$ rpki-client -vvf rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa File: 8AA99B52FEC511EABAAE7814C4F9AE02.roa (raw, json) Hash identifier: 5Hpb4Eto1Y7FBhRcGpJuK1i5AkkmZjve+QlNVuZWxKs= Subject key identifier: 57:2E:EF:4D:1E:A0:D8:39:EA:17:03:4B:B8:D0:78:49:5D:5E:B7:9C Certificate issuer: /CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Certificate serial: 0851 Authority key identifier: 7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:29:49 +0000 ROA not before: Sat 28 Feb 2026 21:18:29 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 4826 IP address blocks: 203.30.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 20:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911784E, serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Validity Not Before: Feb 28 21:18:29 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a574ad-9a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:ff:1b:bb:33:ca:78:e7:64:3e:ec:30:16: 2d:77:77:e8:ab:50:c2:04:b2:0d:bc:9c:45:53:b3: 1f:ae:78:6b:84:29:e8:95:46:fd:24:d2:33:ab:f3: 45:5e:83:82:0e:dc:a6:73:17:d1:3a:6d:8a:30:f4: 6b:0c:46:00:4b:b7:5a:73:54:ba:54:4a:70:ac:ac: c5:ad:1e:68:de:23:1a:ad:94:64:03:e9:d1:97:fe: cf:d5:dd:f2:95:ab:d1:8f:94:f3:73:db:d0:07:a2: 7c:67:9a:ae:3f:7f:3c:c2:fb:b6:7f:1d:6b:e5:88: ac:71:32:2f:b2:73:79:0b:d9:3f:ec:dd:d1:ec:90: 40:1b:61:28:86:58:d7:e4:97:e5:86:dd:1f:0c:98: 47:af:e3:65:1e:9a:6d:1a:1f:45:5e:38:5f:bf:03: ad:cb:a1:8d:a6:4a:02:59:2e:72:f5:67:9f:78:28: 27:df:97:e7:7a:57:3e:a5:5b:37:ba:f0:30:98:45: 7c:ac:cb:c5:eb:6f:42:86:e2:11:0d:2b:f3:3a:f2: 9d:aa:aa:3d:17:94:7b:81:fb:94:eb:02:77:4a:a5: 89:98:ac:eb:b6:49:da:96:00:1a:82:9d:55:70:f7: 90:12:d5:64:30:0a:83:07:72:24:39:55:17:f9:bb: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2E:EF:4D:1E:A0:D8:39:EA:17:03:4B:B8:D0:78:49:5D:5E:B7:9C X509v3 Authority Key Identifier: keyid:7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/8AA99B52FEC511EABAAE7814C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.30.229.0/24 Signature Algorithm: sha256WithRSAEncryption 92:91:0a:7a:ca:d5:e4:20:29:4d:42:4d:2c:73:e2:7c:e1:73: a0:33:86:1b:b5:b3:d7:15:20:b1:e3:a0:56:12:d5:24:38:2e: ca:87:cf:d7:47:3d:74:12:64:4d:27:bc:38:2e:a1:d3:b3:1d: f8:b0:5a:d2:a3:2f:c8:df:df:c1:e0:c9:06:05:3e:b5:86:32: 10:01:9d:f5:c9:1f:07:2e:93:f7:e2:16:34:ff:ed:97:ef:1d: 16:a7:21:80:aa:d7:64:e2:77:33:ab:7e:a0:af:39:a0:a5:f4: 59:d5:12:42:10:ff:0e:6b:e5:a7:d4:dc:6c:b4:e8:91:bd:67: a9:f3:c0:ce:23:8d:85:57:42:b5:39:12:b5:bd:f5:8f:3b:5b: 81:35:78:50:c5:eb:5b:d0:b8:55:75:08:3a:f4:15:fe:1a:17: 4e:c6:1f:59:40:3e:26:bc:dd:cf:e7:c5:40:e2:f3:73:84:23: ac:fd:5c:10:8e:ab:34:fe:c6:cd:f6:59:0b:04:e4:07:c5:9f: a3:61:ec:f6:03:06:62:20:a3:98:37:3a:5d:fc:d4:44:da:f2: b7:b8:9a:c6:01:5e:da:a7:d3:f2:8f:12:c2:a6:f6:08:c0:4b: 33:30:0d:e0:07:03:a7:d6:51:d1:43:d1:d0:9b:a6:c2:b0:46: 6c:c9:e7:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4NEUxMTAvBgNVBAUTKDdFN0UzQkU4ODkzNzBBNzFFNTUyMTU1N0JCMDNBMDBG MUIzOUJGRDgwHhcNMjYwMjI4MjExODI5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzRhZC05YTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokH/G7szynjnZD7sMBYtd3foq1DCBLINvJxFU7MfrnhrhCnolUb9JNIzq/NF XoOCDtymcxfROm2KMPRrDEYAS7dac1S6VEpwrKzFrR5o3iMarZRkA+nRl/7P1d3y lavRj5Tzc9vQB6J8Z5quP388wvu2fx1r5YiscTIvsnN5C9k/7N3R7JBAG2EohljX 5Jflht0fDJhHr+NlHpptGh9FXjhfvwOty6GNpkoCWS5y9WefeCgn35fnelc+pVs3 uvAwmEV8rMvF629ChuIRDSvzOvKdqqo9F5R7gfuU6wJ3SqWJmKzrtknalgAagp1V cPeQEtVkMAqDB3IkOVUX+bu7IwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFcu700e oNg56hcDS7jQeEldXrecMB8GA1UdIwQYMBaAFH5+O+iJNwpx5VIVV7sDoA8bOb/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzg0RS82QjU0RDlDOEZF QzExMUVBOUU3MzMzNzVDNEY5QUUwMi9mbjQ3NklrM0NuSGxVaFZYdXdPZ0R4czV2 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuNDc2SWszQ25IbFVoVlh1d09nRHhzNXY5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4NEUvNkI1NEQ5QzhGRUMxMTFFQTlFNzMzMzc1QzRGOUFFMDIvOEFBOTlCNTJG RUM1MTFFQUJBQUU3ODE0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyx7lMA0GCSqGSIb3DQEBCwUAA4IBAQCSkQp6ytXkIClNQk0sc+J8 4XOgM4YbtbPXFSCx46BWEtUkOC7Kh8/XRz10EmRNJ7w4LqHTsx34sFrSoy/I39/B 4MkGBT61hjIQAZ31yR8HLpP34hY0/+2X7x0WpyGAqtdk4nczq36grzmgpfRZ1RJC EP8Oa+Wn1NxstOiRvWep88DOI42FV0K1ORK1vfWPO1uBNXhQxetb0LhVdQg69BX+ GhdOxh9ZQD4mvN3P58VA4vNzhCOs/VwQjqs0/sbN9lkLBOQHxZ+jYez2AwZiIKOY Nzpd/NRE2vK3uJrGAV7ap9PyjxLCpvYIwEszMA3gBwOn1lHRQ9HQm6bCsEZsyecp -----END CERTIFICATE-----Generated at Sun Mar 8 01:45:26 2026 by rpki-client