$ rpki-client -vvf rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa File: D985E93886B111EFA11BDF53C4F9AE02.roa (raw, json) Hash identifier: PKsDzQz8Iz9pp87aDZQ9VcpxtBwvynLDnu1x8wN8n3E= Subject key identifier: 1C:AC:C4:38:D0:84:22:3F:F8:6D:71:58:64:3B:0A:04:D5:D5:B8:88 Certificate issuer: /CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Certificate serial: 014E Authority key identifier: 0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa Signing time: Fri 01 May 2026 06:38:31 +0000 ROA not before: Fri 01 May 2026 06:38:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38456 IP address blocks: 103.249.49.0/24 maxlen: 24 103.249.50.0/24 maxlen: 24 103.249.51.0/24 maxlen: 24 110.232.148.0/24 maxlen: 24 110.232.150.0/24 maxlen: 24 110.232.151.0/24 maxlen: 24 111.92.177.0/24 maxlen: 24 111.92.179.0/24 maxlen: 24 122.200.58.0/24 maxlen: 24 122.200.59.0/24 maxlen: 24 122.200.60.0/24 maxlen: 24 2406:5e00::/48 maxlen: 48 2406:5e00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913819A, serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Validity Not Before: May 1 06:38:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f44a66-c16a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:97:e0:71:20:7e:8c:31:b4:d8:a1:3c:35: 45:cc:93:09:b1:1e:8a:8b:31:99:59:ba:f3:1b:b9: 7d:56:cb:e8:91:9d:f9:3e:95:90:3f:14:81:10:3a: 78:3f:94:40:70:a7:84:2e:c1:8a:4e:d2:73:0c:20: cf:46:3a:da:df:19:82:d8:be:66:11:01:7b:04:6d: 2b:06:55:ee:4d:7d:2d:24:67:d3:26:c0:a1:af:20: c4:0e:fb:f2:ce:52:0a:2a:e3:55:d9:c1:cd:55:f3: 0b:c3:eb:b4:e1:e3:cd:97:8e:cd:48:ef:cc:68:c4: 32:26:1d:38:8a:ca:b3:90:3b:8f:c2:13:3b:72:81: 05:09:0a:4b:15:c5:5f:b4:81:b9:f6:f7:c0:0a:4b: ea:4e:b3:1d:56:ef:f1:b2:ae:a8:32:9d:f3:50:2e: 10:d8:db:16:e9:1b:4b:bd:f3:98:93:4e:66:46:d8: a5:c9:65:09:1a:a8:12:0a:98:26:cb:19:51:4a:7e: 62:7b:5f:38:80:2f:d3:e7:71:cc:c2:a3:b7:ff:c6: 38:a5:c0:0b:75:7d:e2:16:8a:62:dc:19:ba:67:18: 72:a9:2d:9c:3a:46:2a:cc:bf:60:9a:38:81:82:d9: eb:62:0e:d8:81:57:82:1c:22:90:0c:e5:7e:b4:8f: b2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:AC:C4:38:D0:84:22:3F:F8:6D:71:58:64:3B:0A:04:D5:D5:B8:88 X509v3 Authority Key Identifier: keyid:0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.249.49.0-103.249.51.255 110.232.148.0/24 110.232.150.0/23 111.92.177.0/24 111.92.179.0/24 122.200.58.0-122.200.60.255 IPv6: 2406:5e00::/47 Signature Algorithm: sha256WithRSAEncryption 90:77:df:6c:05:28:a3:fe:45:cc:38:07:6e:7c:8e:be:3a:70: 