$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/8BD42F1CDEB111EA971A1721C4F9AE02.roa File: 8BD42F1CDEB111EA971A1721C4F9AE02.roa (raw, json) Hash identifier: K0qm2C6my4ztNffHz19Ct3P2GsiLgSawU1/2AuVC2UY= Subject key identifier: EA:02:71:F2:E3:70:FE:64:23:33:99:8E:5A:94:0B:EC:BD:47:B3:FD Certificate issuer: /CN=A911BC62/serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Certificate serial: 2882 Authority key identifier: 24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/8BD42F1CDEB111EA971A1721C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:26:29 +0000 ROA not before: Thu 04 Sep 2025 15:53:02 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45356 IP address blocks: 43.250.240.0/22 maxlen: 24 61.245.160.0/20 maxlen: 24 103.2.152.0/22 maxlen: 24 124.6.240.0/20 maxlen: 24 202.129.232.0/22 maxlen: 24 2407:c00::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10370 (0x2882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=24F0C1D8E3F4A296FDCDEB235A6C483B6B2DC97A Validity Not Before: Sep 4 15:53:02 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a42265-a917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:25:87:6a:e5:d0:e9:6b:11:0c:c3:ab:be:da: 79:1d:66:7e:a1:1c:92:d4:40:d6:56:cd:dc:71:69: 20:93:c4:ff:e7:70:47:c8:fc:0e:79:4a:95:86:d5: 74:ee:c3:98:83:ad:a3:68:53:7b:90:a0:8c:60:6b: d0:8c:fa:30:2a:17:e9:e3:af:8b:8a:b5:e5:57:9e: 7d:3f:d7:e1:d7:c1:78:a7:52:9b:f7:b8:5f:09:42: 1d:32:13:f5:63:db:60:39:4d:8a:38:2a:44:c0:66: 38:24:95:6c:6f:36:79:29:58:03:eb:41:f3:c2:cc: 38:67:56:1e:f0:a0:8e:35:f8:92:ae:0f:59:60:7a: d2:ae:72:a4:c2:4f:02:ab:4c:17:7a:f4:84:2c:96: 4e:e8:48:77:4c:05:10:d8:4c:1f:51:c2:f2:3e:57: aa:80:c7:6e:57:4e:52:2b:ee:28:a3:3c:17:e1:5c: 70:c4:a0:5e:fb:97:63:15:0a:0b:62:4e:0e:23:75: 80:33:f4:dd:4d:67:a3:61:5f:62:9d:c4:5f:47:18: 07:d4:63:c2:a8:15:62:25:3a:4e:61:8c:a7:e4:8b: 37:54:e5:7f:de:1d:68:a3:0e:cf:e5:21:97:c0:9c: 70:e5:d8:c7:f0:03:07:13:d6:8c:a9:53:1a:a4:15: c7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:02:71:F2:E3:70:FE:64:23:33:99:8E:5A:94:0B:EC:BD:47:B3:FD X509v3 Authority Key Identifier: keyid:24:F0:C1:D8:E3:F4:A2:96:FD:CD:EB:23:5A:6C:48:3B:6B:2D:C9:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/JPDB2OP0opb9zesjWmxIO2styXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPDB2OP0opb9zesjWmxIO2styXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/3288C312A2E611E4A081C46DC4F9AE02/8BD42F1CDEB111EA971A1721C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.240.0/22 61.245.160.0/20 103.2.152.0/22 124.6.240.0/20 202.129.232.0/22 