$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A3B68DFE75CA11EB8ADE9967C4F9AE02.roa File: A3B68DFE75CA11EB8ADE9967C4F9AE02.roa (raw, json) Hash identifier: LkSebbrAdpp+Old4lX3jBwpV2KfpX1aZfsVw+DK33pQ= Subject key identifier: F9:A5:D3:DF:2C:F5:DA:EA:89:C3:ED:63:C8:57:4A:F6:85:F6:64:FF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D99A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A3B68DFE75CA11EB8ADE9967C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:59:59 +0000 ROA not before: Fri 01 Aug 2025 09:09:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141509 IP address blocks: 103.160.216.0/23 maxlen: 24 2001:df2:aec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55706 (0xd99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 1 09:09:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c4ef-2185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ce:73:d1:81:07:bf:77:68:6c:0c:8f:97:73: ba:66:4d:5d:88:3a:1b:ac:8e:95:94:30:78:0e:ea: 6a:33:64:a8:52:10:08:6a:4b:63:c8:d0:29:b0:a1: b1:80:26:45:20:5b:72:51:c3:15:ab:93:4b:4a:18: 12:99:1c:99:8a:31:68:06:10:a4:ec:20:28:db:2a: 45:bd:73:9a:fd:ec:3d:df:76:be:0b:23:ed:01:7e: 86:d0:be:44:fa:6a:70:39:3e:0f:48:81:9f:28:5b: 59:43:36:2d:dd:de:06:d8:a9:62:c1:aa:da:79:02: 90:e9:6c:6f:cb:dd:64:f8:fa:a4:4d:7b:43:54:d5: 3b:32:d3:f1:0d:a7:eb:e0:c6:2e:9c:f7:dc:52:fe: e8:37:11:5b:b6:b7:b5:ee:c7:c1:79:67:a8:0e:92: af:c9:da:3b:17:f4:4f:b7:9f:2a:36:e6:c8:d5:2e: 03:18:86:a5:86:ef:1d:60:43:af:02:10:ac:39:2b: 86:ed:54:66:92:a2:91:0c:d8:76:57:ad:d2:5f:1d: 63:a5:dc:eb:a5:69:22:da:59:c8:4d:90:c5:54:fb: f8:0f:56:c5:cd:59:aa:f1:d4:8e:38:94:ab:a5:08: 5b:f6:55:a7:18:8b:e6:c1:25:16:ad:c8:90:0a:c4: 27:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A5:D3:DF:2C:F5:DA:EA:89:C3:ED:63:C8:57:4A:F6:85:F6:64:FF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A3B68DFE75CA11EB8ADE9967C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.160.216.0/23 IPv6: 2001:df2:aec0::/48 Signature Algorithm: sha256WithRSAEncryption 9e:8c:fd:c3:61:c0:a6:b4:ba:cf:55:6a:98:92:da:eb:b4:c7: 42:fa:32:71:33:f3:40:0c:ce:f9:f6:be:30:1a:b6:7a:b9:69: 7f:71:38:3f:12:57:a9:9f:40:0c:96:13:24:0b:86:5e:a6:b6: db:2a:4a:4b:c3:cf:f0:a0:33:b4:3a:03:9c:a3:99:53:d8:b7: 25:21:6e:dc:a5:ee:ee:59:dc:df:da:df:e8:58:09:cb:92:76: 18:8b:d7:74:06:c2:65:29:eb:a8:fd:3f:a4:61:ab:11:7d:10: aa:e7:2b:63:d2:64:d8:4d:c8:2f:0d:32:c6:79:90:00:35:93: cc:90:d8:30:5a:66:64:a4:9d:74:96:2d:ba:26:6e:5b:4a:ac: 3b:05:55:b3:ff:1c:34:e4:d2:a3:b1:4d:55:65:be:c8:d0:00: 6d:e8:e1:74:f6:5e:4d:f4:d9:d4:be:cc:1c:46:16:bd:57:55: cf:11:cf:31:73:f4:5a:20:cf:94:90:6a:e2:41:36:0d:de:5f: 3b:1d:7e:8e:8b:52:f8:a4:9a:80:d0:d4:6c:8a:d7:6f:20:cc: 94:13:93:f2:e5:95:d1:d5:ad:2c:90:48:f4:5b:3f:9f:32:15: ba:d1:64:cd:4a:e2:e5:90:8a:bf:85:53:db:3d:c9:6e:40:ef: 74:23:fa:0c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIDANmaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgwMTA5MDkxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM0ZWYtMjE4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTOc9GBB793aGwMj5dzumZNXYg6G6yOlZQweA7qajNkqFIQCGpLY8jQKbCh sYAmRSBbclHDFauTS0oYEpkcmYoxaAYQpOwgKNsqRb1zmv3sPd92vgsj7QF+htC+ RPpqcDk+D0iBnyhbWUM2Ld3eBtipYsGq2nkCkOlsb8vdZPj6pE17Q1TVOzLT8Q2n 6+DGLpz33FL+6DcRW7a3te7HwXlnqA6Sr8naOxf0T7efKjbmyNUuAxiGpYbvHWBD rwIQrDkrhu1UZpKikQzYdlet0l8dY6Xc66VpItpZyE2QxVT7+A9Wxc1ZqvHUjjiU q6UIW/ZVpxiL5sElFq3IkArEJzkCAwEAAaOCAnEwggJtMB0GA1UdDgQWBBT5pdPf LPXa6onD7WPIV0r2hfZk/zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EzQjY4REZF NzVDQTExRUI4QURFOTk2N0M0RjlBRTAyLnJvYTAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeg2DAPBAIAAjAJAwcAIAEN8q7AMA0GCSqGSIb3DQEBCwUAA4IB AQCejP3DYcCmtLrPVWqYktrrtMdC+jJxM/NADM759r4wGrZ6uWl/cTg/Elepn0AM lhMkC4ZeprbbKkpLw8/woDO0OgOco5lT2LclIW7cpe7uWdzf2t/oWAnLknYYi9d0 BsJlKeuo/T+kYasRfRCq5ytj0mTYTcgvDTLGeZAANZPMkNgwWmZkpJ10li26Jm5b Sqw7BVWz/xw05NKjsU1VZb7I0ABt6OF09l5N9NnUvswcRha9V1XPEc8xc/RaIM+U kGriQTYN3l87HX6Oi1L4pJqA0NRsitdvIMyUE5Py5ZXR1a0skEj0Wz+fMhW60WTN SuLlkIq/hVPbPcluQO90I/oM -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:19 2026 by rpki-client