$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa File: D3CE622872D911E9B41E5B11C4F9AE02.roa (raw, json) Hash identifier: jc/It36zWQxPrsKV0rLdQ8dqwAo7dsyrvIiLbRBSNsU= Subject key identifier: 23:99:D2:E9:5A:92:E0:E3:8B:99:11:88:80:C6:C3:15:F1:97:85:1C Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 204A Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:12:48 +0000 ROA not before: Sat 30 Aug 2025 16:35:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4847 IP address blocks: 115.171.0.0/16 maxlen: 16 115.171.0.0/18 maxlen: 18 115.171.64.0/18 maxlen: 18 115.171.128.0/18 maxlen: 18 115.171.192.0/18 maxlen: 18 218.30.179.0/24 maxlen: 24 218.30.180.0/24 maxlen: 24 218.30.181.0/24 maxlen: 24 218.30.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8266 (0x204a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48fb0-0417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ed:2e:da:f3:31:cc:e5:55:f6:9b:a3:07:c6: bc:02:2e:3f:f9:f7:14:9c:a6:db:2c:82:17:50:4c: 42:61:72:00:f8:24:58:b4:b7:7c:90:0f:6b:f8:bc: 26:28:4f:fd:4d:15:b6:4f:e0:98:48:1a:3d:91:22: f6:34:bc:1a:b8:18:b2:4a:e8:02:67:c1:c5:92:61: 2e:44:fb:56:1e:4a:c3:5f:df:5e:56:5a:4a:cd:d4: eb:b6:ae:0c:42:e5:c4:25:e9:e0:89:19:8a:c8:d4: 40:85:dc:ae:d6:a8:66:f9:1e:7c:55:28:c8:7a:ee: dd:e7:3c:58:db:45:54:f1:ab:07:c1:7f:ab:33:81: e2:54:d3:be:d3:c1:ee:e6:b8:66:47:06:8a:e6:30: af:6f:ad:25:7a:40:57:73:00:ce:a9:f7:ac:63:a6: 7a:d2:6d:13:ed:d4:a5:7c:be:5c:02:fa:39:4f:ab: d7:70:1d:b7:80:6c:bb:4e:a1:22:19:2a:6b:36:44: f7:cf:bb:c9:32:32:18:14:73:21:57:e5:f4:86:a8: d0:e6:6b:93:db:0b:5e:9f:20:8c:72:47:b1:cd:13: a4:d6:b7:30:21:dc:20:77:37:4f:d7:c0:15:1b:d0: 82:57:7d:5a:2d:0c:34:9d:65:b1:ab:8f:d1:67:8d: 20:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:99:D2:E9:5A:92:E0:E3:8B:99:11:88:80:C6:C3:15:F1:97:85:1C X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.171.0.0/16 218.30.179.0-218.30.182.255 Signature Algorithm: sha256WithRSAEncryption 5f:5a:b4:34:a7:bb:4c:1f:5c:8b:72:ad:de:dc:ca:06:18:ae: 7d:6c:16:c9:59:5b:d8:3e:38:5a:21:39:53:c8:77:be:c2:02: 5b:82:ae:b6:b5:31:7a:ac:66:9a:2a:f5:d3:d0:66:47:7a:d0: 06:5c:21:ce:86:24:f7:d4:76:e1:cf:72:37:2d:7b:83:0f:d8: e5:ad:88:45:dd:5f:0e:bd:4a:89:55:0f:d1:26:39:fb:b3:ff: 0c:b8:2b:50:44:fe:12:28:4d:06:a4:00:79:a9:99:36:e0:48: ca:3c:d4:04:db:1d:6c:76:fb:05:88:e6:df:55:e8:48:56:be: ff:5e:99:e1:4a:19:4f:46:40:56:6c:c1:48:29:fc:74:0b:da: e2:02:d5:c3:b3:7b:ea:d2:1d:9a:df:2e:57:ff:60:e3:c7:64: 5c:e0:36:3e:59:a7:4b:b6:1b:c9:34:58:43:86:21:06:82:b1: bf:25:4d:52:bc:76:8f:40:c5:26:6f:57:f9:48:40:93:0a:b8: f5:45:5f:7a:69:50:b7:5b:de:d4:52:4c:06:7c:b7:9d:d0:38: 79:ed:d8:9b:8c:fb:5b:af:04:00:4d:45:a3:60:a1:95:4a:83: 3b:e2:36:f4:08:b3:92:b2:00:a9:4d:3b:52:be:d0:af:3e:be: 11:4c:02:2e -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgICIEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZiMC0wNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApu0u2vMxzOVV9pujB8a8Ai4/+fcUnKbbLIIXUExCYXIA+CRYtLd8kA9r+Lwm KE/9TRW2T+CYSBo9kSL2NLwauBiySugCZ8HFkmEuRPtWHkrDX99eVlpKzdTrtq4M QuXEJengiRmKyNRAhdyu1qhm+R58VSjIeu7d5zxY20VU8asHwX+rM4HiVNO+08Hu 5rhmRwaK5jCvb60lekBXcwDOqfesY6Z60m0T7dSlfL5cAvo5T6vXcB23gGy7TqEi GSprNkT3z7vJMjIYFHMhV+X0hqjQ5muT2wtenyCMckexzROk1rcwIdwgdzdP18AV G9CCV31aLQw0nWWxq4/RZ40gNwIDAQABo4ICbTCCAmkwHQYDVR0OBBYEFCOZ0ula kuDji5kRiIDGwxXxl4UcMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDNDRTYyMjg3 MkQ5MTFFOUI0MUU1QjExQzRGOUFFMDIucm9hMCwGCCsGAQUFBwEHAQH/BB0wGzAZ BAIAATATAwMAc6swDAMEANoeswMEANoetjANBgkqhkiG9w0BAQsFAAOCAQEAX1q0 NKe7TB9ci3Kt3tzKBhiufWwWyVlb2D44WiE5U8h3vsICW4KutrUxeqxmmir109Bm R3rQBlwhzoYk99R24c9yNy17gw/Y5a2IRd1fDr1KiVUP0SY5+7P/DLgrUET+EihN BqQAeamZNuBIyjzUBNsdbHb7BYjm31XoSFa+/16Z4UoZT0ZAVmzBSCn8dAva4gLV w7N76tIdmt8uV/9g48dkXOA2PlmnS7YbyTRYQ4YhBoKxvyVNUrx2j0DFJm9X+UhA kwq49UVfemlQt1ve1FJMBny3ndA4ee3Ym4z7W68EAE1Fo2ChlUqDO+I29AizkrIA qU07Ur7Qrz6+EUwCLg== -----END CERTIFICATE-----Generated at Thu Mar 12 22:45:38 2026 by rpki-client