$ rpki-client -vvf rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/8F65EB2E222711F1BF2828673E3D8C67.roa File: 8F65EB2E222711F1BF2828673E3D8C67.roa (raw, json) Hash identifier: lbA9Px2UoRTadBs1CPvctpCZJJPWkiWDLjTBRVSajVk= Subject key identifier: EC:F8:8C:F8:CE:27:29:C2:66:BB:9B:46:22:CB:78:1D:E8:43:E0:3B Certificate issuer: /CN=A911C362/serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Certificate serial: 01A5 Authority key identifier: EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/8F65EB2E222711F1BF2828673E3D8C67.roa Signing time: Tue 17 Mar 2026 17:34:33 +0000 ROA not before: Tue 17 Mar 2026 17:34:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132335 IP address blocks: 43.230.200.0/24 maxlen: 24 43.230.201.0/24 maxlen: 24 43.230.202.0/24 maxlen: 24 45.64.104.0/24 maxlen: 24 45.64.105.0/24 maxlen: 24 45.64.106.0/24 maxlen: 24 45.113.225.0/24 maxlen: 24 45.120.136.0/22 maxlen: 22 45.120.136.0/24 maxlen: 24 45.120.137.0/24 maxlen: 24 45.120.138.0/24 maxlen: 24 45.120.139.0/24 maxlen: 24 103.12.211.0/24 maxlen: 24 103.13.112.0/24 maxlen: 24 103.13.113.0/24 maxlen: 24 103.13.114.0/24 maxlen: 24 103.13.115.0/24 maxlen: 24 103.26.204.0/22 maxlen: 24 103.250.184.0/23 maxlen: 24 157.119.40.0/24 maxlen: 24 2001:df2:1000::/48 maxlen: 48 2001:df2:1001::/48 maxlen: 48 2405:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C362, serialNumber=EA83AF4A21CBC2071F56956E5DDD584C7638FA5B Validity Not Before: Mar 17 17:34:33 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69b990a9-ef46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:ac:bf:f4:d1:8a:cd:a1:21:42:95:06:b7: 9f:9a:4b:79:1d:7f:84:f9:b8:15:94:bc:51:11:b4: 1b:58:68:74:b1:17:08:72:80:ee:c2:98:7d:a8:b9: 7a:5f:09:a5:53:3c:06:73:23:e7:99:d7:87:c1:d2: 93:82:3d:48:b8:45:c8:7d:ae:d0:b0:b8:49:ca:9e: e4:31:59:d0:ac:71:a6:36:a2:15:b5:bf:34:90:d0: 11:93:8f:a2:de:96:68:ae:bb:e8:78:37:94:51:84: 12:20:50:80:d4:9d:c1:3e:d7:cf:50:ec:e6:4d:ff: 6f:3c:93:30:62:b8:cc:43:55:75:53:ce:f9:68:29: 98:0b:43:d4:30:e0:25:58:8a:e5:0b:bb:9a:17:f9: 82:79:93:1d:16:f6:a0:6a:ea:14:6d:67:28:d3:a5: 79:d3:a7:78:6a:b9:55:8a:35:92:39:e0:48:c5:ad: 57:57:58:87:0f:a6:dc:85:1a:40:af:d5:14:77:5f: 84:e5:ad:bd:77:8a:49:c1:fa:72:9a:51:15:c8:33: 80:ea:91:29:d8:86:3a:81:d6:12:7d:81:65:92:6d: e7:5b:38:02:fe:6a:64:68:7b:8b:08:67:ca:52:73: ea:76:16:d2:f3:b4:a5:9c:95:a3:10:41:48:0f:35: 4d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F8:8C:F8:CE:27:29:C2:66:BB:9B:46:22:CB:78:1D:E8:43:E0:3B X509v3 Authority Key Identifier: keyid:EA:83:AF:4A:21:CB:C2:07:1F:56:95:6E:5D:DD:58:4C:76:38:FA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/6oOvSiHLwgcfVpVuXd1YTHY4-ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6oOvSiHLwgcfVpVuXd1YTHY4-ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C362/6A08F492257711EFBB0B8251C4F9AE02/8F65EB2E222711F1BF2828673E3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 