$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa File: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (raw, json) Hash identifier: fhl3fJcB+h4weCxugxGGdq61t1fYoSdltlSekuAK37k= Subject key identifier: 58:CC:0C:7F:2B:39:BF:C8:9C:BA:42:33:B1:1E:E1:CA:93:7C:32:A9 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01FF Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:33:05 +0000 ROA not before: Wed 09 Jul 2025 04:40:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141765 IP address blocks: 103.79.178.0/23 maxlen: 23 103.79.178.0/24 maxlen: 24 103.79.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jul 9 04:40:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3ebb1-ae29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d7:ea:62:e4:d8:80:a7:81:3a:66:f6:3d:8f: 98:e8:e6:71:00:99:06:a1:d3:69:7d:32:e8:04:bd: a4:cc:6d:f8:aa:3b:f0:84:b5:b0:4d:b1:6a:54:8a: 14:87:73:17:a7:35:67:6f:bf:1b:7a:af:53:0d:52: 19:85:16:f8:7c:aa:28:22:85:17:9a:eb:07:8a:ee: b7:b7:92:f2:3d:51:32:46:fe:bb:0b:2a:17:97:1d: 87:40:33:a2:0d:46:fa:0d:4c:89:56:de:9b:d3:55: 5f:7c:84:97:ea:1d:fe:ce:c7:b1:05:d1:db:42:67: 74:15:13:91:82:79:91:c5:d8:bc:3a:f9:50:78:b3: 68:21:5b:8f:6d:25:89:d9:cc:cd:9c:24:69:64:35: 85:a2:a9:dd:73:d5:32:fc:59:5e:15:7c:a6:a7:95: d7:2b:48:10:93:1c:10:ac:aa:11:b5:26:ad:eb:23: af:7b:7e:9d:a0:32:7c:4b:12:09:e6:7a:5f:ed:76: 8d:e4:b8:45:65:34:95:eb:7c:b2:0b:45:ec:1e:e6: d7:5c:0b:3f:2d:0b:d6:d3:5b:06:0c:aa:01:fb:9b: 57:4d:a4:e7:53:72:c0:67:46:05:78:4f:13:c3:94: 31:c6:fe:d3:4b:8b:f2:0c:ee:56:0d:4e:bb:09:1b: b8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CC:0C:7F:2B:39:BF:C8:9C:BA:42:33:B1:1E:E1:CA:93:7C:32:A9 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.178.0/23 Signature Algorithm: sha256WithRSAEncryption 78:b4:27:f4:22:3c:71:bd:98:f7:6a:16:aa:1b:e5:2f:a4:61: e3:44:d3:48:81:1b:29:e8:aa:75:86:4d:ca:92:b7:c3:2f:4f: 06:12:f7:fd:97:cb:f9:f6:02:7a:94:5f:83:4d:e5:f5:7d:b6: 34:aa:0d:4e:8c:1c:ab:80:41:89:a4:47:7a:6a:05:c0:91:09: 2d:9f:ca:4e:dc:2b:04:8a:6d:ac:7c:6f:3b:0f:36:e3:40:1a: 15:c9:ef:64:a8:32:c7:16:c3:36:f1:86:a8:b4:dd:91:5d:84: 9d:30:bb:69:58:c1:fe:bd:56:55:98:77:27:c2:70:90:24:3c: 1c:a3:4d:c2:a1:3f:af:b2:10:97:d9:a3:7d:5b:22:a0:a5:55: 44:3e:10:33:fb:c9:ae:84:13:8f:52:51:7e:7f:e0:66:0e:60: 51:f9:f1:bd:17:b4:74:51:af:c1:59:7e:af:95:48:73:f6:38: 97:df:dc:83:fc:c7:d9:cd:12:25:f0:b3:da:a4:c5:33:3a:7e: 7e:8e:a4:9f:b7:8f:ad:60:c9:bd:d8:59:38:d3:69:2e:16:1b: 41:b5:75:85:03:1d:fd:92:56:14:af:92:b3:0f:ff:cc:43:f4: c3:f0:75:44:58:12:56:69:57:5e:d7:be:9e:d8:33:94:80:39: cc:ec:d9:2e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNzA5MDQ0MDExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWJiMS1hZTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNfqYuTYgKeBOmb2PY+Y6OZxAJkGodNpfTLoBL2kzG34qjvwhLWwTbFqVIoU h3MXpzVnb78beq9TDVIZhRb4fKooIoUXmusHiu63t5LyPVEyRv67CyoXlx2HQDOi DUb6DUyJVt6b01VffISX6h3+zsexBdHbQmd0FRORgnmRxdi8OvlQeLNoIVuPbSWJ 2czNnCRpZDWFoqndc9Uy/FleFXymp5XXK0gQkxwQrKoRtSat6yOve36doDJ8SxIJ 5npf7XaN5LhFZTSV63yyC0XsHubXXAs/LQvW01sGDKoB+5tXTaTnU3LAZ0YFeE8T w5Qxxv7TS4vyDO5WDU67CRu4dwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFjMDH8r Ob/InLpCM7Ee4cqTfDKpMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0RUQvRkE0QjBBQzQwRjM3MTFFRUFCOUQ5NDY4QzRGOUFFMDIvODZBMkNFQjYw RjNFMTFFRUE0QzU1NDY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ0+yMA0GCSqGSIb3DQEBCwUAA4IBAQB4tCf0IjxxvZj3ahaqG+Uv pGHjRNNIgRsp6Kp1hk3KkrfDL08GEvf9l8v59gJ6lF+DTeX1fbY0qg1OjByrgEGJ pEd6agXAkQktn8pO3CsEim2sfG87DzbjQBoVye9kqDLHFsM28YaotN2RXYSdMLtp WMH+vVZVmHcnwnCQJDwco03CoT+vshCX2aN9WyKgpVVEPhAz+8muhBOPUlF+f+Bm DmBR+fG9F7R0Ua/BWX6vlUhz9jiX39yD/MfZzRIl8LPapMUzOn5+jqSft4+tYMm9 2Fk402kuFhtBtXWFAx39klYUr5KzD//MQ/TD8HVEWBJWaVde176e2DOUgDnM7Nku -----END CERTIFICATE-----Generated at Thu Mar 26 12:54:35 2026 by rpki-client