$ rpki-client -vvf rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa File: 6A8E3C9474A811EFA3123A41C4F9AE02.roa (raw, json) Hash identifier: Qt2yG5ssIGyzu69EVskhzxUhIEVC6DHMm7qjK2IfraU= Subject key identifier: D1:4E:3F:EB:7A:01:35:58:A5:E9:F1:99:02:C4:5E:EB:55:21:21:B1 Certificate issuer: /CN=A912F515/serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Certificate serial: 011F Authority key identifier: FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:17:11 +0000 ROA not before: Thu 03 Jul 2025 06:41:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132300 IP address blocks: 45.121.60.0/24 maxlen: 24 45.121.61.0/24 maxlen: 24 45.121.62.0/24 maxlen: 24 45.121.63.0/24 maxlen: 24 103.29.188.0/24 maxlen: 24 103.29.189.0/24 maxlen: 24 103.29.190.0/24 maxlen: 24 103.29.191.0/24 maxlen: 24 183.90.168.0/22 maxlen: 22 183.90.168.0/24 maxlen: 24 183.90.169.0/24 maxlen: 24 183.90.170.0/24 maxlen: 24 183.90.171.0/24 maxlen: 24 183.90.172.0/23 maxlen: 24 183.90.174.0/24 maxlen: 24 183.90.175.0/24 maxlen: 24 202.129.205.0/24 maxlen: 24 202.129.206.0/24 maxlen: 24 202.129.207.0/24 maxlen: 24 2406:7900:7226::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F515, serialNumber=FB5ACFBCF9FCEF034B8A93BD319E620442D6667F Validity Not Before: Jul 3 06:41:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a58dd7-7696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:81:c2:96:8e:d3:eb:d6:10:b3:45:65:7c:10: 24:00:40:c0:9a:16:1b:12:1f:88:0f:0a:dd:b6:64: 73:73:fd:03:45:b0:c6:14:c9:cf:c1:ef:fd:c5:20: 2f:84:69:b3:db:8a:83:fb:80:e7:e0:aa:0e:be:ae: a6:19:f3:a1:3b:34:9c:84:8a:a0:f7:9e:14:78:96: 52:64:4a:7f:8f:d7:7a:30:c4:d8:03:a0:fc:d5:c0: 02:da:25:69:ff:48:96:34:11:3a:7d:2d:11:f1:fb: 86:fb:ef:9e:d2:01:d7:a8:40:a4:7e:66:63:4b:7a: 40:af:6d:ea:b1:b2:8f:0b:87:14:e0:de:f7:81:0e: 92:94:3b:30:18:e4:5f:40:13:1a:51:21:42:d2:c8: 41:51:d8:c6:66:79:eb:45:78:02:81:3c:e8:d9:ec: 25:b0:e3:6b:ea:69:28:84:43:0a:2f:2d:a5:4e:c4: f0:1f:c4:43:fc:de:16:7c:e4:e9:05:d8:2c:ba:68: 66:af:63:d6:b8:ee:4c:0c:65:64:7e:84:c8:38:19: f1:e7:99:a0:d9:de:ef:cc:fd:9c:53:b3:4e:6d:a7: eb:86:e8:8f:a9:b1:32:6c:93:5b:41:dc:54:f4:a8: 25:ec:02:60:21:d2:fd:74:3e:d3:14:4e:6f:90:43: 36:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4E:3F:EB:7A:01:35:58:A5:E9:F1:99:02:C4:5E:EB:55:21:21:B1 X509v3 Authority Key Identifier: keyid:FB:5A:CF:BC:F9:FC:EF:03:4B:8A:93:BD:31:9E:62:04:42:D6:66:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/-1rPvPn87wNLipO9MZ5iBELWZn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-1rPvPn87wNLipO9MZ5iBELWZn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F515/3D3CA30874A711EF8EA2C53DC4F9AE02/6A8E3C9474A811EFA3123A41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.121.60.0/22 