$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa File: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (raw, json) Hash identifier: +fiYjkOTw29H17V5Q0jS5Cy2xXc6X92nZPkDe2rUAJE= Subject key identifier: FE:99:88:6C:C1:5C:69:5A:6C:03:2D:CA:8A:A4:35:EF:CE:0F:BB:B4 Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: 019A Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:20:35 +0000 ROA not before: Fri 25 Jul 2025 05:09:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134375 IP address blocks: 43.230.64.0/22 maxlen: 24 45.122.120.0/22 maxlen: 24 103.62.236.0/22 maxlen: 24 103.77.0.0/22 maxlen: 22 103.77.0.0/23 maxlen: 23 103.77.0.0/24 maxlen: 24 103.77.1.0/24 maxlen: 24 103.77.2.0/23 maxlen: 23 103.77.2.0/24 maxlen: 24 103.77.3.0/24 maxlen: 24 103.251.140.0/22 maxlen: 24 116.206.156.0/22 maxlen: 24 203.189.252.0/22 maxlen: 24 2402:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51, serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Validity Not Before: Jul 25 05:09:49 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58ea3-74f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a2:16:b0:95:09:c0:19:2b:2d:79:f9:72:a5: 19:ff:ba:79:b1:3a:29:b4:c9:61:d0:cd:33:96:57: f8:3e:1a:f6:fd:94:c7:3f:45:a1:8f:78:3d:ef:b3: e9:59:a5:7d:23:31:a0:dc:2b:8a:e2:d4:f3:4e:34: ae:16:9f:33:c8:88:6c:6b:28:46:03:e3:cd:7b:d5: e7:b1:59:e5:43:c6:b7:5c:c3:6a:bf:ca:e3:0c:59: 43:c4:40:a3:cc:15:f6:85:b1:b4:69:73:07:1a:17: 48:c3:ee:1f:c1:a5:53:58:d2:36:6c:a7:30:9e:21: ee:04:9d:a0:44:1a:f9:da:73:8d:30:64:c2:94:05: 48:6f:25:7f:36:43:57:e7:d3:76:81:03:02:ae:e2: 2c:6b:ed:71:fc:0c:a3:ca:78:f3:96:27:de:ee:aa: db:3b:96:8d:c0:3b:4a:11:ec:87:f6:28:ac:ec:88: af:54:a1:7d:fa:1f:29:df:b4:03:b3:c7:80:3e:b7: 0e:5b:fb:ba:3d:53:61:11:70:9b:b7:9a:8b:09:a1: d6:06:e7:48:cc:b2:6b:b0:a0:35:c0:13:ec:f5:c8: 26:ec:4a:5a:c2:4e:80:47:97:92:5f:38:66:29:0f: 4d:33:2c:67:6f:16:31:a5:cf:43:1a:65:bc:a2:ca: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:99:88:6C:C1:5C:69:5A:6C:03:2D:CA:8A:A4:35:EF:CE:0F:BB:B4 X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.64.0/22 45.122.120.0/22 103.62.236.0/22 103.77.0.0/22 103.251.140.0/22 116.206.156.0/22 203.189.252.0/22 IPv6: 2402:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 4a:f9:4f:18:63:db:fd:e3:08:82:4f:4f:23:ea:0c:f1:27:b9: 95:3e:6c:e8:80:8c:1a:8d:33:ac:b6:c1:5f:a5:57:78:ef:fc: fb:4f:84:c2:85:c4:f5:35:50:9d:51:b1:fb:3e:93:43:11:e6: 29:99:e4:3c:96:bd:c4:03:34:62:38:17:fc:79:4b:a9:1a:a8: 76:8c:72:c8:a9:16:82:e2:a8:e9:43:e6:20:51:82:d6:61:5e: bb:9d:82:65:40:70:f4:b8:ef:84:0f:09:7f:a3:65:3f:fb:6e: e1:06:bb:45:67:04:b5:a8:62:48:52:87:4c:9e:42:c9:82:3a: b5:81:e3:b9:cf:e2:d7:da:18:85:15:bb:88:1c:0a:80:50:36: 95:4b:1d:ac:43:c4:53:f5:fa:38:7d:a8:1e:e7:60:b9:54:16: b1:72:2d:fe:c4:d7:9f:91:ed:e7:fa:e8:5c:30:50:2f:4f:47: 22:21:94:3e:a7:59:3b:11:a2:db:43:27:4d:b1:c0:b5:30:59: d5:11:50:ea:fc:35:f9:be:6d:8e:9a:e9:52:b4:1a:a8:74:59: 7c:29:df:e6:c8:8e:8d:b9:b2:a8:8a:1c:14:0f:40:9b:5a:86: 9f:18:12:ad:a5:44:f2:84:e9:9d:52:3d:e2:b6:20:28:c2:c6: 48:f9:42:af -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjUwNzI1MDUwOTQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGVhMy03NGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKIWsJUJwBkrLXn5cqUZ/7p5sToptMlh0M0zllf4Phr2/ZTHP0Whj3g977Pp WaV9IzGg3CuK4tTzTjSuFp8zyIhsayhGA+PNe9XnsVnlQ8a3XMNqv8rjDFlDxECj zBX2hbG0aXMHGhdIw+4fwaVTWNI2bKcwniHuBJ2gRBr52nONMGTClAVIbyV/NkNX 59N2gQMCruIsa+1x/Ayjynjzlife7qrbO5aNwDtKEeyH9iis7IivVKF9+h8p37QD s8eAPrcOW/u6PVNhEXCbt5qLCaHWBudIzLJrsKA1wBPs9cgm7Epawk6AR5eSXzhm KQ9NMyxnbxYxpc9DGmW8osp9WwIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFP6ZiGzB XGlabAMtyoqkNe/OD7u0MB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JCNTEvMjVBQ0Y1QzBDNEI4MTFFRUJENzFDNDQ2QzRGOUFFMDIvQTlDNUMxQ0FD NEI4MTFFRThBMDNENTQ3QzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCK+ZAAwQCLXp4AwQCZz7sAwQCZ00AAwQCZ/uMAwQCdM6cAwQCy738 MA0EAgACMAcDBQAkAoqAMA0GCSqGSIb3DQEBCwUAA4IBAQBK+U8YY9v94wiCT08j 6gzxJ7mVPmzogIwajTOstsFfpVd47/z7T4TChcT1NVCdUbH7PpNDEeYpmeQ8lr3E AzRiOBf8eUupGqh2jHLIqRaC4qjpQ+YgUYLWYV67nYJlQHD0uO+EDwl/o2U/+27h BrtFZwS1qGJIUodMnkLJgjq1geO5z+LX2hiFFbuIHAqAUDaVSx2sQ8RT9fo4fage 52C5VBaxci3+xNefke3n+uhcMFAvT0ciIZQ+p1k7EaLbQydNscC1MFnVEVDq/DX5 vm2OmulStBqodFl8Kd/myI6NubKoihwUD0CbWoafGBKtpUTyhOmdUj3itiAowsZI +UKv -----END CERTIFICATE-----Generated at Thu Mar 26 20:37:09 2026 by rpki-client