$ rpki-client -vvf rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa File: F44E8EBCF3B511EE8451152DC4F9AE02.roa (raw, json) Hash identifier: 05Ya7DJVKX8wCHmVHhil4CLCkj7r7+cnlIeankN562g= Subject key identifier: 25:BC:2F:76:8F:DE:DD:3C:33:F3:22:88:5F:B7:DC:78:25:7B:5D:EE Certificate issuer: /CN=A911A2B1/serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Certificate serial: 016F Authority key identifier: 1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:32:15 +0000 ROA not before: Sat 03 May 2025 05:12:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152680 IP address blocks: 117.103.112.0/23 maxlen: 23 117.103.112.0/24 maxlen: 24 117.103.113.0/24 maxlen: 24 2001:df3:a540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A2B1, serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Validity Not Before: May 3 05:12:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5834f-6f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2a:62:10:b0:e8:51:c9:79:ef:47:8d:aa:9e: c1:8f:99:3b:6f:ab:7a:da:5a:3a:07:6c:72:f2:47: 58:1e:c4:f7:10:f7:b9:46:53:e7:26:73:c3:e5:70: 53:f7:ff:53:d9:27:73:ac:63:40:0b:5f:64:2f:08: f3:8b:70:3f:ea:72:40:bb:55:4d:6e:fb:30:74:ad: 21:a8:e9:7c:00:7a:ee:96:e3:0d:0a:6c:bb:e9:a8: 12:75:3b:9e:67:86:71:1e:dc:5b:f4:d8:11:6b:87: 60:c4:e9:06:2f:10:58:b3:96:a0:6e:0d:9c:3d:15: 31:6a:b1:d0:f6:cc:1a:ea:e2:9b:fc:bc:ed:13:e1: 7b:58:17:bb:21:56:50:87:73:f5:12:bb:a7:90:e7: 18:9e:6c:67:0f:64:8c:88:63:ba:a3:e2:43:0c:ff: ba:16:e7:61:dc:14:24:1d:8a:c9:c2:93:f4:08:f0: ed:fd:66:39:d4:b0:c0:91:ae:ab:a7:37:ee:96:42: 57:aa:98:72:d5:65:16:96:03:0f:73:d7:de:6b:64: f1:0b:6b:47:26:f5:e3:9b:ae:13:12:60:7d:8b:26: ae:9f:70:06:c3:76:e6:0f:24:6f:12:b0:af:c2:ee: 68:25:69:11:79:db:cd:17:b8:6b:0e:eb:de:c8:4f: 0f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BC:2F:76:8F:DE:DD:3C:33:F3:22:88:5F:B7:DC:78:25:7B:5D:EE X509v3 Authority Key Identifier: keyid:1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.103.112.0/23 IPv6: 2001:df3:a540::/48 Signature Algorithm: sha256WithRSAEncryption 01:40:43:3a:f3:85:d6:19:72:a2:6d:e9:5f:ee:04:a4:07:00: 62:68:c2:08:e3:85:04:05:dd:93:18:3c:8b:2b:3f:49:64:2d: 99:06:bb:da:b5:e2:04:95:52:98:27:b2:80:95:a9:c6:c6:e4: 5f:fa:49:44:30:fe:4a:dc:14:a6:0a:6b:22:d3:30:89:a7:7f: e6:6b:d2:1b:4c:06:52:a8:89:de:6c:99:ae:5c:4a:68:a6:39: a8:fe:d2:a2:35:41:9c:e4:de:62:84:88:7e:7b:a6:df:b5:05: 0e:6e:f0:d8:33:f9:e5:93:48:9e:23:05:d2:da:4e:0e:f6:3f: b7:cf:87:68:5b:e2:c3:60:2d:b1:01:c5:1d:0d:e5:06:9f:a3: cf:d7:60:8f:b3:53:0c:68:0b:02:eb:07:9c:d8:3b:ca:5a:09: b1:05:7e:3e:e1:6c:4a:5b:f5:61:b5:57:22:28:ea:e1:c3:f7: 94:ac:a3:f4:fa:91:2d:62:1b:c3:37:88:6e:a3:57:d1:e7:3d: fa:be:b2:a5:b5:8a:b5:c9:7d:13:d5:00:4c:4c:c5:20:f0:1b: 26:6d:72:0b:14:5c:7e:19:c9:9d:22:e3:94:19:ad:08:9e:44: 42:c9:7e:e8:74:0d:1f:3d:d9:d1:5f:33:9e:be:a1:1a:e0:26: 14:81:3b:b1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUEyQjExMTAvBgNVBAUTKDFBNDUyNDdCM0ExQjAyNjkyNzFENzQ2QzVBNUZBQzAx NDVGRjMzMjIwHhcNMjUwNTAzMDUxMjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODM0Zi02ZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSpiELDoUcl570eNqp7Bj5k7b6t62lo6B2xy8kdYHsT3EPe5RlPnJnPD5XBT 9/9T2SdzrGNAC19kLwjzi3A/6nJAu1VNbvswdK0hqOl8AHruluMNCmy76agSdTue Z4ZxHtxb9NgRa4dgxOkGLxBYs5agbg2cPRUxarHQ9swa6uKb/LztE+F7WBe7IVZQ h3P1ErunkOcYnmxnD2SMiGO6o+JDDP+6Fudh3BQkHYrJwpP0CPDt/WY51LDAka6r pzfulkJXqphy1WUWlgMPc9fea2TxC2tHJvXjm64TEmB9iyaun3AGw3bmDyRvErCv wu5oJWkRedvNF7hrDuveyE8P9wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCW8L3aP 3t08M/MiiF+33Hgle13uMB8GA1UdIwQYMBaAFBpFJHs6GwJpJx10bFpfrAFF/zMi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTJCMS8xOUE4MkY2NkYz QjUxMUVFQjFFMjIzMEVDNEY5QUUwMi9Ha1VrZXpvYkFta25IWFJzV2wtc0FVWF9N eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drVWtlem9iQW1rbkhYUnNXbC1zQVVYX015SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUEyQjEvMTlBODJGNjZGM0I1MTFFRUIxRTIyMzBFQzRGOUFFMDIvRjQ0RThFQkNG M0I1MTFFRTg0NTExNTJEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBdWdwMA8EAgACMAkDBwAgAQ3zpUAwDQYJKoZIhvcNAQELBQADggEB AAFAQzrzhdYZcqJt6V/uBKQHAGJowgjjhQQF3ZMYPIsrP0lkLZkGu9q14gSVUpgn soCVqcbG5F/6SUQw/krcFKYKayLTMImnf+Zr0htMBlKoid5sma5cSmimOaj+0qI1 QZzk3mKEiH57pt+1BQ5u8Ngz+eWTSJ4jBdLaTg72P7fPh2hb4sNgLbEBxR0N5Qaf o8/XYI+zUwxoCwLrB5zYO8paCbEFfj7hbEpb9WG1VyIo6uHD95Sso/T6kS1iG8M3 iG6jV9HnPfq+sqW1irXJfRPVAExMxSDwGyZtcgsUXH4ZyZ0i45QZrQieRELJfuh0 DR892dFfM56+oRrgJhSBO7E= -----END CERTIFICATE-----Generated at Thu Mar 26 11:04:11 2026 by rpki-client