$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: 7/NZildKTjtjWx7cCOWp/toQhb7qMfvVKsFA84BJx9U= Subject key identifier: 0B:26:A6:B6:0D:1B:81:B1:6E:CD:32:B1:6D:0E:66:95:43:19:59:BE Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 0738 Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:41:55 +0000 ROA not before: Sun 24 Aug 2025 19:35:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/23 maxlen: 23 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B, serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: Aug 24 19:35:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fbd3-ddd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d2:52:82:fa:b6:97:cf:ba:9e:db:da:3d:9f: 15:75:ff:87:77:61:08:40:21:f5:84:68:5a:77:42: ff:6e:b1:4f:97:7c:08:fc:b5:f2:a9:9b:c3:75:49: f0:62:12:71:9e:82:04:03:41:a1:b5:cd:31:8a:6f: bd:08:ed:f7:f7:12:b1:29:52:cf:9f:aa:b6:82:86: 5e:c6:3e:23:d1:b5:7a:c5:34:fa:68:1a:46:61:6f: e9:fa:b6:cf:0f:a1:dd:fd:14:ea:94:a8:60:46:e6: 39:9a:db:a5:ce:61:a6:53:94:a2:93:6d:7f:1a:bc: 6e:07:6d:b3:52:0c:1f:06:6a:ed:e4:b4:76:9b:c4: 98:2f:d0:92:4a:55:41:9d:bb:44:49:d6:0f:44:a5: 4b:78:7a:61:34:b1:f4:23:9e:37:cd:5c:7e:da:25: 02:9b:8c:06:66:f0:9f:74:20:98:30:3f:4a:25:3c: 34:3c:84:22:af:ff:2e:88:7f:4c:7f:ca:59:ef:98: 08:ab:69:ac:c8:4c:88:d3:1b:d2:d9:4a:85:43:79: 40:66:4e:84:da:42:c2:5b:b5:d3:48:75:15:43:85: 20:bf:b8:90:b6:c2:27:6f:a6:92:b3:bf:d5:ff:cc: 23:1c:6b:d3:d2:01:2a:7c:d3:9f:17:d3:dd:6c:e2: 57:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:26:A6:B6:0D:1B:81:B1:6E:CD:32:B1:6D:0E:66:95:43:19:59:BE X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 29:24:53:1a:32:7a:97:e3:2a:32:c7:1a:8e:57:65:93:8d:61: b2:a1:e0:b0:9c:be:35:ec:61:b9:e3:8d:fc:67:98:09:a6:35: fa:e6:ca:a9:bb:07:64:5d:03:2b:fa:1d:b2:64:7e:79:b5:94: f7:b7:16:ba:0c:49:fd:5b:ad:52:9a:c6:05:d3:d5:22:93:14: d0:59:ce:e0:e9:b4:aa:5c:cc:7a:32:2c:1b:82:44:0b:f9:43: 08:e1:72:ca:0a:11:a0:3c:e9:02:3c:3e:2b:78:14:eb:f3:12: e0:2c:e9:78:0e:6e:82:88:61:cf:31:6b:07:8f:a7:e5:ba:58: 25:b9:56:99:44:36:6f:e3:01:50:64:05:3b:7e:2b:b8:de:80: cc:c4:b5:b4:ca:80:7d:1a:f2:c9:4e:c5:27:30:f5:c2:fe:9a: 1b:06:2b:23:96:19:7c:6f:c2:86:a7:dc:29:ca:38:59:2b:2f: ab:87:83:0d:fa:74:dd:87:1c:b8:3c:a1:0b:49:ca:7b:bf:51: 4f:4a:6c:3f:ff:73:54:76:77:1e:81:5d:0e:e7:dc:b8:ba:d2: 2f:75:a6:39:72:29:2e:9b:c7:45:c0:ae:f3:dd:e8:eb:b3:47: b5:e9:96:11:ec:f8:10:87:07:b9:62:87:60:b8:a7:e2:fd:a9: f8:b7:77:28 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjUwODI0MTkzNTAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmJkMy1kZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndJSgvq2l8+6ntvaPZ8Vdf+Hd2EIQCH1hGhad0L/brFPl3wI/LXyqZvDdUnw YhJxnoIEA0Ghtc0xim+9CO339xKxKVLPn6q2goZexj4j0bV6xTT6aBpGYW/p+rbP D6Hd/RTqlKhgRuY5mtulzmGmU5Sik21/GrxuB22zUgwfBmrt5LR2m8SYL9CSSlVB nbtESdYPRKVLeHphNLH0I543zVx+2iUCm4wGZvCfdCCYMD9KJTw0PIQir/8uiH9M f8pZ75gIq2msyEyI0xvS2UqFQ3lAZk6E2kLCW7XTSHUVQ4Ugv7iQtsInb6aSs7/V /8wjHGvT0gEqfNOfF9PdbOJXVwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAsmprYN G4Gxbs0ysW0OZpVDGVm+MB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6LQMA8EAgACMAkDBwAgAQ31/IAwDQYJKoZIhvcNAQELBQADggEB ACkkUxoyepfjKjLHGo5XZZONYbKh4LCcvjXsYbnjjfxnmAmmNfrmyqm7B2RdAyv6 HbJkfnm1lPe3FroMSf1brVKaxgXT1SKTFNBZzuDptKpczHoyLBuCRAv5QwjhcsoK EaA86QI8Pit4FOvzEuAs6XgOboKIYc8xawePp+W6WCW5VplENm/jAVBkBTt+K7je gMzEtbTKgH0a8slOxScw9cL+mhsGKyOWGXxvwoan3CnKOFkrL6uHgw36dN2HHLg8 oQtJynu/UU9KbD//c1R2dx6BXQ7n3Li60i91pjlyKS6bx0XArvPd6OuzR7XplhHs +BCHB7lih2C4p+L9qfi3dyg= -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:43 2026 by rpki-client