43.230.200.0-43.230.202.255 45.64.104.0-45.64.106.255 45.113.225.0/24 45.120.136.0/22 103.12.211.0/24 103.13.112.0/22 103.26.204.0/22 103.250.184.0/23 157.119.40.0/24 IPv6: 2001:df2:1000::/47 2405:7140::/48 Signature Algorithm: sha256WithRSAEncryption 58:f0:49:35:69:29:10:53:df:9c:7f:db:bd:cf:0f:a7:70:65: 79:9d:ec:2b:71:cc:18:8b:74:a2:e1:d0:b0:65:5f:af:fd:4d: fe:64:5f:dd:42:7b:41:69:0d:4c:60:7b:7a:46:23:00:78:6b: 76:5c:24:52:65:a4:2e:bf:37:c5:22:22:d1:fa:f4:63:44:43: 18:ab:de:c3:20:51:db:36:2d:7d:18:76:35:e2:fa:37:2e:f1: 18:0b:5b:b3:97:56:56:57:9e:e2:11:7f:ad:75:e9:a4:31:e9: d1:7d:49:71:10:d3:d0:20:f9:f7:4e:64:3d:cf:fe:aa:25:2c: 49:95:36:c9:6f:3e:20:e1:a8:08:e2:fc:c7:97:b6:6b:92:03: da:e3:f3:c6:a6:88:50:9c:af:cf:8c:36:10:da:fb:a8:6f:fa: b8:77:08:10:fd:d1:be:34:5b:11:e0:81:a5:a2:ef:ed:89:06: 29:d4:6b:85:89:b6:38:97:73:30:e2:a3:b4:dd:89:2d:40:b8: 00:14:79:61:c6:0b:8c:03:37:73:4f:1a:0d:2e:46:45:fb:b7: 59:6e:a5:eb:1f:f3:c9:04:6e:36:3a:87:0f:8b:31:ab:08:16: aa:53:a1:3f:17:7f:2c:89:94:ac:5b:a2:f0:86:e7:a5:2b:2c: d1:7a:0c:14 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzNjIxMTAvBgNVBAUTKEVBODNBRjRBMjFDQkMyMDcxRjU2OTU2RTVEREQ1ODRD NzYzOEZBNUIwHhcNMjYwMzE3MTczNDMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI5OTBhOS1lZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWSsv/TRis2hIUKVBrefmkt5HX+E+bgVlLxREbQbWGh0sRcIcoDuwph9qLl6 XwmlUzwGcyPnmdeHwdKTgj1IuEXIfa7QsLhJyp7kMVnQrHGmNqIVtb80kNARk4+i 3pZorrvoeDeUUYQSIFCA1J3BPtfPUOzmTf9vPJMwYrjMQ1V1U875aCmYC0PUMOAl WIrlC7uaF/mCeZMdFvagauoUbWco06V506d4arlVijWSOeBIxa1XV1iHD6bchRpA r9UUd1+E5a29d4pJwfpymlEVyDOA6pEp2IY6gdYSfYFlkm3nWzgC/mpkaHuLCGfK UnPqdhbS87SlnJWjEEFIDzVNvQIDAQABo4ICujCCArYwHQYDVR0OBBYEFOz4jPjO JynCZrubRiLLeB3oQ+A7MB8GA1UdIwQYMBaAFOqDr0ohy8IHH1aVbl3dWEx2OPpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM2Mi82QTA4RjQ5MjI1 NzcxMUVGQkIwQjgyNTFDNEY5QUUwMi82b092U2lITHdnY2ZWcFZ1WGQxWVRIWTQt bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZvT3ZTaUhMd2djZlZwVnVYZDFZVEhZNC1scy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMzNjIvNkEwOEY0OTIyNTc3MTFFRkJCMEI4MjUxQzRGOUFFMDIvOEY2NUVCMkUy MjI3MTFGMUJGMjgyODY3M0UzRDhDNjcucm9hMHkGCCsGAQUFBwEHAQH/BGowaDBM BAIAATBGMAwDBAMr5sgDBAAr5sowDAMEAy1AaAMEAC1AagMEAC1x4QMEAi14iAME AGcM0wMEAmcNcAMEAmcazAMEAWf6uAMEAJ13KDAYBAIAAjASAwcBIAEN8hAAAwcA JAVxQAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBY8Ek1aSkQU9+cf9u9zw+ncGV5newr ccwYi3Si4dCwZV+v/U3+ZF/dQntBaQ1MYHt6RiMAeGt2XCRSZaQuvzfFIiLR+vRj REMYq97DIFHbNi19GHY14vo3LvEYC1uzl1ZWV57iEX+tdemkMenRfUlxENPQIPn3 TmQ9z/6qJSxJlTbJbz4g4agI4vzHl7ZrkgPa4/PGpohQnK/PjDYQ2vuob/q4dwgQ /dG+NFsR4IGlou/tiQYp1GuFibY4l3Mw4qO03YktQLgAFHlhxguMAzdzTxoNLkZF +7dZbqXrH/PJBG42OocPizGrCBaqU6E/F38siZSsW6LwhuelKyzRegwU -----END CERTIFICATE-----Generated at Thu Mar 26 17:33:45 2026 by rpki-client