$ rpki-client -vvf rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/86BED34677F011EB9E69B472C4F9AE02.roa File: 86BED34677F011EB9E69B472C4F9AE02.roa (raw, json) Hash identifier: z+ZRB0bBSa8oaRsVRAkD/aqR3zkYjW0hmksq+X5D7QA= Subject key identifier: 30:C9:3F:2E:CF:08:5B:A4:EE:B5:D0:A1:74:47:9A:B6:7B:79:DE:20 Certificate issuer: /CN=A911C356/serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883 Certificate serial: 07AB Authority key identifier: 6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/86BED34677F011EB9E69B472C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:54:32 +0000 ROA not before: Sat 06 Dec 2025 21:03:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134847 IP address blocks: 103.204.8.0/22 maxlen: 22 103.204.8.0/24 maxlen: 24 103.204.9.0/24 maxlen: 24 103.204.10.0/24 maxlen: 24 103.204.11.0/24 maxlen: 24 202.133.80.0/22 maxlen: 22 202.133.80.0/24 maxlen: 24 202.133.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:03:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C356, serialNumber=6ADE0ED742D8C5AFA1333B90358C06B3FE876883 Validity Not Before: Dec 6 21:03:18 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45328-c6c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:b2:81:45:68:27:cb:2d:f4:93:0d:77:fa: 50:f1:72:47:b5:58:14:e9:d2:46:06:90:2e:ea:a4: b6:3f:0b:5c:10:e5:e0:eb:75:61:ea:6c:5c:ec:76: a4:c8:e0:a3:57:ad:39:d7:d4:c6:17:39:55:95:f6: 98:84:f8:c1:34:16:97:31:76:c7:f4:3a:2e:ef:be: 29:37:4a:80:ff:f1:5c:f2:97:f7:3d:16:da:12:68: 8d:48:55:51:6e:0b:ef:a1:2f:b6:a9:34:01:a6:db: 27:56:3a:b5:28:8d:4a:5b:e7:06:cd:12:4f:a8:f3: 42:ab:02:a3:9b:14:3d:09:be:e5:ec:25:f9:ca:10: 8d:87:62:be:44:cd:71:e0:e8:04:6a:3e:67:88:a7: ab:7b:e5:1a:c3:09:ab:79:2a:54:32:4b:9d:07:3d: bc:7a:f8:76:d2:a1:c5:cd:37:b0:ac:60:f5:13:f5: ad:78:f3:5a:0e:1e:6b:60:d6:e3:23:e7:08:08:c5: ac:5e:2c:f3:f0:25:78:3a:c8:95:3e:a2:33:3b:e9: 6e:79:21:00:74:1d:13:a7:f4:f6:0c:14:a9:e4:25: cd:e6:41:e4:21:ac:5f:29:02:18:0e:c0:b7:9d:5a: 25:c8:95:88:39:7a:80:32:48:1f:31:9e:e3:71:0f: f1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C9:3F:2E:CF:08:5B:A4:EE:B5:D0:A1:74:47:9A:B6:7B:79:DE:20 X509v3 Authority Key Identifier: keyid:6A:DE:0E:D7:42:D8:C5:AF:A1:33:3B:90:35:8C:06:B3:FE:87:68:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/at4O10LYxa-hMzuQNYwGs_6HaIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at4O10LYxa-hMzuQNYwGs_6HaIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C356/671B7DA6401D11EB8E0CCB5EC4F9AE02/86BED34677F011EB9E69B472C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.8.0/22 202.133.80.