$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa File: EF1E23F896FF11ED87B56F84C4F9AE02.roa (raw, json) Hash identifier: QY2VRet4P+YKz9oxq3Ig+v1EAPIpWMaBqPXmBJ+0Whk= Subject key identifier: B9:7C:61:0D:3B:C2:A7:7C:0A:00:0A:FD:5D:B8:A9:B6:8E:9A:73:34 Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: 0291 Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:15:11 +0000 ROA not before: Fri 31 Oct 2025 02:16:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147012 IP address blocks: 103.172.232.0/23 maxlen: 23 103.172.232.0/24 maxlen: 24 2407:dac0::/32 maxlen: 32 2407:dac0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C, serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Oct 31 02:16:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4660f-d742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:07:f3:67:1b:e4:eb:5c:4b:37:1d:51:62:f0: 3b:75:d2:4b:86:9e:12:ec:9b:51:23:1c:e4:1d:a2: c2:51:32:a0:7b:86:54:c1:19:37:c6:9e:f8:46:1e: 23:56:44:9b:99:56:62:05:cd:8e:e9:7f:7c:7c:15: 77:0a:60:0b:a3:c3:51:01:52:e4:a0:47:cd:4c:27: 67:f2:b6:2b:e1:b1:3f:40:ff:69:a8:d2:d2:85:5d: 6d:98:45:d3:1e:9b:13:a1:11:69:c3:60:77:67:de: df:08:69:bb:d7:f2:6d:e4:26:b2:6a:52:a1:2e:94: 92:af:bf:de:30:9c:95:5f:9f:61:27:17:ce:3f:18: f7:a2:1e:1d:c6:bc:fc:9e:34:a2:d2:62:69:fe:4d: 3e:bf:d0:c4:ca:43:71:f1:8f:4d:70:11:ca:b5:57: 56:74:23:64:ca:47:24:46:79:b5:aa:87:19:da:65: 26:b0:da:76:12:81:7f:38:fd:ad:27:9c:c0:19:c2: 62:af:69:91:97:29:6e:81:01:1b:6d:04:5f:65:10: 17:26:bc:4b:11:7d:01:88:29:c4:67:4e:3c:39:18: 13:06:98:d1:4e:f2:0e:f5:b9:e1:5e:7c:14:e7:c3: 35:39:1e:08:04:20:5d:21:60:97:3b:26:af:f9:ca: aa:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7C:61:0D:3B:C2:A7:7C:0A:00:0A:FD:5D:B8:A9:B6:8E:9A:73:34 X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.232.0/23 IPv6: 2407:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 16:fa:77:c5:12:61:4a:6f:77:41:e8:57:dc:eb:67:76:db:f8: 11:14:83:f1:97:c1:46:dd:64:c0:a9:af:20:87:c9:a6:61:7c: 31:b4:71:c4:73:db:7e:35:d8:68:6d:13:42:b8:d4:6a:f5:e2: 31:3c:de:3a:e0:86:05:b8:96:c0:ef:1a:1f:1d:f1:85:d3:14: c1:2e:14:51:25:9b:2e:54:86:9c:97:a1:40:95:3a:de:26:9a: 73:f8:b1:49:fa:f9:10:48:eb:5b:01:eb:21:94:0e:55:a4:25: e5:7d:5c:57:d5:93:37:a5:e9:08:fe:f6:43:6b:e8:03:c1:69: 4a:0c:a8:1e:99:20:e3:14:9b:9e:ce:f9:c5:b5:aa:56:c1:b0: ed:bb:03:05:5a:eb:2c:6d:c6:59:09:28:bd:11:ba:c3:75:b6: a9:fb:90:5d:24:74:48:14:71:2a:21:8b:06:f0:ed:7b:54:9e: 82:f2:46:c3:8c:5d:db:37:b1:1a:1e:d8:b9:4f:a9:cb:76:12: 3a:bc:e6:06:21:83:7f:bc:bc:1e:f0:f0:cf:01:4b:6c:ef:d9: 52:f6:9a:09:55:61:95:12:d8:b3:c9:be:32:1e:5a:f1:5a:67: 90:5a:80:5c:4e:c6:73:56:a3:78:c0:e5:dc:45:f9:6f:e9:a7: c6:c3:5d:6a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjUxMDMxMDIxNjI1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjYwZi1kNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gfzZxvk61xLNx1RYvA7ddJLhp4S7JtRIxzkHaLCUTKge4ZUwRk3xp74Rh4j VkSbmVZiBc2O6X98fBV3CmALo8NRAVLkoEfNTCdn8rYr4bE/QP9pqNLShV1tmEXT HpsToRFpw2B3Z97fCGm71/Jt5CayalKhLpSSr7/eMJyVX59hJxfOPxj3oh4dxrz8 njSi0mJp/k0+v9DEykNx8Y9NcBHKtVdWdCNkykckRnm1qocZ2mUmsNp2EoF/OP2t J5zAGcJir2mRlylugQEbbQRfZRAXJrxLEX0BiCnEZ048ORgTBpjRTvIO9bnhXnwU 58M1OR4IBCBdIWCXOyav+cqqKQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLl8YQ07 wqd8CgAK/V24qbaOmnM0MB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvRUYxRTIzRjg5 NkZGMTFFRDg3QjU2Rjg0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6zoMA0EAgACMAcDBQAkB9rAMA0GCSqGSIb3DQEBCwUAA4IBAQAW +nfFEmFKb3dB6Ffc62d22/gRFIPxl8FG3WTAqa8gh8mmYXwxtHHEc9t+NdhobRNC uNRq9eIxPN464IYFuJbA7xofHfGF0xTBLhRRJZsuVIacl6FAlTreJppz+LFJ+vkQ SOtbAeshlA5VpCXlfVxX1ZM3pekI/vZDa+gDwWlKDKgemSDjFJuezvnFtapWwbDt uwMFWussbcZZCSi9EbrDdbap+5BdJHRIFHEqIYsG8O17VJ6C8kbDjF3bN7EaHti5 T6nLdhI6vOYGIYN/vLwe8PDPAUts79lS9poJVWGVEtizyb4yHlrxWmeQWoBcTsZz VqN4wOXcRflv6afGw11q -----END CERTIFICATE-----Generated at Thu Mar 26 04:05:24 2026 by rpki-client