$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa File: 251E5BC2C72011EC9501FE0FC4F9AE02.roa (raw, json) Hash identifier: qF3LkZ93QlresvkF1DWGHqvtiec1PG4aIW0ftn+ryBE= Subject key identifier: E0:AD:0C:5C:01:20:6C:C1:18:BE:54:EE:96:FE:CF:B5:9E:0B:2D:AD Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2BCC Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:23:15 +0000 ROA not before: Fri 02 Jan 2026 16:13:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149640 IP address blocks: 49.229.94.0/24 maxlen: 24 58.64.0.0/24 maxlen: 24 58.64.11.0/24 maxlen: 24 2405:9800:c921::/48 maxlen: 48 2405:9800:c922::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11212 (0x2bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:23 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a49223-1b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8f:dd:75:e2:6b:1a:9f:bf:11:87:01:fb:78: b3:d1:f5:29:9a:99:a6:46:66:08:6c:62:6a:95:09: a6:48:de:34:90:bc:42:3c:30:18:da:9e:e6:74:15: 76:fc:4e:d1:a6:9f:5e:c3:65:86:82:02:10:f8:5c: 60:72:3f:88:af:db:d1:b0:7b:39:93:c8:8e:5d:25: 8b:89:c6:db:34:c9:80:53:a1:c3:c6:9e:be:81:fa: 93:78:aa:29:74:af:c9:ed:d7:f1:8b:d6:94:b6:9c: 5c:91:7d:c0:fa:a9:6a:47:bf:f4:49:b7:af:fb:9c: ad:54:ec:0f:51:34:2b:8a:e2:47:cc:07:93:ec:2d: 61:6c:ea:07:4e:c3:2e:29:d5:0b:e9:bd:84:de:a1: 85:b0:11:7a:f5:f9:cb:68:a8:49:14:98:36:de:85: c2:1b:92:b1:d7:73:d9:bc:de:86:4f:57:83:d7:31: f0:a8:59:5d:da:00:7a:0f:e8:8a:a6:5d:fa:5f:81: a8:83:92:22:12:0d:57:11:5b:59:d5:29:13:f4:ce: 1c:d5:d0:29:36:2b:48:ea:bb:59:a0:08:16:6d:cb: 81:5c:ba:f1:15:47:c5:11:1d:b5:76:31:df:af:b7: 58:76:9e:fe:89:e9:6a:c1:6a:ba:eb:b5:f9:61:4b: 64:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AD:0C:5C:01:20:6C:C1:18:BE:54:EE:96:FE:CF:B5:9E:0B:2D:AD X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/251E5BC2C72011EC9501FE0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.229.94.0/24 58.64.0.0/24 58.64.11.0/24 IPv6: 2405:9800:c921::-2405:9800:c922:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5e:34:57:e3:94:20:a4:b9:87:e5:db:b3:2f:74:05:62:ab:8d: a9:dc:74:d3:62:50:6c:a7:cd:f2:e0:43:63:8c:7a:da:14:18: 36:d4:2a:cf:3e:fa:2a:99:5f:10:2d:bd:e7:67:48:f4:29:71: 75:8d:4b:ab:57:c2:f1:cf:f6:43:1d:4e:9e:fd:39:03:2a:f2: 99:85:a4:d3:d8:18:c0:5f:0d:9a:ee:8d:84:5c:01:78:2a:78: 3b:f3:c9:9c:a1:cb:2d:6d:b9:fe:57:96:38:fd:7c:a0:73:8b: e4:01:55:ff:3e:80:f2:89:1b:f7:e5:86:df:8e:1d:fb:bb:c2: 82:8b:15:47:90:c1:56:4b:67:95:a7:5c:78:f2:c2:37:fe:9d: e1:f5:83:5b:50:2e:92:80:f9:ad:d2:b8:c7:ba:59:c6:22:36: 7a:2b:e9:38:0a:2c:67:68:37:69:78:2c:6c:b0:ec:14:f1:1f: 32:33:37:67:d8:ee:0f:00:38:51:43:78:ea:2b:06:e2:a5:a4: 51:38:01:eb:37:bd:4b:f2:bf:bf:de:3e:82:18:b3:c2:cf:21: de:34:42:0c:f2:ae:2e:63:f2:5d:3f:1f:46:b1:af:f7:dd:ce: a1:31:c7:28:46:40:d8:85:8f:ad:24:2d:fe:37:b6:f8:4f:f1: 5e:22:23:09 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICK8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTIyMy0xYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Y/ddeJrGp+/EYcB+3iz0fUpmpmmRmYIbGJqlQmmSN40kLxCPDAY2p7mdBV2 /E7Rpp9ew2WGggIQ+Fxgcj+Ir9vRsHs5k8iOXSWLicbbNMmAU6HDxp6+gfqTeKop dK/J7dfxi9aUtpxckX3A+qlqR7/0Sbev+5ytVOwPUTQriuJHzAeT7C1hbOoHTsMu KdUL6b2E3qGFsBF69fnLaKhJFJg23oXCG5Kx13PZvN6GT1eD1zHwqFld2gB6D+iK pl36X4Gog5IiEg1XEVtZ1SkT9M4c1dApNitI6rtZoAgWbcuBXLrxFUfFER21djHf r7dYdp7+ielqwWq667X5YUtkjQIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFOCtDFwB IGzBGL5U7pb+z7WeCy2tMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMjUxRTVCQzJD NzIwMTFFQzk1MDFGRTBGQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjAY BAIAATASAwQAMeVeAwQAOkAAAwQAOkALMBoEAgACMBQwEgMHACQFmADJIQMHACQF mADJIjANBgkqhkiG9w0BAQsFAAOCAQEAXjRX45QgpLmH5duzL3QFYquNqdx002JQ bKfN8uBDY4x62hQYNtQqzz76KplfEC2952dI9ClxdY1Lq1fC8c/2Qx1Onv05Ayry mYWk09gYwF8Nmu6NhFwBeCp4O/PJnKHLLW25/leWOP18oHOL5AFV/z6A8okb9+WG 344d+7vCgosVR5DBVktnladcePLCN/6d4fWDW1AukoD5rdK4x7pZxiI2eivpOAos Z2g3aXgsbLDsFPEfMjM3Z9juDwA4UUN46isG4qWkUTgB6ze9S/K/v94+ghizws8h 3jRCDPKuLmPyXT8fRrGv993OoTHHKEZA2IWPrSQt/je2+E/xXiIjCQ== -----END CERTIFICATE-----Generated at Mon Mar 2 19:26:10 2026 by rpki-client