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:5a:fc:c3:f3:ca:fc:04:a4:cb:a3:09:42:31:a0:ce:3c:3a: aa:0c:36:86:d7:d7:97:68:7e:f6:61:fb:32:52:27:ef:f9:5e: 44:73:cc:50:11:15:19:2f:9f:19:49:b5:6e:32:e2:4e:5a:9b: dd:65:50:ba:23:6c:d9:cd:31:7d:4b:32:cb:66:2e:a5:25:f6: cf:35:e1:cc:9c:52:ad:99:3e:99:fa:1d:cd:37:02:7c:e6:b9: eb:e9:87:67:2f:6b:0c:de:54:27:78:b7:45:e5:c1:32:95:f1: b7:7e:f1:59:6b:b8:ac:92:62:53:cb:06:f7:01:43:bd:42:28: c3:1a:6d:a3:8d:9f:8f:a3:a1:a3:04:42:de:d2:c9:f9:ab:0a: 37:33:f5:2b:5c:44:29:a0:2c:8c:01:fa:f1:90:6b:1d:20:97: be:0d:97:76:88:45:b0:70:b1:6c:0b:94:f5:bd:b1:5c:b2:5f: d2:4e:b2:3d:0a:e7:91:6c:da:59:81:d2:b0:19:9a:74:74:90: 4e:76:b4:a6:e2:a8:d8:f0:fc:aa:04:de:98:8d:e9:07:69:0a: db:f3:13:b6:49:a4:b4:f1:a0:cb:c6:b3:ff:9d:3e:b3:7c:6a: dc:27:7a:a9:1e:b5:c8:ad:2b:02:ce:7c:96:1c:87:a6:3b:6d: af:b0:ea:15 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzNTYxMTAvBgNVBAUTKDZBREUwRUQ3NDJEOEM1QUZBMTMzM0I5MDM1OEMwNkIz RkU4NzY4ODMwHhcNMjUxMjA2MjEwMzE4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTMyOC1jNmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4qygUVoJ8st9JMNd/pQ8XJHtVgU6dJGBpAu6qS2PwtcEOXg63Vh6mxc7Hak yOCjV60519TGFzlVlfaYhPjBNBaXMXbH9Dou774pN0qA//Fc8pf3PRbaEmiNSFVR bgvvoS+2qTQBptsnVjq1KI1KW+cGzRJPqPNCqwKjmxQ9Cb7l7CX5yhCNh2K+RM1x 4OgEaj5niKere+UawwmreSpUMkudBz28evh20qHFzTewrGD1E/WtePNaDh5rYNbj I+cICMWsXizz8CV4OsiVPqIzO+lueSEAdB0Tp/T2DBSp5CXN5kHkIaxfKQIYDsC3 nVolyJWIOXqAMkgfMZ7jcQ/x4QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDDJPy7P CFuk7rXQoXRHmrZ7ed4gMB8GA1UdIwQYMBaAFGreDtdC2MWvoTM7kDWMBrP+h2iD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzM1Ni82NzFCN0RBNjQw MUQxMUVCOEUwQ0NCNUVDNEY5QUUwMi9hdDRPMTBMWXhhLWhNenVRTll3R3NfNkhh SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NE8xMExZeGEtaE16dVFOWXdHc182SGFJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMzNTYvNjcxQjdEQTY0MDFEMTFFQjhFMENDQjVFQzRGOUFFMDIvODZCRUQzNDY3 N0YwMTFFQjlFNjlCNDcyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ8wIAwQCyoVQMA0GCSqGSIb3DQEBCwUAA4IBAQAcWvzD88r8BKTL owlCMaDOPDqqDDaG19eXaH72YfsyUifv+V5Ec8xQERUZL58ZSbVuMuJOWpvdZVC6 I2zZzTF9SzLLZi6lJfbPNeHMnFKtmT6Z+h3NNwJ85rnr6YdnL2sM3lQneLdF5cEy lfG3fvFZa7iskmJTywb3AUO9QijDGm2jjZ+Po6GjBELe0sn5qwo3M/UrXEQpoCyM AfrxkGsdIJe+DZd2iEWwcLFsC5T1vbFcsl/STrI9CueRbNpZgdKwGZp0dJBOdrSm 4qjY8PyqBN6YjekHaQrb8xO2SaS08aDLxrP/nT6zfGrcJ3qpHrXIrSsCznyWHIem O22vsOoV -----END CERTIFICATE-----Generated at Mon Mar 2 14:22:37 2026 by rpki-client