63:0a:9e:9f:32:d9:d7:e2:3c:9b:ee:9c:61:8b:fb:7b:a9:8b: 79:03:e6:d4:f9:ab:01:6b:e6:e1:6c:e9:03:ca:0e:28:8f:e3: 78:1a:64:f9:9e:25:6c:f4:6a:f5:77:55:3b:54:6f:72:77:b6: ff:2d:a8:b6:3d:0e:95:63:18:38:c1:3f:70:89:61:94:e6:a8: da:9c:2d:d9:e6:18:4a:61:b7:90:fb:e1:f2:19:4a:f2:29:1e: ea:10:b9:e3:32:da:78:00:cf:d8:6e:ea:3e:01:49:f2:30:8b: 9d:4a:07:95:03:25:8b:ed:33:d5:a6:a1:42:65:3c:c6:f1:f4: 79:a0:47:5b:4f:7f:82:10:6a:42:9a:59:ae:d7:eb:a5:5d:f1: 94:18:ea:a2:e5:65:5a:0d:28:46:0a:a8:0e:86:80:9f:71:a8: 07:e1:9c:f9:87:8f:77:b0:af:e5:27:bb:55:eb:2e:83:c3:c6: 63:ed:38:a5:9f:ce:fa:4e:70:42:41:43:15:8c:a4:c1:6e:24: 57:cc:22:47:b7:4c:99:80:c0:2c:56:9a:3a:87:2e:b7:fe:52: ec:6b:b2:95:56:b4:92:cf:47:59:e7:b9:8e:ae:27:03:a1:53: c0:af:d0:c4 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxOUExMTAvBgNVBAUTKDBCMzY2RTA3MENGRTcwMEU0NzdFRTQ3NEQ2Qzk1NDlE RDNCMzhCRjIwHhcNMjYwNTAxMDYzODMwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0NGE2Ni1jMTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4aX4HEgfowxtNihPDVFzJMJsR6KizGZWbrzG7l9VsvokZ35PpWQPxSBEDp4 P5RAcKeELsGKTtJzDCDPRjra3xmC2L5mEQF7BG0rBlXuTX0tJGfTJsChryDEDvvy zlIKKuNV2cHNVfMLw+u04ePNl47NSO/MaMQyJh04isqzkDuPwhM7coEFCQpLFcVf tIG59vfACkvqTrMdVu/xsq6oMp3zUC4Q2NsW6RtLvfOYk05mRtilyWUJGqgSCpgm yxlRSn5ie184gC/T53HMwqO3/8Y4pcALdX3iFopi3Bm6ZxhyqS2cOkYqzL9gmjiB gtnrYg7YgVeCHCKQDOV+tI+yHQIDAQABo4ICnzCCApswHQYDVR0OBBYEFBysxDjQ hCI/+G1xWGQ7CgTV1biIMB8GA1UdIwQYMBaAFAs2bgcM/nAOR37kdNbJVJ3Ts4vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE5QS81Rjg5RjQzMDg2 QjExMUVGQUY2RUNCNTJDNEY5QUUwMi9Delp1Qnd6LWNBNUhmdVIwMXNsVW5kT3pp X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6WnVCd3otY0E1SGZ1UjAxc2xVbmRPemlfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxOUEvNUY4OUY0MzA4NkIxMTFFRkFGNkVDQjUyQzRGOUFFMDIvRDk4NUU5Mzg4 NkIxMTFFRkExMUJERjUzQzRGOUFFMDIucm9hMF4GCCsGAQUFBwEHAQH/BE8wTTA6 BAIAATA0MAwDBABn+TEDBAJn+TADBABu6JQDBAFu6JYDBABvXLEDBABvXLMwDAME AXrIOgMEAHrIPDAPBAIAAjAJAwcBJAZeAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCQ d99sBSij/kXMOAdufI6+OnBjCp6fMtnX4jyb7pxhi/t7qYt5A+bU+asBa+bhbOkD yg4oj+N4GmT5niVs9Gr1d1U7VG9yd7b/Lai2PQ6VYxg4wT9wiWGU5qjanC3Z5hhK YbeQ++HyGUryKR7qELnjMtp4AM/Ybuo+AUnyMIudSgeVAyWL7TPVpqFCZTzG8fR5 oEdbT3+CEGpCmlmu1+ulXfGUGOqi5WVaDShGCqgOhoCfcagH4Zz5h493sK/lJ7tV 6y6Dw8Zj7Tiln876TnBCQUMVjKTBbiRXzCJHt0yZgMAsVpo6hy63/lLsa7KVVrSS z0dZ57mOricDoVPAr9DE -----END CERTIFICATE-----Generated at Wed May 13 05:31:04 2026 by rpki-client