$ rpki-client -vvf rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa File: D985E93886B111EFA11BDF53C4F9AE02.roa (raw, json) Hash identifier: 22jIW/Ccl08J4PaXTvjG86262j5seRrjTm5Q9000LDk= Subject key identifier: 2C:8F:A4:9D:B0:08:F3:B3:9D:6A:D2:40:47:66:62:11:A9:DF:E8:1E Certificate issuer: /CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Certificate serial: 012B Authority key identifier: 0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:16:07 +0000 ROA not before: Thu 01 May 2025 06:13:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38456 IP address blocks: 103.249.49.0/24 maxlen: 24 103.249.50.0/24 maxlen: 24 103.249.51.0/24 maxlen: 24 110.232.148.0/24 maxlen: 24 110.232.150.0/24 maxlen: 24 110.232.151.0/24 maxlen: 24 111.92.177.0/24 maxlen: 24 111.92.179.0/24 maxlen: 24 122.200.58.0/24 maxlen: 24 122.200.59.0/24 maxlen: 24 122.200.60.0/24 maxlen: 24 2406:5e00::/48 maxlen: 48 2406:5e00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913819A, serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Validity Not Before: May 1 06:13:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58d96-b001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5d:f1:ea:91:6b:7c:84:83:86:5d:e2:3d:f5: 4c:ec:eb:9e:35:cd:83:dd:61:7c:d2:47:79:b7:97: 26:51:55:8a:c0:3b:19:c9:cd:35:79:9c:59:81:4f: 2c:54:50:6e:4e:01:89:58:46:38:c7:84:3c:38:aa: 9e:37:f5:3e:1d:f9:7a:f5:a8:3e:7a:41:be:19:66: 76:73:a8:25:0b:2a:5f:4a:78:50:e8:75:4f:0a:31: 77:b3:c1:c4:6b:ce:76:e4:05:d1:95:2b:39:7c:39: 95:f7:ff:f7:b8:1d:cf:4d:f6:70:19:36:22:be:29: 54:cd:90:85:1c:b7:6f:41:fa:89:20:b2:36:ae:77: 1f:fd:45:41:db:37:76:77:1c:a3:5b:08:c7:9a:48: 62:b4:9c:a3:00:e8:c2:00:65:ad:89:ff:88:5e:cc: 21:8a:b1:7b:23:64:f8:6a:cc:7b:57:1d:72:79:60: 9d:d7:c1:40:d9:5e:d6:80:b6:f5:da:75:1c:bb:67: 3d:d6:3f:d1:53:f4:62:8a:a1:92:21:c5:c2:77:92: 23:51:75:68:36:3b:69:fd:77:52:50:f1:4e:45:aa: 37:bc:52:68:f9:f0:ba:84:ef:20:99:b3:38:ab:c3: 63:7f:ad:6e:14:0b:9d:dc:8b:c2:d0:49:db:aa:09: 9b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8F:A4:9D:B0:08:F3:B3:9D:6A:D2:40:47:66:62:11:A9:DF:E8:1E X509v3 Authority Key Identifier: keyid:0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.249.49.0-103.249.51.255 110.232.148.0/24 110.232.150.0/23 111.92.177.0/24 111.92.179.0/24 122.200.58.0-122.200.60.255 IPv6: 2406:5e00::/47 Signature Algorithm: sha256WithRSAEncryption 6e:a7:56:c5:14:09:bf:0f:9a:32:e6:ba:f0:ea:da:dc:16:56: