$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa File: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (raw, json) Hash identifier: mlM1LcCow/OwFUOHCekedTzL1znm7NAJ6YdDLrO7EAA= Subject key identifier: 6D:B4:23:BC:7E:4D:35:BB:B8:D0:5E:B0:88:EE:CF:03:8C:B1:44:0A Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0813 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:47:57 +0000 ROA not before: Fri 28 Nov 2025 20:24:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38719 IP address blocks: 103.29.84.0/23 maxlen: 24 103.42.224.0/23 maxlen: 24 114.142.160.0/22 maxlen: 24 2406:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 20:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Nov 28 20:24:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47bcd-c5a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6a:1a:65:23:ef:0b:27:6d:03:7a:2c:42:a1: 1d:f4:32:76:a1:17:8e:4d:2b:92:b2:a0:83:9d:b2: a7:8a:40:53:57:a9:6a:91:cd:a5:07:34:8a:dc:9a: 30:23:a7:5a:5d:db:95:76:30:5c:77:d3:a3:59:16: 21:23:46:52:e6:59:be:75:4a:64:73:49:a2:de:24: d7:ee:79:0f:d7:de:20:be:5a:e2:9a:67:72:e4:3e: 1d:70:76:22:cf:8b:5e:63:44:b5:95:ca:ec:ab:d2: 05:c3:3d:e2:4e:08:6f:fe:58:3b:56:d6:3b:be:7f: 8d:fb:e9:95:b2:6e:7f:51:58:8b:97:2c:a4:f8:6a: 69:63:30:8b:48:e7:81:0d:63:51:d4:b7:ce:25:20: 6b:50:bb:0a:79:e1:1e:ee:38:4d:c6:c5:bc:a0:f6: 6d:ae:ff:8b:87:0e:bf:6b:f1:e5:68:0c:d5:46:2e: 83:dc:74:5f:0e:b4:0e:d5:ae:39:fb:ce:b2:9e:34: 69:cb:44:3c:5c:cf:e3:f0:bb:8d:e3:14:74:1b:d8: 24:ed:3e:29:ab:19:65:18:8f:30:6a:bd:69:73:07: f8:4b:36:e4:20:79:ce:ab:c4:01:4e:cb:8c:47:10: 7f:8a:ab:28:0f:7e:4e:b5:e7:91:c8:23:d7:f9:10: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B4:23:BC:7E:4D:35:BB:B8:D0:5E:B0:88:EE:CF:03:8C:B1:44:0A X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 103.42.224.0/23 114.142.160.0/22 IPv6: 2406:adc0::/32 Signature Algorithm: sha256WithRSAEncryption 6f:03:56:50:ca:d7:0b:71:a0:ce:77:4b:bb:21:3c:8d:45:eb: ce:de:5b:2c:39:88:80:bb:b2:27:96:d1:ae:27:10:54:0b:27: 5d:a7:4f:76:a4:cd:bd:c7:6c:be:6a:88:1f:04:ea:75:32:ad: 10:b5:36:ac:e8:36:2d:31:12:3c:23:6e:bb:cd:5b:cd:b1:53: 47:2a:24:ca:21:1a:f1:11:b3:6e:a6:10:83:15:09:4f:8c:25: 59:d1:b6:8c:a4:a0:84:e1:69:b0:37:8e:f6:0a:3b:71:07:9c: be:0b:f3:d0:a0:27:2a:05:7a:bb:9c:ea:65:13:d9:a4:73:6d: ab:05:7d:8b:d6:45:61:0e:69:c5:4a:41:45:12:bc:72:f1:89: 83:b2:93:c5:a8:e2:bd:af:d3:40:6d:70:28:66:d7:cb:13:51: 71:b3:56:ea:f8:8a:17:89:8a:c1:59:68:da:9d:41:2b:30:89: 9f:bf:51:3a:9a:24:28:80:00:7e:ee:de:51:4b:25:e0:36:2b: f4:0c:9a:45:63:44:ff:5a:85:b5:bf:95:6e:26:9a:f6:ee:a8: cd:c1:41:a1:09:ea:50:a3:2a:4a:c3:92:ab:84:16:fa:ba:0a: 73:ca:29:df:50:79:4e:7c:b0:60:97:6b:67:5d:17:dd:b4:3f: 09:14:11:19 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUxMTI4MjAyNDE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JjZC1jNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2oaZSPvCydtA3osQqEd9DJ2oReOTSuSsqCDnbKnikBTV6lqkc2lBzSK3Jow I6daXduVdjBcd9OjWRYhI0ZS5lm+dUpkc0mi3iTX7nkP194gvlrimmdy5D4dcHYi z4teY0S1lcrsq9IFwz3iTghv/lg7VtY7vn+N++mVsm5/UViLlyyk+GppYzCLSOeB DWNR1LfOJSBrULsKeeEe7jhNxsW8oPZtrv+Lhw6/a/HlaAzVRi6D3HRfDrQO1a45 +86ynjRpy0Q8XM/j8LuN4xR0G9gk7T4pqxllGI8war1pcwf4SzbkIHnOq8QBTsuM RxB/iqsoD35OteeRyCPX+RA+8wIDAQABo4ICezCCAncwHQYDVR0OBBYEFG20I7x+ TTW7uNBesIjuzwOMsUQKMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvQzRFRUU4RUUy NEUwMTFFQkE0Qzg3RjdEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZx1UAwQBZyrgAwQCco6gMA0EAgACMAcDBQAkBq3AMA0GCSqGSIb3 DQEBCwUAA4IBAQBvA1ZQytcLcaDOd0u7ITyNRevO3lssOYiAu7InltGuJxBUCydd p092pM29x2y+aogfBOp1Mq0QtTas6DYtMRI8I267zVvNsVNHKiTKIRrxEbNuphCD FQlPjCVZ0baMpKCE4WmwN472CjtxB5y+C/PQoCcqBXq7nOplE9mkc22rBX2L1kVh DmnFSkFFErxy8YmDspPFqOK9r9NAbXAoZtfLE1Fxs1bq+IoXiYrBWWjanUErMImf v1E6miQogAB+7t5RSyXgNiv0DJpFY0T/WoW1v5VuJpr27qjNwUGhCepQoypKw5Kr hBb6ugpzyinfUHlOfLBgl2tnXRfdtD8JFBEZ -----END CERTIFICATE-----Generated at Sun Mar 22 15:00:13 2026 by rpki-client