$ rpki-client -vvf rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa File: 13321D24572211EA88CE445FC4F9AE02.roa (raw, json) Hash identifier: f0+uXUpvz6qGLjUJETTMJZ/hrRFSp5AhLboGVNTpZlU= Subject key identifier: 1F:63:A3:0A:8E:DF:71:FF:36:70:46:E2:CA:7F:0C:C6:1C:69:68:D8 Certificate issuer: /CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Certificate serial: 0B64 Authority key identifier: 17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:59:58 +0000 ROA not before: Fri 08 Aug 2025 20:00:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 396982 IP address blocks: 43.229.32.0/22 maxlen: 22 43.229.32.0/23 maxlen: 23 43.229.34.0/23 maxlen: 23 103.9.96.0/22 maxlen: 22 117.120.16.0/21 maxlen: 21 223.29.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912986D, serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Validity Not Before: Aug 8 20:00:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4627e-3bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5e:5c:53:b6:ef:67:db:09:bf:ac:b5:ed:b0: ab:dc:9f:17:2b:fa:d1:21:16:8a:84:cb:d9:c6:04: 36:84:95:a7:29:68:69:41:b2:89:23:83:60:b0:52: b8:29:59:43:49:49:45:55:f6:2a:22:10:de:bb:ff: c3:1a:dd:7e:75:7b:fd:07:f9:42:b4:d3:18:34:99: 3a:b1:70:72:9c:df:a9:3c:3f:60:22:09:d0:67:ae: 98:7c:d1:75:96:50:6d:58:1c:45:92:ec:0d:4d:3a: c9:0b:c7:b2:7c:b2:3f:bb:6f:03:41:96:8c:e3:12: 31:41:23:86:d5:85:3f:20:1d:80:69:51:e7:a8:aa: 22:cf:59:0a:4f:f0:6c:32:ca:a5:b4:18:40:6e:c4: 0f:3a:90:9e:1b:c0:bc:79:83:fa:6f:73:64:7f:30: 2c:ba:bb:d7:b8:79:79:24:04:e8:5f:e9:29:21:75: 4c:45:0b:29:1f:19:54:bb:f3:cb:6f:b1:3a:2f:48: 5f:4b:49:29:8e:71:dc:f5:ff:76:8d:cd:51:65:7d: d3:28:b5:f6:28:78:72:ae:6f:65:77:54:6e:99:2b: 72:bb:c2:e1:8b:97:ea:c6:f5:70:b1:1f:14:8f:d5: 47:6b:68:38:54:a8:49:ba:20:70:94:c2:f5:2d:af: f5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:63:A3:0A:8E:DF:71:FF:36:70:46:E2:CA:7F:0C:C6:1C:69:68:D8 X509v3 Authority Key Identifier: keyid:17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.229.32.0/22 103.9.96.0/22 117.120.16.0/21 223.29.216.0/22 Signature Algorithm: sha256WithRSAEncryption c1:db:b6:6e:a3:5b:da:f0:b9:80:dc:04:22:7e:76:6e:22:f9: b3:b0:dc:9a:57:43:af:dc:80:6f:e0:04:60:0b:e3:58:55:8b: 20:92:41:de:e8:d9:30:86:b2:a5:91:06:96:7f:60:95:ae:30: 8d:52:d2:c9:74:af:cc:06:c1:4a:9e:7d:7b:06:5f:e1:7f:7f: 51:49:7e:02:70:1e:6c:90:72:d4:eb:6c:f1:72:d0:c3:b6:74: b3:c0:c0:20:94:77:c7:5e:ab:11:59:1b:6b:fe:71:00:68:da: ad:b1:9f:08:b0:c0:da:93:c5:41:65:7e:d6:2c:ae:1c:8b:08: aa:da:96:d0:ad:a8:d3:4b:a1:b1:87:a4:a1:88:7a:ce:28:b9: 49:05:98:79:65:50:04:b8:72:83:15:0b:29:02:68:b1:a0:1a: 3c:08:af:aa:ff:09:42:d3:5a:5b:6c:64:ee:94:88:60:4b:32: a8:fc:c6:8f:63:e1:8c:24:1a:d6:88:1b:e0:4f:e5:6b:77:7d: 54:18:ce:b6:04:fa:c6:92:65:9e:d3:5a:2f:05:01:d3:9e:d2: 2f:9a:7b:92:8e:05:02:b7:16:7c:13:9c:8f:c5:06:37:0a:7b: ea:c7:29:de:3e:e8:a2:e3:13:f1:87:92:21:6a:46:f7:3b:84: 5f:2f:34:f0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4NkQxMTAvBgNVBAUTKDE3MTdBQ0FDMDUzRjEzMUUyMjYxNDUyNzM2NTEzRTRF OEY2MjZDREIwHhcNMjUwODA4MjAwMDAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjI3ZS0zYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul5cU7bvZ9sJv6y17bCr3J8XK/rRIRaKhMvZxgQ2hJWnKWhpQbKJI4NgsFK4 KVlDSUlFVfYqIhDeu//DGt1+dXv9B/lCtNMYNJk6sXBynN+pPD9gIgnQZ66YfNF1 llBtWBxFkuwNTTrJC8eyfLI/u28DQZaM4xIxQSOG1YU/IB2AaVHnqKoiz1kKT/Bs MsqltBhAbsQPOpCeG8C8eYP6b3NkfzAsurvXuHl5JAToX+kpIXVMRQspHxlUu/PL b7E6L0hfS0kpjnHc9f92jc1RZX3TKLX2KHhyrm9ld1RumStyu8Lhi5fqxvVwsR8U j9VHa2g4VKhJuiBwlML1La/1awIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFB9jowqO 33H/NnBG4sp/DMYcaWjYMB8GA1UdIwQYMBaAFBcXrKwFPxMeImFFJzZRPk6PYmzb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTg2RC9BMDA3NEQxODUz M0IxMUVBQkFBNzVCM0FDNEY5QUUwMi9GeGVzckFVX0V4NGlZVVVuTmxFLVRvOWli TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z4ZXNyQVVfRXg0aVlVVW5ObEUtVG85aWJOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4NkQvQTAwNzREMTg1MzNCMTFFQUJBQTc1QjNBQzRGOUFFMDIvMTMzMjFEMjQ1 NzIyMTFFQTg4Q0U0NDVGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCK+UgAwQCZwlgAwQDdXgQAwQC3x3YMA0GCSqGSIb3DQEBCwUAA4IB AQDB27Zuo1va8LmA3AQifnZuIvmzsNyaV0Ov3IBv4ARgC+NYVYsgkkHe6NkwhrKl kQaWf2CVrjCNUtLJdK/MBsFKnn17Bl/hf39RSX4CcB5skHLU62zxctDDtnSzwMAg lHfHXqsRWRtr/nEAaNqtsZ8IsMDak8VBZX7WLK4ciwiq2pbQrajTS6Gxh6ShiHrO KLlJBZh5ZVAEuHKDFQspAmixoBo8CK+q/wlC01pbbGTulIhgSzKo/MaPY+GMJBrW iBvgT+Vrd31UGM62BPrGkmWe01ovBQHTntIvmnuSjgUCtxZ8E5yPxQY3Cnvqxyne Puii4xPxh5Ihakb3O4RfLzTw -----END CERTIFICATE-----Generated at Sat Mar 21 20:53:14 2026 by rpki-client