$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa File: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (raw, json) Hash identifier: 6+bY61LdDlam0PC7GuKMwEXRvre/3cSdh3l+aLkv2pc= Subject key identifier: B5:8B:5D:E9:A4:ED:E3:29:36:4B:8B:84:D6:4A:6B:32:69:D2:CE:92 Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 0169 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:45:16 +0000 ROA not before: Wed 03 Sep 2025 05:55:06 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131299 IP address blocks: 103.68.112.0/24 maxlen: 24 103.68.113.0/24 maxlen: 24 103.68.114.0/24 maxlen: 24 103.68.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Sep 3 05:55:06 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5946c-bb1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:6c:5b:fa:63:f6:e1:50:a3:4a:62:91:05: 45:b7:e7:43:b3:d0:bc:6f:bd:76:f8:c0:7b:a7:f9: f5:af:ec:75:56:5a:f5:17:d1:ff:49:a9:97:12:36: 16:ac:66:55:c6:a6:f8:3f:c9:75:5d:2c:ba:b5:e6: 84:7e:6f:41:74:50:7b:b3:d9:23:35:81:a2:98:82: 61:29:87:35:e5:b3:7e:c9:5a:4f:52:4c:cf:17:25: 1a:99:3a:4d:e7:89:af:54:64:fd:26:5f:62:81:da: bb:ba:7a:c9:02:65:6b:5d:38:c8:7a:b5:0c:c9:de: 73:d6:ec:59:cf:58:cf:86:b5:30:f9:aa:e4:8f:b0: b5:3c:dc:c1:86:e5:a6:a3:d0:e2:b9:30:c8:9c:1c: aa:28:23:38:5b:53:4f:1b:a4:38:14:3e:0d:8e:bc: ea:2c:c8:85:57:7b:99:94:f8:97:15:ae:15:a1:d1: 6f:03:a9:99:de:e3:b7:a6:c5:e6:86:50:24:61:f8: 8f:1c:fc:52:6e:0b:76:55:90:75:72:dd:96:15:1b: 87:ab:8d:00:a4:26:d3:63:db:54:45:08:82:ce:36: 4f:f4:4e:39:ee:e1:dc:b8:93:01:84:7d:35:6b:e9: 8d:90:fb:4d:3e:af:31:ec:81:82:92:9e:42:0c:80: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:8B:5D:E9:A4:ED:E3:29:36:4B:8B:84:D6:4A:6B:32:69:D2:CE:92 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.112.0/22 Signature Algorithm: sha256WithRSAEncryption 00:fd:37:0b:83:dc:09:22:1c:e3:57:3e:7f:55:80:4f:f2:c1: 5e:73:ef:04:e7:95:a3:0d:d1:c0:61:f7:a8:85:fe:01:2a:5d: 0c:8c:f4:ad:b3:a2:7a:2a:ba:d2:07:19:d8:7f:08:1f:76:be: 5e:91:d4:ab:f9:ba:51:fd:cd:b9:ac:6c:da:2c:da:06:2d:cb: 76:ef:37:95:e6:85:54:df:8a:cd:67:eb:e7:ea:e3:d3:ca:98: 89:cf:c0:6a:88:0b:f4:32:ee:49:28:2a:c0:26:be:fe:1e:3c: b4:80:dd:52:3a:8e:1f:3a:63:c0:76:eb:9c:80:09:24:41:01: 79:41:a6:34:3f:6e:a2:cb:94:c7:e8:13:eb:4f:5f:dd:c1:76: 3b:13:7e:36:74:6b:f6:87:90:91:ea:ce:dc:5e:b4:7b:c4:35: 79:00:51:fc:3a:9f:46:a9:95:f5:78:c9:e1:7c:f7:0b:ea:23: 00:2b:3a:2d:59:f6:f3:2a:ba:fa:3c:0d:fa:65:47:4f:ab:d5: be:26:f3:74:17:0d:9f:c3:a1:3b:45:7e:4f:d5:c6:52:23:75: 24:df:9d:0c:1a:98:b1:c4:b7:ba:c2:ea:20:57:c4:69:9f:d0: 9d:84:ad:fb:78:f8:92:96:11:42:8a:e5:ff:d9:87:39:45:a7: 75:4e:e4:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwOTAzMDU1NTA2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTQ2Yy1iYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsxsW/pj9uFQo0pikQVFt+dDs9C8b712+MB7p/n1r+x1Vlr1F9H/SamXEjYW rGZVxqb4P8l1XSy6teaEfm9BdFB7s9kjNYGimIJhKYc15bN+yVpPUkzPFyUamTpN 54mvVGT9Jl9igdq7unrJAmVrXTjIerUMyd5z1uxZz1jPhrUw+arkj7C1PNzBhuWm o9DiuTDInByqKCM4W1NPG6Q4FD4NjrzqLMiFV3uZlPiXFa4VodFvA6mZ3uO3psXm hlAkYfiPHPxSbgt2VZB1ct2WFRuHq40ApCbTY9tURQiCzjZP9E457uHcuJMBhH01 a+mNkPtNPq8x7IGCkp5CDIBwNQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLWLXemk 7eMpNkuLhNZKazJp0s6SMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQzMjMvMjIwQTFGRDgwOUVCMTFFRkJDNEQxNTM0QzRGOUFFMDIvQ0MxNjZEQUMw QTA4MTFFRkJFN0U0NjVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ0RwMA0GCSqGSIb3DQEBCwUAA4IBAQAA/TcLg9wJIhzjVz5/VYBP 8sFec+8E55WjDdHAYfeohf4BKl0MjPSts6J6KrrSBxnYfwgfdr5ekdSr+bpR/c25 rGzaLNoGLct27zeV5oVU34rNZ+vn6uPTypiJz8BqiAv0Mu5JKCrAJr7+Hjy0gN1S Oo4fOmPAduucgAkkQQF5QaY0P26iy5TH6BPrT1/dwXY7E342dGv2h5CR6s7cXrR7 xDV5AFH8Op9GqZX1eMnhfPcL6iMAKzotWfbzKrr6PA36ZUdPq9W+JvN0Fw2fw6E7 RX5P1cZSI3Uk350MGpixxLe6wuogV8Rpn9CdhK37ePiSlhFCiuX/2Yc5Rad1TuRS -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:26 2026 by rpki-client