$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/440FC47687C211EEA6A0667BC4F9AE02.roa File: 440FC47687C211EEA6A0667BC4F9AE02.roa (raw, json) Hash identifier: OuNbUML34/9s/CXrZPGm/r79NOrwg5tKWUZilkojMKg= Subject key identifier: B9:2A:F8:1B:06:4A:74:DB:5E:15:66:E2:55:F9:4C:B0:8F:0C:D2:48 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0814 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/440FC47687C211EEA6A0667BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:47:58 +0000 ROA not before: Fri 28 Nov 2025 20:24:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55803 IP address blocks: 103.29.84.0/23 maxlen: 24 103.42.224.0/23 maxlen: 24 114.142.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Nov 28 20:24:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47bce-28e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ab:d2:c2:38:1c:bc:81:cf:52:97:4b:67:98: 68:38:11:04:b3:b8:5a:96:cf:29:86:43:1c:1d:85: eb:29:ff:4b:55:45:c9:4b:58:4d:f5:d2:0f:31:8d: 5a:4f:68:32:ce:15:1e:eb:d4:fe:5d:4d:fe:a2:31: 96:22:60:0b:1d:08:9f:16:0b:b1:86:ae:e1:e4:fc: 31:45:d7:21:5a:c1:eb:26:4e:8a:85:a6:3e:c7:51: 52:05:2e:9a:9c:90:fa:f3:e4:00:f6:17:03:39:2b: 29:7a:fc:fe:50:4b:80:cf:8c:37:53:db:05:84:e2: 32:53:fa:37:34:fb:cf:d1:de:f0:e3:9f:9f:01:aa: fb:bf:91:30:21:5c:c0:97:41:92:20:b3:9e:ce:cc: 1f:b8:9d:5a:13:7d:d7:20:59:44:d9:c3:8f:cd:1c: c3:22:9f:81:66:4b:5d:ba:01:ef:8f:ea:36:cf:ae: 73:be:95:b1:1b:ef:62:1a:1e:a5:91:8c:1a:5f:20: 5a:3d:f8:17:2e:3d:1f:ee:d7:54:7d:f4:23:e6:ca: 76:12:d6:7f:7a:11:a3:18:5d:8c:6f:1a:bc:ba:49: c4:d3:3e:0c:73:9f:64:41:48:3a:94:60:8c:fa:7d: 2f:49:61:2a:d2:2a:b4:4d:32:27:a2:98:f2:cb:b5: c6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2A:F8:1B:06:4A:74:DB:5E:15:66:E2:55:F9:4C:B0:8F:0C:D2:48 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/440FC47687C211EEA6A0667BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 103.42.224.0/23 114.142.160.0/22 Signature Algorithm: sha256WithRSAEncryption 58:2c:fd:b6:48:24:c8:c1:ed:71:9b:e8:4c:2b:64:81:20:0b: ab:24:4e:cc:6b:c0:7a:ff:33:29:0c:62:b7:00:a1:11:d1:89: 71:04:6d:ea:09:4d:25:90:9f:a8:45:39:7a:87:72:5f:75:75: 02:00:35:96:75:65:7b:e2:7d:f4:17:12:51:cd:2a:47:55:0a: f6:1b:cd:f5:ea:12:fc:a0:a6:0a:7e:54:4e:b6:fd:a5:aa:e9: b0:e5:f8:50:75:9d:2c:82:f3:73:f6:6a:6c:72:ff:d3:cc:2b: 43:74:79:18:88:a2:40:ef:6a:d6:36:da:4c:0e:78:e0:0b:a9: 6a:fa:79:28:b3:3e:e0:ff:8d:5d:48:05:60:58:ea:7e:55:fb: 9d:97:62:a1:78:24:96:83:8a:55:da:7f:d1:e4:b3:cb:94:8d: ae:fa:dd:49:e4:02:25:87:8b:00:64:4a:e1:4e:bb:64:0b:0f: b6:ad:28:1e:b6:ee:ed:1c:c5:25:36:f6:ee:29:0a:b4:01:bf: c4:1c:08:3e:ec:80:d5:95:c1:62:b4:ec:0f:8c:d8:b4:e0:39: 4e:56:f2:0d:06:24:08:fe:18:31:b4:dd:f3:14:dd:1e:0c:a5: c6:94:1b:bc:96:a1:93:96:c9:b4:a8:01:a2:12:04:2a:98:a7: 7f:35:65:a3 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUxMTI4MjAyNDE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JjZS0yOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0avSwjgcvIHPUpdLZ5hoOBEEs7hals8phkMcHYXrKf9LVUXJS1hN9dIPMY1a T2gyzhUe69T+XU3+ojGWImALHQifFguxhq7h5PwxRdchWsHrJk6KhaY+x1FSBS6a nJD68+QA9hcDOSspevz+UEuAz4w3U9sFhOIyU/o3NPvP0d7w45+fAar7v5EwIVzA l0GSILOezswfuJ1aE33XIFlE2cOPzRzDIp+BZktdugHvj+o2z65zvpWxG+9iGh6l kYwaXyBaPfgXLj0f7tdUffQj5sp2EtZ/ehGjGF2Mbxq8uknE0z4Mc59kQUg6lGCM +n0vSWEq0iq0TTInopjyy7XGxwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLkq+BsG SnTbXhVm4lX5TLCPDNJIMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvNDQwRkM0NzY4 N0MyMTFFRUE2QTA2NjdCQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBZx1UAwQBZyrgAwQCco6gMA0GCSqGSIb3DQEBCwUAA4IBAQBYLP22 SCTIwe1xm+hMK2SBIAurJE7Ma8B6/zMpDGK3AKER0YlxBG3qCU0lkJ+oRTl6h3Jf dXUCADWWdWV74n30FxJRzSpHVQr2G8316hL8oKYKflROtv2lqumw5fhQdZ0sgvNz 9mpscv/TzCtDdHkYiKJA72rWNtpMDnjgC6lq+nkosz7g/41dSAVgWOp+Vfudl2Kh eCSWg4pV2n/R5LPLlI2u+t1J5AIlh4sAZErhTrtkCw+2rSgetu7tHMUlNvbuKQq0 Ab/EHAg+7IDVlcFitOwPjNi04DlOVvINBiQI/hgxtN3zFN0eDKXGlBu8lqGTlsm0 qAGiEgQqmKd/NWWj -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:42 2026 by rpki-client