$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa File: EDDDD55C252E11EEB91A8941C4F9AE02.roa (raw, json) Hash identifier: YXAoNWpBZgAb9OgrXxqM1zjvNiMjLHb2Nw6mTAt3Mio= Subject key identifier: 6B:0F:3A:A8:1B:D0:34:FD:0F:AD:6E:9D:B1:61:67:AF:8B:21:57:18 Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: 0253 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa Signing time: Mon 25 May 2026 02:37:16 +0000 ROA not before: Mon 25 May 2026 02:37:16 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 151333 IP address blocks: 103.199.140.0/24 maxlen: 24 103.199.141.0/24 maxlen: 24 2001:df2:70c0::/48 maxlen: 48 2001:df2:70c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24, serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: May 25 02:37:16 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a13b5dc-4056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:eb:8f:4b:0c:00:11:70:b9:72:60:8e:7d: 3f:f7:7f:1b:8b:be:49:4a:18:82:8b:2d:36:2a:bb: 1d:f4:9d:cf:b3:33:8e:ff:3c:fa:21:5f:77:a0:51: fd:81:f2:f5:3f:3a:73:75:61:fb:02:f1:fd:50:73: 31:51:ef:1f:8b:c6:5c:0c:a7:c3:84:54:0d:c6:ca: 9f:ed:7d:2c:58:02:fa:8c:ef:14:44:7b:27:3b:df: 09:55:98:08:7d:c2:a4:26:6b:a6:ba:40:6b:d8:f0: 84:5c:4a:d3:da:b5:cd:fd:fc:c7:4f:bd:88:bc:e5: a0:02:8a:a2:5f:b1:89:32:41:92:49:06:9a:87:57: 19:2e:80:6e:36:35:e6:8e:cf:a4:8d:47:b4:a9:af: 55:44:5c:aa:76:b2:fc:e2:38:03:6e:4b:80:46:7c: e6:c2:f2:3a:3b:50:5a:43:31:09:21:6f:a9:86:a1: 18:3e:47:26:94:46:37:79:32:bf:0d:72:e4:aa:79: 17:c2:40:81:0a:79:14:35:5a:b5:ed:84:f8:c8:ee: 92:b2:93:d3:97:8b:3e:12:fa:da:b5:8e:4c:f2:62: 8b:61:7f:fb:52:03:0f:de:d0:66:3a:6b:bf:45:e5: a7:24:21:84:0f:01:3d:1b:3c:9a:c2:1e:cf:ff:c0: 58:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:0F:3A:A8:1B:D0:34:FD:0F:AD:6E:9D:B1:61:67:AF:8B:21:57:18 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.199.140.0/23 IPv6: 2001:df2:70c0::/47 Signature Algorithm: sha256WithRSAEncryption ca:bf:b2:7f:fc:05:94:7f:c6:2a:08:b8:8d:1d:05:09:b8:93: ec:d1:6e:ab:5c:e3:2c:e7:92:63:04:1d:f6:15:8e:3c:83:ad: 65:7c:96:78:6a:bf:09:31:aa:9f:a6:27:15:b9:52:ef:a0:13: 09:23:00:11:1e:76:e3:87:60:69:d1:0c:a1:58:8b:cd:56:fe: d3:0a:a7:fb:be:ba:d0:52:78:3f:74:f6:29:57:0b:5e:41:3c: a9:97:2d:93:b9:75:7c:1b:51:51:f6:2c:0b:cd:7c:4b:33:04: b1:1e:83:4e:9f:a7:45:00:b5:98:55:b7:71:60:cb:5c:1a:ed: 0d:a0:91:44:41:85:67:47:d2:4c:a9:5a:52:7c:24:2d:4c:4d: 95:24:ee:ff:ed:6b:16:9f:fe:07:69:8b:eb:df:30:b8:3f:97: 76:7b:c0:84:5e:e2:a8:56:0f:f5:cb:a4:a2:97:e6:2b:b6:7f: d3:fe:ea:4c:c0:3b:7d:75:65:ec:a8:71:da:84:58:57:d1:9b: 04:8d:aa:21:41:cf:e0:c1:53:94:a6:17:96:f9:5e:b4:04:d2: be:40:a0:72:19:91:e7:4e:b7:26:8c:f8:42:6c:75:a6:5e:17: 5d:c6:41:3e:2c:1d:9f:5d:0c:29:e1:0c:a5:3d:5b:86:8b:55: 3c:39:e2:4e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjYwNTI1MDIzNzE2WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEzYjVkYy00MDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXDrj0sMABFwuXJgjn0/938bi75JShiCiy02Krsd9J3PszOO/zz6IV93oFH9 gfL1PzpzdWH7AvH9UHMxUe8fi8ZcDKfDhFQNxsqf7X0sWAL6jO8URHsnO98JVZgI fcKkJmumukBr2PCEXErT2rXN/fzHT72IvOWgAoqiX7GJMkGSSQaah1cZLoBuNjXm js+kjUe0qa9VRFyqdrL84jgDbkuARnzmwvI6O1BaQzEJIW+phqEYPkcmlEY3eTK/ DXLkqnkXwkCBCnkUNVq17YT4yO6SspPTl4s+EvratY5M8mKLYX/7UgMP3tBmOmu/ ReWnJCGEDwE9Gzyawh7P/8BY7wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGsPOqgb 0DT9D61unbFhZ6+LIVcYMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFMjQvRjJGNjc1RkVGM0ZGMTFFRDk1MkQ3NDFDQzRGOUFFMDIvRUREREQ1NUMy NTJFMTFFRUI5MUE4OTQxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ8eMMA8EAgACMAkDBwEgAQ3ycMAwDQYJKoZIhvcNAQELBQADggEB AMq/sn/8BZR/xioIuI0dBQm4k+zRbqtc4yznkmMEHfYVjjyDrWV8lnhqvwkxqp+m JxW5Uu+gEwkjABEeduOHYGnRDKFYi81W/tMKp/u+utBSeD909ilXC15BPKmXLZO5 dXwbUVH2LAvNfEszBLEeg06fp0UAtZhVt3Fgy1wa7Q2gkURBhWdH0kypWlJ8JC1M TZUk7v/taxaf/gdpi+vfMLg/l3Z7wIRe4qhWD/XLpKKX5iu2f9P+6kzAO311Zeyo cdqEWFfRmwSNqiFBz+DBU5SmF5b5XrQE0r5AoHIZkedOtyaM+EJsdaZeF13GQT4s HZ9dDCnhDKU9W4aLVTw54k4= -----END CERTIFICATE-----Generated at Sat Jun 13 11:17:53 2026 by rpki-client