$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa File: 11A843B467D811EEA0543B5CC4F9AE02.roa (raw, json) Hash identifier: KWP1UBy8boz7pJPm05GmDW82fCp04v/CANctx4p0U0c= Subject key identifier: 6D:AC:E1:42:27:E7:F5:6D:B6:2A:56:1A:C6:42:D0:B3:30:1D:F3:16 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 01C9 Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:22:08 +0000 ROA not before: Fri 31 Oct 2025 03:48:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137263 IP address blocks: 103.129.252.0/22 maxlen: 22 103.129.252.0/23 maxlen: 23 103.129.252.0/24 maxlen: 24 103.129.254.0/23 maxlen: 23 2403:9d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 02:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Oct 31 03:48:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a41350-983c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:41:f2:3c:84:00:10:56:ba:6b:0a:bb:88:6a: 6f:6d:3c:07:18:88:1b:8c:59:48:84:03:e7:d4:50: 85:b0:26:bf:4a:c5:75:f7:18:a6:57:01:46:09:1c: 7e:ee:4a:51:05:f2:cb:ea:26:42:40:15:34:65:9c: a2:b2:8f:4b:64:ec:e2:d4:7c:92:27:6b:8e:35:92: fb:a0:d7:4d:56:9e:d6:03:51:25:e0:24:c7:13:3d: 4d:fa:26:df:20:07:b2:73:5f:61:3a:91:73:2c:65: 87:9d:93:74:2d:04:b3:2d:0b:18:c0:8e:0c:05:c9: 14:55:fa:df:59:bb:72:8a:ed:89:ce:40:31:f5:1c: 1b:8b:7c:61:64:9f:6c:a1:2c:ae:20:1b:92:23:36: 18:ff:a1:34:19:8e:5c:fc:b6:36:17:90:37:d6:b0: 60:f9:61:6f:ee:38:60:02:b1:6e:e2:80:85:31:f6: 32:66:91:fe:7f:32:41:3f:f1:a6:69:e0:83:48:ab: 65:f0:42:cf:bc:74:58:29:8d:41:a4:66:9b:e6:e9: f0:d1:ca:f8:d4:35:30:4e:04:62:5e:eb:5b:ba:da: 62:6c:56:09:aa:e2:2f:d9:21:11:76:70:96:d9:79: 24:01:6b:fb:bd:37:fb:19:99:15:58:0f:84:5f:21: 4c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AC:E1:42:27:E7:F5:6D:B6:2A:56:1A:C6:42:D0:B3:30:1D:F3:16 X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.129.252.0/22 IPv6: 2403:9d40::/32 Signature Algorithm: sha256WithRSAEncryption be:01:ce:21:00:4d:23:ec:2d:85:0e:e8:e8:d3:91:12:e3:71: e8:68:f0:57:39:5e:6e:17:7c:6f:64:a1:77:22:3f:c9:14:f5: f1:46:d8:3e:e8:4f:0c:9c:10:6e:74:f0:80:eb:48:f1:d0:85: 84:1e:07:a8:11:05:16:a9:6a:ab:39:1b:52:a2:18:ae:28:6a: 95:07:04:c1:2b:92:ff:b0:48:76:25:05:22:33:7b:91:da:f2: 7f:e1:51:35:4a:1d:d6:ef:56:54:7a:ba:61:d4:31:bd:15:69: 30:95:ce:2b:7a:0a:f3:94:93:30:38:f4:a7:3a:ce:97:46:c8: e9:4f:e4:e9:1c:88:85:10:b8:b6:2d:16:60:49:90:09:64:b1: 78:9d:42:96:45:0f:c2:ec:0b:b9:78:fc:e3:cb:84:e6:3b:b0: c4:a8:bf:2c:d1:d7:ee:d8:04:38:c4:80:83:5b:9b:f5:ea:6a: 0b:13:04:f8:a5:2a:50:4f:4d:cb:6e:5f:b2:19:1f:ad:1d:4a: 71:05:3a:11:1f:bf:34:39:e5:f3:98:27:7d:0a:dc:fa:29:2b: 94:e6:39:8b:e2:6c:ab:07:38:a4:9c:78:5f:a5:2c:5b:97:a2: 05:06:82:ac:2e:f3:3c:48:d9:87:92:bc:2e:b2:3a:70:6b:76: a8:23:4d:18 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUxMDMxMDM0ODIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTM1MC05ODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUHyPIQAEFa6awq7iGpvbTwHGIgbjFlIhAPn1FCFsCa/SsV19ximVwFGCRx+ 7kpRBfLL6iZCQBU0ZZyiso9LZOzi1HySJ2uONZL7oNdNVp7WA1El4CTHEz1N+ibf IAeyc19hOpFzLGWHnZN0LQSzLQsYwI4MBckUVfrfWbtyiu2JzkAx9Rwbi3xhZJ9s oSyuIBuSIzYY/6E0GY5c/LY2F5A31rBg+WFv7jhgArFu4oCFMfYyZpH+fzJBP/Gm aeCDSKtl8ELPvHRYKY1BpGab5unw0cr41DUwTgRiXutbutpibFYJquIv2SERdnCW 2XkkAWv7vTf7GZkVWA+EXyFMawIDAQABo4ICbzCCAmswHQYDVR0OBBYEFG2s4UIn 5/VttipWGsZC0LMwHfMWMB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNTYvQ0RCQ0Y2M0E2NjkzMTFFRTk4Q0VBQTUwQzRGOUFFMDIvMTFBODQzQjQ2 N0Q4MTFFRUEwNTQzQjVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4H8MA0EAgACMAcDBQAkA51AMA0GCSqGSIb3DQEBCwUAA4IBAQC+ Ac4hAE0j7C2FDujo05ES43HoaPBXOV5uF3xvZKF3Ij/JFPXxRtg+6E8MnBBudPCA 60jx0IWEHgeoEQUWqWqrORtSohiuKGqVBwTBK5L/sEh2JQUiM3uR2vJ/4VE1Sh3W 71ZUerph1DG9FWkwlc4regrzlJMwOPSnOs6XRsjpT+TpHIiFELi2LRZgSZAJZLF4 nUKWRQ/C7Au5ePzjy4TmO7DEqL8s0dfu2AQ4xICDW5v16moLEwT4pSpQT03Lbl+y GR+tHUpxBToRH780OeXzmCd9Ctz6KSuU5jmL4myrBziknHhfpSxbl6IFBoKsLvM8 SNmHkrwusjpwa3aoI00Y -----END CERTIFICATE-----Generated at Sat Mar 7 03:07:37 2026 by rpki-client