$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/8CBE22F8D33911EF9F576474C4F9AE02.roa File: 8CBE22F8D33911EF9F576474C4F9AE02.roa (raw, json) Hash identifier: JAQHOqa6K14izJ2YhH0AAezGQPtNNh167xabjFYaFso= Subject key identifier: 56:B4:D1:0E:E5:E6:DB:BD:61:6E:65:B0:5E:76:08:29:0C:0A:44:3D Certificate issuer: /CN=A916AC30/serialNumber=72E8860B2B473365BF261420D06B58A804C296B2 Certificate serial: 010F Authority key identifier: 72:E8:86:0B:2B:47:33:65:BF:26:14:20:D0:6B:58:A8:04:C2:96:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuiGCytHM2W_JhQg0GtYqATClrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/8CBE22F8D33911EF9F576474C4F9AE02.roa Signing time: Tue 03 Feb 2026 05:24:59 +0000 ROA not before: Tue 03 Feb 2026 05:24:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 59253 IP address blocks: 43.249.38.0/23 maxlen: 23 43.249.38.0/24 maxlen: 24 43.249.39.0/24 maxlen: 24 103.254.152.0/22 maxlen: 22 103.254.154.0/23 maxlen: 23 2001:df1:800::/48 maxlen: 48 2402:a7c0::/32 maxlen: 32 2402:a7c0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/cuiGCytHM2W_JhQg0GtYqATClrI.crl rsync://rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/cuiGCytHM2W_JhQg0GtYqATClrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuiGCytHM2W_JhQg0GtYqATClrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 04:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC30, serialNumber=72E8860B2B473365BF261420D06B58A804C296B2 Validity Not Before: Feb 3 05:24:59 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=698186ab-2994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:e3:22:3e:45:7f:e8:90:22:03:67:45:1e: 14:89:84:98:ec:05:0f:32:1b:ec:67:65:67:81:34: 61:4a:d8:8c:bd:dc:45:c2:1b:63:9d:90:ed:ae:45: 4a:92:92:ff:af:02:1d:01:42:87:db:9a:2c:d2:33: b3:b9:64:2d:46:5c:5c:9b:98:2a:3d:5c:6c:5b:d3: a7:5a:a5:d8:32:9d:1d:54:7d:46:f1:87:63:c3:33: d1:98:1a:a6:0e:17:d5:90:e5:46:84:36:42:c1:24: ca:b3:b0:4e:44:63:c1:af:64:0b:56:33:b9:ae:ae: a8:b4:75:44:8b:19:5c:3e:6a:25:2c:2c:7b:d0:f1: 56:4e:fd:17:e7:79:08:24:30:6d:c3:25:1a:f4:be: d8:72:33:74:ab:d8:cf:89:cc:39:5b:5c:38:27:2e: 92:13:4c:7e:94:7d:ce:6d:dd:c9:dc:2b:7b:51:ae: 52:1c:1c:48:ee:9d:3c:34:2b:06:f2:78:84:ba:d5: 71:11:d3:7a:47:79:a0:63:88:47:e6:df:19:95:56: 88:ee:46:d1:35:a9:a3:36:b2:8a:a7:9f:94:17:1a: e9:a7:55:a5:39:09:a6:ef:9c:b4:b7:f0:7e:75:35: 10:b5:9b:a7:a4:79:3e:33:4f:be:dd:26:f4:33:e2: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B4:D1:0E:E5:E6:DB:BD:61:6E:65:B0:5E:76:08:29:0C:0A:44:3D X509v3 Authority Key Identifier: keyid:72:E8:86:0B:2B:47:33:65:BF:26:14:20:D0:6B:58:A8:04:C2:96:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/cuiGCytHM2W_JhQg0GtYqATClrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuiGCytHM2W_JhQg0GtYqATClrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC30/760D6A648C6211EF99464085C4F9AE02/8CBE22F8D33911EF9F576474C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.38.0/23 