$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa File: 5CAA8A02C05F11F08562CC0CC4F9AE02.roa (raw, json) Hash identifier: 9gSOHUSohY5yQcA++Pc2d1nHGBBiQSxhi7l5jPbZY9k= Subject key identifier: E4:B7:C5:A4:EC:B2:8A:11:49:46:47:F2:4D:17:BF:ED:C2:77:E6:E9 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 08E7 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:53:57 +0000 ROA not before: Thu 13 Nov 2025 07:07:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153706 IP address blocks: 43.229.153.0/24 maxlen: 24 103.228.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 22:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2279 (0x8e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Nov 13 07:07:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48b45-6fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0e:3e:90:5b:62:82:e5:b9:db:ff:ce:83:bf: 0c:51:dd:ed:93:65:c4:1d:36:3b:b6:94:be:66:be: ca:b2:02:e3:82:58:f4:a1:58:b8:d3:53:e9:c6:07: 06:0a:61:95:71:a4:2e:72:d9:2a:b1:08:a1:30:57: da:49:29:80:e8:30:a0:a4:bc:8c:59:43:81:fb:95: 23:78:55:c1:75:8b:f3:f5:d0:b9:8b:53:65:98:77: ce:33:df:c6:b2:b1:3b:9e:1c:74:4f:3c:fa:38:91: 33:00:99:4b:8a:40:17:65:80:fd:84:01:15:fa:1c: 18:02:fc:b0:db:20:86:59:4d:bf:8e:99:75:c9:3f: bd:50:57:a5:f9:cf:83:e5:5a:4b:b0:46:ff:c1:cb: fa:68:70:b3:08:b9:45:33:e8:79:f9:01:08:41:40: 51:87:2f:4f:52:15:96:36:73:7a:a6:64:67:14:46: 12:1a:15:b5:a7:39:24:f5:c5:a6:73:5a:96:58:c8: 1d:e3:b0:25:8e:26:2f:ec:e7:37:54:85:47:df:5f: 18:98:ee:3f:08:bf:fb:46:dd:9a:27:64:37:f0:70: b3:51:a4:cf:ca:a6:2c:16:ef:e2:58:14:e2:0c:df: 7f:a3:1c:24:d8:9d:d5:87:0b:ce:d2:cf:91:47:36: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B7:C5:A4:EC:B2:8A:11:49:46:47:F2:4D:17:BF:ED:C2:77:E6:E9 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5CAA8A02C05F11F08562CC0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.153.0/24 103.228.64.0/24 Signature Algorithm: sha256WithRSAEncryption a5:a8:61:4a:f8:2c:42:92:4f:78:42:45:32:06:49:30:73:26: 3b:76:46:76:6a:50:86:b9:e9:d0:7e:ec:69:c6:5f:6c:6c:d8: 38:f2:d0:0d:6a:cf:f7:05:98:42:0c:6e:c7:97:60:d3:57:ea: 2d:ee:16:0d:50:b3:67:32:51:69:2d:24:14:7d:97:34:58:97: b4:e0:9a:c0:1d:d5:2e:51:b2:80:86:6f:e0:85:91:5f:4a:5e: 02:db:a8:63:9e:83:80:1a:0e:25:18:e8:2d:2f:98:3f:60:40: db:af:e1:ee:b4:12:e9:97:f3:1c:e8:02:4c:b9:67:21:2b:6e: 23:c1:7e:44:45:b3:66:9a:50:32:f4:eb:69:e8:93:b8:87:0d: 11:47:1e:bd:fd:94:e6:b8:74:97:29:3c:2e:4d:9b:16:d2:99: 7a:4f:39:1e:a8:49:7d:72:2e:55:85:c1:ca:7e:47:2e:8f:ce: 9c:fc:33:b4:c7:62:60:98:20:f0:c1:c9:55:62:53:75:2d:ff: 2d:63:b8:ff:17:21:70:cb:e6:f3:40:68:8a:98:da:b1:7a:50: 45:6f:7f:f1:c9:49:34:8a:30:3b:99:ef:1c:7a:cd:e0:33:f8: eb:4c:19:b1:45:38:ff:c3:fc:bf:7c:d6:cd:b6:17:01:4a:ff: e0:34:8e:b4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMTEzMDcwNzA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI0NS02ZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ4+kFtiguW52//Og78MUd3tk2XEHTY7tpS+Zr7KsgLjglj0oVi401PpxgcG CmGVcaQuctkqsQihMFfaSSmA6DCgpLyMWUOB+5UjeFXBdYvz9dC5i1NlmHfOM9/G srE7nhx0Tzz6OJEzAJlLikAXZYD9hAEV+hwYAvyw2yCGWU2/jpl1yT+9UFel+c+D 5VpLsEb/wcv6aHCzCLlFM+h5+QEIQUBRhy9PUhWWNnN6pmRnFEYSGhW1pzkk9cWm c1qWWMgd47AljiYv7Oc3VIVH318YmO4/CL/7Rt2aJ2Q38HCzUaTPyqYsFu/iWBTi DN9/oxwk2J3VhwvO0s+RRzamlwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOS3xaTs sooRSUZH8k0Xv+3Cd+bpMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNUNBQThBMDJD MDVGMTFGMDg1NjJDQzBDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+WZAwQAZ+RAMA0GCSqGSIb3DQEBCwUAA4IBAQClqGFK+CxCkk94 QkUyBkkwcyY7dkZ2alCGuenQfuxpxl9sbNg48tANas/3BZhCDG7Hl2DTV+ot7hYN ULNnMlFpLSQUfZc0WJe04JrAHdUuUbKAhm/ghZFfSl4C26hjnoOAGg4lGOgtL5g/ YEDbr+HutBLpl/Mc6AJMuWchK24jwX5ERbNmmlAy9Otp6JO4hw0RRx69/ZTmuHSX KTwuTZsW0pl6TzkeqEl9ci5VhcHKfkcuj86c/DO0x2JgmCDwwclVYlN1Lf8tY7j/ FyFwy+bzQGiKmNqxelBFb3/xyUk0ijA7me8ces3gM/jrTBmxRTj/w/y/fNbNthcB Sv/gNI60 -----END CERTIFICATE-----Generated at Fri Mar 6 05:42:18 2026 by rpki-client