$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa File: 87F433B2234C11EBA94AE637C4F9AE02.roa (raw, json) Hash identifier: n5wlbfzu1nkCUtXLjTCqtermWiOQnIuS2LGZIh8GrSA= Subject key identifier: A6:3B:5F:13:05:93:15:D7:A5:F2:71:A2:65:CB:01:79:80:A5:5E:9C Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DE4 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:06:19 +0000 ROA not before: Wed 24 Sep 2025 16:34:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141031 IP address blocks: 113.203.192.0/24 maxlen: 24 113.203.194.0/24 maxlen: 24 113.203.196.0/24 maxlen: 24 113.203.197.0/24 maxlen: 24 113.203.198.0/24 maxlen: 24 113.203.199.0/24 maxlen: 24 118.103.224.0/24 maxlen: 24 118.103.225.0/24 maxlen: 24 2406:d00:ee00::/48 maxlen: 48 2406:d00:ee01::/48 maxlen: 48 2406:d00:ee02::/48 maxlen: 48 2406:d00:ee03::/48 maxlen: 48 2406:d00:ee04::/48 maxlen: 48 2406:d00:ee05::/48 maxlen: 48 2406:d00:ee06::/48 maxlen: 48 2406:d00:ee0a::/48 maxlen: 48 2406:d00:ee0b::/48 maxlen: 48 2406:d00:ee0c::/48 maxlen: 48 2406:d00:ee0d::/48 maxlen: 48 2406:d00:ee0e::/48 maxlen: 48 2406:d00:ee0f::/48 maxlen: 48 2406:d00:ee55::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7652 (0x1de4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 24 16:34:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4801b-412f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e7:60:1d:6a:7f:a8:4c:c3:60:47:78:aa:70: e9:ac:c0:6c:ab:76:a3:77:df:80:a6:ea:3c:d8:7a: c1:6e:a2:79:57:f1:84:6a:55:34:26:fe:c3:95:c9: 86:e0:0a:68:3d:07:f9:af:1c:2f:88:8a:5e:a2:8d: ec:ec:26:9b:5f:7c:53:3c:9e:0f:4b:24:c5:93:b0: 5c:95:c1:62:e8:35:40:93:83:25:1e:94:e7:86:d2: 9f:3b:dc:1f:8b:ac:1d:32:ef:01:04:14:f2:3d:8f: 55:8b:5a:91:6f:07:ef:98:88:9e:a9:a9:04:61:c6: c6:34:64:1c:f0:cb:a5:1e:40:28:5c:3e:f0:9f:c3: ca:16:ea:34:98:e4:4c:5e:61:46:82:2f:92:af:4b: da:ad:01:8f:ba:e8:2c:ce:04:8b:f5:fd:83:06:87: d7:0c:87:52:b2:56:f8:ad:7d:e9:94:75:fb:3e:ae: 7a:34:c4:fd:15:6d:f0:15:8f:2c:0f:72:27:af:15: 86:68:de:52:00:30:0e:c9:7f:23:4d:9e:0b:38:e2: 02:f3:e3:7a:8a:fa:bc:e7:26:50:40:4f:e2:bc:eb: c4:c4:ec:ab:b6:0a:62:b9:26:29:47:f7:a4:56:ed: 1f:a3:1d:c9:d0:51:df:7f:a7:43:fa:0b:ab:3f:7f: df:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3B:5F:13:05:93:15:D7:A5:F2:71:A2:65:CB:01:79:80:A5:5E:9C X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/87F433B2234C11EBA94AE637C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.203.192.0/24 