$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa File: 8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa (raw, json) Hash identifier: zawi/wlEpNQoVrlgeNzoGXkUSXbiRvgZkdxKTLUCpcw= Subject key identifier: F5:E8:DC:BE:31:80:4D:DA:A6:CE:DB:4D:9C:5B:AA:1C:AB:25:59:E1 Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 023B Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:58:08 +0000 ROA not before: Fri 29 Aug 2025 03:51:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45177 IP address blocks: 123.253.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D, serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Aug 29 03:51:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59770-27b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:1c:d3:03:62:87:61:ed:7f:dc:c0:d1:f1: 6a:83:cb:a5:90:fd:0e:f1:9c:43:77:ca:09:39:1e: be:c8:76:62:d9:b4:be:4f:55:fe:a8:c6:2f:db:34: 95:c7:9e:a7:7c:cb:3d:d2:e7:dc:14:47:f8:a4:08: d0:20:3a:d3:ee:2f:87:af:e4:9f:31:b6:b7:59:78: 93:af:49:fe:2a:e1:f0:66:cd:82:ac:c2:55:17:d8: c8:2d:a9:49:42:ca:80:c0:3e:89:8b:94:53:42:bb: 4a:ee:51:a0:27:b0:ab:5e:a3:15:1d:6d:7c:92:83: 82:fa:4f:10:38:01:c4:12:10:6c:eb:38:8b:5e:88: a6:f7:2c:7f:db:0d:bd:bf:03:4c:39:93:ba:95:21: 65:0f:ee:fc:b5:ca:2f:ee:e5:d1:c5:fa:66:fb:7f: 92:75:92:02:6f:fc:fb:8d:d5:15:d7:20:bc:3f:89: 91:e7:a3:12:87:ef:5f:08:88:de:45:1f:37:6e:55: 47:15:8a:0c:03:9c:a1:3c:39:5e:2f:d1:5b:9f:a3: ea:59:06:f4:7e:93:9b:13:c9:6d:55:8f:61:9a:4b: a1:c7:25:74:33:0b:29:da:dc:4c:4a:e8:f7:cb:c6: ac:aa:4b:d0:f9:1e:6a:80:72:57:ff:15:44:32:40: f3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E8:DC:BE:31:80:4D:DA:A6:CE:DB:4D:9C:5B:AA:1C:AB:25:59:E1 X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.208.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:99:4e:1c:5b:2b:68:b2:12:64:ab:d4:99:af:2a:4e:1f:e6: 33:fe:1f:e1:91:4a:e8:85:d6:b3:f4:76:5a:42:d7:e7:39:da: 95:90:da:1e:a5:0b:60:b2:75:5a:93:92:0d:00:cd:cc:ef:c8: 17:63:00:0c:86:ae:cb:3c:ab:b7:c1:c5:b4:08:ab:da:1f:20: aa:43:19:7a:25:11:a5:7f:68:7a:9b:16:82:84:61:b1:37:95: a8:94:24:f0:32:cc:bd:47:33:6d:82:33:f0:9d:c2:9c:14:22: e2:28:db:85:d8:31:6c:0f:25:30:77:a2:6c:d8:57:40:71:a6: 87:85:65:e8:88:dc:a1:15:c0:15:03:b5:ef:3d:03:a7:07:d0: 7e:56:c6:7f:ac:49:a0:20:c9:51:51:c5:18:32:49:83:06:cf: 4c:b1:14:64:27:89:b0:3e:bb:31:fe:6f:b0:d4:0d:15:0c:3d: bc:e9:c6:41:e9:13:6a:12:ff:0b:e1:30:32:23:5f:3c:e9:8f: 39:1f:88:35:6a:97:12:0d:61:91:e6:3f:63:56:ac:8b:75:67: c7:2a:b3:9c:7a:c0:90:1f:9c:19:c3:b0:f0:6c:ec:52:17:bd: 6f:d7:66:98:92:90:80:dc:40:e9:26:82:c0:4b:71:68:f2:20: 21:0f:a6:17 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNDMUQxMTAvBgNVBAUTKEZCMDE5N0Q4MDJBNjYxODZFODQwQkQ2MkU4OEVFNDBF RDk1RTk1MjkwHhcNMjUwODI5MDM1MTQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTc3MC0yN2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7Qc0wNih2Htf9zA0fFqg8ulkP0O8ZxDd8oJOR6+yHZi2bS+T1X+qMYv2zSV x56nfMs90ufcFEf4pAjQIDrT7i+Hr+SfMba3WXiTr0n+KuHwZs2CrMJVF9jILalJ QsqAwD6Ji5RTQrtK7lGgJ7CrXqMVHW18koOC+k8QOAHEEhBs6ziLXoim9yx/2w29 vwNMOZO6lSFlD+78tcov7uXRxfpm+3+SdZICb/z7jdUV1yC8P4mR56MSh+9fCIje RR83blVHFYoMA5yhPDleL9Fbn6PqWQb0fpObE8ltVY9hmkuhxyV0Mwsp2txMSuj3 y8asqkvQ+R5qgHJX/xVEMkDzTQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPXo3L4x gE3aps7bTZxbqhyrJVnhMB8GA1UdIwQYMBaAFPsBl9gCpmGG6EC9YuiO5A7ZXpUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0MxRC84Q0ZFMUQ5QUQx RTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZYm9RTDFpNkk3a0R0bGVs U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNDMUQvOENGRTFEOUFEMUUyMTFFRDkyM0M2MTFGQzRGOUFFMDIvOEZGNEUyRTJF RkFFMTFFREJEOTZGMjZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCe/3QMA0GCSqGSIb3DQEBCwUAA4IBAQA8mU4cWytoshJkq9SZrypO H+Yz/h/hkUrohdaz9HZaQtfnOdqVkNoepQtgsnVak5INAM3M78gXYwAMhq7LPKu3 wcW0CKvaHyCqQxl6JRGlf2h6mxaChGGxN5WolCTwMsy9RzNtgjPwncKcFCLiKNuF 2DFsDyUwd6Js2FdAcaaHhWXoiNyhFcAVA7XvPQOnB9B+VsZ/rEmgIMlRUcUYMkmD Bs9MsRRkJ4mwPrsx/m+w1A0VDD286cZB6RNqEv8L4TAyI1886Y85H4g1apcSDWGR 5j9jVqyLdWfHKrOcesCQH5wZw7DwbOxSF71v12aYkpCA3EDpJoLAS3Fo8iAhD6YX -----END CERTIFICATE-----Generated at Fri Mar 13 11:07:02 2026 by rpki-client