$ rpki-client -vvf rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa File: CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa (raw, json) Hash identifier: aKMlcoKPOK4sVWlP0NCeOszEtBXOmIcZnqYHH1capVc= Subject key identifier: 70:11:C8:43:54:28:11:9C:C0:9A:2F:7B:C4:40:BD:4D:C5:80:C1:17 Certificate issuer: /CN=A912905D/serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Certificate serial: 0251 Authority key identifier: 20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa Signing time: Tue 03 Mar 2026 02:36:34 +0000 ROA not before: Tue 03 Mar 2026 02:36:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 141421 IP address blocks: 103.84.56.0/24 maxlen: 24 103.84.57.0/24 maxlen: 24 2400:dce0::/48 maxlen: 48 2400:dce0:1::/48 maxlen: 48 2400:dce0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912905D, serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Validity Not Before: Mar 3 02:36:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a64932-ebed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:21:4c:a0:e9:06:84:37:d3:24:cd:a0:3a:9a: 3f:58:7b:6b:c8:08:de:e6:69:08:bf:6c:6b:8a:96: 6a:bb:7c:92:4b:a8:68:bc:56:3c:eb:9b:74:4a:41: 0a:a4:8f:8c:17:f8:a2:e5:3e:0a:57:c8:22:c8:62: ce:30:55:e6:35:b3:0f:0a:69:8a:48:59:80:33:26: 48:af:b8:a9:07:91:63:62:21:29:a7:db:c1:be:95: a5:1d:4e:4e:03:13:4c:34:bc:7f:da:4c:9d:02:66: fc:e8:a2:51:8c:32:a8:83:d6:53:99:66:0a:e4:40: 6d:09:38:e0:a8:2b:4c:74:80:1c:f4:81:6d:59:2d: 2e:f5:da:f1:a0:fd:72:90:ef:14:fc:95:c1:25:e1: 6d:d4:31:af:65:e8:ee:58:05:9b:32:20:3a:1b:d6: 79:c1:5d:e0:48:b5:7c:32:1b:40:03:e2:8d:1e:cf: 55:e9:57:5b:5e:fe:a7:02:c8:87:60:dd:6c:ae:88: a5:19:b7:1c:43:ac:f5:70:82:7a:b6:bc:28:fc:f4: 8d:c2:1b:ea:4e:58:97:40:c3:d5:f6:64:0d:c0:f4: 0f:6c:29:41:f4:20:66:2b:f4:89:ee:15:47:0d:3c: 46:8f:22:fb:5c:0e:0b:5b:42:5d:b3:8e:46:40:d9: 90:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:11:C8:43:54:28:11:9C:C0:9A:2F:7B:C4:40:BD:4D:C5:80:C1:17 X509v3 Authority Key Identifier: keyid:20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.56.0/23 IPv6: 2400:dce0::-2400:dce0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 84:61:e8:c0:d0:e7:56:ff:0c:51:9b:03:30:7b:b4:3a:f3:bb: b7:3d:95:ce:97:92:e2:b8:e8:83:27:5e:bf:41:8b:10:ad:ce: a9:2a:24:07:1a:3d:24:93:5a:15:af:6e:3a:e4:c3:92:9c:24: 25:a4:7c:53:ff:5d:53:4d:ed:8d:92:b7:c8:21:07:94:0d:c2: ba:1e:8f:29:e3:10:4a:18:31:85:ed:5c:e1:ca:05:c6:b7:7a: 5b:3b:95:da:89:25:e5:dc:94:ba:b4:c0:22:3b:c0:9e:23:52: 19:44:21:0a:67:a5:8e:3f:a7:56:20:a5:fc:f2:46:3d:41:8b: 26:78:b0:6a:04:d0:04:7a:2c:6b:d0:51:3b:20:42:fa:d5:c0: c6:c1:47:ef:39:30:45:86:e7:57:7e:18:af:00:9c:19:7d:38: 7a:1b:65:4d:5a:7c:a1:b7:c0:b7:e6:2c:ec:ef:89:6e:93:25: 6e:be:f1:0e:ea:15:26:9c:67:bb:31:d2:34:9a:68:da:11:37: 09:18:c0:a4:52:43:b1:ec:63:52:b1:f8:79:fc:c8:25:92:4e: 90:81:23:ba:aa:86:e1:43:04:57:61:7e:41:cc:38:1c:27:7f: 71:f2:49:7f:19:e4:ba:31:d5:91:32:ae:07:c7:78:a8:2d:0a: c1:55:a2:36 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwNUQxMTAvBgNVBAUTKDIwNDFBNTQ4MjE2RkYwMTQ4OTRCNzlDQzlGRDc3MzEx QkM3Q0EzMTcwHhcNMjYwMzAzMDIzNjM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NDkzMi1lYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iFMoOkGhDfTJM2gOpo/WHtryAje5mkIv2xripZqu3ySS6hovFY865t0SkEK pI+MF/ii5T4KV8giyGLOMFXmNbMPCmmKSFmAMyZIr7ipB5FjYiEpp9vBvpWlHU5O AxNMNLx/2kydAmb86KJRjDKog9ZTmWYK5EBtCTjgqCtMdIAc9IFtWS0u9drxoP1y kO8U/JXBJeFt1DGvZejuWAWbMiA6G9Z5wV3gSLV8MhtAA+KNHs9V6VdbXv6nAsiH YN1sroilGbccQ6z1cIJ6trwo/PSNwhvqTliXQMPV9mQNwPQPbClB9CBmK/SJ7hVH DTxGjyL7XA4LW0Jds45GQNmQ/wIDAQABo4ICejCCAnYwHQYDVR0OBBYEFHARyENU KBGcwJove8RAvU3FgMEXMB8GA1UdIwQYMBaAFCBBpUghb/AUiUt5zJ/XcxG8fKMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTA1RC8zNEJGOTkwOEFD M0QxMUVEQkQ0RDEzNUVDNEY5QUUwMi9JRUdsU0NGdjhCU0pTM25NbjlkekVieDhv eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lFR2xTQ0Z2OEJTSlMzbk1uOWR6RWJ4OG94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkwNUQvMzRCRjk5MDhBQzNEMTFFREJENEQxMzVFQzRGOUFFMDIvQ0U5QTRENzBE NkVBMTFFRDhGMEMzMjJFQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ1Q4MBgEAgACMBIwEAMFBSQA3OADBwAkANzgAAIwDQYJKoZIhvcN AQELBQADggEBAIRh6MDQ51b/DFGbAzB7tDrzu7c9lc6XkuK46IMnXr9BixCtzqkq JAcaPSSTWhWvbjrkw5KcJCWkfFP/XVNN7Y2St8ghB5QNwroejynjEEoYMYXtXOHK Bca3els7ldqJJeXclLq0wCI7wJ4jUhlEIQpnpY4/p1YgpfzyRj1BiyZ4sGoE0AR6 LGvQUTsgQvrVwMbBR+85MEWG51d+GK8AnBl9OHobZU1afKG3wLfmLOzviW6TJW6+ 8Q7qFSacZ7sx0jSaaNoRNwkYwKRSQ7HsY1Kx+Hn8yCWSTpCBI7qqhuFDBFdhfkHM OBwnf3HySX8Z5Lox1ZEyrgfHeKgtCsFVojY= -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:00 2026 by rpki-client