
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa
File: 34DED1A2798711EEA7D73423C4F9AE02.roa (raw, json)
Hash identifier: SzmtgdmOFJZhk9jVTnV/yTe6X6D8nfk0jT/tOuImmRI=
Subject key identifier: 8A:A0:57:B7:57:26:A9:5D:E9:C4:05:34:09:2B:75:46:FE:68:2F:56
Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9
Certificate serial: 01F8
Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa
Signing time: Fri 19 Jun 2026 03:33:01 +0000
ROA not before: Fri 19 Jun 2026 03:33:01 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 133466
IP address blocks: 103.221.240.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl
rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 03:50:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 504 (0x1f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116AC6, serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9
Validity
Not Before: Jun 19 03:33:01 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a34b86d-29a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:6d:e3:f0:ea:b3:91:f4:0d:40:3e:b2:5a:
f0:23:c6:ec:f6:7f:99:5c:58:95:e9:87:10:2f:34:
ae:e7:53:45:71:ce:de:3c:c4:38:91:3e:e2:be:41:
ab:6e:f5:a3:40:f2:d4:03:ff:fd:ad:ba:13:f5:b3:
0c:75:5b:d5:74:a5:b2:99:5f:03:da:3c:c8:ec:d4:
80:77:b4:4e:db:91:b5:0d:7d:ee:26:7f:6a:0f:94:
84:54:7f:d3:4e:b4:ec:c8:0b:c1:db:4a:9f:d1:49:
c1:2d:a6:bf:42:ed:ef:c8:68:f0:31:08:76:21:5c:
2f:d8:b9:5a:30:40:7b:43:5f:47:f7:f9:56:f5:cb:
af:89:86:0c:9a:39:0f:bb:88:73:cd:7b:63:3b:a5:
36:f9:b3:94:bd:09:21:6c:dd:95:0c:32:86:97:9a:
57:aa:6d:1f:01:d3:33:4a:2c:5e:d0:13:64:5a:f0:
4b:7f:4a:47:9b:df:7e:93:84:e6:b0:de:db:2e:6b:
cb:44:02:cb:aa:a4:7a:48:16:af:13:a5:c1:31:fd:
10:e5:50:17:51:db:fc:51:28:2b:6d:0e:0b:72:99:
05:92:83:6b:24:6e:57:4f:b1:f1:40:84:18:b3:bb:
f7:fa:ab:f4:05:8f:98:67:c9:58:43:0e:88:7b:0e:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A0:57:B7:57:26:A9:5D:E9:C4:05:34:09:2B:75:46:FE:68:2F:56
X509v3 Authority Key Identifier:
keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.221.240.0/22
Signature Algorithm: sha256WithRSAEncryption
19:dd:32:dd:2a:08:0c:d5:4b:b1:44:68:ae:2e:09:49:e4:67:
1a:12:de:2a:6d:56:c6:22:21:c1:fb:ab:e8:8c:74:51:7f:c0:
c0:7b:48:65:c8:43:db:de:2d:4d:ca:62:80:f3:8c:d1:dd:7b:
06:a2:ba:86:e8:b0:cb:de:db:cd:cd:98:42:c6:5e:b0:74:82:
67:2c:ab:04:b1:c7:f1:92:15:91:c0:b5:6f:d6:c3:6e:06:4a:
e2:b0:95:aa:b5:1b:a9:db:8b:20:bd:09:22:c3:dc:31:28:08:
a7:50:46:b7:a1:5b:b6:f7:27:f0:ff:5d:5a:50:12:b4:c5:9c:
26:d4:81:a5:88:83:7d:26:58:0d:14:e4:41:2a:57:fd:5c:88:
7c:d1:db:af:5f:69:18:54:49:d9:56:b9:7a:cf:ed:4d:ab:4f:
e0:ea:b2:c4:b7:23:69:10:1e:2c:13:aa:67:09:33:70:8d:f8:
b2:ca:1a:c7:a7:b8:96:8c:c1:20:62:66:4a:81:99:57:e1:14:
ef:0a:96:1c:4d:68:b3:5b:b4:17:2b:80:86:50:73:84:d0:7f:
c0:b0:98:7b:7c:9e:d9:ed:69:81:1a:42:58:df:be:68:a5:98:
06:75:5d:1c:95:03:63:7a:b0:4a:fa:6e:bc:17:eb:1e:14:82:
b4:ab:75:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 09:24:46 2026 by rpki-client