$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/30D59F38D61011E996559038C4F9AE02.roa File: 30D59F38D61011E996559038C4F9AE02.roa (raw, json) Hash identifier: UEfe2W4p9YEGtTlOsUEuWXOLCsVOOyu/EmEpmLK6dzA= Subject key identifier: 2B:62:F9:81:00:F1:E9:86:A9:02:E2:DC:11:5D:EE:83:F8:A0:19:42 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2BD6 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/30D59F38D61011E996559038C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:23:24 +0000 ROA not before: Fri 02 Jan 2026 16:13:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 20940 IP address blocks: 49.231.112.0/24 maxlen: 24 49.231.116.0/23 maxlen: 23 2405:9800:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11222 (0x2bd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Jan 2 16:13:33 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4922c-6e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fa:1a:2f:27:42:87:c8:cc:d1:6b:94:0a:2a: 10:d8:5a:a5:94:40:b5:20:4a:ba:62:00:08:fb:bf: 45:00:fd:74:44:4c:1f:fd:70:4a:b1:3d:d0:e6:0e: 8c:7c:f0:be:25:f9:e9:9c:47:5d:49:4f:58:b5:4a: 83:ee:95:b8:45:c8:94:5c:eb:83:bc:a9:60:c4:8a: fa:9a:36:57:fc:a6:8a:a7:61:4a:7a:c4:e2:67:6f: 13:4a:30:9f:2d:38:02:4a:9a:f3:4c:a3:dd:81:52: 7a:af:32:5f:2b:52:b1:26:4b:29:a3:2b:27:05:a6: 7d:6d:81:5a:1c:61:7c:da:bd:a8:62:2d:93:4d:43: 9d:dc:90:ad:d4:87:8f:07:c1:b2:7f:3c:68:48:72: 80:e4:63:c3:56:e6:d0:0b:97:4c:95:a3:41:a2:af: 78:4c:04:9f:44:ad:9b:d7:a9:d5:59:59:aa:94:3c: 3b:c7:ee:c6:e4:fd:12:a2:62:c4:31:93:5b:12:c0: b2:56:d2:0c:17:7d:cb:bd:18:7e:02:ed:ca:7f:98: d3:1a:af:2b:41:d2:87:d2:bd:ce:42:84:ff:8a:18: 7e:e4:fa:7a:7f:c9:c5:d2:2b:2f:62:68:3d:0f:a5: 69:68:c5:13:0b:97:d8:55:4d:ab:a8:b3:68:f9:d6: 1c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:62:F9:81:00:F1:E9:86:A9:02:E2:DC:11:5D:EE:83:F8:A0:19:42 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/30D59F38D61011E996559038C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.231.112.0/24 49.231.116.0/23 IPv6: 2405:9800:b::/48 Signature Algorithm: sha256WithRSAEncryption b2:29:5f:77:4a:49:d2:b8:67:27:9b:1d:a2:16:cf:2a:af:b1: fa:c4:07:07:99:c3:88:f4:bf:c0:a3:db:28:a3:dd:70:a0:75: c3:33:60:86:90:53:c5:68:50:00:3c:4d:d8:1e:ad:4f:0a:59: 24:77:1e:e4:ef:4a:5f:88:55:ee:3a:0b:00:56:b8:8a:5a:a6: 81:03:b4:04:63:01:16:18:fc:b4:b2:9d:68:fd:44:bb:0b:f2: 36:7e:50:c5:e0:c9:1e:32:8f:56:f7:26:5e:eb:bb:80:2a:e8: 6e:7c:21:82:ac:1b:b7:f8:3a:fd:06:7d:70:ad:76:5e:c5:fc: 00:1a:40:87:03:24:f7:00:26:91:58:97:f3:7b:6a:41:b6:bc: 3b:38:5f:3c:3b:52:98:63:de:ee:8a:c2:95:82:78:a9:a1:b2: 7d:db:68:b8:ba:32:bc:bf:cb:62:32:09:de:77:6c:bb:f3:98: 4e:db:4a:c4:52:6d:f9:05:a8:da:4a:65:ed:bd:00:90:cf:f0: be:95:86:21:32:36:a0:a8:5a:32:e7:25:d1:8d:15:cc:3e:c7: dc:ab:b9:41:8d:ff:d0:da:3a:52:4a:37:34:7a:8d:93:ab:89: 0b:5a:62:c1:2f:77:5c:bb:a4:2d:bf:f8:6b:70:f7:06:ae:f0: b0:f7:52:96 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICK9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjYwMTAyMTYxMzMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTIyYy02ZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvoaLydCh8jM0WuUCioQ2FqllEC1IEq6YgAI+79FAP10REwf/XBKsT3Q5g6M fPC+JfnpnEddSU9YtUqD7pW4RciUXOuDvKlgxIr6mjZX/KaKp2FKesTiZ28TSjCf LTgCSprzTKPdgVJ6rzJfK1KxJkspoysnBaZ9bYFaHGF82r2oYi2TTUOd3JCt1IeP B8GyfzxoSHKA5GPDVubQC5dMlaNBoq94TASfRK2b16nVWVmqlDw7x+7G5P0SomLE MZNbEsCyVtIMF33LvRh+Au3Kf5jTGq8rQdKH0r3OQoT/ihh+5Pp6f8nF0isvYmg9 D6VpaMUTC5fYVU2rqLNo+dYcbQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFCti+YEA 8emGqQLi3BFd7oP4oBlCMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMzBENTlGMzhE NjEwMTFFOTk2NTU5MDM4QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAMedwAwQBMed0MA8EAgACMAkDBwAkBZgAAAswDQYJKoZIhvcNAQEL BQADggEBALIpX3dKSdK4ZyebHaIWzyqvsfrEBweZw4j0v8Cj2yij3XCgdcMzYIaQ U8VoUAA8TdgerU8KWSR3HuTvSl+IVe46CwBWuIpapoEDtARjARYY/LSynWj9RLsL 8jZ+UMXgyR4yj1b3Jl7ru4Aq6G58IYKsG7f4Ov0GfXCtdl7F/AAaQIcDJPcAJpFY l/N7akG2vDs4Xzw7Uphj3u6KwpWCeKmhsn3baLi6Mry/y2IyCd53bLvzmE7bSsRS bfkFqNpKZe29AJDP8L6VhiEyNqCoWjLnJdGNFcw+x9yruUGN/9DaOlJKNzR6jZOr iQtaYsEvd1y7pC2/+Gtw9wau8LD3UpY= -----END CERTIFICATE-----Generated at Mon Mar 2 09:26:22 2026 by rpki-client