$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/410BAD2095F011EFA9137C67C4F9AE02.roa File: 410BAD2095F011EFA9137C67C4F9AE02.roa (raw, json) Hash identifier: nsk1UqBSMxXhAmerfIUuT9a9NoDkCJE2EAsvPLMgex8= Subject key identifier: 6D:25:47:72:9D:A5:7A:3C:0E:02:27:CC:6E:BE:F3:D6:D2:E2:DF:50 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0BB6 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/410BAD2095F011EFA9137C67C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:44:27 +0000 ROA not before: Thu 31 Jul 2025 19:59:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135564 IP address blocks: 103.66.24.0/23 maxlen: 24 103.125.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Jul 31 19:59:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4269b-b20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:e0:bc:e1:3f:2e:6c:1c:ab:26:05:95:bd:90: 5f:34:d8:38:ff:c1:ca:c3:64:bb:39:46:48:ac:1e: 75:b9:47:6b:4a:68:07:85:3f:36:b9:11:c8:4f:9e: d9:7c:70:61:e2:bd:44:d3:10:e5:8a:f8:c8:e8:ed: 30:14:d1:d6:18:ec:99:cf:7f:27:99:60:c0:84:6d: ec:30:82:11:63:d7:ac:9d:9d:88:9b:90:46:b8:34: 78:60:38:89:c9:27:f4:94:4c:99:a6:69:d8:7d:43: 43:03:ef:8c:b3:eb:e5:98:9c:b6:be:53:a4:50:df: e2:2e:c2:16:50:5b:bb:1d:d9:e0:2e:b2:5f:58:97: dc:8d:b6:b9:4d:ef:eb:49:cf:ba:e9:15:e8:ad:ce: 88:52:ad:d6:6c:86:53:34:e8:b2:59:0c:0f:3e:aa: 77:b9:75:fc:c4:d7:7c:f2:e0:e8:bf:19:2a:f8:5e: df:02:52:53:7e:4e:b6:bc:16:4e:ff:11:fc:8f:55: 5d:71:49:9b:ae:d5:45:1a:42:d0:49:44:1f:8d:9a: 22:76:81:d6:97:90:33:28:06:7a:69:08:70:9c:93: 6f:ad:4a:b2:bc:e6:94:25:2f:73:6f:dc:42:9e:6b: 27:32:67:be:ba:c3:2c:79:dc:b3:d7:0c:3a:44:cc: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:25:47:72:9D:A5:7A:3C:0E:02:27:CC:6E:BE:F3:D6:D2:E2:DF:50 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/410BAD2095F011EFA9137C67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.24.0/23 103.125.24.0/24 Signature Algorithm: sha256WithRSAEncryption 74:51:af:09:02:ea:39:64:cf:69:23:75:c3:70:43:99:89:60: df:56:62:c5:ce:e6:ae:f3:af:b4:d2:d8:e9:07:13:5a:33:45: bb:a1:c3:95:aa:4c:65:de:03:d2:3a:a7:da:c5:5c:d8:7b:57: c8:45:ca:25:a5:e1:e8:c6:d1:91:54:f8:f7:ad:9c:6a:3c:6d: a2:5b:91:a9:dc:1b:0a:26:54:db:b2:a7:f4:f7:75:87:84:26: d4:41:08:fe:04:0e:46:d7:d8:c8:2a:16:85:63:50:1f:ac:f7: b1:4a:0a:9f:16:bd:41:4d:05:d4:e9:86:3a:90:34:48:e3:1e: 17:f5:bf:24:7c:91:a9:d0:3f:23:17:60:4c:e6:d0:72:f7:f9: 04:09:bc:68:e1:7c:c2:e6:e6:33:08:1c:15:65:91:8e:a2:a8: f7:99:d6:f0:da:6b:d0:de:24:e3:05:33:24:f6:ed:9a:e1:61: 41:75:8f:1f:da:c1:d6:9d:29:6f:ae:97:a0:fc:f0:97:42:cd: 99:e5:ee:f2:26:9f:3b:c0:b7:7f:0d:7c:ad:53:51:43:14:92: da:e5:85:7a:3a:5d:1f:70:24:ed:2d:19:4c:bb:3b:fa:d2:85: f1:ff:36:d0:95:1a:f1:20:de:04:f9:5c:34:ce:5e:ec:cc:f2: 2a:ee:32:08 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUwNzMxMTk1OTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY5Yi1iMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjeC84T8ubByrJgWVvZBfNNg4/8HKw2S7OUZIrB51uUdrSmgHhT82uRHIT57Z fHBh4r1E0xDlivjI6O0wFNHWGOyZz38nmWDAhG3sMIIRY9esnZ2Im5BGuDR4YDiJ ySf0lEyZpmnYfUNDA++Ms+vlmJy2vlOkUN/iLsIWUFu7HdngLrJfWJfcjba5Te/r Sc+66RXorc6IUq3WbIZTNOiyWQwPPqp3uXX8xNd88uDovxkq+F7fAlJTfk62vBZO /xH8j1VdcUmbrtVFGkLQSUQfjZoidoHWl5AzKAZ6aQhwnJNvrUqyvOaUJS9zb9xC nmsnMme+usMsedyz1ww6RMwHTwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFG0lR3Kd pXo8DgInzG6+89bS4t9QMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QkEvOTNFMkZCMEMzREEzMTFFQUE0REMzQTU5QzRGOUFFMDIvNDEwQkFEMjA5 NUYwMTFFRkE5MTM3QzY3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ0IYAwQAZ30YMA0GCSqGSIb3DQEBCwUAA4IBAQB0Ua8JAuo5ZM9p I3XDcEOZiWDfVmLFzuau86+00tjpBxNaM0W7ocOVqkxl3gPSOqfaxVzYe1fIRcol peHoxtGRVPj3rZxqPG2iW5Gp3BsKJlTbsqf093WHhCbUQQj+BA5G19jIKhaFY1Af rPexSgqfFr1BTQXU6YY6kDRI4x4X9b8kfJGp0D8jF2BM5tBy9/kECbxo4XzC5uYz CBwVZZGOoqj3mdbw2mvQ3iTjBTMk9u2a4WFBdY8f2sHWnSlvrpeg/PCXQs2Z5e7y Jp87wLd/DXytU1FDFJLa5YV6Ol0fcCTtLRlMuzv60oXx/zbQlRrxIN4E+Vw0zl7s zPIq7jII -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:24 2026 by rpki-client