103.29.188.0/22 183.90.168.0/21 202.129.205.0-202.129.207.255 IPv6: 2406:7900:7226::/48 Signature Algorithm: sha256WithRSAEncryption a6:07:c7:98:4d:d7:91:fa:e8:9c:b3:5f:05:4a:e4:50:39:87: 07:c7:a9:ad:95:43:ad:3d:7b:50:07:67:a2:66:49:65:ad:9f: 95:72:40:71:3b:47:d1:a3:69:74:6b:4d:74:e9:0a:c4:e0:b9: f7:02:67:e8:99:c5:6b:95:e6:82:99:21:25:68:bf:7e:9c:2d: 56:dc:ec:d4:0a:db:c0:12:92:3c:69:9b:0b:60:49:38:dc:27: 24:f7:d6:78:93:aa:56:78:7a:1a:2c:6e:98:59:a9:b9:5d:6c: 39:82:47:bd:8e:ea:9e:ca:a2:a2:65:c1:ea:13:7c:8f:81:5e: 87:54:2e:8d:18:ea:be:71:88:9a:f7:95:48:af:0b:3b:f6:70: 6e:c8:3d:23:f2:fc:0c:1c:ac:c6:5d:28:ea:1a:b6:f5:e3:d8: 95:72:7f:fd:10:46:00:af:c4:1f:10:c6:8c:9e:69:5e:81:f3: 3b:a4:bc:15:09:0e:7c:6a:45:1c:33:c6:7f:2a:9e:a3:ca:3e: 41:ff:a9:96:7d:ed:87:8b:c9:b1:0e:7a:94:40:57:1f:44:bf: 77:bf:df:60:aa:ab:f6:ab:d9:c1:99:b6:57:53:dc:af:49:66: c8:a3:31:93:e4:ff:a6:13:5e:e4:75:0e:19:02:cd:86:48:5a: 57:9c:0a:11 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MTUxMTAvBgNVBAUTKEZCNUFDRkJDRjlGQ0VGMDM0QjhBOTNCRDMxOUU2MjA0 NDJENjY2N0YwHhcNMjUwNzAzMDY0MTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGRkNy03Njk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IHClo7T69YQs0VlfBAkAEDAmhYbEh+IDwrdtmRzc/0DRbDGFMnPwe/9xSAv hGmz24qD+4Dn4KoOvq6mGfOhOzSchIqg954UeJZSZEp/j9d6MMTYA6D81cAC2iVp /0iWNBE6fS0R8fuG+++e0gHXqECkfmZjS3pAr23qsbKPC4cU4N73gQ6SlDswGORf QBMaUSFC0shBUdjGZnnrRXgCgTzo2ewlsONr6mkohEMKLy2lTsTwH8RD/N4WfOTp Bdgsumhmr2PWuO5MDGVkfoTIOBnx55mg2d7vzP2cU7NObafrhuiPqbEybJNbQdxU 9Kgl7AJgIdL9dD7TFE5vkEM2LwIDAQABo4ICizCCAocwHQYDVR0OBBYEFNFOP+t6 ATVYpenxmQLEXutVISGxMB8GA1UdIwQYMBaAFPtaz7z5/O8DS4qTvTGeYgRC1mZ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUxNS8zRDNDQTMwODc0 QTcxMUVGOEVBMkM1M0RDNEY5QUUwMi8tMXJQdlBuODd3TkxpcE85TVo1aUJFTFda bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0xclB2UG44N3dOTGlwTzlNWjVpQkVMV1puOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MTUvM0QzQ0EzMDg3NEE3MTFFRjhFQTJDNTNEQzRGOUFFMDIvNkE4RTNDOTQ3 NEE4MTFFRkEzMTIzQTQxQzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTAm BAIAATAgAwQCLXk8AwQCZx28AwQDt1qoMAwDBADKgc0DBATKgcAwDwQCAAIwCQMH ACQGeQByJjANBgkqhkiG9w0BAQsFAAOCAQEApgfHmE3XkfronLNfBUrkUDmHB8ep rZVDrT17UAdnomZJZa2flXJAcTtH0aNpdGtNdOkKxOC59wJn6JnFa5XmgpkhJWi/ fpwtVtzs1ArbwBKSPGmbC2BJONwnJPfWeJOqVnh6GixumFmpuV1sOYJHvY7qnsqi omXB6hN8j4Feh1QujRjqvnGImveVSK8LO/Zwbsg9I/L8DBysxl0o6hq29ePYlXJ/ /RBGAK/EHxDGjJ5pXoHzO6S8FQkOfGpFHDPGfyqeo8o+Qf+pln3th4vJsQ56lEBX H0S/d7/fYKqr9qvZwZm2V1Pcr0lmyKMxk+T/phNe5HUOGQLNhkhaV5wKEQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:54:43 2026 by rpki-client