$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa File: 685F0CBA031211F1BBBCC8A9163D8C67.roa (raw, json) Hash identifier: g5UmrlWq9GTSUGbHAMRhatuI9oBv3eJndDPZhY3W3Xg= Subject key identifier: BA:A3:D1:58:E2:E7:04:B3:F4:42:DE:90:65:89:60:DC:A5:42:68:DE Certificate issuer: /CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Certificate serial: 03BB Authority key identifier: F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa Signing time: Sun 01 Mar 2026 12:02:09 +0000 ROA not before: Fri 06 Feb 2026 04:15:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135377 IP address blocks: 103.211.194.0/24 maxlen: 24 103.211.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B07, serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Validity Not Before: Feb 6 04:15:02 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42ac1-3f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:10:98:7b:96:07:bd:10:bc:4f:57:c8:64:cf: e4:5f:b4:e9:b9:31:02:b0:c8:82:b0:e9:c7:c5:db: 3c:d9:28:3c:e7:b7:cb:46:fb:b1:77:a7:21:ea:ce: af:b4:0f:75:75:af:3a:0c:11:60:1c:da:ba:c8:76: 1c:54:da:76:98:bf:41:b1:b3:19:9a:30:34:d0:d6: 6f:9b:72:6a:56:f9:82:79:c8:b8:46:f4:16:93:b4: 97:94:25:e0:4c:8d:37:61:e6:fd:48:2a:94:94:33: 18:29:db:86:96:78:fa:43:1e:d2:3c:39:37:ad:c4: 8b:6e:4a:44:44:9a:ad:a6:83:03:3b:ca:05:cd:e7: 81:ed:51:21:aa:2c:fa:cc:ec:45:fb:b2:3d:7a:92: 1e:42:da:82:c7:a2:f3:b5:44:63:b2:15:20:ab:91: fb:d1:66:4a:2b:4a:ee:93:1d:f1:55:23:09:19:83: c6:82:bc:4d:09:0c:07:01:2e:64:a5:92:86:d0:92: 8c:36:33:ef:7e:b6:7e:19:92:7e:e4:5a:10:d0:cd: ec:dc:e0:30:a5:01:5b:0a:ae:52:b8:5f:d9:57:c4: fd:c6:93:f2:c3:b2:eb:b2:36:ec:82:5e:f7:48:3c: 88:91:73:b4:8c:e1:5c:4b:c4:c2:5d:28:8c:91:09: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A3:D1:58:E2:E7:04:B3:F4:42:DE:90:65:89:60:DC:A5:42:68:DE X509v3 Authority Key Identifier: keyid:F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.211.194.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:c3:99:50:5e:e7:a0:88:d0:f0:fd:52:e4:c2:4f:b7:8c:47: 5d:ec:ee:c2:ad:36:3d:dd:bd:a8:9d:da:22:33:b7:d7:f5:04: 72:d6:8a:f4:4e:fe:6c:12:34:b6:4f:73:08:37:39:9f:91:4c: bb:6b:fe:b0:43:f8:66:51:b7:4c:fb:9b:f4:0c:56:fb:a3:99: c0:6f:7f:d0:30:15:26:a2:4c:d5:c1:a1:7a:00:f6:c7:cb:3c: 2d:34:f7:e8:42:50:47:bf:03:31:bf:8e:52:f4:17:82:9b:61: 9d:f2:6d:b3:84:ce:75:e9:3c:45:40:04:35:a8:11:82:5f:88: 0a:ae:73:23:3d:64:c9:0a:df:1a:ab:23:de:d1:35:41:1a:44: 69:f2:fb:ab:5d:4b:3b:b6:71:86:aa:c7:63:3a:55:a3:dc:5f: c4:9e:34:3a:13:99:a7:f5:dc:36:ff:db:76:cf:2b:ab:5f:a6: 2a:1c:a4:a3:1f:2c:d3:5e:2c:64:cf:78:7d:ab:30:07:90:c2: d4:a6:c6:de:fb:42:20:7a:b7:e7:f0:80:d6:32:8a:5f:35:04: bd:3a:f4:a3:b6:79:79:2f:69:65:94:d4:22:65:bb:f1:b6:97: 01:c6:92:05:84:5a:cd:5e:bc:a1:d0:71:af:63:49:d2:25:be: 85:a2:4a:16 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCMDcxMTAvBgNVBAUTKEY0RkZGRTYwRTdENjNCRTRGMTgxOUJCQTg0Q0Q1QjIw NDc0QzkxQzYwHhcNMjYwMjA2MDQxNTAyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmFjMS0zZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhCYe5YHvRC8T1fIZM/kX7TpuTECsMiCsOnHxds82Sg857fLRvuxd6ch6s6v tA91da86DBFgHNq6yHYcVNp2mL9BsbMZmjA00NZvm3JqVvmCeci4RvQWk7SXlCXg TI03Yeb9SCqUlDMYKduGlnj6Qx7SPDk3rcSLbkpERJqtpoMDO8oFzeeB7VEhqiz6 zOxF+7I9epIeQtqCx6LztURjshUgq5H70WZKK0rukx3xVSMJGYPGgrxNCQwHAS5k pZKG0JKMNjPvfrZ+GZJ+5FoQ0M3s3OAwpQFbCq5SuF/ZV8T9xpPyw7Lrsjbsgl73 SDyIkXO0jOFcS8TCXSiMkQn9LwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLqj0Vji 5wSz9ELekGWJYNylQmjeMB8GA1UdIwQYMBaAFPT//mDn1jvk8YGbuoTNWyBHTJHG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUIwNy83MkE0OEE3NkND RTExMUVDQkJBMDVDMkNDNEY5QUUwMi85UF8tWU9mV08tVHhnWnU2aE0xYklFZE1r Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQXy1ZT2ZXTy1UeGdadTZoTTFiSUVkTWtjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCMDcvNzJBNDhBNzZDQ0UxMTFFQ0JCQTA1QzJDQzRGOUFFMDIvNjg1RjBDQkEw MzEyMTFGMUJCQkNDOEE5MTYzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9PCMA0GCSqGSIb3DQEBCwUAA4IBAQB/w5lQXuegiNDw/VLkwk+3 jEdd7O7CrTY93b2ondoiM7fX9QRy1or0Tv5sEjS2T3MINzmfkUy7a/6wQ/hmUbdM +5v0DFb7o5nAb3/QMBUmokzVwaF6APbHyzwtNPfoQlBHvwMxv45S9BeCm2Gd8m2z hM516TxFQAQ1qBGCX4gKrnMjPWTJCt8aqyPe0TVBGkRp8vurXUs7tnGGqsdjOlWj 3F/EnjQ6E5mn9dw2/9t2zyurX6YqHKSjHyzTXixkz3h9qzAHkMLUpsbe+0Igerfn 8IDWMopfNQS9OvSjtnl5L2lllNQiZbvxtpcBxpIFhFrNXryh0HGvY0nSJb6FokoW -----END CERTIFICATE-----Generated at Mon Mar 2 04:23:25 2026 by rpki-client