$ rpki-client -vvf rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa File: FD4E307AFEA711EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: Wwe4w5QFaqaRZSg5Rdnoty2maRaw53FrW2eNR6k8xoU= Subject key identifier: 46:11:6D:32:78:FE:1D:86:8C:9C:83:F3:04:43:05:AB:B9:23:82:79 Certificate issuer: /CN=A912B983/serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85 Certificate serial: 0216 Authority key identifier: 9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:14:28 +0000 ROA not before: Fri 05 Dec 2025 01:11:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140869 IP address blocks: 103.42.6.0/24 maxlen: 24 103.42.7.0/24 maxlen: 24 103.141.0.0/24 maxlen: 24 103.141.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 02:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B983, serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85 Validity Not Before: Dec 5 01:11:21 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41184-458b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:d2:74:d3:9f:54:4a:da:a9:e3:21:91:23: e3:c5:d6:e7:57:4e:eb:66:21:28:ce:83:50:ae:6e: 55:3b:e6:14:fb:38:5a:4e:d8:09:78:a4:46:d8:81: 21:bc:e3:0c:ac:ad:5e:82:6a:55:4e:25:fb:eb:3a: 9f:27:72:78:d1:85:91:b4:1e:6c:71:40:0e:93:38: be:ba:f6:76:fe:1d:12:8c:a1:ed:56:53:07:b0:61: 53:ac:a3:f4:cb:35:6e:10:12:81:1c:be:3a:33:60: cb:81:8a:ee:78:19:f9:9a:71:9e:f8:1b:7b:68:37: 5b:27:01:f0:19:34:bf:11:c6:59:39:80:66:df:c8: 8c:d9:52:1e:86:01:89:b5:55:86:84:6f:59:fa:16: c7:c4:28:e2:2b:c5:2d:c2:cf:85:85:e3:b4:4a:4d: 7b:a8:36:4f:bf:3a:34:65:27:02:72:f9:9b:fb:ab: f1:0e:9a:d0:2d:c2:d7:4c:44:00:ef:bb:3e:22:a7: 7f:b2:bf:1a:a4:70:e4:bd:8c:e8:00:74:47:8c:18: 51:c2:8a:6f:b1:42:99:de:b3:9f:99:d2:03:49:0e: 5c:0a:ef:5f:fb:16:d6:25:b7:9a:f2:bf:c3:a5:c7: eb:fd:3b:b6:72:bc:84:52:49:cb:01:db:c9:23:9e: ea:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:11:6D:32:78:FE:1D:86:8C:9C:83:F3:04:43:05:AB:B9:23:82:79 X509v3 Authority Key Identifier: keyid:9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.42.6.0/23 103.141.0.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:6f:53:d1:d8:58:fa:3c:ae:5a:f6:0d:7e:e5:b0:fd:e5:6e: ff:de:27:c8:33:5a:7b:a1:72:55:de:63:ae:b4:22:bc:e6:6a: 30:b7:0b:1d:74:de:c8:65:3a:3d:51:33:e6:cd:97:4b:c5:f3: 20:65:8d:56:a9:22:f5:1e:b1:84:81:03:e5:7e:97:76:74:4f: 57:a8:a4:83:23:8e:b5:42:4c:0c:97:57:e2:8a:70:80:d5:a1: d5:63:b9:36:e2:c7:88:ac:06:e4:a7:1b:00:00:a1:65:b4:08: 56:ab:1b:4b:46:ad:4d:d0:c3:45:b1:79:37:06:df:88:0b:96: 6c:35:83:44:80:fc:2b:93:96:55:ac:61:a8:0f:87:79:5f:aa: 58:76:73:99:b7:0f:85:b2:dc:ca:d9:ec:7b:d9:9b:64:1f:55: 5c:e8:89:b3:b2:0f:36:c9:60:c1:6e:f3:63:5c:e8:eb:ae:f0: c3:88:7e:14:10:e1:1f:ba:ff:ae:ed:1a:43:24:6f:c8:62:a0: a8:5a:a5:f1:b6:51:e1:85:a7:54:bc:f9:08:ae:37:11:24:9e: 45:85:ba:b8:2c:32:10:9d:45:e8:01:0c:97:c3:d9:04:9f:4a: 64:ba:76:92:ec:b4:f6:78:4c:cb:d8:e7:ae:b1:64:c0:d6:75: 87:3d:3b:36 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI5ODMxMTAvBgNVBAUTKDlGOEVEMUM1M0VFOTBEM0NBQzg0QTY0NzBDNEI3NTk0 QzU1NzVEODUwHhcNMjUxMjA1MDExMTIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTE4NC00NThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3nSdNOfVEraqeMhkSPjxdbnV07rZiEozoNQrm5VO+YU+zhaTtgJeKRG2IEh vOMMrK1egmpVTiX76zqfJ3J40YWRtB5scUAOkzi+uvZ2/h0SjKHtVlMHsGFTrKP0 yzVuEBKBHL46M2DLgYrueBn5mnGe+Bt7aDdbJwHwGTS/EcZZOYBm38iM2VIehgGJ tVWGhG9Z+hbHxCjiK8Utws+FheO0Sk17qDZPvzo0ZScCcvmb+6vxDprQLcLXTEQA 77s+Iqd/sr8apHDkvYzoAHRHjBhRwopvsUKZ3rOfmdIDSQ5cCu9f+xbWJbea8r/D pcfr/Tu2cryEUknLAdvJI57qfwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEYRbTJ4 /h2GjJyD8wRDBau5I4J5MB8GA1UdIwQYMBaAFJ+O0cU+6Q08rISmRwxLdZTFV12F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjk4My9FNkE4QUNFQ0ZF QTIxMUVEQUVGMjkwNDdDNEY5QUUwMi9uNDdSeFQ3cERUeXNoS1pIREV0MWxNVlhY WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240N1J4VDdwRFR5c2hLWkhERXQxbE1WWFhZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI5ODMvRTZBOEFDRUNGRUEyMTFFREFFRjI5MDQ3QzRGOUFFMDIvRkQ0RTMwN0FG RUE3MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZyoGAwQBZ40AMA0GCSqGSIb3DQEBCwUAA4IBAQBPb1PR2Fj6PK5a 9g1+5bD95W7/3ifIM1p7oXJV3mOutCK85mowtwsddN7IZTo9UTPmzZdLxfMgZY1W qSL1HrGEgQPlfpd2dE9XqKSDI461QkwMl1fiinCA1aHVY7k24seIrAbkpxsAAKFl tAhWqxtLRq1N0MNFsXk3Bt+IC5ZsNYNEgPwrk5ZVrGGoD4d5X6pYdnOZtw+FstzK 2ex72ZtkH1Vc6Imzsg82yWDBbvNjXOjrrvDDiH4UEOEfuv+u7RpDJG/IYqCoWqXx tlHhhadUvPkIrjcRJJ5Fhbq4LDIQnUXoAQyXw9kEn0pkunaS7LT2eEzL2OeusWTA 1nWHPTs2 -----END CERTIFICATE-----Generated at Tue Mar 24 18:54:24 2026 by rpki-client