$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa File: 1AB7C58C57E411EEB143C80EC4F9AE02.roa (raw, json) Hash identifier: 1RzsjB3B/c1zgVm8/5Sg1Xe89XFvfc6vQnq4tvEitnY= Subject key identifier: 1D:B5:29:51:0E:6C:52:A8:38:F4:62:3E:7F:38:1D:5C:B6:C6:8D:3E Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 01E5 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:53:19 +0000 ROA not before: Thu 23 Oct 2025 05:19:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 1239 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 02:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE, serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 23 05:19:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46eff-d3d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f2:fb:d9:45:ea:7f:3c:09:1a:9e:ad:6f:f6: 83:90:1e:d2:e6:50:c9:0f:f6:3c:6c:87:d0:ae:a8: 2e:57:13:11:da:85:40:d9:9c:ec:44:64:29:87:bc: 74:31:96:05:06:44:40:5d:97:9e:6c:c7:37:75:dd: ac:e8:3f:63:53:f3:b9:49:39:58:2e:1d:6b:1a:fa: 60:40:1c:eb:4e:c6:8d:8f:b5:58:c1:9f:13:a1:1f: a8:21:f3:0c:a5:6a:bc:4d:99:de:69:8b:de:88:dd: 44:6d:96:b4:e9:38:a3:35:3b:3a:24:f7:78:6f:d9: 19:e6:b2:4d:16:e7:a3:30:00:c6:ae:7f:f3:68:92: f9:55:62:4e:1b:01:67:89:18:e8:80:1f:7c:80:fd: 45:81:d9:38:9e:61:92:76:d7:31:f2:02:8c:5d:fd: 8d:96:c2:80:2f:e2:fd:94:b4:97:9a:a1:2f:f5:2e: 2d:76:1b:76:c7:3e:de:ab:a2:4b:c8:19:95:e4:be: 1b:ab:ce:1e:66:9e:64:ce:9c:f1:ee:2d:65:2d:0a: bb:44:c0:62:67:4c:d3:52:5d:91:e5:74:b0:b2:54: 63:bb:01:48:86:c5:3c:4d:a7:a0:25:48:02:67:33: 19:98:a0:b3:a3:99:d7:88:9d:e1:14:b8:74:cf:59: 74:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B5:29:51:0E:6C:52:A8:38:F4:62:3E:7F:38:1D:5C:B6:C6:8D:3E X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 Signature Algorithm: sha256WithRSAEncryption 92:11:ad:a2:cb:b4:dc:5f:b2:64:79:37:5e:41:dd:55:b9:e6: 1d:32:74:66:2b:2a:e6:e5:12:ce:d4:d5:3e:ae:a7:a3:bd:d3: 2f:1b:dc:7c:fc:cd:0a:29:15:4e:da:83:40:76:80:28:88:16: 55:b4:a3:9a:6a:d4:df:e8:6a:17:21:6f:54:6e:46:3e:cf:09: d9:42:b4:26:24:36:f0:8f:81:90:4e:9d:bc:e3:77:4b:86:59: ff:40:5b:1c:5f:ba:7a:0f:bd:4f:d1:99:db:ff:be:11:3a:9d: 52:d8:69:14:e4:40:9d:a1:a9:f7:5c:4b:4d:9a:ce:50:15:95: 45:a3:b8:86:e3:ed:21:ed:e9:c1:df:cc:3f:e8:7f:f2:40:60: b8:87:14:c2:5c:9a:57:74:d8:fe:f2:6f:be:87:c6:8e:9f:01: e6:4a:11:4f:ab:40:0e:3e:56:22:03:86:c0:26:3c:13:60:49: 57:1e:1f:73:a9:4c:df:5a:38:07:b6:1e:bc:7d:2f:6e:95:3b: 65:41:32:7d:3f:e4:be:28:04:09:22:ff:4e:7a:13:8a:4f:e3: 5f:a5:92:25:0b:3a:8a:26:ae:b5:ca:44:3b:b0:ed:2f:fc:be: 6c:6c:c3:3f:ec:71:93:e3:ba:0c:c7:90:ab:38:02:62:7f:2b: 79:f0:70:bb -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjUxMDIzMDUxOTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmVmZi1kM2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofL72UXqfzwJGp6tb/aDkB7S5lDJD/Y8bIfQrqguVxMR2oVA2ZzsRGQph7x0 MZYFBkRAXZeebMc3dd2s6D9jU/O5STlYLh1rGvpgQBzrTsaNj7VYwZ8ToR+oIfMM pWq8TZneaYveiN1EbZa06TijNTs6JPd4b9kZ5rJNFuejMADGrn/zaJL5VWJOGwFn iRjogB98gP1Fgdk4nmGSdtcx8gKMXf2NlsKAL+L9lLSXmqEv9S4tdht2xz7eq6JL yBmV5L4bq84eZp5kzpzx7i1lLQq7RMBiZ0zTUl2R5XSwslRjuwFIhsU8TaegJUgC ZzMZmKCzo5nXiJ3hFLh0z1l0+QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFB21KVEO bFKoOPRiPn84HVy2xo0+MB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvMUFCN0M1OEM1 N0U0MTFFRUIxNDNDODBFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+/6AwQCch/QMA0GCSqGSIb3DQEBCwUAA4IBAQCSEa2iy7TcX7Jk eTdeQd1VueYdMnRmKyrm5RLO1NU+rqejvdMvG9x8/M0KKRVO2oNAdoAoiBZVtKOa atTf6GoXIW9UbkY+zwnZQrQmJDbwj4GQTp2843dLhln/QFscX7p6D71P0Znb/74R Op1S2GkU5ECdoan3XEtNms5QFZVFo7iG4+0h7enB38w/6H/yQGC4hxTCXJpXdNj+ 8m++h8aOnwHmShFPq0AOPlYiA4bAJjwTYElXHh9zqUzfWjgHth68fS9ulTtlQTJ9 P+S+KAQJIv9OehOKT+NfpZIlCzqKJq61ykQ7sO0v/L5sbMM/7HGT47oMx5CrOAJi fyt58HC7 -----END CERTIFICATE-----Generated at Tue Mar 24 14:25:18 2026 by rpki-client