$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EE0C206E96FF11ED87B56F84C4F9AE02.roa File: EE0C206E96FF11ED87B56F84C4F9AE02.roa (raw, json) Hash identifier: jnvYSXUOzZRSAh+pOehb/z7FrmRMGdKIIgdSaHoUN6w= Subject key identifier: AE:9E:0D:67:FF:D5:A3:F6:67:ED:E3:E7:2F:19:36:E5:C9:CD:3D:F4 Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: 0290 Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EE0C206E96FF11ED87B56F84C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:15:10 +0000 ROA not before: Fri 31 Oct 2025 02:16:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133608 IP address blocks: 103.172.233.0/24 maxlen: 24 2407:dac0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C, serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Oct 31 02:16:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4660e-59e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:2c:8d:b8:ca:81:da:fe:a1:09:e7:e9:f4: 75:db:05:b4:e3:a1:77:fb:ae:1b:37:58:60:29:b4: 2c:f1:af:6d:d7:b6:31:ad:7e:a5:c4:d3:51:5f:59: b7:2a:f8:b2:e0:d9:8c:d9:cc:e8:87:c1:41:d3:bc: 7a:e2:9c:71:0c:15:05:99:09:63:7b:3b:4a:81:a9: 62:ca:af:12:91:8b:f8:0b:e3:a0:4f:82:ac:69:3a: 73:45:20:48:bc:71:3b:ea:90:94:b0:b6:fc:56:e2: 43:66:73:d8:81:82:e9:ff:82:aa:88:68:17:27:e9: 1f:d8:08:b8:73:56:8d:43:7b:de:80:03:86:69:46: 64:25:3e:e1:a9:73:0f:b6:b9:fc:d6:d7:15:bc:50: df:04:7d:8d:b8:02:c2:48:76:d6:3e:a0:7b:19:f0: 54:67:46:24:81:39:07:78:3c:12:91:aa:67:a1:19: eb:69:1b:a2:78:03:ec:6c:99:91:22:7d:48:f5:ca: ff:10:23:b2:2d:4d:be:be:0a:5a:5c:32:6b:97:95: e4:a1:1e:31:2b:94:ed:8c:73:50:8d:87:96:7f:0b: d2:0d:5e:af:d9:b9:d8:f8:45:8c:f7:58:6e:32:76: 47:c8:c6:15:a4:ff:eb:1e:c0:f0:77:f6:bc:0b:c6: 43:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9E:0D:67:FF:D5:A3:F6:67:ED:E3:E7:2F:19:36:E5:C9:CD:3D:F4 X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EE0C206E96FF11ED87B56F84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.233.0/24 IPv6: 2407:dac0:2::/48 Signature Algorithm: sha256WithRSAEncryption 18:4b:67:3a:c3:6d:ae:31:fb:50:17:98:17:2d:d6:bb:5d:24: 48:af:dc:a4:42:8d:52:94:ef:54:1f:d9:ac:0c:de:ef:94:6d: ea:45:a4:a7:0f:29:ab:ef:7a:d5:ad:c1:42:a2:f3:bf:d1:ae: 38:2a:31:f4:ed:05:fe:ba:d7:3a:af:2b:81:b3:dc:1c:42:2d: f6:5f:83:a8:2c:ac:15:74:88:86:d5:e6:25:17:02:ae:da:49: d8:cf:86:e6:7d:f1:de:34:b3:2f:de:a9:18:49:ef:37:ce:7b: c6:41:09:33:ad:65:72:7d:3e:32:c8:de:ca:0a:20:5e:37:9f: d0:8a:18:97:e8:be:e2:24:1e:44:0e:68:f6:2c:71:d3:ee:b3: 2e:20:2e:20:2d:d5:a7:88:f5:2a:c7:05:54:8a:eb:89:22:5a: 97:22:80:bc:1a:b2:23:57:6c:ba:d2:25:67:0b:ad:a7:9c:7c: a1:3e:4d:14:77:94:36:ab:c6:df:4f:ac:75:fd:f5:d8:7d:de: f5:7d:58:6b:57:8e:78:14:0e:5b:9c:51:25:ad:60:ba:2f:b6: f5:76:23:c8:36:db:07:58:4d:c6:1c:cd:8c:91:e4:de:e4:9d: ad:63:54:5b:cd:d6:79:e6:ef:ea:48:27:24:20:73:e0:20:4d: e0:76:72:16 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjUxMDMxMDIxNjI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjYwZS01OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5ssjbjKgdr+oQnn6fR12wW046F3+64bN1hgKbQs8a9t17YxrX6lxNNRX1m3 Kviy4NmM2czoh8FB07x64pxxDBUFmQljeztKgaliyq8SkYv4C+OgT4KsaTpzRSBI vHE76pCUsLb8VuJDZnPYgYLp/4KqiGgXJ+kf2Ai4c1aNQ3vegAOGaUZkJT7hqXMP trn81tcVvFDfBH2NuALCSHbWPqB7GfBUZ0YkgTkHeDwSkapnoRnraRuieAPsbJmR In1I9cr/ECOyLU2+vgpaXDJrl5XkoR4xK5TtjHNQjYeWfwvSDV6v2bnY+EWM91hu MnZHyMYVpP/rHsDwd/a8C8ZDkQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFK6eDWf/ 1aP2Z+3j5y8ZNuXJzT30MB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvRUUwQzIwNkU5 NkZGMTFFRDg3QjU2Rjg0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ6zpMA8EAgACMAkDBwAkB9rAAAIwDQYJKoZIhvcNAQELBQADggEB ABhLZzrDba4x+1AXmBct1rtdJEiv3KRCjVKU71Qf2awM3u+UbepFpKcPKavvetWt wUKi87/RrjgqMfTtBf661zqvK4Gz3BxCLfZfg6gsrBV0iIbV5iUXAq7aSdjPhuZ9 8d40sy/eqRhJ7zfOe8ZBCTOtZXJ9PjLI3soKIF43n9CKGJfovuIkHkQOaPYscdPu sy4gLiAt1aeI9SrHBVSK64kiWpcigLwasiNXbLrSJWcLraecfKE+TRR3lDarxt9P rHX99dh93vV9WGtXjngUDlucUSWtYLovtvV2I8g22wdYTcYczYyR5N7kna1jVFvN 1nnm7+pIJyQgc+AgTeB2chY= -----END CERTIFICATE-----Generated at Thu Mar 26 08:53:16 2026 by rpki-client