$ rpki-client -vvf rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/A211CBBEBF3911EABB1C5578C4F9AE02.roa File: A211CBBEBF3911EABB1C5578C4F9AE02.roa (raw, json) Hash identifier: bKkXq/drFBcvQIN+p4yjTRLiU00fBZpum/6X2V6b4A8= Subject key identifier: 85:4D:0B:A0:43:76:8E:64:92:35:81:F9:A1:FA:54:C8:3F:53:64:67 Certificate issuer: /CN=A916333C/serialNumber=A6398498BDFD81B9D651B512E0E9F0457AFA4D28 Certificate serial: 0927 Authority key identifier: A6:39:84:98:BD:FD:81:B9:D6:51:B5:12:E0:E9:F0:45:7A:FA:4D:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjmEmL39gbnWUbUS4OnwRXr6TSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/A211CBBEBF3911EABB1C5578C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:08:21 +0000 ROA not before: Fri 02 May 2025 21:01:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135122 IP address blocks: 103.210.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/pjmEmL39gbnWUbUS4OnwRXr6TSg.crl rsync://rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/pjmEmL39gbnWUbUS4OnwRXr6TSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjmEmL39gbnWUbUS4OnwRXr6TSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916333C, serialNumber=A6398498BDFD81B9D651B512E0E9F0457AFA4D28 Validity Not Before: May 2 21:01:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a51b45-96d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6e:cb:77:b4:e6:25:56:0f:de:b0:7a:ce:55: dd:19:09:f8:0d:bb:3e:aa:92:7a:d3:5e:66:27:65: 2d:23:db:17:7f:e4:90:83:ef:61:a3:7d:26:48:82: 91:fe:f4:d7:b9:fd:1c:5e:25:64:7d:ad:32:88:c9: 55:83:17:98:8e:9f:5c:e0:ca:84:28:c9:a0:88:dc: 9d:7a:99:29:3c:75:52:b9:71:3a:22:54:5a:8f:51: 4b:a1:dd:28:78:97:e2:09:61:71:5e:e6:4c:11:e2: 48:f4:14:f3:c3:8e:85:40:b5:2c:57:e8:59:ec:61: 3f:00:f2:fc:65:c5:88:0a:e1:d5:c5:b7:71:a0:29: ed:cb:98:07:40:52:bc:b4:70:64:c0:ea:e6:28:83: 3b:28:b4:e4:62:62:4c:e6:25:85:56:07:ad:04:8f: 71:4f:2d:45:d5:45:1e:c2:7b:39:99:62:a1:06:59: 16:5f:5d:cc:f1:0e:7e:91:aa:fc:1a:b2:32:d2:1b: c9:a9:6a:54:67:e8:a3:4d:ed:8e:2b:46:54:2e:9a: 83:da:ed:e0:1a:0f:68:4d:94:47:15:4f:36:bf:60: 3b:f8:39:07:bc:bb:82:e2:89:ea:b1:c0:9b:36:37: 39:34:7c:00:a7:f2:ae:12:48:fb:4c:68:5f:d9:42: 3a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4D:0B:A0:43:76:8E:64:92:35:81:F9:A1:FA:54:C8:3F:53:64:67 X509v3 Authority Key Identifier: keyid:A6:39:84:98:BD:FD:81:B9:D6:51:B5:12:E0:E9:F0:45:7A:FA:4D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/pjmEmL39gbnWUbUS4OnwRXr6TSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pjmEmL39gbnWUbUS4OnwRXr6TSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916333C/9B79A8FEBF3811EAA55D1177C4F9AE02/A211CBBEBF3911EABB1C5578C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.210.8.0/23 