IPv6: 2407:c00::/32 Signature Algorithm: sha256WithRSAEncryption 13:68:d9:30:74:96:a6:ae:a0:9f:c6:6c:1a:ad:d7:bf:a5:df: 39:b1:ce:73:5a:a4:2a:bc:d3:14:f9:af:10:f1:db:a8:13:f9: 3b:6c:89:f2:a7:93:94:bd:9c:cc:74:30:b1:d9:a1:2c:00:cb: 11:18:ab:4c:93:88:45:c3:80:05:c7:27:04:40:2a:4c:31:72: 49:b7:f5:95:42:1f:18:9a:56:88:28:a2:81:21:97:34:63:a6: 31:fc:22:00:1b:ba:da:4e:02:92:41:22:38:4d:19:45:9c:dc: 49:e6:75:3e:8c:8b:65:74:1a:25:f2:1d:55:7d:33:79:08:eb: c2:cc:54:f2:10:0f:1d:6f:ce:64:c4:70:25:25:7a:1e:6c:0b: 4b:bb:60:ab:22:03:bb:86:0b:59:73:ae:5f:d9:f4:1c:b0:21: a0:52:99:a6:7b:8a:58:8f:27:96:94:a2:bc:57:3f:19:7f:60: 86:68:4c:f8:e7:47:0e:de:d7:98:69:77:13:b9:80:7e:db:f4: 7b:97:4b:09:fc:9b:47:88:ee:b5:1e:ae:fb:2e:16:df:30:c5: f1:bc:93:d0:12:e3:82:86:5e:22:d7:ca:36:97:13:53:ae:6c: ab:26:d0:d3:6b:7f:de:1f:9c:a6:62:28:d8:53:bb:37:72:a6: fd:76:ed:12 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICKIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDI0RjBDMUQ4RTNGNEEyOTZGRENERUIyMzVBNkM0ODNC NkIyREM5N0EwHhcNMjUwOTA0MTU1MzAyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI2NS1hOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSWHauXQ6WsRDMOrvtp5HWZ+oRyS1EDWVs3ccWkgk8T/53BHyPwOeUqVhtV0 7sOYg62jaFN7kKCMYGvQjPowKhfp46+LirXlV559P9fh18F4p1Kb97hfCUIdMhP1 Y9tgOU2KOCpEwGY4JJVsbzZ5KVgD60Hzwsw4Z1Ye8KCONfiSrg9ZYHrSrnKkwk8C q0wXevSELJZO6Eh3TAUQ2EwfUcLyPleqgMduV05SK+4oozwX4VxwxKBe+5djFQoL Yk4OI3WAM/TdTWejYV9incRfRxgH1GPCqBViJTpOYYyn5Is3VOV/3h1oow7P5SGX wJxw5djH8AMHE9aMqVMapBXH+wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFOoCcfLj cP5kIzOZjlqUC+y9R7P9MB8GA1UdIwQYMBaAFCTwwdjj9KKW/c3rI1psSDtrLcl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi8zMjg4QzMxMkEy RTYxMUU0QTA4MUM0NkRDNEY5QUUwMi9KUERCMk9QMG9wYjl6ZXNqV214SU8yc3R5 WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQREIyT1Awb3BiOXplc2pXbXhJTzJzdHlYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJDNjIvMzI4OEMzMTJBMkU2MTFFNEEwODFDNDZEQzRGOUFFMDIvOEJENDJGMUNE RUIxMTFFQTk3MUExNzIxQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCK/rwAwQEPfWgAwQCZwKYAwQEfAbwAwQCyoHoMA0EAgACMAcDBQAk BwwAMA0GCSqGSIb3DQEBCwUAA4IBAQATaNkwdJamrqCfxmwarde/pd85sc5zWqQq vNMU+a8Q8duoE/k7bInyp5OUvZzMdDCx2aEsAMsRGKtMk4hFw4AFxycEQCpMMXJJ t/WVQh8YmlaIKKKBIZc0Y6Yx/CIAG7raTgKSQSI4TRlFnNxJ5nU+jItldBol8h1V fTN5COvCzFTyEA8db85kxHAlJXoebAtLu2CrIgO7hgtZc65f2fQcsCGgUpmme4pY jyeWlKK8Vz8Zf2CGaEz450cO3teYaXcTuYB+2/R7l0sJ/JtHiO61Hq77LhbfMMXx vJPQEuOChl4i18o2lxNTrmyrJtDTa3/eH5ymYijYU7s3cqb9du0S -----END CERTIFICATE-----Generated at Mon Mar 2 13:26:44 2026 by rpki-client