:40:48:F3:D6:20:FB:7C X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/22 103.54.93.0-103.54.95.255 103.104.132.0/22 103.111.196.0/22 Signature Algorithm: sha256WithRSAEncryption b5:22:57:6f:7b:cf:6c:bb:7c:26:13:8c:6e:6a:5a:78:8b:a6: 90:73:bf:ab:94:88:21:69:c4:ea:dc:f0:2b:b9:01:fb:6c:b2: f8:b7:24:ac:89:4c:bb:ab:a8:73:a3:90:e3:de:de:03:2d:cb: b6:ab:f4:0f:da:bc:f1:0b:58:60:05:81:cf:c0:58:68:9a:de: ae:54:bf:a4:1e:31:1d:31:2e:e4:ac:78:f1:19:3f:59:ab:5a: af:bb:a3:1d:7e:b9:1a:01:fd:ac:c4:cf:cb:a2:4c:6d:7d:9a: bc:d4:16:36:23:16:62:d5:a4:6d:7c:43:01:9d:49:ab:1a:99: e6:f8:6e:41:7b:c6:9c:03:d8:f1:93:c9:61:fc:34:8b:51:39: 37:83:4d:e2:06:d9:ab:c8:9e:ac:ac:43:6b:84:a4:a0:03:28: be:75:4c:3b:b2:c9:2e:46:89:de:ba:9c:f0:49:31:68:b0:c5: 03:6c:0e:0b:7d:26:09:68:68:cf:6d:49:a8:51:6d:41:56:39: 8c:eb:1f:93:d6:cf:8e:70:0d:f6:86:99:80:2b:b8:cd:3b:a5: 6f:1a:ce:7b:f9:7d:aa:11:72:e0:6f:57:a1:88:50:ba:26:bf: 5a:a4:ba:42:28:f9:5c:05:0d:46:27:67:2c:ff:07:1d:4f:c4: 24:78:5b:aa -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICOkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzAyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWRmNi03ZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIEhutg1EFwgNdkCaLx9hhP5BfyyopqjWIGXvlmjhbVIGRKz5DSgt4ukDOuy QHYy4z8eIN3X/UA3FVFpsyY+PUEHUePdIDVJ4s+7kp2DRIkzmaFMO1peGrAFynYo ++AW7KYJLIfpzhSx/ZAOb8L6p8qDlZdAmHQy78ozS19oX0hiSxPtq7xRghU+JPlM nx0JBSX3ov0OXepTuIpdydOC9YO0CCu4RSYJulbpotiffXrAFciFebGkNxNf8wni uLsEWAYMgutnFZ6d/4KkcvBbcS6Z0q4CpWQvjvO0J1baYVOWTOYfBWHzFQ7Qc1sb 9dOxFyV5BDBj+HnRKWaalV1WwwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFGcuSnzN go7fb4lqtzNASPPWIPt8MB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNjg4MDI5RUUx ODRCMTFFQTg1OTA2NDM1QzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQCLXScMAwDBABnNl0DBAVnNkADBAJnaIQDBAJnb8QwDQYJKoZIhvcN AQELBQADggEBALUiV297z2y7fCYTjG5qWniLppBzv6uUiCFpxOrc8Cu5Aftssvi3 JKyJTLurqHOjkOPe3gMty7ar9A/avPELWGAFgc/AWGia3q5Uv6QeMR0xLuSsePEZ P1mrWq+7ox1+uRoB/azEz8uiTG19mrzUFjYjFmLVpG18QwGdSasameb4bkF7xpwD 2PGTyWH8NItROTeDTeIG2avInqysQ2uEpKADKL51TDuyyS5Gid66nPBJMWiwxQNs Dgt9JgloaM9tSahRbUFWOYzrH5PWz45wDfaGmYAruM07pW8aznv5faoRcuBvV6GI ULomv1qkukIo+VwFDUYnZyz/Bx1PxCR4W6o= -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:37 2026 by rpki-client