$ rpki-client -vvf rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa File: 9EF724BE2A4911EE81BCF50FC4F9AE02.roa (raw, json) Hash identifier: scwVpzCeBkgVHdEK5Uge9iAKaQk6Xc85PZeD5yXXw14= Subject key identifier: 1F:28:EF:30:68:CF:37:8F:5D:3E:5B:C4:79:D5:64:7B:B2:7B:CC:7C Certificate issuer: /CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Certificate serial: 022B Authority key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:09:57 +0000 ROA not before: Tue 03 Jun 2025 04:01:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 7720 IP address blocks: 103.213.4.0/23 maxlen: 24 2401:5a0:1000::/44 maxlen: 48 2401:5a0:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911710E, serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Validity Not Before: Jun 3 04:01:35 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59a35-168f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:09:6b:6e:8c:53:29:18:95:09:9a:4e:ab:b9: b6:b0:6e:30:88:59:d3:e5:1c:8d:56:0d:e1:b9:6b: f8:25:a0:a5:8e:59:61:4b:66:6c:96:4c:ca:48:8d: 47:e1:18:29:30:b6:68:21:ca:85:5d:ba:b8:f6:dd: 75:82:5f:f3:b8:ac:1d:6e:ad:5c:73:e1:b9:e1:09: 00:33:30:2c:a9:6d:91:31:d2:84:6a:f0:9a:79:2b: a8:08:dd:e4:82:40:bd:e4:d9:ac:94:50:e6:ee:72: e3:51:61:b1:6e:3b:fe:0c:22:98:48:bd:79:21:a2: 65:d3:a2:51:47:35:92:b7:06:31:f0:ab:7d:d6:5a: 4c:74:56:c5:32:d3:51:d1:37:56:79:a3:be:13:d9: c2:5a:d2:90:d8:fd:94:55:0b:f5:be:87:93:0c:0c: 91:dc:d7:17:ce:26:2f:9c:fa:bb:ab:ec:fb:c7:55: 94:9e:da:5e:42:2e:6c:36:b2:21:12:13:f3:38:62: e9:99:8d:9c:d2:22:a8:f3:86:ec:08:9c:30:8a:e2: 1e:e9:60:60:78:ad:5d:0f:0f:ec:6f:e2:2f:0d:b0: f4:8c:6f:9c:2e:79:e8:88:56:ca:bf:fe:4e:02:6e: 9c:1e:9e:ed:50:01:45:50:6a:08:f5:d1:bd:9f:15: 01:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:28:EF:30:68:CF:37:8F:5D:3E:5B:C4:79:D5:64:7B:B2:7B:CC:7C X509v3 Authority Key Identifier: keyid:CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.4.0/23 IPv6: 2401:5a0:1000::-2401:5a0:1010:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 54:14:a9:41:24:b3:e3:55:b6:fd:84:8f:93:ff:9e:1c:78:cc: cc:c0:b7:0f:4f:2f:14:39:dd:3a:49:67:36:7b:51:64:7e:72: 50:d1:41:9e:6e:05:1c:91:15:b8:85:13:8e:f1:b4:dd:8b:79: a6:70:b8:1d:8d:84:74:94:05:09:78:ef:f6:8c:3c:1a:9f:74: fa:91:09:64:dc:5d:b6:bd:38:21:d4:5b:6b:db:81:cd:2c:05: 39:a9:55:cb:f4:8f:71:93:8d:9b:a8:c2:8c:b4:3d:bc:1d:32: 1d:ac:42:98:64:76:80:1c:1d:68:16:c3:6b:f0:30:1d:35:ea: ef:31:2d:3e:4b:1d:76:3b:19:2e:77:6f:11:05:f4:90:6f:46: c0:2b:9e:ff:84:16:61:0a:dc:9a:24:6c:ed:cd:c9:ee:50:2a: 25:ee:b2:3c:b1:6a:ea:94:b6:58:6f:1a:75:c3:4d:c0:5e:2a: 1b:c0:68:65:a6:fa:66:de:0f:b9:15:a6:0a:79:ab:3d:c4:e9: 3e:61:9d:bb:4f:02:91:1b:6f:d4:1d:ef:cb:7d:d6:26:b0:a6: c4:52:fc:4f:fa:25:a0:e8:6a:25:d4:43:b8:0f:c0:ca:83:50: 4e:b6:20:c3:4a:88:c7:89:d8:88:9d:45:39:88:1b:7e:ef:06: 36:86:48:e1 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcxMEUxMTAvBgNVBAUTKENEMTg0MUI2QzVCRUY3QzQ3ODJFNjdGNjYzRjNDMTk3 NDYxOTkzODMwHhcNMjUwNjAzMDQwMTM1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWEzNS0xNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQlrboxTKRiVCZpOq7m2sG4wiFnT5RyNVg3huWv4JaCljllhS2ZslkzKSI1H 4RgpMLZoIcqFXbq49t11gl/zuKwdbq1cc+G54QkAMzAsqW2RMdKEavCaeSuoCN3k gkC95NmslFDm7nLjUWGxbjv+DCKYSL15IaJl06JRRzWStwYx8Kt91lpMdFbFMtNR 0TdWeaO+E9nCWtKQ2P2UVQv1voeTDAyR3NcXziYvnPq7q+z7x1WUntpeQi5sNrIh EhPzOGLpmY2c0iKo84bsCJwwiuIe6WBgeK1dDw/sb+IvDbD0jG+cLnnoiFbKv/5O Am6cHp7tUAFFUGoI9dG9nxUBMwIDAQABo4ICezCCAncwHQYDVR0OBBYEFB8o7zBo zzePXT5bxHnVZHuye8x8MB8GA1UdIwQYMBaAFM0YQbbFvvfEeC5n9mPzwZdGGZOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzEwRS9DOTNFMTc4QTAx QjUxMUVFODlGNkVCNzhDNEY5QUUwMi96UmhCdHNXLTk4UjRMbWYyWV9QQmwwWVpr NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pSaEJ0c1ctOThSNExtZjJZX1BCbDBZWms0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcxMEUvQzkzRTE3OEEwMUI1MTFFRTg5RjZFQjc4QzRGOUFFMDIvOUVGNzI0QkUy QTQ5MTFFRTgxQkNGNTBGQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAM BAIAATAGAwQBZ9UEMBkEAgACMBMwEQMGBCQBBaAQAwcAJAEFoBAQMA0GCSqGSIb3 DQEBCwUAA4IBAQBUFKlBJLPjVbb9hI+T/54ceMzMwLcPTy8UOd06SWc2e1FkfnJQ 0UGebgUckRW4hROO8bTdi3mmcLgdjYR0lAUJeO/2jDwan3T6kQlk3F22vTgh1Ftr 24HNLAU5qVXL9I9xk42bqMKMtD28HTIdrEKYZHaAHB1oFsNr8DAdNervMS0+Sx12 Oxkud28RBfSQb0bAK57/hBZhCtyaJGztzcnuUCol7rI8sWrqlLZYbxp1w03AXiob wGhlpvpm3g+5FaYKeas9xOk+YZ27TwKRG2/UHe/LfdYmsKbEUvxP+iWg6Gol1EO4 D8DKg1BOtiDDSojHidiInUU5iBt+7wY2hkjh -----END CERTIFICATE-----Generated at Thu Mar 26 22:49:51 2026 by rpki-client