$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa File: CF6343DE295D11F0B3C33614C4F9AE02.roa (raw, json) Hash identifier: VpLsJjoOM5TQH3OZEcPzV4PLIS2G8Hn1FrYlhKbie54= Subject key identifier: 6A:4F:B2:E9:13:4A:88:16:C4:89:47:CF:43:28:6C:4D:4A:DE:02:00 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0551 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:34:16 +0000 ROA not before: Tue 14 Oct 2025 02:42:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149026 IP address blocks: 203.32.7.0/24 maxlen: 24 203.32.22.0/24 maxlen: 24 203.32.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Oct 14 02:42:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a486a8-d925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:39:2f:11:75:d0:8b:49:11:ba:0c:af:ad:a3: 62:50:4c:1d:ae:aa:71:bf:db:f3:99:6c:05:86:65: 42:c6:ea:e0:d2:64:4a:be:51:11:f3:d3:bc:c3:0d: 8c:55:42:85:87:27:9a:df:24:7c:d7:aa:c0:c4:78: 7e:8b:ea:0c:be:cd:01:fd:8a:a9:b4:d9:78:05:e2: 02:f6:49:20:3f:29:e5:14:f4:12:2d:a5:0b:1c:f4: 2c:f8:0f:6a:d7:f3:24:38:aa:6d:37:8f:8b:33:bd: 02:5d:d8:3a:3d:69:19:cc:91:85:1f:62:ba:69:68: 8d:4f:15:6d:85:a5:88:79:cf:fb:eb:08:82:ee:77: 8d:c9:dd:34:ce:10:c8:cc:fd:99:da:c5:13:0c:97: be:bc:b5:8f:d6:cb:81:09:75:02:50:ba:46:db:91: 41:e6:e6:63:9c:71:c2:67:f4:eb:f7:6f:60:85:47: 33:71:03:ae:c6:1a:f1:f1:ff:08:1f:ab:96:e4:27: bd:76:b7:b0:72:1e:89:53:c3:81:ec:15:29:d0:ba: d9:c9:d5:01:ee:40:9d:64:10:77:a2:9a:73:0b:fc: 35:29:bc:77:87:92:0c:a3:4e:db:27:88:ef:38:c6: 04:b3:31:ea:11:71:52:49:26:fc:3c:a4:6a:ce:19: 57:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4F:B2:E9:13:4A:88:16:C4:89:47:CF:43:28:6C:4D:4A:DE:02:00 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/CF6343DE295D11F0B3C33614C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.32.7.0/24 203.32.22.0/24 203.32.38.0/24 Signature Algorithm: sha256WithRSAEncryption 97:85:c3:7b:2c:ce:b9:6c:0c:97:81:ef:1d:46:c0:7e:03:88: 5f:d2:66:b7:b4:40:47:f2:fd:c1:1b:41:9b:04:aa:28:04:11: 61:2e:f9:00:c5:f1:39:fa:00:0b:a0:f1:de:1d:2f:ba:5f:5a: 7a:f0:ab:42:35:61:89:99:25:8d:59:27:e5:d3:4b:25:89:fc: e0:7a:cd:ff:ef:d0:20:6c:81:30:93:1a:46:bc:b3:c2:f7:0d: 84:9b:61:15:de:f6:78:1f:1b:78:02:65:e6:43:98:0d:61:25: c3:b0:2c:69:a7:22:29:e7:52:20:c3:d7:f2:5b:88:23:6e:fe: fe:90:e2:e4:19:f6:10:64:bb:db:c7:d2:14:c5:2e:0c:2e:58: cb:e9:11:80:c3:56:3f:8c:fc:11:8b:a8:62:5e:6d:5d:cc:aa: 4e:e2:8a:db:13:20:1f:82:96:06:53:85:ed:d7:d5:ea:a6:b3: b6:46:c8:97:aa:75:6b:47:d5:10:1e:cb:86:47:eb:0a:87:f5: b7:22:4d:a7:cd:33:e3:b1:50:1e:8b:80:d3:ce:ab:b5:91:12: 8f:ee:03:b6:de:79:e0:9f:89:1d:86:1a:15:38:7f:e7:4c:ac: 38:fa:1f:12:cc:95:3a:f1:02:84:e0:77:f3:06:70:2a:14:45: 19:c9:14:77 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUxMDE0MDI0MjI0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZhOC1kOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TkvEXXQi0kRugyvraNiUEwdrqpxv9vzmWwFhmVCxurg0mRKvlER89O8ww2M VUKFhyea3yR816rAxHh+i+oMvs0B/YqptNl4BeIC9kkgPynlFPQSLaULHPQs+A9q 1/MkOKptN4+LM70CXdg6PWkZzJGFH2K6aWiNTxVthaWIec/76wiC7neNyd00zhDI zP2Z2sUTDJe+vLWP1suBCXUCULpG25FB5uZjnHHCZ/Tr929ghUczcQOuxhrx8f8I H6uW5Ce9drewch6JU8OB7BUp0LrZydUB7kCdZBB3oppzC/w1Kbx3h5IMo07bJ4jv OMYEszHqEXFSSSb8PKRqzhlXowIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFGpPsukT SogWxIlHz0MobE1K3gIAMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvQ0Y2MzQzREUy OTVEMTFGMEIzQzMzNjE0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyyAHAwQAyyAWAwQAyyAmMA0GCSqGSIb3DQEBCwUAA4IBAQCXhcN7 LM65bAyXge8dRsB+A4hf0ma3tEBH8v3BG0GbBKooBBFhLvkAxfE5+gALoPHeHS+6 X1p68KtCNWGJmSWNWSfl00slifzges3/79AgbIEwkxpGvLPC9w2Em2EV3vZ4Hxt4 AmXmQ5gNYSXDsCxppyIp51Igw9fyW4gjbv7+kOLkGfYQZLvbx9IUxS4MLljL6RGA w1Y/jPwRi6hiXm1dzKpO4orbEyAfgpYGU4Xt19XqprO2RsiXqnVrR9UQHsuGR+sK h/W3Ik2nzTPjsVAei4DTzqu1kRKP7gO23nngn4kdhhoVOH/nTKw4+h8SzJU68QKE 4HfzBnAqFEUZyRR3 -----END CERTIFICATE-----Generated at Thu Mar 26 09:21:07 2026 by rpki-client