$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa File: 5EF938889E9E11EE80C94682C4F9AE02.roa (raw, json) Hash identifier: Pt4/aeZJmmxaKw58FeByKfcr60LvOJZSjrmtvVkGyg8= Subject key identifier: 25:4B:A5:98:46:27:9E:B1:23:EA:74:74:E3:34:0B:08:6F:D2:EC:11 Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 01E9 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:53:23 +0000 ROA not before: Thu 23 Oct 2025 05:19:04 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 5650 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 2404:3600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE, serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 23 05:19:04 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46f02-155b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:77:1e:b6:e7:79:54:69:9e:ce:ac:9e:bb:1b: c1:6e:be:1a:54:54:60:e4:67:e7:8c:cb:9a:66:85: 94:a5:dc:34:c3:23:6a:20:34:22:3e:5b:b3:b4:01: bd:fe:ed:b4:77:fd:ef:64:ea:44:dd:ed:aa:ab:ef: b7:93:7c:e8:8c:ca:3c:47:67:0f:2a:aa:93:6b:31: 40:02:bc:01:9a:76:c3:27:9e:7e:7f:a8:63:b0:43: f7:b7:b8:a8:5f:ab:89:be:e3:c2:81:b2:52:29:59: 9d:95:67:51:f5:42:d5:40:57:4a:10:a0:0d:1c:83: 43:ab:d9:55:25:9d:38:d4:56:0a:97:07:cb:7c:29: 48:c9:7c:a1:3f:a2:6e:22:f5:ad:65:39:84:96:f4: f8:13:0d:fb:03:c4:6e:61:b5:07:ab:82:27:01:21: 87:c6:4c:19:cc:61:54:22:7f:ec:10:31:a3:ef:95: a0:ba:eb:db:c8:a0:63:e5:88:51:2e:e0:6d:42:1d: d1:3e:06:ce:d4:f0:7b:65:8a:7d:fb:f3:fb:7d:46: 57:b5:39:34:42:4c:b3:f2:6b:a3:96:50:d2:26:c8: 6b:38:78:f7:e1:23:4f:e2:61:8d:04:e2:7e:31:ce: 32:81:79:13:27:5b:56:5d:ca:07:67:2b:f7:22:0f: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4B:A5:98:46:27:9E:B1:23:EA:74:74:E3:34:0B:08:6F:D2:EC:11 X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 IPv6: 2404:3600::/32 Signature Algorithm: sha256WithRSAEncryption 35:92:ee:7d:9e:52:f9:4c:31:f5:8f:14:26:d9:dc:c6:7b:b5: d6:10:cc:c3:92:91:c9:56:94:78:a6:ad:1b:9c:12:3a:b7:bd: c6:26:88:d4:11:94:2d:e5:1a:85:ee:c0:1d:2e:9d:03:95:8a: e8:b1:da:aa:96:10:9a:3b:27:13:c7:d1:dc:6d:28:9b:f7:d7: 57:4c:05:67:22:44:ee:1d:24:df:2f:cd:2f:97:65:68:53:da: 06:fe:c8:fc:e2:12:3c:2f:8d:b2:be:57:5d:e2:2b:e9:5e:12: f5:a9:23:00:4e:fd:58:50:66:db:ff:eb:ec:1b:d1:40:18:2c: e9:8e:43:b8:14:8f:a6:e8:d5:21:a6:9d:37:a8:82:f7:1d:2a: 5a:ba:1a:12:49:6d:3b:7c:2f:67:49:21:f5:7f:7e:78:e0:f6: 07:5e:1a:60:fa:a8:2e:85:67:1a:a6:51:c3:73:fa:a3:90:f9: 82:a0:b1:49:9b:7a:d2:00:7b:91:eb:2a:84:b6:50:26:6f:84: 79:12:2a:1e:8d:74:c1:8e:c8:7b:dd:c2:63:fd:a9:fd:e9:38: c8:46:00:be:b3:62:27:03:d8:48:10:53:55:e3:43:34:20:3c: 4b:9c:94:ac:8d:54:7a:d1:d3:c9:ed:85:51:56:b4:64:06:a2: 83:b4:45:b3 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjUxMDIzMDUxOTA0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmYwMi0xNTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3cetud5VGmezqyeuxvBbr4aVFRg5GfnjMuaZoWUpdw0wyNqIDQiPluztAG9 /u20d/3vZOpE3e2qq++3k3zojMo8R2cPKqqTazFAArwBmnbDJ55+f6hjsEP3t7io X6uJvuPCgbJSKVmdlWdR9ULVQFdKEKANHINDq9lVJZ041FYKlwfLfClIyXyhP6Ju IvWtZTmElvT4Ew37A8RuYbUHq4InASGHxkwZzGFUIn/sEDGj75WguuvbyKBj5YhR LuBtQh3RPgbO1PB7ZYp9+/P7fUZXtTk0Qkyz8mujllDSJshrOHj34SNP4mGNBOJ+ Mc4ygXkTJ1tWXcoHZyv3Ig9vzQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCVLpZhG J56xI+p0dOM0Cwhv0uwRMB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvNUVGOTM4ODg5 RTlFMTFFRTgwQzk0NjgyQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAK+/6AwQCch/QMA0EAgACMAcDBQAkBDYAMA0GCSqGSIb3DQEBCwUA A4IBAQA1ku59nlL5TDH1jxQm2dzGe7XWEMzDkpHJVpR4pq0bnBI6t73GJojUEZQt 5RqF7sAdLp0DlYrosdqqlhCaOycTx9HcbSib99dXTAVnIkTuHSTfL80vl2VoU9oG /sj84hI8L42yvldd4ivpXhL1qSMATv1YUGbb/+vsG9FAGCzpjkO4FI+m6NUhpp03 qIL3HSpauhoSSW07fC9nSSH1f3544PYHXhpg+qguhWcaplHDc/qjkPmCoLFJm3rS AHuR6yqEtlAmb4R5EioejXTBjsh73cJj/an96TjIRgC+s2InA9hIEFNV40M0IDxL nJSsjVR60dPJ7YVRVrRkBqKDtEWz -----END CERTIFICATE-----Generated at Wed Mar 4 19:17:30 2026 by rpki-client