$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2B535080E79B11EFB484D12EC4F9AE02.roa File: 2B535080E79B11EFB484D12EC4F9AE02.roa (raw, json) Hash identifier: jB1gkfQlC2sj/oNi50HRXfWWRrQz75vbVSujZ4sg63U= Subject key identifier: E1:B7:1A:EB:4F:92:0E:7C:98:83:AA:54:64:20:E6:E9:49:BA:29:DB Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2965 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2B535080E79B11EFB484D12EC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:10:02 +0000 ROA not before: Sat 26 Jul 2025 15:54:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 206264 IP address blocks: 103.217.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10597 (0x2965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D, serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 26 15:54:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48f0a-2432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:7a:b7:31:5e:1e:80:c4:b8:c7:ed:4b:ea: 1a:3f:19:9d:67:a3:9c:11:64:85:b7:d3:9c:04:f7: af:5e:20:42:d9:50:c0:4a:94:c8:fe:82:0f:ad:3b: cc:c7:81:87:3e:6f:df:3a:65:ef:95:56:fa:d3:d7: 74:5f:e9:c7:68:cc:b8:77:0f:14:8b:4e:d7:69:b7: 42:33:41:b0:f9:44:54:5d:37:09:63:88:89:b6:20: 4d:af:a2:d2:c8:f6:aa:fd:10:aa:9b:ad:29:65:0e: c2:a6:a2:84:a3:e3:9f:10:e1:17:63:99:09:3d:2f: fc:f9:72:54:29:aa:a8:5d:eb:e6:00:27:5a:fb:6f: 7b:ae:8e:26:a5:c2:f8:e5:7d:5b:f7:08:bb:7c:f4: ad:0b:82:78:bb:a6:ea:d0:df:92:9d:3d:4c:6c:48: c7:ee:b4:32:8a:3b:6f:89:9e:4c:60:b5:52:70:a8: 23:93:78:cb:1a:3c:f7:79:84:29:1d:a5:4e:a7:85: 89:56:b3:3d:92:8a:b4:8b:b5:a4:cc:8f:da:d0:40: 63:f2:f7:ef:b8:a6:18:c3:50:b9:ae:02:02:cc:93: dd:b4:0a:75:bc:82:37:95:49:67:1e:e0:30:1b:9a: 90:54:e3:5b:05:5b:71:17:dc:bb:c4:e6:76:85:67: 42:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:1A:EB:4F:92:0E:7C:98:83:AA:54:64:20:E6:E9:49:BA:29:DB X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/2B535080E79B11EFB484D12EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.217.252.0/24 Signature Algorithm: sha256WithRSAEncryption 28:6f:11:22:20:f1:08:5f:d1:6d:e6:95:24:e2:9e:05:52:7a: 03:e2:d5:6d:3a:25:10:c1:11:80:15:0e:38:c3:3e:23:c1:cd: 20:99:a3:27:39:8b:b5:a5:ae:c9:c6:90:fb:30:12:27:15:24: 04:0d:2c:82:c9:5d:aa:18:97:2e:11:1e:5e:f2:71:81:99:85: 28:a3:8f:de:7e:b7:e5:9e:79:8d:31:0c:d3:b5:be:c9:99:74: ef:11:a2:ce:3b:21:8b:7e:9f:63:c1:b0:68:15:39:de:74:2c: c2:74:28:3b:36:4e:91:9d:d7:e6:1d:a8:45:ed:a4:15:84:fd: c8:b7:7d:36:87:14:e7:0e:cd:66:3e:b1:7c:3f:34:0d:fc:81: 6f:9a:3c:06:c4:da:60:24:59:96:83:c2:43:49:27:bf:d2:43: ea:5f:90:e4:ad:6c:ba:ef:0d:7d:be:f2:6c:93:71:f2:f6:c1: 00:0c:83:5b:01:84:ee:c7:6d:ef:95:02:ff:1c:5c:5e:3c:6a: 5f:85:34:de:72:05:cf:3b:39:eb:34:82:0f:ba:62:2a:4a:95: 9f:c4:8f:d0:65:db:a3:b9:92:5c:77:60:72:f6:c3:80:24:4a: ca:10:c3:14:3d:94:52:2d:79:98:6b:94:c5:9b:3e:53:b8:f4: c8:1c:60:12 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjUwNzI2MTU1NDEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYwYS0yNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHV6tzFeHoDEuMftS+oaPxmdZ6OcEWSFt9OcBPevXiBC2VDASpTI/oIPrTvM x4GHPm/fOmXvlVb609d0X+nHaMy4dw8Ui07XabdCM0Gw+URUXTcJY4iJtiBNr6LS yPaq/RCqm60pZQ7CpqKEo+OfEOEXY5kJPS/8+XJUKaqoXevmACda+297ro4mpcL4 5X1b9wi7fPStC4J4u6bq0N+SnT1MbEjH7rQyijtviZ5MYLVScKgjk3jLGjz3eYQp HaVOp4WJVrM9koq0i7WkzI/a0EBj8vfvuKYYw1C5rgICzJPdtAp1vII3lUlnHuAw G5qQVONbBVtxF9y7xOZ2hWdCCQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOG3GutP kg58mIOqVGQg5ulJuinbMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvMkI1MzUwODBF NzlCMTFFRkI0ODREMTJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ9n8MA0GCSqGSIb3DQEBCwUAA4IBAQAobxEiIPEIX9Ft5pUk4p4F UnoD4tVtOiUQwRGAFQ44wz4jwc0gmaMnOYu1pa7JxpD7MBInFSQEDSyCyV2qGJcu ER5e8nGBmYUoo4/efrflnnmNMQzTtb7JmXTvEaLOOyGLfp9jwbBoFTnedCzCdCg7 Nk6RndfmHahF7aQVhP3It302hxTnDs1mPrF8PzQN/IFvmjwGxNpgJFmWg8JDSSe/ 0kPqX5DkrWy67w19vvJsk3Hy9sEADINbAYTux23vlQL/HFxePGpfhTTecgXPOznr NIIPumIqSpWfxI/QZdujuZJcd2By9sOAJErKEMMUPZRSLXmYa5TFmz5TuPTIHGAS -----END CERTIFICATE-----Generated at Sat Mar 7 17:27:22 2026 by rpki-client