$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa File: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (raw, json) Hash identifier: 9qbDEBiGv1lnc3TjdDbg+Lx2PzDD+usm+fulwQxlDi0= Subject key identifier: 68:C5:13:EF:6A:03:54:07:6C:9A:6B:68:51:D6:69:AA:DF:F1:8F:EA Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B61 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa Signing time: Thu 30 Apr 2026 19:24:05 +0000 ROA not before: Thu 30 Apr 2026 19:24:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3258 IP address blocks: 43.239.249.0/24 maxlen: 24 103.150.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2913 (0xb61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:24:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3ac55-0305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d0:ba:a2:30:01:56:46:6e:ac:06:a2:63:f1: 5f:97:4c:c3:1b:a5:01:e7:1c:1e:7e:04:ac:4f:80: 55:94:47:a5:5d:29:33:2f:83:c7:42:62:3c:a3:fb: f1:e7:fa:97:10:fa:3a:4a:58:0c:76:e0:34:e6:82: 87:12:77:8e:ec:ab:e4:77:e0:d9:00:bb:aa:7a:c2: cc:71:58:14:7c:ea:db:3b:3c:b7:d7:2b:67:42:b7: a5:b4:e5:0e:e9:e7:b0:ce:b3:09:ae:46:26:32:ca: 5b:32:e8:92:69:86:36:1c:a7:2b:f0:67:eb:ae:0e: cf:34:c2:88:2e:5a:7a:04:93:84:8a:a0:67:be:9c: 87:42:1c:36:2c:1b:4d:84:40:5a:77:01:6e:6e:be: 67:ed:1c:96:ed:70:de:75:e4:84:84:91:90:1c:cb: 40:37:bf:1c:c0:6c:30:b1:d9:b5:8b:15:8e:e4:e1: ec:39:b0:d6:3b:43:c3:e2:09:cd:b7:ec:21:95:a7: 9c:02:22:7b:99:20:24:11:0f:fe:49:a1:4c:be:a9: 5e:52:0f:c4:4b:2b:2a:79:6c:86:92:4e:41:d5:0b: 64:d1:c9:ce:0e:f0:ed:0f:7d:f5:bb:8f:14:ca:21: a0:05:f7:b8:66:cf:9f:35:ed:7a:f8:fb:33:46:78: 29:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C5:13:EF:6A:03:54:07:6C:9A:6B:68:51:D6:69:AA:DF:F1:8F:EA X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/46F5BC3206A211EEBDA4D34BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.249.0/24 103.150.8.0/24 Signature Algorithm: sha256WithRSAEncryption b5:a1:3a:db:74:6b:98:fd:85:93:f4:9c:93:8f:8a:a7:b0:75: 3b:7a:12:ca:71:cc:a9:24:7e:e1:75:ea:dc:d5:0e:22:e4:8e: 56:a2:48:12:34:c2:ba:20:15:3b:98:4e:34:f0:aa:fa:8a:4c: 53:02:97:b2:08:78:d3:5e:43:c9:87:cf:23:3b:84:11:b9:89: 41:92:3e:dc:00:74:c4:5a:c4:cf:f6:09:91:04:c1:f1:9f:2b: f7:f6:e3:1c:71:28:76:ad:c6:1d:0e:03:51:38:15:b7:f0:29: b2:67:d5:d6:94:a3:84:ca:5c:68:e0:98:9e:3b:b8:9a:36:cd: 3b:94:78:5a:39:53:aa:23:98:d4:bd:f8:50:10:58:9e:5c:c5: be:9b:94:24:bf:f0:8b:ce:f1:24:88:ff:71:06:90:52:3d:ec: d2:32:43:46:ab:76:ca:77:4b:5c:b5:af:81:2a:e1:4b:af:e7: 20:12:a4:bb:3a:42:71:90:84:0b:f3:10:db:c8:a1:22:d6:2d: 8e:d8:b3:a2:2b:12:28:38:e1:f0:97:75:86:a9:ae:9f:df:a7: 6c:e2:1e:60:5d:fc:9b:4b:5c:23:f6:87:8b:62:3c:aa:a9:d2: 6e:47:e2:5a:42:a3:24:f5:83:0c:2c:06:69:db:43:4b:b5:cf: ed:31:d1:1b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwNDMwMTkyNDA1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzYWM1NS0wMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9C6ojABVkZurAaiY/Ffl0zDG6UB5xwefgSsT4BVlEelXSkzL4PHQmI8o/vx 5/qXEPo6SlgMduA05oKHEneO7Kvkd+DZALuqesLMcVgUfOrbOzy31ytnQreltOUO 6eewzrMJrkYmMspbMuiSaYY2HKcr8Gfrrg7PNMKILlp6BJOEiqBnvpyHQhw2LBtN hEBadwFubr5n7RyW7XDedeSEhJGQHMtAN78cwGwwsdm1ixWO5OHsObDWO0PD4gnN t+whlaecAiJ7mSAkEQ/+SaFMvqleUg/ESysqeWyGkk5B1Qtk0cnODvDtD331u48U yiGgBfe4Zs+fNe16+PszRngpHQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGjFE+9q A1QHbJpraFHWaarf8Y/qMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvNDZGNUJDMzIw NkEyMTFFRUJEQTREMzRCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAK+/5AwQAZ5YIMA0GCSqGSIb3DQEBCwUAA4IBAQC1oTrbdGuY/YWT 9JyTj4qnsHU7ehLKccypJH7hderc1Q4i5I5WokgSNMK6IBU7mE408Kr6ikxTApey CHjTXkPJh88jO4QRuYlBkj7cAHTEWsTP9gmRBMHxnyv39uMccSh2rcYdDgNROBW3 8CmyZ9XWlKOEylxo4JieO7iaNs07lHhaOVOqI5jUvfhQEFieXMW+m5Qkv/CLzvEk iP9xBpBSPezSMkNGq3bKd0tcta+BKuFLr+cgEqS7OkJxkIQL8xDbyKEi1i2O2LOi KxIoOOHwl3WGqa6f36ds4h5gXfybS1wj9oeLYjyqqdJuR+JaQqMk9YMMLAZp20NL tc/tMdEb -----END CERTIFICATE-----Generated at Wed May 13 07:04:50 2026 by rpki-client