103.254.152.0/22 IPv6: 2001:df1:800::/48 2402:a7c0::/32 Signature Algorithm: sha256WithRSAEncryption 34:4c:73:ba:ba:6c:03:49:60:86:4a:c3:37:31:37:98:2a:bf: 29:7c:c9:89:2c:44:b9:be:d7:2d:5a:af:70:2a:a9:59:bc:38: 07:13:4f:7b:a4:79:58:7f:16:fc:06:78:ed:f0:77:62:33:a6: 2a:cd:aa:e9:04:a0:3f:09:f5:63:47:66:7a:bb:d6:6a:49:e0: 1f:68:84:41:89:71:7c:05:20:30:5a:2c:21:e4:d0:09:a3:50: fe:69:fd:43:82:bb:c7:a3:c0:21:a6:33:ff:ac:4d:01:02:45: 92:a4:43:1a:1f:47:1e:6f:cd:14:c4:3d:e5:99:cb:f5:99:2a: e3:d1:78:e7:57:83:51:87:c6:38:99:86:ee:19:87:a2:8c:3f: 73:ef:39:ee:44:b5:d7:9f:bc:75:11:d9:81:cf:2e:70:6e:53: 06:fb:be:0f:67:7e:4b:a8:e2:c5:84:70:a5:42:67:8a:bb:fd: 42:0d:b4:03:2a:f1:e1:64:02:3d:90:ed:66:ae:6a:1e:f6:e1: 4f:9e:b3:c5:73:9d:92:19:d6:bf:0b:31:5f:13:7a:3c:63:6e: 6e:69:84:d8:9e:81:9b:3e:62:a8:15:c0:ec:d8:bd:6f:55:0f: 18:52:c4:e8:43:6f:be:b9:34:3f:46:e5:cb:dd:e4:34:89:f7: a2:c2:2c:f9 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NkFDMzAxMTAvBgNVBAUTKDcyRTg4NjBCMkI0NzMzNjVCRjI2MTQyMEQwNkI1OEE4 MDRDMjk2QjIwHhcNMjYwMjAzMDUyNDU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgxODZhYi0yOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKHjIj5Ff+iQIgNnRR4UiYSY7AUPMhvsZ2VngTRhStiMvdxFwhtjnZDtrkVK kpL/rwIdAUKH25os0jOzuWQtRlxcm5gqPVxsW9OnWqXYMp0dVH1G8YdjwzPRmBqm DhfVkOVGhDZCwSTKs7BORGPBr2QLVjO5rq6otHVEixlcPmolLCx70PFWTv0X53kI JDBtwyUa9L7YcjN0q9jPicw5W1w4Jy6SE0x+lH3Obd3J3Ct7Ua5SHBxI7p08NCsG 8niEutVxEdN6R3mgY4hH5t8ZlVaI7kbRNamjNrKKp5+UFxrpp1WlOQmm75y0t/B+ dTUQtZunpHk+M0++3Sb0M+J9MwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFFa00Q7l 5tu9YW5lsF52CCkMCkQ9MB8GA1UdIwQYMBaAFHLohgsrRzNlvyYUINBrWKgEwpay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUMzMC83NjBENkE2NDhD NjIxMUVGOTk0NjQwODVDNEY5QUUwMi9jdWlHQ3l0SE0yV19KaFFnMEd0WXFBVENs ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N1aUdDeXRITTJXX0poUWcwR3RZcUFUQ2xySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkFDMzAvNzYwRDZBNjQ4QzYyMTFFRjk5NDY0MDg1QzRGOUFFMDIvOENCRTIyRjhE MzM5MTFFRjlGNTc2NDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBAEr+SYDBAJn/pgwFgQCAAIwEAMHACABDfEIAAMFACQCp8Aw DQYJKoZIhvcNAQELBQADggEBADRMc7q6bANJYIZKwzcxN5gqvyl8yYksRLm+1y1a r3AqqVm8OAcTT3ukeVh/FvwGeO3wd2IzpirNqukEoD8J9WNHZnq71mpJ4B9ohEGJ cXwFIDBaLCHk0AmjUP5p/UOCu8ejwCGmM/+sTQECRZKkQxofRx5vzRTEPeWZy/WZ KuPReOdXg1GHxjiZhu4Zh6KMP3PvOe5EtdefvHUR2YHPLnBuUwb7vg9nfkuo4sWE cKVCZ4q7/UINtAMq8eFkAj2Q7Wauah724U+es8VznZIZ1r8LMV8Tejxjbm5phNie gZs+YqgVwOzYvW9VDxhSxOhDb765ND9G5cvd5DSJ96LCLPk= -----END CERTIFICATE-----Generated at Thu Feb 19 21:26:38 2026 by rpki-client