$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa File: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (raw, json) Hash identifier: DIxhiXc0lWrP1HFp4dV9JN6j/Zz8GVR/zOlWSXrjAEs= Subject key identifier: 8F:03:88:6C:43:16:14:FE:DB:F8:85:20:37:54:31:D8:5E:5A:35:CA Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 063E Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:51:05 +0000 ROA not before: Tue 29 Jul 2025 00:05:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138246 IP address blocks: 103.168.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61, serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Jul 29 00:05:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40c09-4434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:65:8e:ba:22:03:9e:e7:1a:d6:f0:b0:83:b5: 8d:4f:d1:71:c6:1e:2a:8b:1c:a9:8b:73:78:b8:e1: d7:75:1d:72:2e:82:3d:5f:89:33:09:18:5f:71:cc: f1:4d:cd:04:0b:55:29:e9:34:c6:2b:de:92:09:59: 69:b6:57:d6:00:77:0e:bf:1c:99:78:0a:af:3a:e8: b4:07:d4:6f:ff:ec:97:07:fd:b8:f4:dd:ca:dc:bd: 86:84:1c:cd:06:47:30:66:bf:98:81:68:c8:62:85: 1e:10:8f:09:11:02:29:ed:3b:de:88:13:90:a1:10: ad:7c:3e:cb:1a:52:80:97:cd:52:81:92:7a:8e:e1: c6:64:4a:d3:26:a8:f1:38:99:11:5c:5d:de:27:64: 93:2b:a7:08:e5:14:0c:b8:2b:da:d8:e6:c8:09:4e: 68:89:5a:20:61:18:40:31:91:f1:6f:60:53:1c:30: 2a:b4:ae:d0:ef:88:aa:07:1d:b6:60:42:db:0e:eb: 69:29:d3:ae:4e:0c:4f:e7:03:3a:b1:30:68:4a:a3: 7f:6a:e6:ea:d2:48:f2:98:0a:99:f2:51:6c:61:9b: 44:99:85:39:26:02:2b:04:3c:8f:05:03:58:99:5d: 42:0a:9c:eb:4b:ae:53:6f:b7:2e:77:74:5e:9f:90: a7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:03:88:6C:43:16:14:FE:DB:F8:85:20:37:54:31:D8:5E:5A:35:CA X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/C2EFC706CAAE11EBA95C5E64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.168.18.0/23 Signature Algorithm: sha256WithRSAEncryption 93:61:e3:88:9d:bb:c8:f0:3c:75:95:f5:0d:bd:3c:e2:bc:b5: 5d:8d:0a:81:03:a1:34:a2:ed:96:0d:81:ba:16:62:7c:c3:e2: 7f:61:6b:db:0e:f0:e3:50:c1:84:22:09:fb:1a:97:2a:ba:e7: 08:0a:83:22:04:91:2c:3d:c0:b5:3b:54:1e:ce:5f:ad:8e:3b: 29:97:e2:8c:f8:50:f7:6a:3d:11:e4:01:b1:09:14:ff:48:12: ed:6e:94:ef:19:fb:58:13:cd:ff:01:98:ca:a0:91:a3:d0:c7: b4:ec:1a:47:79:19:3b:81:ac:10:f3:c8:fe:2a:9a:65:08:10: aa:c1:46:e8:d4:7a:38:8e:1c:e1:b1:94:4e:8c:94:9f:72:22: 4f:13:d4:5d:8f:bd:fe:36:79:8f:2a:1e:64:2b:a9:44:e0:9f: dc:33:01:bf:a4:43:c2:d3:60:1e:79:0a:e5:a9:72:b0:c4:b5: d5:64:6f:25:2a:85:96:c0:ea:02:27:ad:02:ad:70:1d:a4:2f: 0b:76:8c:8c:06:90:75:74:f5:6a:80:04:c6:57:7d:a7:8b:2e: 74:c1:81:d5:9d:9b:19:1d:cf:32:44:2d:9d:e2:84:56:12:64: 29:c4:9f:89:50:2a:30:4e:40:9a:3f:35:1e:31:48:de:8a:25: e2:4c:53:90 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjUwNzI5MDAwNTM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGMwOS00NDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWWOuiIDnuca1vCwg7WNT9Fxxh4qixypi3N4uOHXdR1yLoI9X4kzCRhfcczx Tc0EC1Up6TTGK96SCVlptlfWAHcOvxyZeAqvOui0B9Rv/+yXB/249N3K3L2GhBzN BkcwZr+YgWjIYoUeEI8JEQIp7TveiBOQoRCtfD7LGlKAl81SgZJ6juHGZErTJqjx OJkRXF3eJ2STK6cI5RQMuCva2ObICU5oiVogYRhAMZHxb2BTHDAqtK7Q74iqBx22 YELbDutpKdOuTgxP5wM6sTBoSqN/aubq0kjymAqZ8lFsYZtEmYU5JgIrBDyPBQNY mV1CCpzrS65Tb7cud3Ren5CnlwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI8DiGxD FhT+2/iFIDdUMdheWjXKMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCNjEvQkU2OEQzMDJDQUFBMTFFQkI4QzAyQjVDQzRGOUFFMDIvQzJFRkM3MDZD QUFFMTFFQkE5NUM1RTY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6gSMA0GCSqGSIb3DQEBCwUAA4IBAQCTYeOInbvI8Dx1lfUNvTzi vLVdjQqBA6E0ou2WDYG6FmJ8w+J/YWvbDvDjUMGEIgn7GpcquucICoMiBJEsPcC1 O1Qezl+tjjspl+KM+FD3aj0R5AGxCRT/SBLtbpTvGftYE83/AZjKoJGj0Me07BpH eRk7gawQ88j+KpplCBCqwUbo1Ho4jhzhsZROjJSfciJPE9Rdj73+NnmPKh5kK6lE 4J/cMwG/pEPC02AeeQrlqXKwxLXVZG8lKoWWwOoCJ60CrXAdpC8LdoyMBpB1dPVq gATGV32niy50wYHVnZsZHc8yRC2d4oRWEmQpxJ+JUCowTkCaPzUeMUjeiiXiTFOQ -----END CERTIFICATE-----Generated at Mon Mar 2 03:58:06 2026 by rpki-client