$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa File: 688AF35CC09511EC8CFFDB10C4F9AE02.roa (raw, json) Hash identifier: v0A241ZziUX3uaVSLzG3z9mBGcQeWrJ5+pSpRLlwUy8= Subject key identifier: A6:73:57:35:B2:CD:C8:A2:7E:88:0C:04:C8:33:F1:5C:22:BA:8C:21 Certificate issuer: /CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Certificate serial: 03CF Authority key identifier: F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:57:41 +0000 ROA not before: Mon 05 May 2025 01:06:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.186.116.0/24 maxlen: 24 103.186.117.0/24 maxlen: 24 2001:df0:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB5F, serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Validity Not Before: May 5 01:06:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3ff85-8044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:86:9c:aa:ca:15:33:b5:c9:ee:c3:74:fc:49: c8:fe:2e:80:46:43:1f:0a:f0:20:0a:55:cf:21:d8: cf:26:5a:cf:d2:3b:a0:03:9b:da:60:28:76:74:23: 0a:53:bf:57:97:25:26:05:7b:eb:46:58:9a:7b:5f: 19:d0:cd:e8:39:33:70:57:37:78:9a:14:5d:7e:2d: 07:de:b0:eb:44:78:36:b7:c0:2f:0b:48:a2:02:3a: 6f:5c:89:18:99:a2:1e:e5:49:be:64:08:83:b7:ff: b7:eb:35:92:c9:d2:51:fc:d8:af:72:9c:ca:9b:cc: 48:16:07:75:35:d7:7c:9c:1c:df:88:31:6b:8b:d5: a5:d6:b4:c6:22:90:3d:a2:15:7f:fa:b0:fd:f8:cc: 23:f4:a4:20:11:64:6e:2a:a3:ee:ef:1c:8b:3c:5a: 84:59:1e:87:17:a3:c6:98:62:d1:5c:7b:14:2c:8b: e2:15:9e:66:57:ac:55:61:43:c2:09:97:a3:ad:77: 8c:d6:5d:56:92:58:14:cc:f9:b2:60:62:c6:ec:8a: 96:f0:60:46:ca:f8:53:ff:2d:fb:a8:60:c1:2d:46: 7a:5f:2c:86:fb:70:85:be:87:58:a2:ec:c3:1b:9c: de:63:f8:b3:34:52:e1:97:30:75:bf:31:ce:d0:00: 24:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:73:57:35:B2:CD:C8:A2:7E:88:0C:04:C8:33:F1:5C:22:BA:8C:21 X509v3 Authority Key Identifier: keyid:F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.116.0/23 IPv6: 2001:df0:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption 6b:5b:88:fc:e5:fa:cd:50:9f:d2:33:98:75:93:2e:6f:9a:8f: c7:13:55:da:1e:ac:33:b5:e5:a4:93:ff:81:47:64:05:d6:1c: 01:48:f5:51:0f:f2:84:d2:3c:8a:84:fe:1a:ca:ba:1a:0c:04: bb:93:3d:99:24:c4:0d:16:03:05:f2:7f:9b:0b:7c:2a:ce:5a: 1d:1f:a8:74:22:27:b4:6f:a0:58:c5:e9:6e:1a:91:d8:8e:fe: ca:1b:85:85:10:b2:5a:1d:99:76:a6:e8:16:16:be:af:3e:ef: 6a:a5:0f:fd:ed:3d:f3:73:b5:45:ee:4b:59:00:2f:1c:9c:b6: 8b:bf:d2:ee:75:94:60:c9:8e:75:55:eb:8d:64:09:5e:cd:2b: 6c:f0:00:af:f3:29:48:76:58:e7:a0:10:1e:3c:a6:ae:d6:6e: 99:7f:e5:da:11:a3:e7:1e:ad:f5:4b:b8:04:90:e5:7f:4a:15: 92:90:b1:f5:e4:26:76:f5:62:39:35:82:5f:e4:58:51:0f:f9: af:c1:c5:ac:67:5f:7e:76:6e:da:0c:95:ee:37:f8:9e:b1:d1: 48:17:0c:29:12:2e:0d:50:8f:c9:12:77:f4:71:b4:da:d3:88: b8:dc:53:3b:4a:ff:11:dc:c2:d6:dc:63:b5:98:b1:89:90:f2: b6:95:8a:82 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCNUYxMTAvBgNVBAUTKEYwMkE1RDEwMkY3RjMzQjI2MTExQjRBMjg3NDJGN0JB MkYxRTlBOTkwHhcNMjUwNTA1MDEwNjQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmY4NS04MDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4acqsoVM7XJ7sN0/EnI/i6ARkMfCvAgClXPIdjPJlrP0jugA5vaYCh2dCMK U79XlyUmBXvrRliae18Z0M3oOTNwVzd4mhRdfi0H3rDrRHg2t8AvC0iiAjpvXIkY maIe5Um+ZAiDt/+36zWSydJR/NivcpzKm8xIFgd1Ndd8nBzfiDFri9Wl1rTGIpA9 ohV/+rD9+Mwj9KQgEWRuKqPu7xyLPFqEWR6HF6PGmGLRXHsULIviFZ5mV6xVYUPC CZejrXeM1l1WklgUzPmyYGLG7IqW8GBGyvhT/y37qGDBLUZ6XyyG+3CFvodYouzD G5zeY/izNFLhlzB1vzHO0AAkFwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKZzVzWy zciifogMBMgz8VwiuowhMB8GA1UdIwQYMBaAFPAqXRAvfzOyYRG0oodC97ovHpqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I1Ri8wMDVFNTlBQ0Mw OTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003SmhFYlNpaDBMM3VpOGVt cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDcGRFQzlfTTdKaEViU2loMEwzdWk4ZW1way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NCNUYvMDA1RTU5QUNDMDkyMTFFQzgwNDRDMTY0QzRGOUFFMDIvNjg4QUYzNUND MDk1MTFFQzhDRkZEQjEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7p0MA8EAgACMAkDBwAgAQ3wqMAwDQYJKoZIhvcNAQELBQADggEB AGtbiPzl+s1Qn9IzmHWTLm+aj8cTVdoerDO15aST/4FHZAXWHAFI9VEP8oTSPIqE /hrKuhoMBLuTPZkkxA0WAwXyf5sLfCrOWh0fqHQiJ7RvoFjF6W4akdiO/sobhYUQ slodmXam6BYWvq8+72qlD/3tPfNztUXuS1kALxyctou/0u51lGDJjnVV641kCV7N K2zwAK/zKUh2WOegEB48pq7Wbpl/5doRo+cerfVLuASQ5X9KFZKQsfXkJnb1Yjk1 gl/kWFEP+a/BxaxnX352btoMle43+J6x0UgXDCkSLg1Qj8kSd/RxtNrTiLjcUztK /xHcwtbcY7WYsYmQ8raVioI= -----END CERTIFICATE-----Generated at Thu Mar 26 08:32:09 2026 by rpki-client