$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A241FA98315611F0B557CE7CC4F9AE02.roa File: A241FA98315611F0B557CE7CC4F9AE02.roa (raw, json) Hash identifier: YlhY2W2JlojC0pWKWoYRw3i49GbKP4N5qzrUs8aOR04= Subject key identifier: 4F:10:79:38:57:60:FE:D1:1D:B7:6A:8F:DC:5F:28:5D:5E:FF:67:B8 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 08E2 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A241FA98315611F0B557CE7CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:53:53 +0000 ROA not before: Wed 08 Oct 2025 22:54:19 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 59371 IP address blocks: 103.209.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 22:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:19 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48b40-523b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f2:69:94:15:a1:3c:1a:7b:97:97:de:0f:6c: ef:3b:3b:5b:7e:cf:84:5c:31:41:e7:b5:37:09:66: 36:e4:1a:99:89:a0:75:a9:0f:f0:42:ce:5c:58:a9: 31:25:8e:19:3a:ab:6a:a7:b6:f2:14:5c:11:6e:6b: 12:12:e0:4b:ae:b7:1a:14:f6:05:13:04:53:87:fc: e1:dd:8b:6e:c0:b2:70:65:8e:0f:91:4d:2e:68:af: bb:cf:dc:5d:e4:b2:b8:06:95:1c:07:2c:b6:ec:01: a0:59:98:af:98:d8:52:0c:82:25:b0:6a:1c:e6:d0: f6:38:ef:0a:b6:7d:44:ae:83:9c:cb:e0:b8:39:4a: 02:2e:0f:15:bb:33:a7:e2:de:d8:a9:5a:10:f7:20: 3f:76:82:bf:60:da:8a:4e:38:60:e3:0a:72:a3:0d: 35:d6:64:09:08:dc:69:0f:4c:5e:94:0b:3b:0b:23: 94:08:4e:84:6f:c9:35:69:8d:12:8a:59:c7:e7:9b: a9:a9:01:a0:58:e5:16:22:3d:74:ca:24:a7:ab:e0: 6b:68:a9:32:22:d1:99:1d:32:7c:c0:ee:ac:0d:1d: ca:d7:9d:87:4e:26:11:92:c5:85:e5:bc:c6:db:5e: 48:81:8e:b2:2d:ad:cd:11:6a:9a:77:fb:40:37:58: ad:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:10:79:38:57:60:FE:D1:1D:B7:6A:8F:DC:5F:28:5D:5E:FF:67:B8 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/A241FA98315611F0B557CE7CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.209.235.0/24 Signature Algorithm: sha256WithRSAEncryption 51:49:de:32:db:5c:a6:e4:e9:eb:cc:52:57:b5:14:5e:b2:23: c0:b1:67:bf:d4:c6:3a:a4:67:7e:65:77:d3:d2:ec:50:82:af: e3:a3:a6:91:61:82:ed:31:cd:70:fb:dd:6d:0a:88:f3:e5:ac: 2c:78:30:06:c6:ca:57:13:40:db:d6:da:3d:a0:50:ae:40:ae: 9e:ba:09:e7:05:dd:18:a7:1b:96:5d:a4:fc:49:e4:1d:d1:0e: 06:c0:03:8c:7d:e8:72:1f:bb:7e:2d:d4:f7:fe:f6:20:6d:16: 43:7f:cf:53:b9:69:5f:d2:56:d4:52:77:23:ec:43:11:68:70: e5:4e:c1:ed:d2:88:c9:24:e3:d9:89:4b:4a:90:0d:d7:86:a2: 78:d9:cc:49:45:eb:4d:da:53:47:46:fd:b1:fd:7c:2c:2d:5c: c8:94:45:73:2f:8a:fc:ff:d5:24:6e:2f:82:d2:a5:b8:6b:60: 77:28:08:f5:ff:be:64:c2:27:04:37:31:fe:2e:99:54:6e:b0: aa:eb:fc:98:fe:b0:de:d6:9c:d4:7c:52:03:2a:1d:06:6a:77: ff:98:78:04:c1:ca:92:77:a1:10:3c:04:66:b0:10:e9:8c:d0: 05:99:95:88:f4:05:58:85:7a:c0:f3:33:5e:b9:73:72:47:fe: 7f:de:ae:25 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDE5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI0MC01MjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfJplBWhPBp7l5feD2zvOztbfs+EXDFB57U3CWY25BqZiaB1qQ/wQs5cWKkx JY4ZOqtqp7byFFwRbmsSEuBLrrcaFPYFEwRTh/zh3YtuwLJwZY4PkU0uaK+7z9xd 5LK4BpUcByy27AGgWZivmNhSDIIlsGoc5tD2OO8Ktn1EroOcy+C4OUoCLg8VuzOn 4t7YqVoQ9yA/doK/YNqKTjhg4wpyow011mQJCNxpD0xelAs7CyOUCE6Eb8k1aY0S ilnH55upqQGgWOUWIj10yiSnq+BraKkyItGZHTJ8wO6sDR3K152HTiYRksWF5bzG 215IgY6yLa3NEWqad/tAN1itOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE8QeThX YP7RHbdqj9xfKF1e/2e4MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvQTI0MUZBOTgz MTU2MTFGMEI1NTdDRTdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ9HrMA0GCSqGSIb3DQEBCwUAA4IBAQBRSd4y21ym5OnrzFJXtRRe siPAsWe/1MY6pGd+ZXfT0uxQgq/jo6aRYYLtMc1w+91tCojz5awseDAGxspXE0Db 1to9oFCuQK6eugnnBd0YpxuWXaT8SeQd0Q4GwAOMfehyH7t+LdT3/vYgbRZDf89T uWlf0lbUUncj7EMRaHDlTsHt0ojJJOPZiUtKkA3XhqJ42cxJRetN2lNHRv2x/Xws LVzIlEVzL4r8/9Ukbi+C0qW4a2B3KAj1/75kwicENzH+LplUbrCq6/yY/rDe1pzU fFIDKh0Ganf/mHgEwcqSd6EQPARmsBDpjNAFmZWI9AVYhXrA8zNeuXNyR/5/3q4l -----END CERTIFICATE-----Generated at Fri Mar 6 05:42:38 2026 by rpki-client