$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa File: C0681BF2CF4911EF8531B085C4F9AE02.roa (raw, json) Hash identifier: 4thkndOJT3+vXRn8C465Fs6jq2L+GeTYNEVafFWoUXs= Subject key identifier: CF:41:A3:F3:B5:3C:92:13:78:37:3F:DE:B2:52:A1:FA:EB:CD:B1:A5 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 077D Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:57:46 +0000 ROA not before: Wed 02 Jul 2025 22:32:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 932 IP address blocks: 43.254.216.0/22 maxlen: 24 103.238.224.0/22 maxlen: 24 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:32:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47e1a-4481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7a:a1:af:e0:f3:e4:82:22:86:d7:ff:44:80: fa:ba:75:72:0a:a5:e2:21:28:9b:83:42:ba:a6:a4: 22:9f:7b:f8:30:38:5d:11:17:d0:9c:f2:a3:ec:2f: 14:6a:9c:1b:45:cd:ee:c9:b6:75:09:4e:2e:3c:10: 26:38:39:21:3a:f5:69:5d:00:ff:44:77:31:3e:42: ea:49:ed:8e:9d:ce:79:fc:73:21:92:c8:2c:60:35: 7f:f9:e4:96:6b:67:d6:5b:3d:58:98:8d:30:8f:dd: 36:aa:5c:fa:d0:26:f2:ab:98:c5:6e:39:dc:e1:e4: da:6a:07:48:f6:52:17:25:89:25:8e:0f:6e:29:cb: c3:55:6b:66:ad:da:7e:26:e9:30:07:eb:f2:a4:dc: 0e:28:05:59:c3:51:cd:b6:93:4c:0c:8e:cf:73:fb: a7:47:45:16:4a:35:3c:b3:61:ca:cf:78:73:c8:80: 51:5b:5e:ea:50:8e:20:74:de:cd:2b:a7:b9:86:72: 8e:3a:d3:84:d5:67:8d:24:6c:51:7a:32:73:be:63: ad:0b:92:dd:e4:fc:cc:85:45:26:61:a1:80:22:e4: 0b:f1:82:94:d7:14:1f:95:b6:3f:e5:d2:30:b8:cb: 04:2e:81:c2:81:38:01:6f:83:b1:94:f2:fe:e1:89: 5b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:41:A3:F3:B5:3C:92:13:78:37:3F:DE:B2:52:A1:FA:EB:CD:B1:A5 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 103.244.88.0/22 116.206.176.0/22 Signature Algorithm: sha256WithRSAEncryption 08:ec:38:93:a9:59:07:89:c9:e0:0d:a0:45:f3:2f:4f:ff:b2: ce:27:7b:cb:4f:32:ef:f6:5a:a5:51:90:8b:c3:32:75:20:01: d5:fd:74:ad:32:1c:f9:b3:59:cf:7c:2e:ff:15:fe:81:e2:7e: 97:73:98:aa:bb:e4:fd:ae:5b:f5:b0:d4:87:01:70:48:07:ab: 6d:1e:5d:f9:44:6b:c9:99:d7:08:b7:d4:15:9c:d6:9f:81:e8: 04:50:79:04:3d:7b:4b:0f:7c:41:7e:3e:74:20:c4:ad:6b:7f: 01:7a:73:cc:46:b1:8e:04:bb:28:7c:46:3a:2b:80:f7:63:f4: ec:5d:43:74:b7:f8:34:28:5c:01:8a:03:97:48:18:3e:b8:0c: 8d:7a:ab:c6:46:2b:7c:a5:10:e9:6c:15:fe:dc:1b:1a:20:e5: 0a:d8:10:95:eb:7d:10:0f:9e:94:ed:27:4f:e5:c2:b4:c1:d2: 8a:2e:e4:3a:ed:a6:56:e9:c8:50:eb:57:fa:9a:27:6b:98:3b: a0:3b:c1:29:67:c7:67:81:5d:c9:37:b2:97:2b:7f:d2:da:78: 00:16:4d:1e:2a:0c:ca:d4:06:6a:8a:44:76:f7:f3:f8:82:1b: ac:a2:bd:79:b4:bb:aa:1b:29:ba:8a:14:05:dd:73:c6:00:f3: d3:bc:04:e3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMjAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2UxYS00NDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nqhr+Dz5IIihtf/RID6unVyCqXiISibg0K6pqQin3v4MDhdERfQnPKj7C8U apwbRc3uybZ1CU4uPBAmODkhOvVpXQD/RHcxPkLqSe2Onc55/HMhksgsYDV/+eSW a2fWWz1YmI0wj902qlz60Cbyq5jFbjnc4eTaagdI9lIXJYkljg9uKcvDVWtmrdp+ JukwB+vypNwOKAVZw1HNtpNMDI7Pc/unR0UWSjU8s2HKz3hzyIBRW17qUI4gdN7N K6e5hnKOOtOE1WeNJGxRejJzvmOtC5Ld5PzMhUUmYaGAIuQL8YKU1xQflbY/5dIw uMsELoHCgTgBb4OxlPL+4YlbDQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFM9Bo/O1 PJITeDc/3rJSofrrzbGlMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvQzA2ODFCRjJD RjQ5MTFFRjg1MzFCMDg1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCK/7YAwQCZ+7gAwQCZ/RYAwQCdM6wMA0GCSqGSIb3DQEBCwUAA4IB AQAI7DiTqVkHicngDaBF8y9P/7LOJ3vLTzLv9lqlUZCLwzJ1IAHV/XStMhz5s1nP fC7/Ff6B4n6Xc5iqu+T9rlv1sNSHAXBIB6ttHl35RGvJmdcIt9QVnNafgegEUHkE PXtLD3xBfj50IMSta38BenPMRrGOBLsofEY6K4D3Y/TsXUN0t/g0KFwBigOXSBg+ uAyNeqvGRit8pRDpbBX+3BsaIOUK2BCV630QD56U7SdP5cK0wdKKLuQ67aZW6chQ 61f6midrmDugO8EpZ8dngV3JN7KXK3/S2ngAFk0eKgzK1AZqikR29/P4ghusor15 tLuqGym6ihQF3XPGAPPTvATj -----END CERTIFICATE-----Generated at Mon Mar 2 07:15:55 2026 by rpki-client