$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/85613B4E8C8411EBB68DD829C4F9AE02.roa File: 85613B4E8C8411EBB68DD829C4F9AE02.roa (raw, json) Hash identifier: MHi4TFFkjk45IS82Lk1zkWvvF71n/wv3X8tPB3ZA4gQ= Subject key identifier: 16:91:F3:65:E3:AF:20:58:67:59:F9:2C:EB:20:BC:CF:B5:A1:CE:47 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06DF Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/85613B4E8C8411EBB68DD829C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:03:54 +0000 ROA not before: Thu 12 Jun 2025 22:22:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136733 IP address blocks: 103.94.224.0/24 maxlen: 24 103.94.225.0/24 maxlen: 24 103.94.226.0/24 maxlen: 24 103.94.227.0/24 maxlen: 24 150.107.168.0/24 maxlen: 24 150.107.169.0/24 maxlen: 24 150.107.170.0/24 maxlen: 24 150.107.171.0/24 maxlen: 24 2001:df1:8900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Jun 12 22:22:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a6d9-5656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:67:e1:d9:13:d7:cb:ca:f5:dd:d2:58:96: ec:52:f5:4c:37:c9:8b:89:81:fa:15:a8:bb:7d:f5: 7a:d5:c1:0b:27:a5:4b:b2:c0:e0:ff:9f:d2:5e:81: 32:8d:41:ed:f4:f0:48:b9:55:8f:ba:04:cf:07:43: 94:42:24:76:d2:56:48:0b:60:5a:0e:a4:92:81:45: f1:14:a6:e8:ae:a6:1a:fb:8c:aa:77:35:16:db:7a: ae:70:21:43:a2:b6:7f:78:e8:88:04:f5:b9:62:ac: 97:20:81:28:24:89:80:00:25:db:53:5e:87:d5:76: 48:c0:3e:6d:89:73:83:1c:51:03:f5:b0:da:25:a8: fa:0c:00:75:24:ce:1b:a4:db:ca:9e:8b:b9:9a:68: cf:75:84:7a:14:d0:2c:88:27:79:d0:91:33:00:24: b5:a6:9d:03:ce:3a:22:39:8b:4f:12:3e:e5:9f:ca: 01:aa:87:80:5c:d4:1f:f2:36:ae:a0:f8:21:74:a3: 0d:14:a8:ae:8d:5d:9a:45:40:c7:ba:cc:cc:10:41: ed:8d:4f:04:22:09:ac:c0:e5:2a:d7:f9:e4:9d:9a: 5b:d8:73:e9:96:ff:ef:17:e3:0e:69:2f:b7:77:ce: 4a:30:b1:63:23:82:e7:f2:ea:6f:42:2c:b4:37:d9: cd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:91:F3:65:E3:AF:20:58:67:59:F9:2C:EB:20:BC:CF:B5:A1:CE:47 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/85613B4E8C8411EBB68DD829C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.94.224.0/22 150.107.168.0/22 IPv6: 2001:df1:8900::/48 Signature Algorithm: sha256WithRSAEncryption c8:13:95:76:b6:42:61:1d:3c:8c:5d:69:ae:b7:73:5f:e2:8d: 7c:b1:b5:b1:18:4a:bd:d1:52:d4:62:cd:a6:d0:6d:c9:0e:a7: fa:e0:1f:8c:6c:7c:1d:31:57:07:61:a6:7f:2a:c3:cb:1d:c6: 1b:d5:98:07:01:28:d1:58:05:10:aa:91:77:43:17:71:6b:0c: 59:9d:ba:27:f5:b6:cd:70:51:6a:19:65:37:fa:b9:19:72:63: 45:54:45:32:15:76:7d:ca:eb:06:36:47:98:f1:60:4f:72:92: 30:0b:7f:2d:b9:17:87:05:30:74:8f:2f:c4:e9:05:84:22:49: d2:e2:40:f8:52:de:3b:ae:42:97:6e:3d:15:ad:da:7a:16:e6: 90:b8:fc:f2:c0:da:c2:29:9c:38:3a:78:94:f3:cb:f2:f7:8b: e8:ce:78:cd:54:cb:c0:a2:9e:bc:55:c9:29:3b:a8:2f:1d:a5: 9e:3e:30:4d:bd:44:cf:39:41:71:f4:83:e8:1d:c5:71:8e:a6: a1:74:ea:b2:12:90:00:4e:1b:eb:84:33:60:86:df:36:0a:b2: d6:b8:e5:8e:5e:e3:7c:c0:88:65:19:40:5b:21:4e:ed:c8:1b: a9:d8:7e:cd:aa:f4:61:b4:0e:8e:5d:22:43:fd:10:6b:94:1f: e5:d1:11:e0 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUwNjEyMjIyMjAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTZkOS01NjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvln4dkT18vK9d3SWJbsUvVMN8mLiYH6Fai7ffV61cELJ6VLssDg/5/SXoEy jUHt9PBIuVWPugTPB0OUQiR20lZIC2BaDqSSgUXxFKborqYa+4yqdzUW23qucCFD orZ/eOiIBPW5YqyXIIEoJImAACXbU16H1XZIwD5tiXODHFED9bDaJaj6DAB1JM4b pNvKnou5mmjPdYR6FNAsiCd50JEzACS1pp0DzjoiOYtPEj7ln8oBqoeAXNQf8jau oPghdKMNFKiujV2aRUDHuszMEEHtjU8EIgmswOUq1/nknZpb2HPplv/vF+MOaS+3 d85KMLFjI4Ln8upvQiy0N9nN7QIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFBaR82Xj ryBYZ1n5LOsgvM+1oc5HMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNGNDQvNjY3N0JFQjY4QzgzMTFFQjg0OUU2MTI5QzRGOUFFMDIvODU2MTNCNEU4 Qzg0MTFFQkI2OEREODI5QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ17gAwQClmuoMA8EAgACMAkDBwAgAQ3xiQAwDQYJKoZIhvcNAQEL BQADggEBAMgTlXa2QmEdPIxdaa63c1/ijXyxtbEYSr3RUtRizabQbckOp/rgH4xs fB0xVwdhpn8qw8sdxhvVmAcBKNFYBRCqkXdDF3FrDFmduif1ts1wUWoZZTf6uRly Y0VURTIVdn3K6wY2R5jxYE9ykjALfy25F4cFMHSPL8TpBYQiSdLiQPhS3juuQpdu PRWt2noW5pC4/PLA2sIpnDg6eJTzy/L3i+jOeM1Uy8CinrxVySk7qC8dpZ4+ME29 RM85QXH0g+gdxXGOpqF06rISkABOG+uEM2CG3zYKsta45Y5e43zAiGUZQFshTu3I G6nYfs2q9GG0Do5dIkP9EGuUH+XREeA= -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:38 2026 by rpki-client