$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa File: 1B2EC2A457E411EEB143C80EC4F9AE02.roa (raw, json) Hash identifier: 8JV502SLk8QbZyaGCPLTxSnSD1WOF++tIWExjZSLMdQ= Subject key identifier: 01:38:04:FB:B3:C2:71:AB:9A:29:59:BC:D9:CA:9E:FE:C3:A0:EC:BA Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 01E6 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:53:20 +0000 ROA not before: Thu 23 Oct 2025 05:19:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 174 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE, serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 23 05:19:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46f00-1c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:ad:75:34:14:0b:ff:51:c0:56:e6:45:68: 5c:d2:06:95:6b:c0:c5:09:43:6d:fd:54:bc:a6:9f: 67:d2:ed:04:02:e7:e5:34:b4:61:b2:de:9b:8a:86: 83:cf:23:2b:fb:6e:ec:01:3e:34:08:79:15:eb:0d: dd:aa:03:39:ff:1b:b2:c3:99:d5:87:10:37:1c:e9: 4c:3c:3a:f8:48:11:12:b6:2e:97:f4:de:f6:96:a6: 10:7c:c9:a4:87:31:55:4b:83:c7:64:be:be:da:2d: 80:76:3e:76:cc:ae:38:fe:f6:ad:d3:34:4a:83:79: eb:71:90:89:0c:54:78:ab:80:8a:2d:54:e1:95:bf: 78:ab:0d:06:a1:9e:d2:a2:c4:31:67:3f:ce:53:53: 46:2c:04:6e:8f:57:8e:37:22:c0:44:cb:ed:cb:55: fa:3d:3f:b1:2e:a2:41:3d:07:1a:cc:4c:59:cf:ec: d1:a6:6e:91:f9:bd:72:c8:e1:8b:2c:27:96:29:65: 59:84:5f:e6:e6:96:04:1b:1b:21:16:bf:1d:41:7b: f0:0b:f6:7c:b8:6a:e1:da:24:27:6b:41:58:aa:ce: 58:cd:55:58:93:71:03:4e:ae:aa:39:03:56:fc:14: a4:6d:a2:a2:63:a9:44:f6:96:39:ea:d4:26:36:b2: 88:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:38:04:FB:B3:C2:71:AB:9A:29:59:BC:D9:CA:9E:FE:C3:A0:EC:BA X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 Signature Algorithm: sha256WithRSAEncryption 19:e7:dd:28:4c:a8:c3:c9:8a:20:36:9f:8c:7a:41:e2:28:58: e2:41:19:cf:7a:73:cd:82:e3:71:bf:4f:a2:7f:bc:12:c4:c9: 51:28:b7:e2:64:1e:00:95:78:59:f5:b2:c0:a9:e9:2e:d2:15: 87:4c:ca:e7:93:69:ba:b0:4b:b1:10:44:63:b4:f8:a6:63:92: 4c:7d:e3:2e:18:9b:d6:2c:de:1c:6e:6c:db:0f:eb:48:51:d1: 39:8c:0a:2f:35:cf:9d:59:1e:87:9a:79:fc:f1:39:9b:03:d1: ad:ac:b4:98:25:80:9e:56:04:07:ca:e6:49:41:8e:78:54:d5: 95:07:96:e0:42:78:a6:d3:0d:9f:bc:4b:46:59:e6:2a:63:63: 3f:65:4f:22:38:e4:71:37:88:dd:8a:b4:b5:13:ff:38:6a:31: b8:ba:8a:8a:49:a5:9e:de:56:2e:d7:97:99:96:ae:8e:97:8f: 58:94:a3:59:93:d5:0d:0c:ce:b8:70:f8:b1:b3:71:ac:a6:fd: 4d:96:84:7a:88:a4:98:01:6c:41:cc:5e:1b:b5:dd:77:33:6f: 1c:75:f7:e3:d4:ba:04:d7:35:28:c1:0d:be:bb:69:b4:5c:18: 66:9f:45:ab:37:4b:d7:ca:13:4a:76:d1:21:ad:1b:3a:a9:5c: 7a:f5:9a:91 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjUxMDIzMDUxOTAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmYwMC0xYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLetdTQUC/9RwFbmRWhc0gaVa8DFCUNt/VS8pp9n0u0EAuflNLRhst6bioaD zyMr+27sAT40CHkV6w3dqgM5/xuyw5nVhxA3HOlMPDr4SBESti6X9N72lqYQfMmk hzFVS4PHZL6+2i2Adj52zK44/vat0zRKg3nrcZCJDFR4q4CKLVThlb94qw0GoZ7S osQxZz/OU1NGLARuj1eONyLARMvty1X6PT+xLqJBPQcazExZz+zRpm6R+b1yyOGL LCeWKWVZhF/m5pYEGxshFr8dQXvwC/Z8uGrh2iQna0FYqs5YzVVYk3EDTq6qOQNW /BSkbaKiY6lE9pY56tQmNrKIMQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAE4BPuz wnGrmilZvNnKnv7DoOy6MB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvMUIyRUMyQTQ1 N0U0MTFFRUIxNDNDODBFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+/6AwQCch/QMA0GCSqGSIb3DQEBCwUAA4IBAQAZ590oTKjDyYog Np+MekHiKFjiQRnPenPNguNxv0+if7wSxMlRKLfiZB4AlXhZ9bLAqeku0hWHTMrn k2m6sEuxEERjtPimY5JMfeMuGJvWLN4cbmzbD+tIUdE5jAovNc+dWR6Hmnn88Tmb A9GtrLSYJYCeVgQHyuZJQY54VNWVB5bgQnim0w2fvEtGWeYqY2M/ZU8iOORxN4jd irS1E/84ajG4uoqKSaWe3lYu15eZlq6Ol49YlKNZk9UNDM64cPixs3Gspv1NloR6 iKSYAWxBzF4btd13M28cdffj1LoE1zUowQ2+u2m0XBhmn0WrN0vXyhNKdtEhrRs6 qVx69ZqR -----END CERTIFICATE-----Generated at Wed Mar 25 23:11:32 2026 by rpki-client