$ rpki-client -vvf rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/FFA6AD56DF7211EDB0D24244C4F9AE02.roa File: FFA6AD56DF7211EDB0D24244C4F9AE02.roa (raw, json) Hash identifier: dWIZyaUXtS3+l+2OTps4tqiCz5E9mMM/Wq+9JsY8Y08= Subject key identifier: 41:13:E4:7D:09:BF:B2:82:74:9B:E6:8D:D6:20:02:60:87:5B:3A:7D Certificate issuer: /CN=A9186980/serialNumber=70D16D7737989B15C6C8DF1DCA2A980E0BBFBA0F Certificate serial: 07F2 Authority key identifier: 70:D1:6D:77:37:98:9B:15:C6:C8:DF:1D:CA:2A:98:0E:0B:BF:BA:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNFtdzeYmxXGyN8dyiqYDgu_ug8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/FFA6AD56DF7211EDB0D24244C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:25:57 +0000 ROA not before: Sun 30 Nov 2025 20:51:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141386 IP address blocks: 103.158.10.0/23 maxlen: 23 103.158.10.0/24 maxlen: 24 103.158.11.0/24 maxlen: 24 2001:df5:3a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/cNFtdzeYmxXGyN8dyiqYDgu_ug8.crl rsync://rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/cNFtdzeYmxXGyN8dyiqYDgu_ug8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNFtdzeYmxXGyN8dyiqYDgu_ug8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186980, serialNumber=70D16D7737989B15C6C8DF1DCA2A980E0BBFBA0F Validity Not Before: Nov 30 20:51:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43055-ccdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cc:89:62:12:e8:f9:1b:eb:fc:84:2d:3b:cb: 2e:a1:a6:7c:e7:cf:45:ee:7f:1e:1c:24:bf:d5:d8: 27:2c:26:b6:d1:c9:c2:e4:9d:21:d0:ae:d1:44:6c: de:01:03:70:3c:4c:1c:3e:c9:12:9c:45:de:ef:09: 37:24:22:3e:ab:46:4a:5c:d0:71:c8:6d:98:b3:b9: b1:43:c7:93:6a:99:63:45:34:1b:4a:74:4d:5a:9e: f5:f5:fc:4f:03:4f:6b:51:2b:d9:a5:d3:71:cb:4c: 40:13:10:ba:4b:d0:99:f9:d3:a3:8d:f0:27:b6:d0: c7:38:35:b0:60:3b:2d:18:53:1a:70:08:bb:56:34: a8:b2:34:fb:1a:8e:7c:2c:03:e8:a2:ac:31:20:1c: 2a:8a:f6:64:2f:df:c1:91:5c:89:2c:f7:10:cd:de: bc:5a:a5:4b:4c:1f:cd:28:fd:38:bc:04:d7:11:01: 7f:75:c8:40:b2:6d:d2:1c:82:ce:bf:52:f6:87:0f: 8c:58:88:d6:e4:f6:b1:42:68:70:5e:b3:7f:7a:d6: f6:ff:f8:84:56:67:7d:83:33:9e:14:3f:3d:16:e2: cc:9f:ac:b4:be:75:52:b6:aa:c2:2e:a6:dc:3f:52: 5f:ef:ad:43:02:9e:66:a3:ab:bc:12:99:eb:74:d8: 87:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:13:E4:7D:09:BF:B2:82:74:9B:E6:8D:D6:20:02:60:87:5B:3A:7D X509v3 Authority Key Identifier: keyid:70:D1:6D:77:37:98:9B:15:C6:C8:DF:1D:CA:2A:98:0E:0B:BF:BA:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/cNFtdzeYmxXGyN8dyiqYDgu_ug8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNFtdzeYmxXGyN8dyiqYDgu_ug8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186980/CB006D621CD811EB96C7945AC4F9AE02/FFA6AD56DF7211EDB0D24244C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.10.0/23 