ba:e2:1f:b2:1a:2d:e5:7d:ac:e3:95:44:e0:9b:df:a4:3a:7f: ab:ec:aa:66:77:fb:6d:b9:4e:26:e3:bf:c6:d3:8d:08:de:e0: 5e:c6:ae:ac:fc:31:ba:58:ce:2d:5e:08:77:96:6e:78:18:12: 88:b4:ac:82:3d:5c:a4:4e:91:45:15:56:d9:ee:d2:98:a1:6c: 22:c1:c1:fe:0a:a8:5e:40:f3:12:fa:e9:26:ac:fe:57:50:7e: 48:55:d0:e3:40:82:77:81:e6:93:51:0e:b0:b9:da:9f:ad:81: 9d:c1:9a:aa:d9:cc:32:35:62:9f:f3:81:20:c7:a1:a9:4b:7e: 34:cb:d5:34:84:10:16:ce:33:e2:7e:70:cb:ce:46:4e:08:e7: 8f:cf:3d:47:49:42:67:ae:d1:2c:69:46:2a:27:26:db:24:fa: c9:78:bd:31:e6:71:2a:c6:3e:b1:01:d6:1f:39:e0:ce:20:79: 6b:e9:5c:0b:76:df:8c:5a:cc:32:7e:f6:e9:e3:99:d7:30:2b: 3e:c8:cb:a8:e1:c2:07:a5:39:09:41:e7:10:b4:0c:ef:17:96: 58:4e:50:9d:c4:f1:cd:07:f7:06:59:e7:90:9b:19:05:6b:5c: 19:df:f8:3d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxOUExMTAvBgNVBAUTKDBCMzY2RTA3MENGRTcwMEU0NzdFRTQ3NEQ2Qzk1NDlE RDNCMzhCRjIwHhcNMjUwNTAxMDYxMzIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQ5Ni1iMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzl3x6pFrfISDhl3iPfVM7OueNc2D3WF80kd5t5cmUVWKwDsZyc01eZxZgU8s VFBuTgGJWEY4x4Q8OKqeN/U+Hfl69ag+ekG+GWZ2c6glCypfSnhQ6HVPCjF3s8HE a8525AXRlSs5fDmV9//3uB3PTfZwGTYivilUzZCFHLdvQfqJILI2rncf/UVB2zd2 dxyjWwjHmkhitJyjAOjCAGWtif+IXswhirF7I2T4asx7Vx1yeWCd18FA2V7WgLb1 2nUcu2c91j/RU/RiiqGSIcXCd5IjUXVoNjtp/XdSUPFORao3vFJo+fC6hO8gmbM4 q8Njf61uFAud3IvC0EnbqgmbzwIDAQABo4ICnzCCApswHQYDVR0OBBYEFCyPpJ2w CPOznWrSQEdmYhGp3+geMB8GA1UdIwQYMBaAFAs2bgcM/nAOR37kdNbJVJ3Ts4vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE5QS81Rjg5RjQzMDg2 QjExMUVGQUY2RUNCNTJDNEY5QUUwMi9Delp1Qnd6LWNBNUhmdVIwMXNsVW5kT3pp X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6WnVCd3otY0E1SGZ1UjAxc2xVbmRPemlfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxOUEvNUY4OUY0MzA4NkIxMTFFRkFGNkVDQjUyQzRGOUFFMDIvRDk4NUU5Mzg4 NkIxMTFFRkExMUJERjUzQzRGOUFFMDIucm9hMF4GCCsGAQUFBwEHAQH/BE8wTTA6 BAIAATA0MAwDBABn+TEDBAJn+TADBABu6JQDBAFu6JYDBABvXLEDBABvXLMwDAME AXrIOgMEAHrIPDAPBAIAAjAJAwcBJAZeAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBu p1bFFAm/D5oy5rrw6trcFla64h+yGi3lfazjlUTgm9+kOn+r7Kpmd/ttuU4m47/G 040I3uBexq6s/DG6WM4tXgh3lm54GBKItKyCPVykTpFFFVbZ7tKYoWwiwcH+Cqhe QPMS+ukmrP5XUH5IVdDjQIJ3geaTUQ6wudqfrYGdwZqq2cwyNWKf84Egx6GpS340 y9U0hBAWzjPifnDLzkZOCOePzz1HSUJnrtEsaUYqJybbJPrJeL0x5nEqxj6xAdYf OeDOIHlr6VwLdt+MWswyfvbp45nXMCs+yMuo4cIHpTkJQecQtAzvF5ZYTlCdxPHN B/cGWeeQmxkFa1wZ3/g9 -----END CERTIFICATE-----Generated at Thu Mar 26 12:16:53 2026 by rpki-client