113.203.194.0/24 113.203.196.0/22 118.103.224.0/23 IPv6: 2406:d00:ee00::-2406:d00:ee06:ffff:ffff:ffff:ffff:ffff 2406:d00:ee0a::-2406:d00:ee0f:ffff:ffff:ffff:ffff:ffff 2406:d00:ee55::/48 Signature Algorithm: sha256WithRSAEncryption 69:4c:cf:3a:fc:09:f7:b2:95:d5:39:98:5c:e4:11:a7:e8:79: 7b:9c:9b:ae:9f:d1:2d:9b:fc:22:75:99:47:01:d2:02:4c:74: 7c:8f:9f:3c:70:50:5b:77:3b:86:a3:bd:6c:56:99:9a:89:18: 03:c9:e3:4e:42:9b:ce:98:d0:d8:3a:63:39:91:6c:63:a7:ec: 44:06:8f:41:83:0b:08:fd:0d:a0:4e:75:7d:9b:f7:f6:9a:3d: 68:e6:a5:71:28:e4:a5:96:94:8a:e0:8d:5f:9c:22:f9:05:2f: af:ad:a5:24:42:e8:b9:63:c2:10:3f:8b:3f:47:67:f1:56:cd: 14:28:58:38:eb:b1:01:70:0c:eb:58:10:80:aa:69:dc:63:4d: 32:3a:f1:8c:dd:ea:8f:13:e5:2c:05:7f:25:b9:f9:e3:14:74: 0d:7a:f4:c1:bd:48:63:51:95:5f:29:c2:4e:5c:6f:ac:28:82: 62:75:80:91:74:31:bf:46:7a:f4:59:46:c9:f1:81:1e:de:4b: 47:f6:5f:0b:2a:d8:e0:9e:1c:db:42:5d:28:34:c1:65:bb:70: 0e:d3:80:eb:f9:ae:8e:3b:6b:42:17:5c:86:8f:1d:33:c7:e8: 61:27:d0:2b:af:f9:f1:96:7e:38:76:44:04:d8:6e:70:a1:8f: b3:e7:43:12 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICHeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwOTI0MTYzNDM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODAxYi00MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqedgHWp/qEzDYEd4qnDprMBsq3ajd9+Apuo82HrBbqJ5V/GEalU0Jv7DlcmG 4ApoPQf5rxwviIpeoo3s7CabX3xTPJ4PSyTFk7BclcFi6DVAk4MlHpTnhtKfO9wf i6wdMu8BBBTyPY9Vi1qRbwfvmIieqakEYcbGNGQc8MulHkAoXD7wn8PKFuo0mORM XmFGgi+Sr0varQGPuugszgSL9f2DBofXDIdSslb4rX3plHX7Pq56NMT9FW3wFY8s D3InrxWGaN5SADAOyX8jTZ4LOOIC8+N6ivq85yZQQE/ivOvExOyrtgpiuSYpR/ek Vu0fox3J0FHff6dD+gurP3/fmwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKY7XxMF kxXXpfJxomXLAXmApV6cMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvODdGNDMzQjIy MzRDMTFFQkE5NEFFNjM3QzRGOUFFMDIucm9hMGkGCCsGAQUFBwEHAQH/BFowWDAe BAIAATAYAwQAccvAAwQAccvCAwQCccvEAwQBdmfgMDYEAgACMDAwEQMGASQGDQDu AwcAJAYNAO4GMBIDBwEkBg0A7goDBwQkBg0A7gADBwAkBg0A7lUwDQYJKoZIhvcN AQELBQADggEBAGlMzzr8CfeyldU5mFzkEafoeXucm66f0S2b/CJ1mUcB0gJMdHyP nzxwUFt3O4ajvWxWmZqJGAPJ405Cm86Y0Ng6YzmRbGOn7EQGj0GDCwj9DaBOdX2b 9/aaPWjmpXEo5KWWlIrgjV+cIvkFL6+tpSRC6LljwhA/iz9HZ/FWzRQoWDjrsQFw DOtYEICqadxjTTI68Yzd6o8T5SwFfyW5+eMUdA169MG9SGNRlV8pwk5cb6wogmJ1 gJF0Mb9GevRZRsnxgR7eS0f2Xwsq2OCeHNtCXSg0wWW7cA7TgOv5ro47a0IXXIaP HTPH6GEn0Cuv+fGWfjh2RATYbnChj7PnQxI= -----END CERTIFICATE-----Generated at Sat Mar 14 03:49:13 2026 by rpki-client