$ rpki-client -vvf rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa File: E68BF368DD9911EF85614A53C4F9AE02.roa (raw, json) Hash identifier: oF66sE4VVdSppAlWLDJZOCJCTi3cKgb7nU6uP9HE/vw= Subject key identifier: 06:A4:DD:40:A8:D8:64:7A:F9:10:13:E2:36:88:D0:1F:38:24:E9:EB Certificate issuer: /CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Certificate serial: 08A0 Authority key identifier: B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:23:39 +0000 ROA not before: Sun 04 May 2025 21:01:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137000 IP address blocks: 103.149.58.0/24 maxlen: 24 103.149.59.0/24 maxlen: 24 2405:e3c0::/32 maxlen: 32 2405:e3c0::/48 maxlen: 48 2405:e3c0:1::/48 maxlen: 48 2405:e3c0:2::/48 maxlen: 48 2405:e3c0:3::/48 maxlen: 48 2405:e3c0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E83B, serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Validity Not Before: May 4 21:01:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4761b-ce7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b0:b5:fd:68:c1:5d:97:f2:66:53:6a:5b:c8: c0:a2:f9:9a:3d:35:c5:df:d8:3d:84:ff:2a:b6:dc: 07:13:3a:83:9a:aa:1f:4c:a2:58:bf:c1:5a:c2:ca: 51:d0:46:29:19:08:a5:09:ff:d1:05:c9:e5:84:e3: 82:f3:91:d3:fa:14:8c:58:f8:9c:4e:31:da:bf:78: 14:03:19:2a:dc:ec:a5:ae:6f:2e:f0:e8:40:15:e2: b8:3f:f2:3f:40:bb:3e:eb:cd:af:4f:49:61:26:52: aa:b0:94:c5:db:72:2b:d7:b7:98:87:2f:14:91:b1: c0:d0:a5:03:40:1c:e5:5f:05:76:0c:95:47:49:12: 84:5f:21:10:0b:5d:fb:00:c8:f3:a8:5f:5a:06:1d: 0b:47:28:84:67:a6:50:5d:f0:ca:a5:4d:ee:36:4f: 8a:09:fa:25:0a:28:aa:c6:48:20:56:95:38:ed:89: d2:b7:7b:57:91:e7:78:aa:25:d4:4b:cf:7f:82:8a: 58:f2:e6:bd:d4:62:56:1d:1e:88:33:f6:10:5d:dc: 80:a1:22:d7:c7:80:b6:51:0f:92:05:62:2f:d8:89: e8:71:90:03:9d:41:28:16:0d:9c:22:f7:c0:f6:d4: 28:e6:1a:91:a8:d1:fd:b8:24:65:c6:eb:7f:95:e3: 0a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A4:DD:40:A8:D8:64:7A:F9:10:13:E2:36:88:D0:1F:38:24:E9:EB X509v3 Authority Key Identifier: keyid:B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/E68BF368DD9911EF85614A53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.58.0/23 IPv6: 2405:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:70:2c:17:f5:26:ce:03:4e:3c:47:0d:1a:03:56:6d:7c:e5: 88:a1:76:09:c8:0c:95:53:2b:dd:62:97:70:b7:d5:ee:17:03: f3:41:ec:c3:6d:ac:d2:2b:01:78:ef:0f:ea:14:73:9e:b6:46: e8:d4:e9:9b:0a:3d:91:86:7b:56:8f:d6:26:0a:20:45:79:38: 8f:ad:6e:19:ce:c4:25:5e:5a:06:63:5b:29:a8:15:52:86:d3: be:c8:5d:e0:56:92:e7:0c:ac:ad:c2:6b:d8:be:80:d1:b2:32: a6:f2:da:2e:76:53:c4:6a:50:b8:f8:37:02:7c:0c:e0:5e:4c: 55:7c:62:14:b6:83:37:6b:88:d7:02:d5:0a:e1:b4:6d:2b:14: 21:4b:51:14:1c:33:ca:cc:0d:88:21:64:9b:3c:b3:a6:d5:eb: bd:a2:7b:4e:df:de:b2:f8:0f:81:c7:fb:1c:41:7d:43:86:3d: 90:90:c2:36:61:32:62:c4:fc:c6:7b:54:98:0b:f6:e0:a5:f2: f4:cc:09:dd:71:07:2a:b8:80:38:22:5f:47:40:99:58:85:22: dc:15:6d:dd:1c:bb:86:8b:b0:11:0b:c9:4d:15:36:9d:1e:eb: f2:f9:d8:d3:de:2d:14:79:cf:ff:c2:72:4a:9a:3f:49:0e:9a: 3e:60:9e:9f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4M0IxMTAvBgNVBAUTKEI4QTYyQ0YxREU4QjI2MkUxNDczN0Q5M0VFM0U2RjM2 QzNBMEUxQzkwHhcNMjUwNTA0MjEwMTI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzYxYi1jZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rC1/WjBXZfyZlNqW8jAovmaPTXF39g9hP8qttwHEzqDmqofTKJYv8FawspR 0EYpGQilCf/RBcnlhOOC85HT+hSMWPicTjHav3gUAxkq3Oylrm8u8OhAFeK4P/I/ QLs+682vT0lhJlKqsJTF23Ir17eYhy8UkbHA0KUDQBzlXwV2DJVHSRKEXyEQC137 AMjzqF9aBh0LRyiEZ6ZQXfDKpU3uNk+KCfolCiiqxkggVpU47YnSt3tXked4qiXU S89/gopY8ua91GJWHR6IM/YQXdyAoSLXx4C2UQ+SBWIv2InocZADnUEoFg2cIvfA 9tQo5hqRqNH9uCRlxut/leMKWwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAak3UCo 2GR6+RAT4jaI0B84JOnrMB8GA1UdIwQYMBaAFLimLPHeiyYuFHN9k+4+bzbDoOHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTgzQi83OTJEMTQ4QUYy ODExMUVBOEE2RkM2NkRDNEY5QUUwMi91S1lzOGQ2TEppNFVjMzJUN2o1dk5zT2c0 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLWXM4ZDZMSmk0VWMzMlQ3ajV2TnNPZzRjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU4M0IvNzkyRDE0OEFGMjgxMTFFQThBNkZDNjZEQzRGOUFFMDIvRTY4QkYzNjhE RDk5MTFFRjg1NjE0QTUzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5U6MA0EAgACMAcDBQAkBePAMA0GCSqGSIb3DQEBCwUAA4IBAQBf cCwX9SbOA048Rw0aA1ZtfOWIoXYJyAyVUyvdYpdwt9XuFwPzQezDbazSKwF47w/q FHOetkbo1OmbCj2RhntWj9YmCiBFeTiPrW4ZzsQlXloGY1spqBVShtO+yF3gVpLn DKytwmvYvoDRsjKm8toudlPEalC4+DcCfAzgXkxVfGIUtoM3a4jXAtUK4bRtKxQh S1EUHDPKzA2IIWSbPLOm1eu9ontO396y+A+Bx/scQX1Dhj2QkMI2YTJixPzGe1SY C/bgpfL0zAndcQcquIA4Il9HQJlYhSLcFW3dHLuGi7ARC8lNFTadHuvy+djT3i0U ec//wnJKmj9JDpo+YJ6f -----END CERTIFICATE-----Generated at Sun Mar 15 01:37:21 2026 by rpki-client