$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa File: EDDDD55C252E11EEB91A8941C4F9AE02.roa (raw, json) Hash identifier: aUI4dz0ep/X08ebs/cz0TIEaXmB18GWOcBQgi/DyPNg= Subject key identifier: 45:3F:0E:B1:D1:88:39:05:BB:92:56:A6:79:53:9A:BF:C9:2F:EC:E3 Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 0224 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:30:44 +0000 ROA not before: Tue 17 Jun 2025 03:01:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151333 IP address blocks: 103.199.140.0/24 maxlen: 24 103.199.141.0/24 maxlen: 24 2001:df2:70c0::/48 maxlen: 48 2001:df2:70c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24, serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Jun 17 03:01:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3eb24-68c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fd:18:61:ad:48:26:18:59:22:8b:81:fc:9b: 24:72:bf:fc:0a:6c:04:e6:2b:98:0c:36:80:dd:f0: e0:2f:04:36:78:4f:c6:85:5a:c6:31:9d:24:3b:78: 09:8b:a6:f6:49:d9:0c:69:c8:f6:11:03:29:35:af: 07:fc:8d:de:86:74:0a:b2:c4:2f:26:ed:e7:7b:74: 2d:00:ca:5c:eb:3d:47:b0:77:be:c3:14:36:dd:50: 31:2f:7d:48:36:04:85:5b:c9:09:ed:49:b1:73:b6: c4:25:0e:e6:d9:8b:5d:e7:06:f2:a3:af:67:71:99: a1:4b:72:36:a3:96:b3:e5:5d:f0:c8:2d:47:ce:ca: 7c:e1:1d:ee:94:62:5c:f0:5f:04:c4:3b:88:9c:16: cc:fa:3c:3e:f7:63:54:89:5c:9a:dd:73:be:ec:b1: 2e:b3:65:0f:4d:d9:5f:c5:9e:a8:88:8f:84:4d:c3: 4f:d4:1f:10:84:7f:62:32:07:9e:6a:80:ca:f7:41: 4f:69:61:3a:fa:89:7c:4f:43:fd:7a:1c:2e:3c:66: f8:70:e5:b0:3a:a3:87:79:02:f0:6d:4c:9f:43:d6: 2b:f8:e8:c9:54:fe:c2:61:a2:90:85:10:17:d7:71: 65:18:36:2e:22:d6:b3:6d:56:a0:a7:38:3a:3e:f9: 7f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3F:0E:B1:D1:88:39:05:BB:92:56:A6:79:53:9A:BF:C9:2F:EC:E3 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.199.140.0/23 IPv6: 2001:df2:70c0::/47 Signature Algorithm: sha256WithRSAEncryption 58:2a:c1:31:77:63:fc:5d:a2:ac:65:81:7d:b1:bc:ff:da:fb: 21:80:67:f8:79:e6:6c:7d:dc:2d:b8:f0:56:c2:ac:fb:45:92: d9:36:cc:c8:bb:58:23:17:7c:6f:31:c9:16:1b:8a:5b:63:b5: f5:64:63:9b:84:a4:8b:2e:1a:4d:71:54:24:e1:47:f8:5a:29: f4:39:fd:70:03:c2:34:a0:eb:81:55:fc:69:24:25:67:60:8e: 69:39:8c:dd:84:1e:69:6d:42:3d:44:50:34:5d:ba:17:30:e9: dd:b3:db:4b:81:d9:45:a5:84:40:43:1b:91:a7:77:fc:a1:f5: 79:5c:21:d7:e3:e3:39:9a:6f:cc:08:61:2b:c1:da:ab:7e:c9: f7:27:f9:2e:9e:89:b1:d9:4b:c9:49:e4:1f:d3:b4:ea:4c:24: e8:81:7b:99:d7:22:26:8e:5e:e7:ba:7d:18:87:4e:6e:8e:45: c2:0c:90:15:2e:ea:09:40:4b:1e:88:02:0b:87:34:f4:d3:f2: 5c:25:30:78:46:a4:b1:29:d1:24:09:53:34:ef:7e:fd:3d:b2: 49:35:c8:7f:49:f1:27:f4:06:26:1f:22:88:0f:31:06:89:5b: be:1f:aa:6d:bd:dc:69:62:44:5d:f0:1c:1b:33:29:00:e8:fb: 97:b3:57:b2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjUwNjE3MDMwMTI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWIyNC02OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnv0YYa1IJhhZIouB/Jskcr/8CmwE5iuYDDaA3fDgLwQ2eE/GhVrGMZ0kO3gJ i6b2SdkMacj2EQMpNa8H/I3ehnQKssQvJu3ne3QtAMpc6z1HsHe+wxQ23VAxL31I NgSFW8kJ7Umxc7bEJQ7m2Ytd5wbyo69ncZmhS3I2o5az5V3wyC1Hzsp84R3ulGJc 8F8ExDuInBbM+jw+92NUiVya3XO+7LEus2UPTdlfxZ6oiI+ETcNP1B8QhH9iMgee aoDK90FPaWE6+ol8T0P9ehwuPGb4cOWwOqOHeQLwbUyfQ9Yr+OjJVP7CYaKQhRAX 13FlGDYuItazbVagpzg6Pvl/5QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEU/DrHR iDkFu5JWpnlTmr/JL+zjMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFMjQvRjJGNjc1RkVGM0ZGMTFFRDk1MkQ3NDFDQzRGOUFFMDIvRUREREQ1NUMy NTJFMTFFRUI5MUE4OTQxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ8eMMA8EAgACMAkDBwEgAQ3ycMAwDQYJKoZIhvcNAQELBQADggEB AFgqwTF3Y/xdoqxlgX2xvP/a+yGAZ/h55mx93C248FbCrPtFktk2zMi7WCMXfG8x yRYbiltjtfVkY5uEpIsuGk1xVCThR/haKfQ5/XADwjSg64FV/GkkJWdgjmk5jN2E HmltQj1EUDRduhcw6d2z20uB2UWlhEBDG5Gnd/yh9XlcIdfj4zmab8wIYSvB2qt+ yfcn+S6eibHZS8lJ5B/TtOpMJOiBe5nXIiaOXue6fRiHTm6ORcIMkBUu6glASx6I AguHNPTT8lwlMHhGpLEp0SQJUzTvfv09skk1yH9J8Sf0BiYfIogPMQaJW74fqm29 3GliRF3wHBszKQDo+5ezV7I= -----END CERTIFICATE-----Generated at Mon Mar 2 04:09:14 2026 by rpki-client