IPv6: 2001:df5:3a80::/48 Signature Algorithm: sha256WithRSAEncryption 96:f4:0f:99:4d:b1:77:77:58:c1:4f:ad:27:15:b3:ea:d3:50: 00:ab:a2:8f:93:a2:c3:bf:4e:fd:c1:fc:79:8f:66:5c:39:c7: 8c:15:98:59:d9:62:69:3a:de:66:fe:38:9f:c9:97:d7:7a:42: 1b:b1:96:f0:fd:02:f9:6f:04:f1:83:70:a4:f0:7a:96:0e:45: d4:b7:de:94:08:f6:03:58:7a:34:19:d9:82:e7:41:df:2d:e5: 52:a9:6e:b1:7b:fb:07:0e:6b:d2:74:44:5e:8f:e6:de:b8:d6: 51:8e:7e:c6:b4:fa:6c:1a:31:cc:24:51:a1:87:b8:f2:eb:27: 1e:e6:d0:fe:ce:f2:72:1e:a7:cb:f8:01:76:60:69:bc:5a:5b: 6a:5a:e0:b5:79:4b:48:dd:e0:9d:2c:96:08:2f:1d:58:4b:30: 67:fb:d8:3e:0c:e6:95:6b:36:ff:14:0e:65:d0:e6:02:16:3b: 35:5e:3d:aa:81:b2:43:64:04:a3:56:c4:80:71:92:c9:27:0b: bf:cb:26:1a:99:60:25:20:7d:40:d2:66:df:5d:be:28:2c:a9: 67:48:83:20:e6:7e:04:26:44:53:57:51:1d:7e:4e:07:6d:92: dc:9a:fd:76:c1:c1:47:66:d8:e1:9d:1e:db:77:75:ed:2a:42: 07:c2:b7:fe -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY5ODAxMTAvBgNVBAUTKDcwRDE2RDc3Mzc5ODlCMTVDNkM4REYxRENBMkE5ODBF MEJCRkJBMEYwHhcNMjUxMTMwMjA1MTQyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzA1NS1jY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8yJYhLo+Rvr/IQtO8suoaZ8589F7n8eHCS/1dgnLCa20cnC5J0h0K7RRGze AQNwPEwcPskSnEXe7wk3JCI+q0ZKXNBxyG2Ys7mxQ8eTapljRTQbSnRNWp719fxP A09rUSvZpdNxy0xAExC6S9CZ+dOjjfAnttDHODWwYDstGFMacAi7VjSosjT7Go58 LAPooqwxIBwqivZkL9/BkVyJLPcQzd68WqVLTB/NKP04vATXEQF/dchAsm3SHILO v1L2hw+MWIjW5PaxQmhwXrN/etb2//iEVmd9gzOeFD89FuLMn6y0vnVStqrCLqbc P1Jf761DAp5mo6u8EpnrdNiHfwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEET5H0J v7KCdJvmjdYgAmCHWzp9MB8GA1UdIwQYMBaAFHDRbXc3mJsVxsjfHcoqmA4Lv7oP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njk4MC9DQjAwNkQ2MjFD RDgxMUVCOTZDNzk0NUFDNEY5QUUwMi9jTkZ0ZHplWW14WEd5TjhkeWlxWURndV91 ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NORnRkemVZbXhYR3lOOGR5aXFZRGd1X3VnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY5ODAvQ0IwMDZENjIxQ0Q4MTFFQjk2Qzc5NDVBQzRGOUFFMDIvRkZBNkFENTZE RjcyMTFFREIwRDI0MjQ0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ54KMA8EAgACMAkDBwAgAQ31OoAwDQYJKoZIhvcNAQELBQADggEB AJb0D5lNsXd3WMFPrScVs+rTUACroo+TosO/Tv3B/HmPZlw5x4wVmFnZYmk63mb+ OJ/Jl9d6QhuxlvD9AvlvBPGDcKTwepYORdS33pQI9gNYejQZ2YLnQd8t5VKpbrF7 +wcOa9J0RF6P5t641lGOfsa0+mwaMcwkUaGHuPLrJx7m0P7O8nIep8v4AXZgabxa W2pa4LV5S0jd4J0slggvHVhLMGf72D4M5pVrNv8UDmXQ5gIWOzVePaqBskNkBKNW xIBxksknC7/LJhqZYCUgfUDSZt9dvigsqWdIgyDmfgQmRFNXUR1+Tgdtktya/XbB wUdm2OGdHtt3de0qQgfCt/4= -----END CERTIFICATE-----Generated at Mon Mar 2 11:35:54 2026 by rpki-client