$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa File: 39E76DD0589311EF88BF4665C4F9AE02.roa (raw, json) Hash identifier: 2l8xLgb7twy5Bkmhr6ns+WC6YsJMu/Z43ymaiIWxyEg= Subject key identifier: 69:59:F8:72:31:C2:3F:4E:2C:AA:6E:A5:C3:B6:B3:C9:BE:62:61:57 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: 012F Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:22:58 +0000 ROA not before: Mon 23 Jun 2025 05:25:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133952 IP address blocks: 43.230.136.0/22 maxlen: 24 103.49.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Jun 23 05:25:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a58f32-b392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ab:2a:64:20:3b:3c:68:41:39:51:34:bd:e8: 20:40:15:a0:11:6c:15:ce:07:d1:f9:77:b0:f4:76: 3a:ba:04:e5:c1:0e:34:50:7c:ee:e5:f3:69:c9:f9: 49:83:50:85:32:da:83:dc:99:5e:91:d3:d0:8a:d9: 78:93:80:5a:c2:17:6a:62:63:64:63:e3:d5:c3:d0: 17:44:dd:8d:55:d7:9e:cd:e8:fb:30:81:ef:6b:9b: 33:92:d5:2e:b2:c4:13:4a:80:2f:d6:2c:63:69:bf: 9a:6f:d6:46:15:a0:4c:90:a8:67:a5:b4:f8:6c:c8: ff:b9:62:6e:36:4b:e1:07:eb:a8:59:34:56:c7:24: 0c:bf:c6:b1:9e:d6:92:e4:7a:b9:56:fb:88:6b:2e: ab:ce:99:f6:b2:a6:cd:ae:be:3a:f0:50:31:49:bb: a2:d1:70:61:c0:20:49:be:5d:04:68:ee:ea:a9:d9: 0a:7f:6a:67:36:86:93:81:c6:34:c7:3a:75:d8:2c: a6:ec:48:86:96:51:f5:ea:1c:c6:8e:4c:d1:32:9d: 86:fb:0b:dd:bb:10:7d:b1:8a:2b:57:1d:81:f2:70: f7:a8:19:bb:0d:fa:c6:32:9c:6e:37:8b:71:03:aa: 84:31:fb:ba:d0:58:de:2c:a1:7b:6f:9d:d4:5d:fb: 64:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:59:F8:72:31:C2:3F:4E:2C:AA:6E:A5:C3:B6:B3:C9:BE:62:61:57 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.136.0/22 103.49.196.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:68:5e:50:e9:cc:b0:b2:b2:1d:35:63:0e:9d:9f:6d:5f:38: e3:7d:0c:93:dd:ce:85:da:40:85:54:a4:d0:d2:29:58:b6:71: c5:cb:c9:77:49:67:6c:34:f2:dc:78:a6:31:86:d8:33:b0:94: 8b:7e:da:cf:79:65:83:b1:15:3a:72:9f:81:62:59:bd:03:d3: 9d:56:0f:2a:9a:c6:09:c1:ea:86:db:f7:f7:46:dd:9e:c9:6a: 40:3e:86:fe:31:3f:14:2a:b6:a8:21:85:61:64:01:07:fb:44: 10:3e:e8:60:9d:7d:e1:5e:25:f6:f0:dc:4b:4f:a5:31:31:74: 17:83:47:ce:e1:c3:55:13:0b:79:02:87:c2:75:29:f6:22:c9: 8b:dd:c3:be:40:e7:17:67:51:d4:57:06:50:82:7c:ad:79:61: 42:8a:a8:dc:91:84:69:c9:14:07:2f:88:f7:d4:79:79:8f:08: 54:50:5d:a9:21:c2:5f:7c:45:60:04:f7:c9:e4:69:b7:b6:8e: 45:08:bd:14:0f:f3:db:2c:5a:9a:f7:81:27:57:d2:d9:9a:6a: dd:bd:24:fc:0e:60:af:b1:28:86:c9:06:1c:3a:5c:a6:71:25: 57:5a:8b:2a:a8:cd:65:0f:e8:4b:d2:57:34:6b:dd:ab:14:36: f6:48:9d:da -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNjIzMDUyNTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGYzMi1iMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqsqZCA7PGhBOVE0veggQBWgEWwVzgfR+Xew9HY6ugTlwQ40UHzu5fNpyflJ g1CFMtqD3JlekdPQitl4k4BawhdqYmNkY+PVw9AXRN2NVdeezej7MIHva5szktUu ssQTSoAv1ixjab+ab9ZGFaBMkKhnpbT4bMj/uWJuNkvhB+uoWTRWxyQMv8axntaS 5Hq5VvuIay6rzpn2sqbNrr468FAxSbui0XBhwCBJvl0EaO7qqdkKf2pnNoaTgcY0 xzp12Cym7EiGllH16hzGjkzRMp2G+wvduxB9sYorVx2B8nD3qBm7DfrGMpxuN4tx A6qEMfu60FjeLKF7b53UXftkhQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGlZ+HIx wj9OLKpupcO2s8m+YmFXMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUE2OUEvOEIwRTczODA1ODkyMTFFRjg2QjEyNTY0QzRGOUFFMDIvMzlFNzZERDA1 ODkzMTFFRjg4QkY0NjY1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+aIAwQCZzHEMA0GCSqGSIb3DQEBCwUAA4IBAQBPaF5Q6cywsrId NWMOnZ9tXzjjfQyT3c6F2kCFVKTQ0ilYtnHFy8l3SWdsNPLceKYxhtgzsJSLftrP eWWDsRU6cp+BYlm9A9OdVg8qmsYJweqG2/f3Rt2eyWpAPob+MT8UKraoIYVhZAEH +0QQPuhgnX3hXiX28NxLT6UxMXQXg0fO4cNVEwt5AofCdSn2IsmL3cO+QOcXZ1HU VwZQgnyteWFCiqjckYRpyRQHL4j31Hl5jwhUUF2pIcJffEVgBPfJ5Gm3to5FCL0U D/PbLFqa94EnV9LZmmrdvST8DmCvsSiGyQYcOlymcSVXWosqqM1lD+hL0lc0a92r FDb2SJ3a -----END CERTIFICATE-----Generated at Thu Mar 26 15:24:32 2026 by rpki-client