$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa File: DCF88EAE5ED811EBAB677671C4F9AE02.roa (raw, json) Hash identifier: M8kgzZ/qskhWT6RqbwLXgYKBgdTgBhgTCm6VDEfCRyI= Subject key identifier: 07:7E:3B:19:17:3D:1F:2C:85:C8:87:5B:B7:B3:76:33:00:38:0F:8E Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B60 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:47:27 +0000 ROA not before: Wed 02 Jul 2025 20:29:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 15290 IP address blocks: 203.186.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jul 2 20:29:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47baf-bb7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:c1:39:4e:51:a4:87:4b:0c:eb:aa:e1:b5:be: 2e:81:e2:c3:cb:07:8e:aa:71:da:1d:04:c0:d7:f9: d0:96:fe:05:20:57:38:f7:ca:f9:9e:eb:c9:e9:2e: d0:d1:6f:d4:0e:89:ed:a9:af:f8:18:e8:6e:de:a3: 0b:10:5c:4a:d1:6f:d7:c7:5d:c4:8a:ae:d1:3e:2f: eb:c0:1f:7c:7a:9b:4a:87:9d:eb:85:61:c2:e3:a0: ad:7b:20:3c:d5:03:ad:cc:4f:f1:48:df:98:22:3d: 02:47:c0:21:3a:f6:c5:4f:ba:e5:0b:54:57:a4:73: ae:5a:ee:70:70:af:81:d3:a8:f2:94:47:f6:a7:d3: 30:30:93:e8:bb:a6:56:8c:5f:5c:7b:ec:fd:37:18: 24:2f:3e:7f:80:3e:4d:e6:90:ce:29:06:ef:9f:d1: 89:f6:66:44:2f:c9:d0:f0:fc:29:f9:fc:06:45:d4: 22:da:3e:3c:07:8b:42:0c:c9:a7:44:1f:6d:fd:21: aa:ea:dd:aa:08:d2:8f:12:4e:c5:a8:00:eb:2a:81: ac:2b:8e:0e:54:be:ce:2b:61:7f:df:8c:dc:2d:89: 35:4c:e3:98:ba:32:65:f9:1a:0d:d9:37:e2:08:c5: 60:ff:26:b4:e8:aa:6f:b3:21:b8:7c:21:ab:28:0c: 14:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7E:3B:19:17:3D:1F:2C:85:C8:87:5B:B7:B3:76:33:00:38:0F:8E X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.186.116.0/22 Signature Algorithm: sha256WithRSAEncryption df:96:e4:8c:32:a6:d3:9b:38:3e:32:80:8a:4a:9f:ba:9b:de: 96:01:38:d1:12:ee:c3:b3:2b:59:a4:b9:eb:3a:65:69:ab:c9: 2b:32:81:a5:0a:df:49:4c:39:c9:ec:a0:95:66:78:c4:84:dc: 45:e8:aa:74:75:f6:8f:0d:46:f4:e5:b5:87:a1:3f:6e:f8:e9: 59:36:4c:f6:0b:08:a3:c2:be:0f:27:b6:09:97:3c:3a:83:f6: bf:ae:f9:6c:88:4d:67:9d:cd:7f:dd:cf:65:66:f2:9e:d6:01: 5b:f4:6f:2d:b3:74:e1:f9:cd:a5:62:8e:1c:6b:a3:1d:c1:f3: 8f:32:7b:48:c5:be:74:5e:9c:01:93:ac:d7:79:3b:90:6d:98: 26:02:b9:01:18:44:3f:0f:3d:eb:1b:33:ca:1d:aa:40:06:4d: 59:d0:e5:e1:d3:4c:3b:9d:81:19:1f:92:62:1f:97:3f:97:d2: b2:b2:1e:bd:24:0f:4b:66:a2:09:01:a8:a3:d5:fd:d2:b1:0f: 88:ac:ba:2d:b3:17:55:18:b3:5f:9c:cf:f7:7a:5b:04:7d:77: c3:86:c8:ad:98:27:2a:5f:48:9c:13:86:30:e6:4c:b2:aa:8a: 95:f1:a5:2d:09:96:2d:be:e0:93:ae:26:85:c8:ef:80:31:75: 56:04:58:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNzAyMjAyOTQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JhZi1iYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ME5TlGkh0sM66rhtb4ugeLDyweOqnHaHQTA1/nQlv4FIFc498r5nuvJ6S7Q 0W/UDontqa/4GOhu3qMLEFxK0W/Xx13Eiq7RPi/rwB98eptKh53rhWHC46CteyA8 1QOtzE/xSN+YIj0CR8AhOvbFT7rlC1RXpHOuWu5wcK+B06jylEf2p9MwMJPou6ZW jF9ce+z9NxgkLz5/gD5N5pDOKQbvn9GJ9mZEL8nQ8Pwp+fwGRdQi2j48B4tCDMmn RB9t/SGq6t2qCNKPEk7FqADrKoGsK44OVL7OK2F/34zcLYk1TOOYujJl+RoN2Tfi CMVg/ya06KpvsyG4fCGrKAwUvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAd+OxkX PR8shciHW7ezdjMAOA+OMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvRENGODhFQUU1 RUQ4MTFFQkFCNjc3NjcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy7p0MA0GCSqGSIb3DQEBCwUAA4IBAQDfluSMMqbTmzg+MoCKSp+6 m96WATjREu7DsytZpLnrOmVpq8krMoGlCt9JTDnJ7KCVZnjEhNxF6Kp0dfaPDUb0 5bWHoT9u+OlZNkz2Cwijwr4PJ7YJlzw6g/a/rvlsiE1nnc1/3c9lZvKe1gFb9G8t s3Th+c2lYo4ca6MdwfOPMntIxb50XpwBk6zXeTuQbZgmArkBGEQ/Dz3rGzPKHapA Bk1Z0OXh00w7nYEZH5JiH5c/l9Kysh69JA9LZqIJAaij1f3SsQ+IrLotsxdVGLNf nM/3elsEfXfDhsitmCcqX0icE4Yw5kyyqoqV8aUtCZYtvuCTriaFyO+AMXVWBFj+ -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:12 2026 by rpki-client