$ rpki-client -vvf rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa File: 9EF724BE2A4911EE81BCF50FC4F9AE02.roa (raw, json) Hash identifier: 0pPo8g6m9fkgC10m1JkoC4zbRTfWIqGtQiM16LFE718= Subject key identifier: 29:DD:B9:B8:60:F7:72:64:65:35:48:D5:47:95:2F:EE:0B:37:AE:1B Certificate issuer: /CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Certificate serial: 0262 Authority key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa Signing time: Fri 05 Jun 2026 03:33:20 +0000 ROA not before: Fri 05 Jun 2026 03:33:20 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 7720 IP address blocks: 103.213.4.0/23 maxlen: 24 2401:5a0:1000::/44 maxlen: 48 2401:5a0:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 03:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911710E, serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Validity Not Before: Jun 5 03:33:20 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a224380-1a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:ed:89:b8:73:aa:f4:1d:0c:ed:4e:b4:08: 04:01:57:f9:1d:80:c1:eb:f3:7e:91:fe:88:98:36: 76:19:3b:8e:28:19:dc:b9:e9:9c:50:a4:6e:a3:8d: e6:c2:e3:dc:c4:07:c8:a3:2c:17:cf:04:3a:ad:83: a6:c4:5d:45:7f:c1:06:6e:07:73:d2:5c:fe:d1:77: 0e:7c:83:44:60:b3:70:3a:0c:b4:d0:71:67:95:71: 11:16:f2:99:e9:3f:13:4e:79:0e:34:f3:8a:10:3d: 4b:57:d0:83:80:9c:6d:d1:25:22:c7:49:b8:ff:d3: d1:36:bf:08:7d:d1:69:53:77:09:7e:c3:df:ba:fc: e9:95:72:02:7c:a1:cb:8a:19:2c:0f:f2:5d:ce:17: 58:80:69:f7:ea:24:d7:bf:53:ca:1a:a2:8a:a9:8b: cf:d2:74:fd:09:99:a3:ae:af:2f:c6:a6:b1:6e:1a: d3:cf:be:25:87:f2:f4:91:5c:da:7f:71:83:14:07: 79:5d:82:d2:45:94:63:b7:0e:98:2c:72:f1:1d:55: 46:eb:31:2d:b7:d3:61:4c:2c:6e:2c:e3:5b:cc:d9: 9f:5a:84:f6:cc:9b:cf:3e:2d:47:52:e5:79:ae:fc: ef:fb:95:ae:af:93:30:e2:67:b7:44:e3:e7:8b:51: 94:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DD:B9:B8:60:F7:72:64:65:35:48:D5:47:95:2F:EE:0B:37:AE:1B X509v3 Authority Key Identifier: keyid:CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.4.0/23 IPv6: 2401:5a0:1000::-2401:5a0:1010:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 2c:2e:45:5e:d2:1f:dc:e2:11:8d:a2:20:60:bd:4d:72:92:df: eb:c9:04:89:a7:63:73:a9:ca:df:44:f6:de:a3:16:f6:15:9b: 77:c1:5b:62:f1:6f:6f:50:72:e1:d7:69:a1:b2:39:4d:a5:60: 44:28:f8:7e:49:39:54:ec:a4:95:db:cf:0d:e6:61:3e:d1:ed: e0:32:01:c6:15:83:da:76:ef:88:ac:00:80:b8:e7:5a:74:46: 6a:b5:10:ac:92:2a:af:c4:9d:9b:ed:b7:22:b6:11:bc:4a:40: 7d:b9:56:76:f1:8d:de:07:88:59:5d:a0:9a:fa:18:38:9d:0b: 74:99:e8:a1:a6:b6:a0:58:9d:ec:53:8f:77:38:de:ae:d4:b9: 6b:3c:0c:71:7e:a7:ed:40:d0:7b:cc:62:07:28:ca:07:6b:38: 2b:bc:9c:59:83:d0:be:76:42:df:c6:3a:d0:9b:68:bc:d7:75: dd:b0:f3:f4:19:35:dc:77:88:85:71:15:69:0b:67:dd:20:92: 96:f9:3d:0f:51:6f:15:a8:11:53:d3:43:7d:3c:cc:b3:6c:22: c2:d3:ff:59:d6:be:9a:e4:51:fa:ee:7d:68:49:8b:78:9b:46: 36:ad:70:97:3a:dd:d9:dc:5e:08:84:9f:4e:c0:50:bc:0c:d4: b1:8d:c3:9f -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcxMEUxMTAvBgNVBAUTKENEMTg0MUI2QzVCRUY3QzQ3ODJFNjdGNjYzRjNDMTk3 NDYxOTkzODMwHhcNMjYwNjA1MDMzMzIwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyNDM4MC0xYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquLtibhzqvQdDO1OtAgEAVf5HYDB6/N+kf6ImDZ2GTuOKBncuemcUKRuo43m wuPcxAfIoywXzwQ6rYOmxF1Ff8EGbgdz0lz+0XcOfINEYLNwOgy00HFnlXERFvKZ 6T8TTnkONPOKED1LV9CDgJxt0SUix0m4/9PRNr8IfdFpU3cJfsPfuvzplXICfKHL ihksD/JdzhdYgGn36iTXv1PKGqKKqYvP0nT9CZmjrq8vxqaxbhrTz74lh/L0kVza f3GDFAd5XYLSRZRjtw6YLHLxHVVG6zEtt9NhTCxuLONbzNmfWoT2zJvPPi1HUuV5 rvzv+5Wur5Mw4me3ROPni1GUcQIDAQABo4ICezCCAncwHQYDVR0OBBYEFCndubhg 93JkZTVI1UeVL+4LN64bMB8GA1UdIwQYMBaAFM0YQbbFvvfEeC5n9mPzwZdGGZOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzEwRS9DOTNFMTc4QTAx QjUxMUVFODlGNkVCNzhDNEY5QUUwMi96UmhCdHNXLTk4UjRMbWYyWV9QQmwwWVpr NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pSaEJ0c1ctOThSNExtZjJZX1BCbDBZWms0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcxMEUvQzkzRTE3OEEwMUI1MTFFRTg5RjZFQjc4QzRGOUFFMDIvOUVGNzI0QkUy QTQ5MTFFRTgxQkNGNTBGQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAM BAIAATAGAwQBZ9UEMBkEAgACMBMwEQMGBCQBBaAQAwcAJAEFoBAQMA0GCSqGSIb3 DQEBCwUAA4IBAQAsLkVe0h/c4hGNoiBgvU1ykt/ryQSJp2NzqcrfRPbeoxb2FZt3 wVti8W9vUHLh12mhsjlNpWBEKPh+STlU7KSV288N5mE+0e3gMgHGFYPadu+IrACA uOdadEZqtRCskiqvxJ2b7bcithG8SkB9uVZ28Y3eB4hZXaCa+hg4nQt0meihprag WJ3sU493ON6u1LlrPAxxfqftQNB7zGIHKMoHazgrvJxZg9C+dkLfxjrQm2i813Xd sPP0GTXcd4iFcRVpC2fdIJKW+T0PUW8VqBFT00N9PMyzbCLC0/9Z1r6a5FH67n1o SYt4m0Y2rXCXOt3Z3F4IhJ9OwFC8DNSxjcOf -----END CERTIFICATE-----Generated at Sat Jun 6 12:08:44 2026 by rpki-client