$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa File: 47E67066B82A11E9843DEE0AC4F9AE02.roa (raw, json) Hash identifier: zukV/SXcPzYBgJKVgWzwFqdqBSRV39PGc6HpPmopdXY= Subject key identifier: 82:4E:F7:12:C9:9A:B4:80:88:05:73:46:52:19:B3:83:8C:C3:FC:7B Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0E8E Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:27:37 +0000 ROA not before: Thu 28 Aug 2025 18:08:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23864 IP address blocks: 103.5.240.0/24 maxlen: 24 2401:c7c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4, serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: Aug 28 18:08:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a468f8-80c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:81:82:2f:92:a5:76:97:8f:ee:da:6b:1d:69: ab:7f:92:5b:47:f4:d8:de:61:da:d9:15:20:07:20: 52:37:05:96:08:b0:5c:13:bc:29:fd:ff:36:e1:da: b0:fd:c1:5d:77:08:52:7d:39:1f:50:0b:3f:55:0c: bf:6e:b7:ca:be:d0:b0:ba:10:eb:d7:61:fe:11:5c: 5b:bf:ee:b0:19:dd:99:ed:8a:b5:21:42:b4:fb:f7: 6c:1c:2a:3b:d1:c3:29:ae:98:26:7a:54:13:15:66: ce:0a:5a:43:58:02:e4:e1:e9:e3:4d:c1:3c:78:92: f9:38:d2:7e:e2:89:6e:20:9a:19:43:c4:c7:c1:ad: 44:64:90:2f:3e:f8:b3:f7:ca:09:0f:fb:ed:cb:bb: 72:0b:ad:24:71:2f:fb:ed:ec:23:d0:2c:97:b0:00: ce:42:02:e5:65:96:82:56:02:71:c0:ea:bd:07:64: 55:e9:c2:1a:0f:0a:a7:30:8d:ef:9a:5c:28:80:ba: 6e:94:42:6d:3b:87:7c:79:fa:26:fc:01:fb:36:6c: 39:53:15:d2:4e:89:a2:ab:30:db:8f:89:ea:27:18: 4e:82:af:ee:e0:14:0a:24:ad:ff:7b:46:e2:60:ab: 81:db:88:b8:85:45:b6:76:aa:67:bd:22:f6:a0:9c: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4E:F7:12:C9:9A:B4:80:88:05:73:46:52:19:B3:83:8C:C3:FC:7B X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/47E67066B82A11E9843DEE0AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.240.0/24 IPv6: 2401:c7c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 1e:c9:b2:b8:10:98:64:33:da:90:c6:23:33:26:48:9d:f3:fe: f9:6b:05:52:8a:53:7c:37:1e:64:43:14:c9:e0:f4:0b:76:c9: 66:99:64:f8:2a:0c:31:8c:9a:4d:cb:1d:27:4e:83:4d:f3:f4: ed:0d:7a:5c:21:76:0e:2b:cc:a7:96:d8:53:b4:97:24:90:6f: 05:d4:47:61:26:e0:92:13:bf:79:a3:f7:e9:ec:7b:e8:bf:5b: 52:af:dc:f5:09:c5:5c:c2:56:f0:51:b0:8e:cd:66:ce:ce:1c: 32:17:ce:ab:95:a6:ab:ed:12:a2:25:cf:b7:b2:b7:42:49:a8: a0:61:19:18:af:cb:20:16:50:87:60:e5:03:7b:f5:5e:e9:77: a7:e5:3b:ab:ee:a3:40:40:96:60:09:41:5d:31:46:1e:fa:60: 37:56:44:3e:49:b4:f4:8d:fe:60:aa:1c:75:08:6c:16:4d:9f: 8c:bb:8a:79:44:d3:0e:3a:b9:28:d1:20:fb:99:28:fa:b0:4f: c8:6d:52:91:9a:74:79:7f:4a:02:9b:7e:90:68:59:fa:49:12: 9f:20:73:28:60:29:0d:87:20:d8:50:61:97:94:19:7c:50:c8: 4d:70:e4:0a:91:78:58:9a:5b:13:81:73:d1:44:c4:4c:20:db: 65:ed:d3:e8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjUwODI4MTgwODM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhmOC04MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4GCL5KldpeP7tprHWmrf5JbR/TY3mHa2RUgByBSNwWWCLBcE7wp/f824dqw /cFddwhSfTkfUAs/VQy/brfKvtCwuhDr12H+EVxbv+6wGd2Z7Yq1IUK0+/dsHCo7 0cMprpgmelQTFWbOClpDWALk4enjTcE8eJL5ONJ+4oluIJoZQ8THwa1EZJAvPviz 98oJD/vty7tyC60kcS/77ewj0CyXsADOQgLlZZaCVgJxwOq9B2RV6cIaDwqnMI3v mlwogLpulEJtO4d8efom/AH7Nmw5UxXSTomiqzDbj4nqJxhOgq/u4BQKJK3/e0bi YKuB24i4hUW2dqpnvSL2oJwQtwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIJO9xLJ mrSAiAVzRlIZs4OMw/x7MB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjQvNzA5RjdBMjZCODI5MTFFOTkzNzM4QTA5QzRGOUFFMDIvNDdFNjcwNjZC ODJBMTFFOTg0M0RFRTBBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZwXwMA8EAgACMAkDBwAkAcfAAAIwDQYJKoZIhvcNAQELBQADggEB AB7JsrgQmGQz2pDGIzMmSJ3z/vlrBVKKU3w3HmRDFMng9At2yWaZZPgqDDGMmk3L HSdOg03z9O0Nelwhdg4rzKeW2FO0lySQbwXUR2Em4JITv3mj9+nse+i/W1Kv3PUJ xVzCVvBRsI7NZs7OHDIXzquVpqvtEqIlz7eyt0JJqKBhGRivyyAWUIdg5QN79V7p d6flO6vuo0BAlmAJQV0xRh76YDdWRD5JtPSN/mCqHHUIbBZNn4y7inlE0w46uSjR IPuZKPqwT8htUpGadHl/SgKbfpBoWfpJEp8gcyhgKQ2HINhQYZeUGXxQyE1w5AqR eFiaWxOBc9FExEwg22Xt0+g= -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:37 2026 by rpki-client