$ rpki-client -vvf rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa File: 4CC86698C4FA11EE86A51C0EC4F9AE02.roa (raw, json) Hash identifier: Brlpv06ZI3cq/B6rjsLV19lKDGbhXfmVzTklV/FrQyE= Subject key identifier: 89:9D:BD:06:CD:A7:D2:01:C5:66:1C:46:32:AA:1C:8B:29:AA:AE:2E Certificate issuer: /CN=A919C19A/serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Certificate serial: 0506 Authority key identifier: D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:08:26 +0000 ROA not before: Fri 12 Dec 2025 23:19:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141731 IP address blocks: 103.159.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C19A, serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Validity Not Before: Dec 12 23:19:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46479-f42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:a2:ce:0b:aa:53:28:b0:cd:19:be:20:f1: e7:aa:e7:c6:3d:9b:70:87:64:4c:03:bd:f5:db:e2: a2:64:14:8a:e2:27:ea:c5:90:57:42:d9:ad:7e:6e: 2a:ce:e0:6a:cc:23:3e:65:df:67:69:d7:e7:fd:62: 20:5b:b4:3a:75:f0:90:4a:a1:e2:74:26:35:ec:35: aa:9f:ee:71:33:2f:6f:02:e5:e3:2b:a9:07:4e:55: 22:27:80:3a:0d:e3:fd:a2:e5:f8:4a:6d:b3:3b:af: ce:bc:cd:fb:f3:a0:58:ab:84:98:72:dd:93:84:5b: ba:e9:36:51:f5:2c:e8:8a:c3:01:ae:bf:b9:10:8f: 5b:ad:e7:d4:30:42:b8:d9:7b:94:aa:c0:39:70:75: 47:5b:e9:95:be:10:b6:de:1b:a3:f8:08:49:00:c6: 65:ec:b0:d4:3a:fd:0f:20:54:be:d4:19:bd:ab:00: 7e:a9:f8:9c:0f:ff:b7:00:29:64:7c:82:2b:8f:d6: da:16:e0:74:09:73:29:30:e0:ed:79:29:3d:9b:d5: 31:e2:27:24:63:ec:df:6a:a7:1e:f2:50:a5:78:f4: 4a:06:13:94:de:93:66:1b:d5:bf:93:4a:e0:74:04: 8b:b8:99:60:15:9c:9c:bd:76:dc:77:e5:f9:e5:b7: c7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9D:BD:06:CD:A7:D2:01:C5:66:1C:46:32:AA:1C:8B:29:AA:AE:2E X509v3 Authority Key Identifier: keyid:D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.126.0/24 Signature Algorithm: sha256WithRSAEncryption aa:d0:11:38:eb:5c:f4:18:b3:22:46:63:09:c5:e5:66:91:12: e0:ee:4b:f4:9f:a2:a6:be:bf:07:ac:08:b9:cb:ba:19:8b:87: 47:80:6e:cb:6b:c9:17:52:40:dc:6c:2d:82:ae:20:99:c1:ff: 9c:fd:33:07:6c:98:2d:1e:28:57:10:e7:25:51:19:ce:90:f9: 25:75:c6:95:42:34:77:70:12:53:4b:f2:93:d0:25:ee:47:24: b4:72:e9:8c:70:64:d6:7c:9b:00:e7:9f:6e:b5:d0:a6:56:30: e6:1d:b9:d4:86:c3:46:26:13:2d:b3:1f:26:9f:d7:e7:08:cf: 19:45:8f:ab:b5:e8:da:96:0a:c5:bb:15:93:05:f2:f7:3d:42: 08:00:84:f7:5d:79:23:5f:53:47:93:34:b9:61:fe:07:01:cd: 34:53:c4:63:5a:8a:92:c5:ce:a2:91:2c:e7:b8:ca:16:ad:3b: 58:44:9c:e8:0c:9e:ff:09:45:6f:dc:97:28:2e:07:95:8d:47: 7b:3d:86:39:61:34:e3:78:18:69:40:b3:ff:52:5f:fe:57:d7: eb:9e:fb:96:a0:55:08:66:34:82:0e:1e:81:41:29:a6:d9:46: c3:dd:10:e7:3f:f0:be:aa:57:07:ad:b7:7c:88:9b:41:51:32: e8:03:ee:d0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMxOUExMTAvBgNVBAUTKEQ4OUNGRjZEN0Q5NTUxQUU3MDREOTNFOTc1NTM2MTZD OERCMTNGNUUwHhcNMjUxMjEyMjMxOTUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ3OS1mNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNuizguqUyiwzRm+IPHnqufGPZtwh2RMA7312+KiZBSK4ifqxZBXQtmtfm4q zuBqzCM+Zd9nadfn/WIgW7Q6dfCQSqHidCY17DWqn+5xMy9vAuXjK6kHTlUiJ4A6 DeP9ouX4Sm2zO6/OvM3786BYq4SYct2ThFu66TZR9SzoisMBrr+5EI9brefUMEK4 2XuUqsA5cHVHW+mVvhC23huj+AhJAMZl7LDUOv0PIFS+1Bm9qwB+qficD/+3AClk fIIrj9baFuB0CXMpMODteSk9m9Ux4ickY+zfaqce8lClePRKBhOU3pNmG9W/k0rg dASLuJlgFZycvXbcd+X55bfHHwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFImdvQbN p9IBxWYcRjKqHIspqq4uMB8GA1UdIwQYMBaAFNic/219lVGucE2T6XVTYWyNsT9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzE5QS8yNEFCMkMzRTRG OEQxMUVDODE1NzEyNUZDNEY5QUUwMi8ySnpfYlgyVlVhNXdUWlBwZFZOaGJJMnhQ MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJKel9iWDJWVWE1d1RaUHBkVk5oYkkyeFAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMxOUEvMjRBQjJDM0U0RjhEMTFFQzgxNTcxMjVGQzRGOUFFMDIvNENDODY2OThD NEZBMTFFRTg2QTUxQzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ59+MA0GCSqGSIb3DQEBCwUAA4IBAQCq0BE461z0GLMiRmMJxeVm kRLg7kv0n6Kmvr8HrAi5y7oZi4dHgG7La8kXUkDcbC2CriCZwf+c/TMHbJgtHihX EOclURnOkPkldcaVQjR3cBJTS/KT0CXuRyS0cumMcGTWfJsA559utdCmVjDmHbnU hsNGJhMtsx8mn9fnCM8ZRY+rtejalgrFuxWTBfL3PUIIAIT3XXkjX1NHkzS5Yf4H Ac00U8RjWoqSxc6ikSznuMoWrTtYRJzoDJ7/CUVv3JcoLgeVjUd7PYY5YTTjeBhp QLP/Ul/+V9frnvuWoFUIZjSCDh6BQSmm2UbD3RDnP/C+qlcHrbd8iJtBUTLoA+7Q -----END CERTIFICATE-----Generated at Mon Mar 2 07:26:45 2026 by rpki-client