$ rpki-client -vvf rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa File: ED6DF5CC014611EEBE219313C4F9AE02.roa (raw, json) Hash identifier: 9E0ybMJC/4hTirDP7PsTEfHbwzsW24pJ3Ey1HCuEb6s= Subject key identifier: CE:98:62:B9:58:9F:C5:1B:AC:F4:07:A0:2C:1D:A5:B3:5F:A0:0C:B3 Certificate issuer: /CN=A917C29E/serialNumber=B293489E3ACF28F0D1571437CDF0BCC2CA54545A Certificate serial: 020E Authority key identifier: B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:14:47 +0000 ROA not before: Sun 11 Jan 2026 02:22:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136180 IP address blocks: 103.203.56.0/22 maxlen: 24 116.213.44.0/22 maxlen: 24 2400:87c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C29E, serialNumber=B293489E3ACF28F0D1571437CDF0BCC2CA54545A Validity Not Before: Jan 11 02:22:37 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41197-d19d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d5:48:13:df:39:42:9c:7e:c0:5c:c4:93:ea: 4c:97:30:9c:ab:e5:ad:d6:cc:12:7d:5c:81:80:b9: 53:a0:21:69:0d:c1:a9:f6:0c:a1:16:25:6a:e4:6e: 75:a3:68:10:5c:4f:0e:2d:d2:e3:7f:80:f1:8e:2c: 21:07:a7:d4:fb:95:45:dc:24:52:c6:5c:38:08:ae: 24:58:e2:6f:d0:2b:73:08:db:6d:44:ea:17:8a:63: 5a:e9:0f:ee:cd:c6:7a:1d:56:e3:8f:63:a8:e1:ac: 9c:d0:06:de:68:26:bf:9b:49:7e:41:f9:36:78:5e: 43:eb:19:0c:05:ab:f4:dc:27:da:cc:80:4b:c2:12: 7f:d5:f7:9e:c9:7e:11:58:93:c6:f4:e4:44:5e:2c: 2a:75:b5:7f:4a:75:32:04:1d:da:51:f2:a6:d6:2a: 82:ee:1f:ea:67:db:fc:8d:f6:9e:2a:3f:03:ef:db: 7a:15:a8:71:ad:10:94:21:0f:32:07:18:f3:b3:19: 0d:f5:3b:d3:03:fe:c2:3d:e0:c2:46:c8:d5:ca:33: b7:f5:fb:4a:80:6e:cb:35:d8:25:22:cb:f5:80:06: fa:12:69:6b:7f:99:d3:0d:93:8e:20:14:e1:27:93: 47:b5:f6:ba:40:d2:1a:b9:02:ac:ff:7b:aa:36:e6: 08:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:98:62:B9:58:9F:C5:1B:AC:F4:07:A0:2C:1D:A5:B3:5F:A0:0C:B3 X509v3 Authority Key Identifier: keyid:B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.203.56.0/22 116.213.44.0/22 IPv6: 2400:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 76:96:54:67:a2:17:66:96:e4:07:b5:73:e3:5f:f3:13:60:ba: 4c:92:e4:3f:3e:1f:ad:9e:cd:c7:bd:45:e9:38:53:fc:97:ef: 4f:66:bb:37:2d:bf:db:04:62:74:57:1d:8a:83:1c:77:9e:c0: 7f:ce:bd:9a:cd:ad:04:5b:05:22:3a:9d:bb:26:ca:89:c9:96: 73:1f:59:bb:5a:e7:b3:1d:5a:ae:be:e0:17:2f:99:f8:2e:d2: 20:7a:8f:78:79:34:3c:05:8e:7c:8a:c6:c3:46:7c:53:76:49: e3:50:d9:bf:d2:7b:eb:33:0b:d8:51:ef:05:14:89:15:a5:cb: 8d:d6:6b:52:d6:09:a1:f1:82:d4:1c:db:e3:11:21:aa:47:4f: 3e:07:78:6c:c7:90:35:2b:3c:e5:b9:13:8c:12:51:2a:cd:9f: 12:ce:5e:05:41:99:6c:68:6b:aa:40:6d:7b:ed:a3:fe:bf:22: 0a:0a:2b:9d:df:f4:52:5f:23:90:98:5f:28:76:2c:c6:f3:15: f0:89:88:fe:61:22:8c:68:b3:1d:ee:ec:9b:88:0d:e4:e6:a5: f0:46:75:11:4f:e6:4b:da:76:2e:81:25:bc:23:92:09:3e:c9: 70:df:59:7e:c0:64:d4:02:12:b3:72:59:96:e4:2c:97:30:40: 30:f5:3d:68 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyOUUxMTAvBgNVBAUTKEIyOTM0ODlFM0FDRjI4RjBEMTU3MTQzN0NERjBCQ0My Q0E1NDU0NUEwHhcNMjYwMTExMDIyMjM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTE5Ny1kMTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9VIE985Qpx+wFzEk+pMlzCcq+Wt1swSfVyBgLlToCFpDcGp9gyhFiVq5G51 o2gQXE8OLdLjf4DxjiwhB6fU+5VF3CRSxlw4CK4kWOJv0CtzCNttROoXimNa6Q/u zcZ6HVbjj2Oo4ayc0AbeaCa/m0l+Qfk2eF5D6xkMBav03CfazIBLwhJ/1feeyX4R WJPG9OREXiwqdbV/SnUyBB3aUfKm1iqC7h/qZ9v8jfaeKj8D79t6FahxrRCUIQ8y BxjzsxkN9TvTA/7CPeDCRsjVyjO39ftKgG7LNdglIsv1gAb6Emlrf5nTDZOOIBTh J5NHtfa6QNIauQKs/3uqNuYIkQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFM6YYrlY n8UbrPQHoCwdpbNfoAyzMB8GA1UdIwQYMBaAFLKTSJ46zyjw0VcUN83wvMLKVFRa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzI5RS8wNDUxMjJBODAx MUMxMUVFQjI2ODRGNEJDNEY5QUUwMi9zcE5JbmpyUEtQRFJWeFEzemZDOHdzcFVW Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwTkluanJQS1BEUlZ4UTN6ZkM4d3NwVVZGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MyOUUvMDQ1MTIyQTgwMTFDMTFFRUIyNjg0RjRCQzRGOUFFMDIvRUQ2REY1Q0Mw MTQ2MTFFRUJFMjE5MzEzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ8s4AwQCdNUsMA0EAgACMAcDBQAkAIfAMA0GCSqGSIb3DQEBCwUA A4IBAQB2llRnohdmluQHtXPjX/MTYLpMkuQ/Ph+tns3HvUXpOFP8l+9PZrs3Lb/b BGJ0Vx2Kgxx3nsB/zr2aza0EWwUiOp27JsqJyZZzH1m7WuezHVquvuAXL5n4LtIg eo94eTQ8BY58isbDRnxTdknjUNm/0nvrMwvYUe8FFIkVpcuN1mtS1gmh8YLUHNvj ESGqR08+B3hsx5A1KzzluROMElEqzZ8Szl4FQZlsaGuqQG177aP+vyIKCiud3/RS XyOQmF8odizG8xXwiYj+YSKMaLMd7uybiA3k5qXwRnURT+ZL2nYugSW8I5IJPslw 31l+wGTUAhKzclmW5CyXMEAw9T1o -----END CERTIFICATE-----Generated at Thu Mar 26 04:07:49 2026 by rpki-client