$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa File: 677F3316E02711E9AB669750C4F9AE02.roa (raw, json) Hash identifier: Rx39rgdKBA7zdcc962yiNhgXGCpK5LRJSU4D4pU54RA= Subject key identifier: 18:20:2B:7E:5C:BB:C5:BB:84:A2:1C:9C:FA:15:52:ED:C5:4C:96:BF Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0DF2 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa Signing time: Thu 04 Jun 2026 18:22:11 +0000 ROA not before: Thu 04 Jun 2026 18:22:11 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 134823 IP address blocks: 103.214.16.0/22 maxlen: 24 144.48.32.0/22 maxlen: 24 2001:df5:7e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 17:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3570 (0xdf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Jun 4 18:22:11 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21c253-2e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:df:54:c5:24:30:00:28:c8:24:c7:54:79: 42:fa:04:09:f6:21:29:6f:7a:33:97:6b:86:ec:66: 38:59:a9:c6:71:41:ce:91:a4:28:d5:e3:a1:01:13: 21:5f:6a:2b:35:ab:1a:ec:45:8b:ec:bd:db:85:4c: d2:05:1a:42:7f:e6:45:8b:b9:04:71:17:99:b8:3f: c2:c2:77:21:96:3f:cd:d2:e0:c7:38:70:f1:de:bc: d1:1e:40:b6:0d:fb:7d:b9:6b:34:53:18:42:5e:16: b6:eb:27:5d:bb:5d:58:72:2f:43:87:e4:16:75:fe: fa:99:93:a0:97:b8:a6:45:8e:6c:c3:0a:bf:6f:86: 73:ea:1f:d2:3c:c4:ab:a0:42:c1:eb:12:39:67:0d: 01:6a:01:e3:59:13:39:40:f2:45:cd:06:66:a6:d7: ae:9c:10:d3:0b:19:da:f1:ed:db:ec:7d:aa:85:c8: a1:78:e0:e2:25:22:ff:cd:fe:19:60:e4:78:32:fa: c8:bd:db:a1:99:8b:a8:51:02:e6:9b:a7:78:3c:80: 8f:11:60:8f:45:64:6b:d4:00:76:bb:05:61:0f:7a: 3e:f4:af:e0:6f:a6:0a:30:d7:db:43:3b:7b:6c:b8: f5:6e:9d:79:07:6a:cb:da:93:d1:fe:21:32:5b:85: 1d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:20:2B:7E:5C:BB:C5:BB:84:A2:1C:9C:FA:15:52:ED:C5:4C:96:BF X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.214.16.0/22 144.48.32.0/22 IPv6: 2001:df5:7e80::/48 Signature Algorithm: sha256WithRSAEncryption 67:54:98:0a:04:0e:78:46:e3:17:a5:dc:61:07:b9:59:69:ed: 6a:c8:9b:09:56:3a:c7:a1:55:c2:fd:32:57:50:38:65:f3:b7: 3c:99:6b:09:2e:b4:e5:ad:e8:60:0b:d7:76:d2:90:53:9f:5f: 47:8b:91:02:3f:cb:b8:a8:3e:8b:7a:86:22:e0:f9:d5:30:c4: a4:7e:76:94:24:82:3d:81:ae:48:6e:c0:9a:0e:38:ef:3a:1e: 9b:80:00:03:7b:55:f3:7f:8d:af:a9:88:1f:fd:95:92:e4:4b: a6:0d:9c:dc:6c:b3:40:3e:62:f4:35:95:36:09:79:c9:84:19: dd:30:7b:a0:fe:e1:63:3d:ec:99:27:03:e5:d9:6c:8a:8d:18: 65:35:77:2a:e6:7c:6f:21:d3:7e:95:02:ce:8a:be:57:0b:88: 01:d2:a8:9f:8c:f4:e7:f8:95:a8:22:47:3b:7b:8d:dc:d0:67: dd:79:4f:c3:b8:22:38:3e:bd:70:8e:8a:fe:f6:bc:19:db:ef: 1b:de:3e:a8:13:a8:47:39:ad:72:df:8d:b6:00:b5:ba:1a:fe: 18:1e:fa:71:d5:38:64:20:c5:aa:f7:35:2c:6f:0f:c5:a0:ae: 8d:5b:89:f5:da:f2:29:39:49:71:09:b8:9b:00:eb:f0:35:6a: b1:e1:f7:b1 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjYwNjA0MTgyMjExWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYzI1My0yZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7PfVMUkMAAoyCTHVHlC+gQJ9iEpb3ozl2uG7GY4WanGcUHOkaQo1eOhARMh X2orNasa7EWL7L3bhUzSBRpCf+ZFi7kEcReZuD/Cwnchlj/N0uDHOHDx3rzRHkC2 Dft9uWs0UxhCXha26yddu11Yci9Dh+QWdf76mZOgl7imRY5swwq/b4Zz6h/SPMSr oELB6xI5Zw0BagHjWRM5QPJFzQZmpteunBDTCxna8e3b7H2qhciheODiJSL/zf4Z YOR4MvrIvduhmYuoUQLmm6d4PICPEWCPRWRr1AB2uwVhD3o+9K/gb6YKMNfbQzt7 bLj1bp15B2rL2pPR/iEyW4UdswIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFBggK35c u8W7hKIcnPoVUu3FTJa/MB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFOEIvRUMyNTdDQzZFMDI1MTFFOTkxQTk3NzREQzRGOUFFMDIvNjc3RjMzMTZF MDI3MTFFOUFCNjY5NzUwQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ9YQAwQCkDAgMA8EAgACMAkDBwAgAQ31foAwDQYJKoZIhvcNAQEL BQADggEBAGdUmAoEDnhG4xel3GEHuVlp7WrImwlWOsehVcL9MldQOGXztzyZawku tOWt6GAL13bSkFOfX0eLkQI/y7ioPot6hiLg+dUwxKR+dpQkgj2BrkhuwJoOOO86 HpuAAAN7VfN/ja+piB/9lZLkS6YNnNxss0A+YvQ1lTYJecmEGd0we6D+4WM97Jkn A+XZbIqNGGU1dyrmfG8h036VAs6KvlcLiAHSqJ+M9Of4lagiRzt7jdzQZ915T8O4 Ijg+vXCOiv72vBnb7xvePqgTqEc5rXLfjbYAtboa/hge+nHVOGQgxar3NSxvD8Wg ro1bifXa8ik5SXEJuJsA6/A1arHh97E= -----END CERTIFICATE-----Generated at Thu Jun 11 19:20:43 2026 by rpki-client