Signature Algorithm: sha256WithRSAEncryption 01:3f:a7:58:8c:54:d5:b2:56:cd:bc:b2:b1:8c:77:b0:4c:76: ee:ea:4c:50:34:b6:67:7e:93:0c:26:0a:13:44:34:d2:be:33: 65:b3:6c:3e:9a:c0:c8:ea:11:cc:38:d9:bb:aa:63:3d:76:25: 1a:c1:98:8a:c6:00:5b:ac:ab:c3:ab:1b:9e:86:44:41:f4:5b: 52:d0:be:58:9d:39:bd:9a:48:61:c0:29:1c:7d:72:3a:e9:75: e2:4e:ad:8f:b6:5d:b6:f1:e7:55:98:61:96:9c:33:72:e2:f4: 00:61:d4:0d:39:ce:90:4c:aa:45:43:55:af:02:65:71:70:55: d0:93:8d:1e:6e:9a:56:2e:d1:96:f0:0a:78:9a:dd:e3:0d:a6: 98:81:26:8a:e9:4f:a7:96:0a:ea:ac:82:db:50:f5:6e:61:53: 41:9b:83:6b:9c:16:03:14:6f:6d:43:e2:ac:f9:f9:7b:1a:01: 7d:62:bb:8c:c3:67:7b:13:dd:d6:d3:13:45:fb:d4:de:bf:66: 97:c9:c2:7e:db:f2:cf:88:f9:cf:06:2b:d7:44:6d:2a:68:92: 66:4a:10:b7:fb:f6:d8:fd:bb:23:c5:11:ea:ea:b8:cf:74:42: cc:d7:81:04:eb:f9:08:12:fa:a1:7c:21:94:92:15:58:a3:e1: 2a:48:ce:31 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMzM0MxMTAvBgNVBAUTKEE2Mzk4NDk4QkRGRDgxQjlENjUxQjUxMkUwRTlGMDQ1 N0FGQTREMjgwHhcNMjUwNTAyMjEwMTQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWI0NS05NmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw27Ld7TmJVYP3rB6zlXdGQn4Dbs+qpJ6015mJ2UtI9sXf+SQg+9ho30mSIKR /vTXuf0cXiVkfa0yiMlVgxeYjp9c4MqEKMmgiNydepkpPHVSuXE6IlRaj1FLod0o eJfiCWFxXuZMEeJI9BTzw46FQLUsV+hZ7GE/APL8ZcWICuHVxbdxoCnty5gHQFK8 tHBkwOrmKIM7KLTkYmJM5iWFVgetBI9xTy1F1UUewns5mWKhBlkWX13M8Q5+kar8 GrIy0hvJqWpUZ+ijTe2OK0ZULpqD2u3gGg9oTZRHFU82v2A7+DkHvLuC4onqscCb Njc5NHwAp/KuEkj7TGhf2UI6RwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIVNC6BD do5kkjWB+aH6VMg/U2RnMB8GA1UdIwQYMBaAFKY5hJi9/YG51lG1EuDp8EV6+k0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzMzQy85Qjc5QThGRUJG MzgxMUVBQTU1RDExNzdDNEY5QUUwMi9wam1FbUwzOWdibldVYlVTNE9ud1JYcjZU U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BqbUVtTDM5Z2JuV1ViVVM0T253UlhyNlRTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjMzM0MvOUI3OUE4RkVCRjM4MTFFQUE1NUQxMTc3QzRGOUFFMDIvQTIxMUNCQkVC RjM5MTFFQUJCMUM1NTc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9IIMA0GCSqGSIb3DQEBCwUAA4IBAQABP6dYjFTVslbNvLKxjHew THbu6kxQNLZnfpMMJgoTRDTSvjNls2w+msDI6hHMONm7qmM9diUawZiKxgBbrKvD qxuehkRB9FtS0L5YnTm9mkhhwCkcfXI66XXiTq2Ptl228edVmGGWnDNy4vQAYdQN Oc6QTKpFQ1WvAmVxcFXQk40ebppWLtGW8Ap4mt3jDaaYgSaK6U+nlgrqrILbUPVu YVNBm4NrnBYDFG9tQ+Ks+fl7GgF9YruMw2d7E93W0xNF+9Tev2aXycJ+2/LPiPnP BivXRG0qaJJmShC3+/bY/bsjxRHq6rjPdELM14EE6/kIEvqhfCGUkhVYo+EqSM4x -----END CERTIFICATE-----Generated at Fri Mar 27 00:36:17 2026 by rpki-client