$ rpki-client -vvf rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa File: 1C64580A4F6111ED9365FC4AC4F9AE02.roa (raw, json) Hash identifier: pFPj7Hs+QlDqmas++crsSoUoPgTQ/jWPFp4sy0OuPS0= Subject key identifier: 25:1B:0F:13:FD:6D:86:A3:61:E6:F9:D7:CC:83:B0:3B:27:65:BC:19 Certificate issuer: /CN=A919D209/serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Certificate serial: 07DB Authority key identifier: EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa Signing time: Sat 28 Mar 2026 21:28:07 +0000 ROA not before: Sat 28 Mar 2026 21:28:06 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 56082 IP address blocks: 43.230.188.0/24 maxlen: 24 103.50.9.0/24 maxlen: 24 103.50.10.0/24 maxlen: 24 103.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D209, serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Validity Not Before: Mar 28 21:28:06 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c847e6-417e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6f:f0:94:ce:69:b6:33:df:ee:75:d0:30:34: 29:35:98:cd:b5:3f:9d:c7:15:58:fb:59:9e:2f:4f: ee:91:1c:29:67:c7:12:83:9e:19:dc:f6:d2:d1:33: c6:3f:70:fa:e6:72:15:ae:cb:0a:67:a7:73:cb:b0: e4:73:58:51:6c:1a:df:ca:a8:31:18:4c:98:61:1d: 56:1c:51:e5:aa:5e:ce:58:5d:1c:cb:fb:28:32:1a: 67:80:a2:b7:db:e7:83:22:9e:59:a3:a6:7c:ec:d1: f8:f9:e2:37:1f:84:77:a4:15:1b:7c:87:81:77:b3: d4:04:bd:79:6f:1b:5d:a4:3d:64:b1:13:db:60:db: 60:99:3d:5c:02:82:90:40:1c:2b:f4:df:89:18:8b: 75:51:2b:d4:fa:c6:99:e0:77:5f:b8:9c:6e:53:28: 5d:22:eb:d2:5b:9d:81:fa:97:41:e2:a2:c1:d5:58: f1:9f:1e:ec:98:62:e3:59:0e:7d:d9:dd:1c:c8:07: 9e:d6:f8:d1:c9:04:ed:5a:34:c6:6d:5b:09:f2:4d: e7:e4:cf:f3:2e:61:65:78:3b:ca:a3:26:1d:50:4c: ca:1a:3a:70:4c:cd:9d:6a:f7:11:2c:b1:13:43:de: 4e:66:52:8e:c4:eb:19:a1:68:dc:a4:88:e8:95:b4: 57:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1B:0F:13:FD:6D:86:A3:61:E6:F9:D7:CC:83:B0:3B:27:65:BC:19 X509v3 Authority Key Identifier: keyid:EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.188.0/24 103.50.9.0-103.50.11.255 Signature Algorithm: sha256WithRSAEncryption c1:a1:48:61:29:19:6d:ba:b0:e4:6d:ed:2b:d6:61:c1:67:87: 87:19:ad:d6:30:91:ca:7f:0d:f8:50:cf:b3:16:c1:59:a6:9d: 99:78:7f:e9:b8:e6:48:63:c0:cb:f8:b6:b2:53:13:4a:4b:39: 9d:47:a5:04:0b:c2:59:07:e5:91:0c:74:3c:55:78:0e:2e:e1: ae:94:95:ce:45:7b:c7:ba:f7:62:f0:11:9f:60:2a:ca:21:ed: 94:dc:28:f3:58:b2:6a:49:f2:8d:69:9a:7e:82:6f:59:45:0c: b6:48:09:92:3d:83:4e:58:83:fa:a2:47:54:5f:2a:b7:98:20: 74:32:00:1d:13:45:83:cb:20:4a:c3:09:27:73:78:0f:66:d1: 30:57:af:f7:35:5d:83:c6:fb:c6:de:78:d2:97:07:13:70:86: 9b:d9:51:a7:6d:6f:a0:f5:2d:a4:3d:e0:b6:f6:9a:22:29:78: b9:73:03:6c:6f:da:38:ec:68:62:7e:09:05:75:b8:4e:19:97: c0:7d:6a:2f:bf:ad:ce:e4:4b:b2:d6:30:6f:19:bd:74:fe:5e: bd:21:84:db:67:8d:9a:86:de:70:68:c4:62:4e:6c:76:fc:bd: 16:76:a5:d7:03:48:ca:d1:40:86:47:91:a6:a4:5f:71:23:bb: f1:38:f9:e6 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyMDkxMTAvBgNVBAUTKEVCNjJERkM3MzRBMjVCQzE1NEQzNjdBOThDRjI3RUQx NkY0MUVBRDAwHhcNMjYwMzI4MjEyODA2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4NDdlNi00MTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuG/wlM5ptjPf7nXQMDQpNZjNtT+dxxVY+1meL0/ukRwpZ8cSg54Z3PbS0TPG P3D65nIVrssKZ6dzy7Dkc1hRbBrfyqgxGEyYYR1WHFHlql7OWF0cy/soMhpngKK3 2+eDIp5Zo6Z87NH4+eI3H4R3pBUbfIeBd7PUBL15bxtdpD1ksRPbYNtgmT1cAoKQ QBwr9N+JGIt1USvU+saZ4HdfuJxuUyhdIuvSW52B+pdB4qLB1Vjxnx7smGLjWQ59 2d0cyAee1vjRyQTtWjTGbVsJ8k3n5M/zLmFleDvKoyYdUEzKGjpwTM2davcRLLET Q95OZlKOxOsZoWjcpIjolbRXYQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFCUbDxP9 bYajYeb518yDsDsnZbwZMB8GA1UdIwQYMBaAFOti38c0olvBVNNnqYzyftFvQerQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDIwOS9CMzM5N0I0QTM1 M0ExMUVCQjdFQjZCMThDNEY5QUUwMi82MkxmeHpTaVc4RlUwMmVwalBKLTBXOUI2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYyTGZ4elNpVzhGVTAyZXBqUEotMFc5QjZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyMDkvQjMzOTdCNEEzNTNBMTFFQkI3RUI2QjE4QzRGOUFFMDIvMUM2NDU4MEE0 RjYxMTFFRDkzNjVGQzRBQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAK+a8MAwDBABnMgkDBAJnMggwDQYJKoZIhvcNAQELBQADggEBAMGh SGEpGW26sORt7SvWYcFnh4cZrdYwkcp/DfhQz7MWwVmmnZl4f+m45khjwMv4trJT E0pLOZ1HpQQLwlkH5ZEMdDxVeA4u4a6Ulc5Fe8e692LwEZ9gKsoh7ZTcKPNYsmpJ 8o1pmn6Cb1lFDLZICZI9g05Yg/qiR1RfKreYIHQyAB0TRYPLIErDCSdzeA9m0TBX r/c1XYPG+8beeNKXBxNwhpvZUadtb6D1LaQ94Lb2miIpeLlzA2xv2jjsaGJ+CQV1 uE4Zl8B9ai+/rc7kS7LWMG8ZvXT+Xr0hhNtnjZqG3nBoxGJObHb8vRZ2pdcDSMrR QIZHkaakX3Eju/E4+eY= -----END CERTIFICATE-----Generated at Mon Apr 6 11:19:32 2026 by rpki-client