$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/6F3FE776CF9511F09003FA4DC4F9AE02.roa File: 6F3FE776CF9511F09003FA4DC4F9AE02.roa (raw, json) Hash identifier: rbytNq7zSMq3A/PgT/ftfqGJmoj9sr47JEvc0Ik+KVQ= Subject key identifier: B8:90:C0:B7:CD:EA:7F:7E:36:32:C4:A9:3D:24:B4:DC:26:84:83:74 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0816 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/6F3FE776CF9511F09003FA4DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:48:00 +0000 ROA not before: Tue 02 Dec 2025 15:41:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 198949 IP address blocks: 103.29.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Dec 2 15:41:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47bcf-a634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:66:a6:69:6f:11:0d:48:78:fb:c4:29:6c:27: 48:dd:18:cb:2f:98:8b:9a:e7:dc:81:c9:96:51:8f: 4e:d5:66:17:36:50:b4:da:0f:e9:e0:cd:2f:09:e6: fc:39:5e:8f:f9:70:2e:7d:72:51:b6:7f:56:c6:b9: 49:1d:73:97:e3:6a:da:6d:53:2e:41:f9:8b:bf:53: 82:24:02:90:1e:49:14:bd:15:e0:ab:13:1a:7b:ae: af:d6:23:7a:62:32:7e:16:e4:b9:2d:bc:b2:f2:64: ca:72:67:d5:1a:d2:08:61:20:d9:00:09:2b:90:7c: b7:e0:72:23:eb:ba:2b:75:72:60:52:27:6c:c7:e2: 54:ec:a8:24:18:33:c5:28:82:98:7d:72:13:c1:0b: 6f:c0:d7:43:29:dc:73:f6:a9:d2:09:85:ca:51:f6: cb:1a:bd:a9:84:5a:c7:5c:d5:d0:c2:7f:2b:9d:ad: d9:77:6e:8f:54:86:6c:b4:8d:f9:25:df:1c:fa:64: c8:8f:e2:55:9f:78:59:eb:4e:37:11:52:6c:2f:53: 07:07:37:df:12:75:89:8f:a3:0e:34:8d:ee:62:d5: ef:71:92:93:67:58:c0:5d:a6:19:75:f9:e0:ab:2a: 5a:14:c6:1f:f5:dd:5f:c4:14:cc:ed:98:f1:54:63: c0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:C0:B7:CD:EA:7F:7E:36:32:C4:A9:3D:24:B4:DC:26:84:83:74 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/6F3FE776CF9511F09003FA4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:e0:e9:0d:b3:2f:98:7d:70:77:c3:15:19:44:2c:77:f6:92: 11:d3:b0:c7:42:90:7b:bd:94:97:56:8b:4a:19:58:01:36:8b: 16:99:3e:37:e0:77:a2:0a:10:04:48:aa:4d:d9:0d:d9:06:f8: a5:83:47:b2:23:b3:05:3e:38:99:61:33:c8:29:ce:58:48:b1: be:c3:a6:a1:50:6e:6e:4f:0e:8b:4d:9e:7d:db:28:1d:e7:d5: fa:45:27:4b:71:bb:06:2f:f2:00:97:79:69:55:d0:cb:7a:d5: 52:40:98:0c:b1:5a:09:13:50:65:68:e8:5a:32:f8:d3:d5:ac: 42:90:0e:d8:84:75:e5:94:40:80:f4:13:c3:e4:b5:3f:96:34: 27:09:8a:00:76:f8:21:e8:f4:7a:33:6e:e9:18:e6:32:3c:c0: c8:20:7f:12:45:32:a7:cf:50:e6:17:78:dd:c8:b8:fd:a2:9f: 4f:00:c6:7a:04:a6:f8:1b:d5:c6:ff:21:a4:f6:99:98:5b:ab: 80:45:cb:63:3d:3e:86:44:5a:c2:97:7a:a2:27:b6:3a:2c:e8: b9:63:7d:94:fa:36:10:77:a6:16:77:f9:d5:a4:6b:41:53:28: a7:ca:97:6c:8d:39:dc:12:d3:a4:31:ea:6c:41:9e:11:6e:b8: ea:ca:99:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUxMjAyMTU0MTU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JjZi1hNjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWamaW8RDUh4+8QpbCdI3RjLL5iLmufcgcmWUY9O1WYXNlC02g/p4M0vCeb8 OV6P+XAufXJRtn9WxrlJHXOX42rabVMuQfmLv1OCJAKQHkkUvRXgqxMae66v1iN6 YjJ+FuS5Lbyy8mTKcmfVGtIIYSDZAAkrkHy34HIj67ordXJgUidsx+JU7KgkGDPF KIKYfXITwQtvwNdDKdxz9qnSCYXKUfbLGr2phFrHXNXQwn8rna3Zd26PVIZstI35 Jd8c+mTIj+JVn3hZ6043EVJsL1MHBzffEnWJj6MONI3uYtXvcZKTZ1jAXaYZdfng qypaFMYf9d1fxBTM7ZjxVGPAyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLiQwLfN 6n9+NjLEqT0ktNwmhIN0MB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvNkYzRkU3NzZD Rjk1MTFGMDkwMDNGQTREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZx1UMA0GCSqGSIb3DQEBCwUAA4IBAQAt4OkNsy+YfXB3wxUZRCx3 9pIR07DHQpB7vZSXVotKGVgBNosWmT434HeiChAESKpN2Q3ZBvilg0eyI7MFPjiZ YTPIKc5YSLG+w6ahUG5uTw6LTZ592ygd59X6RSdLcbsGL/IAl3lpVdDLetVSQJgM sVoJE1BlaOhaMvjT1axCkA7YhHXllECA9BPD5LU/ljQnCYoAdvgh6PR6M27pGOYy PMDIIH8SRTKnz1DmF3jdyLj9op9PAMZ6BKb4G9XG/yGk9pmYW6uARctjPT6GRFrC l3qiJ7Y6LOi5Y32U+jYQd6YWd/nVpGtBUyinypdsjTncEtOkMepsQZ4Rbrjqypln -----END CERTIFICATE-----Generated at Sun Mar 22 15:00:31 2026 by rpki-client