$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa File: A17C3508168911EFBF38F580C4F9AE02.roa (raw, json) Hash identifier: oNiHZYVs3otoLhuDZWOsSBncaVRA0mwkHCN7V99aPbU= Subject key identifier: 98:AF:F3:0E:85:49:D1:33:B8:C6:38:41:06:F4:62:9E:7D:60:9D:39 Certificate issuer: /CN=A912F535/serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Certificate serial: 01E3 Authority key identifier: D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa Signing time: Sat 09 May 2026 10:36:51 +0000 ROA not before: Sat 09 May 2026 10:36:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 400619 IP address blocks: 14.192.4.0/22 maxlen: 22 14.192.4.0/23 maxlen: 24 14.192.6.0/23 maxlen: 24 43.224.224.0/22 maxlen: 24 103.215.77.0/24 maxlen: 24 103.215.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535, serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Validity Not Before: May 9 10:36:51 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69ff0e43-2f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:36:48:37:dd:ed:25:75:68:fd:6f:e4:0b:dd: 9f:92:f1:5d:39:82:7f:e3:ea:bb:ee:1e:cd:42:30: 5b:8f:2c:08:b8:6c:7f:49:56:bc:b4:98:85:47:13: b3:11:80:6d:3d:54:e8:ed:53:5c:f2:55:92:74:98: 8a:40:70:f4:c7:32:80:bc:02:50:e1:0e:0b:e4:6e: d6:29:07:18:58:af:ab:04:ee:60:2b:49:e7:0b:af: c0:49:f9:82:05:48:4b:24:6d:6b:e5:1c:86:2a:49: 00:aa:cf:e1:bb:b5:71:9a:20:15:d2:c6:7e:cb:0f: 93:e9:6c:ea:c1:36:ed:8c:dc:fe:e0:04:f0:29:72: bc:e5:5d:ec:c2:59:ac:c5:20:d0:58:1d:f1:bc:0c: 12:bb:24:57:8b:44:79:ff:0e:d3:34:ec:d1:f3:0e: de:e3:0d:42:25:49:cb:4d:0c:6d:48:36:d7:13:83: 5c:27:1d:5f:e3:75:70:d2:09:7d:e7:99:ac:0e:9b: 6b:f6:46:33:88:12:d6:be:cd:be:77:58:a7:25:d4: b2:0b:ed:88:4a:87:eb:6a:0d:a1:ec:95:b2:8b:3b: d6:d8:ae:17:57:08:a2:f4:09:48:ac:aa:bb:a0:d1: df:86:f7:d6:e5:69:63:ab:19:de:f3:8d:24:29:82: 61:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AF:F3:0E:85:49:D1:33:B8:C6:38:41:06:F4:62:9E:7D:60:9D:39 X509v3 Authority Key Identifier: keyid:D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.192.4.0/22 43.224.224.0/22 103.215.77.0-103.215.78.255 Signature Algorithm: sha256WithRSAEncryption 2c:3c:5f:77:7a:dc:14:96:73:8b:a6:1a:76:05:2e:aa:40:2d: bd:ae:63:3e:ce:f7:61:00:5d:66:72:cb:fa:63:73:28:91:d4: ee:d4:0b:6f:a8:fc:cf:69:38:61:35:9f:3f:f3:31:01:b0:27: c4:23:d4:92:22:fb:da:f4:5e:7a:91:13:e8:8e:7b:33:31:bb: 3c:9b:e1:2f:89:88:e4:c9:d7:03:48:94:e2:bb:c9:d4:a6:3f: d1:b4:8a:9c:8b:cf:33:dc:b0:64:0d:bc:95:10:78:7d:3f:34: 20:34:95:10:6c:23:ca:68:81:c8:86:3f:98:6e:43:a6:51:54: 00:3f:4e:5e:b3:bf:da:f3:13:d1:b8:ae:9c:8f:8f:30:83:d8: 2a:72:d0:3f:af:50:2a:94:92:7e:96:96:5d:af:29:b5:09:11: 33:29:4b:0e:03:1e:b3:a9:8b:55:40:b7:71:84:0a:ed:89:d6: fd:e0:0f:5b:5f:cd:b1:5d:ba:8e:87:d8:a3:69:a9:1d:9f:1f: 7d:a5:03:41:44:b8:38:9d:4a:39:be:6a:b7:7c:93:88:79:8d: 7f:ed:7e:67:fa:34:7f:47:9d:bb:03:9a:00:53:ef:7e:35:2b: 34:1f:75:76:8b:43:0b:99:71:ce:dc:da:fa:1a:8d:41:c6:4d: 5a:ae:18:a5 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MzUxMTAvBgNVBAUTKEQ0OENFRDE4RjY4Q0EyMjY5ODNGOUY5OTlBMTQwNjM2 Mjc1QjZBNTUwHhcNMjYwNTA5MTAzNjUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZmMGU0My0yZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jZIN93tJXVo/W/kC92fkvFdOYJ/4+q77h7NQjBbjywIuGx/SVa8tJiFRxOz EYBtPVTo7VNc8lWSdJiKQHD0xzKAvAJQ4Q4L5G7WKQcYWK+rBO5gK0nnC6/ASfmC BUhLJG1r5RyGKkkAqs/hu7VxmiAV0sZ+yw+T6WzqwTbtjNz+4ATwKXK85V3swlms xSDQWB3xvAwSuyRXi0R5/w7TNOzR8w7e4w1CJUnLTQxtSDbXE4NcJx1f43Vw0gl9 55msDptr9kYziBLWvs2+d1inJdSyC+2ISofrag2h7JWyizvW2K4XVwii9AlIrKq7 oNHfhvfW5Wljqxne840kKYJhmQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFJiv8w6F SdEzuMY4QQb0Yp59YJ05MB8GA1UdIwQYMBaAFNSM7Rj2jKImmD+fmZoUBjYnW2pV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUzNS82OUE1ODA3OEJB NjYxMUVFQkMzOTYyNkVDNEY5QUUwMi8xSXp0R1BhTW9pYVlQNS1abWhRR05pZGJh bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFJenRHUGFNb2lhWVA1LVptaFFHTmlkYmFsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MzUvNjlBNTgwNzhCQTY2MTFFRUJDMzk2MjZFQzRGOUFFMDIvQTE3QzM1MDgx Njg5MTFFRkJGMzhGNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCDsAEAwQCK+DgMAwDBABn100DBABn104wDQYJKoZIhvcNAQELBQAD ggEBACw8X3d63BSWc4umGnYFLqpALb2uYz7O92EAXWZyy/pjcyiR1O7UC2+o/M9p OGE1nz/zMQGwJ8Qj1JIi+9r0XnqRE+iOezMxuzyb4S+JiOTJ1wNIlOK7ydSmP9G0 ipyLzzPcsGQNvJUQeH0/NCA0lRBsI8pogciGP5huQ6ZRVAA/Tl6zv9rzE9G4rpyP jzCD2Cpy0D+vUCqUkn6Wll2vKbUJETMpSw4DHrOpi1VAt3GECu2J1v3gD1tfzbFd uo6H2KNpqR2fH32lA0FEuDidSjm+ard8k4h5jX/tfmf6NH9HnbsDmgBT7341KzQf dXaLQwuZcc7c2voajUHGTVquGKU= -----END CERTIFICATE-----Generated at Wed May 13 08:40:45 2026 by rpki-client