$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/C564E80017E911EF9D471E18C4F9AE02.roa File: C564E80017E911EF9D471E18C4F9AE02.roa (raw, json) Hash identifier: qze2BxN1ZqkUR8sLJAr7IWqQzGJrYs19cA2fz8g+u+Q= Subject key identifier: 88:31:58:37:38:D9:40:4F:CF:03:82:3D:51:46:AC:28:70:97:B1:B8 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: 0164 Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/C564E80017E911EF9D471E18C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:14:14 +0000 ROA not before: Mon 03 Nov 2025 05:20:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134688 IP address blocks: 103.10.72.0/22 maxlen: 24 103.195.52.0/23 maxlen: 24 103.207.154.0/23 maxlen: 23 121.46.120.0/22 maxlen: 24 203.128.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Nov 3 05:20:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59b36-499e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e0:b3:a4:2d:92:8a:af:b3:58:4a:1e:d5:8e: 07:22:3a:06:03:54:37:e1:a3:da:a8:7b:6b:c6:d1: a6:90:cd:3f:5c:ba:e2:66:a7:b3:61:26:8b:45:1c: 04:36:c8:6e:72:34:d5:66:e1:e2:40:50:ef:eb:07: 29:69:a7:37:3d:c7:43:23:a0:41:1f:a4:c3:97:dc: b2:4b:50:65:c1:60:d8:40:c3:cd:42:3d:31:b5:05: b8:47:ee:bb:ab:f7:b6:5a:e6:59:81:7d:8a:99:65: d3:8a:06:e8:67:c8:f8:2a:0e:8f:70:9f:d2:fa:03: 27:c9:d7:08:2f:47:54:f5:26:59:e8:00:6e:14:7c: df:9c:2c:3f:f1:61:0a:78:06:8b:3b:58:46:3f:1a: c1:5c:e4:71:38:00:f9:e8:0f:f9:c1:a3:0f:7c:d5: bb:a5:70:45:1f:0b:bb:38:da:66:8c:0e:ec:8a:10: c9:82:e1:b6:a5:d7:eb:e1:e0:4a:df:d1:5b:c8:38: c4:c6:da:cf:92:09:46:95:41:d9:3a:e6:93:b2:a1: ed:65:2b:37:a3:cb:c7:07:2a:c5:df:3c:b3:80:29: f1:6d:97:7b:98:c7:5a:64:cd:5c:89:19:6c:c6:c2: 8e:a5:c3:c8:c6:99:d2:f6:f0:37:bb:1f:bf:9c:08: 62:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:31:58:37:38:D9:40:4F:CF:03:82:3D:51:46:AC:28:70:97:B1:B8 X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/C564E80017E911EF9D471E18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.10.72.0/22 103.195.52.0/23 103.207.154.0/23 121.46.120.0/22 203.128.232.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:f4:c7:0e:bd:70:ac:c1:e9:22:0f:f7:73:0d:1c:fd:7d:78: 59:47:7b:85:33:f7:be:5c:23:d2:1c:85:c7:95:d4:0f:29:ee: ec:b2:73:cc:91:a8:59:0c:e9:80:0c:79:0b:ae:6c:c8:ce:9b: 62:de:a0:73:03:be:7a:3f:93:d7:87:79:e2:95:e6:76:53:7e: 22:9e:b1:43:82:c3:3a:a4:e1:00:1c:fb:80:1c:56:99:41:2b: cd:2b:16:ac:3d:ef:66:17:e0:30:08:c0:03:97:f2:2a:91:6c: ec:6e:ce:fe:d2:1a:d4:8d:1a:69:1b:8e:d9:13:27:24:cc:b6: 0d:2d:1a:9a:3f:81:e2:81:6d:b0:06:04:1c:06:1f:c3:e0:f9: 75:eb:cb:b1:02:0e:25:6c:33:1f:5c:15:ea:8d:59:4c:1f:7f: 9f:ac:7f:a5:81:23:68:52:7b:03:9a:e3:96:8e:72:60:10:55: 53:7c:dd:e1:90:ec:6a:82:31:de:8c:8d:15:a7:ff:8f:6a:3f: 46:96:45:c7:2d:bb:29:23:d1:8d:f5:ff:16:0a:07:2c:7b:ec: 68:e4:a4:9c:a2:1d:aa:82:10:ee:41:c0:bd:60:fc:37:dc:a2: 88:b3:af:15:da:8f:24:00:59:b5:19:0e:e4:fd:af:67:bb:36: fa:9f:15:2a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUxMTAzMDUyMDI1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWIzNi00OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8uCzpC2Siq+zWEoe1Y4HIjoGA1Q34aPaqHtrxtGmkM0/XLriZqezYSaLRRwE NshucjTVZuHiQFDv6wcpaac3PcdDI6BBH6TDl9yyS1BlwWDYQMPNQj0xtQW4R+67 q/e2WuZZgX2KmWXTigboZ8j4Kg6PcJ/S+gMnydcIL0dU9SZZ6ABuFHzfnCw/8WEK eAaLO1hGPxrBXORxOAD56A/5waMPfNW7pXBFHwu7ONpmjA7sihDJguG2pdfr4eBK 39FbyDjExtrPkglGlUHZOuaTsqHtZSs3o8vHByrF3zyzgCnxbZd7mMdaZM1ciRls xsKOpcPIxpnS9vA3ux+/nAhiZQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFIgxWDc4 2UBPzwOCPVFGrChwl7G4MB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ2OTkvNTU4NkVGNkExN0U5MTFFRkEyQ0Q1MDE3QzRGOUFFMDIvQzU2NEU4MDAx N0U5MTFFRjlENDcxRTE4QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZwpIAwQBZ8M0AwQBZ8+aAwQCeS54AwQCy4DoMA0GCSqGSIb3DQEB CwUAA4IBAQB79McOvXCswekiD/dzDRz9fXhZR3uFM/e+XCPSHIXHldQPKe7ssnPM kahZDOmADHkLrmzIzpti3qBzA756P5PXh3nileZ2U34inrFDgsM6pOEAHPuAHFaZ QSvNKxasPe9mF+AwCMADl/IqkWzsbs7+0hrUjRppG47ZEyckzLYNLRqaP4HigW2w BgQcBh/D4Pl168uxAg4lbDMfXBXqjVlMH3+frH+lgSNoUnsDmuOWjnJgEFVTfN3h kOxqgjHejI0Vp/+Paj9GlkXHLbspI9GN9f8WCgcse+xo5KScoh2qghDuQcC9YPw3 3KKIs68V2o8kAFm1GQ7k/a9nuzb6nxUq -----END CERTIFICATE-----Generated at Thu Mar 26 19:33:12 2026 by rpki-client