$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa File: C4F05AA6144911EF85E2DC26C4F9AE02.roa (raw, json) Hash identifier: QxCNiNBYMR2TGsewuzvNm3DKJS3QbU2M8ViaV5gW44A= Subject key identifier: AE:61:A1:5C:0C:EC:66:77:64:4B:66:7F:46:A8:10:E0:39:CD:CA:D3 Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 22BE Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa Signing time: Thu 30 Apr 2026 16:18:42 +0000 ROA not before: Thu 30 Apr 2026 16:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132296 IP address blocks: 103.255.115.0/24 maxlen: 24 202.134.144.0/24 maxlen: 24 202.134.145.0/24 maxlen: 24 202.134.146.0/24 maxlen: 24 202.134.147.0/24 maxlen: 24 202.134.148.0/24 maxlen: 24 202.134.149.0/24 maxlen: 24 202.134.150.0/24 maxlen: 24 202.134.151.0/24 maxlen: 24 202.134.152.0/24 maxlen: 24 202.134.153.0/24 maxlen: 24 202.134.157.0/24 maxlen: 24 202.134.158.0/24 maxlen: 24 202.134.159.0/24 maxlen: 24 202.134.162.0/24 maxlen: 24 202.134.167.0/24 maxlen: 24 202.134.168.0/24 maxlen: 24 202.134.173.0/24 maxlen: 24 202.134.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8894 (0x22be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2, serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: Apr 30 16:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f380e1-861c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b7:dd:9c:10:cd:d6:28:3c:6b:8b:2d:00:3b: ef:c8:40:4f:87:ce:52:dc:7b:15:90:81:10:a3:64: 43:06:50:09:f4:c7:ff:55:ab:0b:11:0f:22:80:c6: 76:9a:52:a6:dc:dc:ef:77:2f:e2:b3:d8:df:2e:ea: 67:43:60:a0:e6:a7:47:53:e6:c2:0a:44:ce:35:b5: 0a:62:c4:1d:23:d3:25:59:59:51:96:26:c5:64:43: 50:da:82:62:79:5a:d2:51:9c:0a:56:48:97:90:9b: f7:0d:67:55:40:70:7b:74:3c:b7:ec:02:d1:80:cf: 24:ad:32:1f:6b:0e:36:58:09:61:ef:94:37:03:ad: a4:a0:a0:1b:72:06:d9:68:81:90:9e:dd:34:0a:91: ef:33:38:fb:18:0e:6a:ab:f3:74:54:41:91:7c:01: 09:1b:19:42:57:8a:e3:91:78:cc:43:46:07:56:fe: 80:6d:70:bd:3e:c3:4b:c0:fc:f8:a9:19:73:32:ef: 22:db:35:dc:61:8f:0b:df:34:9e:99:26:56:c9:23: 5e:cd:5d:3c:e3:85:98:ce:ea:73:4b:be:28:43:09: ad:bf:ec:a8:e7:22:2b:22:21:7e:04:33:8c:b4:d5: 9e:6f:c8:9b:d1:22:23:56:37:0f:8a:58:63:ff:a7: f8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:61:A1:5C:0C:EC:66:77:64:4B:66:7F:46:A8:10:E0:39:CD:CA:D3 X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/C4F05AA6144911EF85E2DC26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.115.0/24 202.134.144.0-202.134.153.255 202.134.157.0-202.134.159.255 202.134.162.0/24 202.134.167.0-202.134.168.255 202.134.173.0-202.134.174.255 Signature Algorithm: sha256WithRSAEncryption 04:46:aa:54:38:70:13:f9:e0:e8:f0:1d:73:4a:87:a6:9f:a2: da:f9:60:0b:86:17:ac:bd:c5:9d:9a:a7:12:57:c9:69:d3:aa: 4e:7a:97:8a:5d:44:aa:44:a8:16:6d:28:24:fe:aa:93:6e:97: 16:1b:da:d2:f1:d0:39:7b:5b:95:ea:88:af:2e:10:25:59:ad: b1:b5:58:f6:c6:53:b9:03:5c:90:ab:8a:34:22:b4:a2:ff:30: 6c:e6:87:ef:41:cf:d0:cf:0c:a5:d7:d7:40:c7:ae:0b:63:74: 3d:3c:df:5d:82:fa:81:40:e3:45:81:60:ba:8b:15:58:b0:20: 5f:df:ae:bc:65:9f:48:58:95:26:db:cb:72:3f:0e:ac:23:2c: 9d:a7:0b:bf:5b:88:ae:24:21:ec:b2:42:98:86:d0:5b:a4:df: 6a:c2:61:0d:71:45:cc:54:8e:d8:a2:3c:23:34:f7:1c:32:55: a5:53:3b:f9:05:ee:b6:1e:60:1b:e0:1b:a2:ee:08:4a:ee:6b: c8:18:f7:0a:81:29:1e:d0:93:0a:de:46:52:a0:60:32:4b:39: e4:df:17:eb:f1:08:83:37:ea:ed:b9:3c:2a:18:d2:33:45:b1: 1c:87:56:c0:51:2c:cc:7f:a0:f6:59:a8:82:75:be:b3:2c:69: 96:62:e6:e7 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICIr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjYwNDMwMTYxODQyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzODBlMS04NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLfdnBDN1ig8a4stADvvyEBPh85S3HsVkIEQo2RDBlAJ9Mf/VasLEQ8igMZ2 mlKm3Nzvdy/is9jfLupnQ2Cg5qdHU+bCCkTONbUKYsQdI9MlWVlRlibFZENQ2oJi eVrSUZwKVkiXkJv3DWdVQHB7dDy37ALRgM8krTIfaw42WAlh75Q3A62koKAbcgbZ aIGQnt00CpHvMzj7GA5qq/N0VEGRfAEJGxlCV4rjkXjMQ0YHVv6AbXC9PsNLwPz4 qRlzMu8i2zXcYY8L3zSemSZWySNezV0844WYzupzS74oQwmtv+yo5yIrIiF+BDOM tNWeb8ib0SIjVjcPilhj/6f4ewIDAQABo4ICnjCCApowHQYDVR0OBBYEFK5hoVwM 7GZ3ZEtmf0aoEOA5zcrTMB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQzRGMDVBQTYx NDQ5MTFFRjg1RTJEQzI2QzRGOUFFMDIucm9hMF0GCCsGAQUFBwEHAQH/BE4wTDBK BAIAATBEAwQAZ/9zMAwDBATKhpADBAHKhpgwDAMEAMqGnQMEBcqGgAMEAMqGojAM AwQAyoanAwQAyoaoMAwDBADKhq0DBADKhq4wDQYJKoZIhvcNAQELBQADggEBAARG qlQ4cBP54OjwHXNKh6afotr5YAuGF6y9xZ2apxJXyWnTqk56l4pdRKpEqBZtKCT+ qpNulxYb2tLx0Dl7W5XqiK8uECVZrbG1WPbGU7kDXJCrijQitKL/MGzmh+9Bz9DP DKXX10DHrgtjdD08312C+oFA40WBYLqLFViwIF/frrxln0hYlSbby3I/DqwjLJ2n C79biK4kIeyyQpiG0Fuk32rCYQ1xRcxUjtiiPCM09xwyVaVTO/kF7rYeYBvgG6Lu CErua8gY9wqBKR7QkwreRlKgYDJLOeTfF+vxCIM36u25PCoY0jNFsRyHVsBRLMx/ oPZZqIJ1vrMsaZZi5uc= -----END CERTIFICATE-----Generated at Wed May 13 07:50:35 2026 by rpki-client