$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa File: BDF659C4445111F0945A7E49C4F9AE02.roa (raw, json) Hash identifier: 6VSQw9YwCSnxCiljcOXGVcuD3xshkqepVkI1Kl3yyDw= Subject key identifier: 61:71:84:3E:87:68:A7:FF:87:F6:1F:F7:21:1C:6A:98:AF:A8:C6:E3 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 8B Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:07:53 +0000 ROA not before: Sun 08 Jun 2025 10:17:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137208 IP address blocks: 163.227.122.0/24 maxlen: 24 163.227.123.0/24 maxlen: 24 2001:df5:6740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Jun 8 10:17:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e5c9-3880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9f:04:64:cf:84:f2:76:4d:56:cd:3c:97:92: 0b:e1:13:79:84:2f:67:10:3c:2c:01:a8:a4:30:e7: 15:e9:13:fd:82:86:d1:e5:f9:d3:00:c1:d7:16:e3: c2:4d:e6:bc:94:82:e9:4c:ec:78:2c:ca:57:d1:f2: 3d:a8:d6:21:f8:85:58:40:dc:10:7f:ae:60:7b:99: 35:48:35:9d:00:46:91:09:4f:5d:65:25:f6:a8:b0: a2:6a:9a:c6:ec:96:a8:2b:da:93:b1:7e:8e:d8:ee: b3:29:34:5a:df:99:f6:a9:59:fb:f0:20:eb:8f:c0: d9:ee:56:dc:50:17:fe:71:73:b0:1f:89:49:78:19: be:4c:85:14:17:19:fc:a7:b7:b2:46:2c:97:2b:66: e5:93:58:85:eb:80:d3:6e:26:19:fa:82:bd:3e:4f: c3:ba:31:2b:d0:df:4a:23:7b:68:05:b7:a7:24:6d: 61:f8:2d:12:a0:38:51:d6:54:16:cd:ac:16:a3:8f: b9:95:ac:25:42:73:19:f6:0b:48:47:db:be:39:be: 02:87:54:ba:57:23:e9:88:38:44:b9:f4:28:a1:09: e8:98:e7:8c:38:71:b3:8c:5e:82:7e:5c:17:99:d7: 83:37:48:8f:ad:ac:05:a1:b6:c4:b6:e3:42:42:12: dd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:84:3E:87:68:A7:FF:87:F6:1F:F7:21:1C:6A:98:AF:A8:C6:E3 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.227.122.0/23 IPv6: 2001:df5:6740::/48 Signature Algorithm: sha256WithRSAEncryption 67:d6:d8:a6:a5:5c:f1:14:54:cc:27:da:54:d5:c0:02:ca:71: 21:f2:af:f5:b6:59:d3:d5:80:38:f7:81:a8:97:fb:4f:f6:cc: 42:e3:d5:3d:64:c7:4a:44:38:ee:4d:7b:43:75:12:72:07:46: 82:18:fe:af:c0:7b:50:8b:76:fb:74:c0:b7:ab:96:f4:f4:2b: 85:e1:e3:6b:dc:aa:98:e3:93:3e:f7:e0:c6:90:e0:fc:36:5b: 5d:89:6d:c9:3e:f5:38:ea:76:a3:2b:3d:39:95:03:04:07:f3: 1a:d5:8f:78:1b:dc:1c:29:41:a1:48:67:43:cf:e5:16:7b:80: 29:92:7e:6f:bb:e0:25:6e:51:09:e8:af:25:5e:ff:f0:5d:b6: 34:38:17:dc:47:cd:8a:6f:2e:e7:f3:18:f5:b6:8c:89:0e:4b: a2:1d:22:6d:3d:78:c9:44:00:14:18:fe:ec:b0:4e:c4:66:a1: 69:14:9c:a1:13:fc:b1:31:ec:30:ed:bb:43:4c:4d:76:e8:ba: 1b:2a:70:bf:d6:ff:00:2d:f2:63:d8:e8:0a:67:fa:da:5f:eb: 0c:95:4b:1f:e0:00:74:e2:d2:d0:cf:7b:33:ad:65:1a:87:28: c3:5f:a7:8d:3c:01:e1:cd:9f:54:27:b9:72:18:a9:ff:46:8f: 9f:06:0f:4c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1M0ExMTAvBgNVBAUTKEIwOEI1OUU1RDEwNzA1QzVDQjJEM0NEQjg1NjVCMzI4 RDUwMkY1NTAwHhcNMjUwNjA4MTAxNzEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTVjOS0zODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ8EZM+E8nZNVs08l5IL4RN5hC9nEDwsAaikMOcV6RP9gobR5fnTAMHXFuPC Tea8lILpTOx4LMpX0fI9qNYh+IVYQNwQf65ge5k1SDWdAEaRCU9dZSX2qLCiaprG 7JaoK9qTsX6O2O6zKTRa35n2qVn78CDrj8DZ7lbcUBf+cXOwH4lJeBm+TIUUFxn8 p7eyRiyXK2blk1iF64DTbiYZ+oK9Pk/DujEr0N9KI3toBbenJG1h+C0SoDhR1lQW zawWo4+5lawlQnMZ9gtIR9u+Ob4Ch1S6VyPpiDhEufQooQnomOeMOHGzjF6CflwX mdeDN0iPrawFobbEtuNCQhLdjwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGFxhD6H aKf/h/Yf9yEcapivqMbjMB8GA1UdIwQYMBaAFLCLWeXRBwXFyy0824VlsyjVAvVQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzUzQS80NzQ1MDU2RTQ0 NTExMUYwQTA5RThBMjRDNEY5QUUwMi9zSXRaNWRFSEJjWExMVHpiaFdXektOVUM5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1M0EvNDc0NTA1NkU0NDUxMTFGMEEwOUU4QTI0QzRGOUFFMDIvQkRGNjU5QzQ0 NDUxMTFGMDk0NUE3RTQ5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo+N6MA8EAgACMAkDBwAgAQ31Z0AwDQYJKoZIhvcNAQELBQADggEB AGfW2KalXPEUVMwn2lTVwALKcSHyr/W2WdPVgDj3gaiX+0/2zELj1T1kx0pEOO5N e0N1EnIHRoIY/q/Ae1CLdvt0wLerlvT0K4Xh42vcqpjjkz734MaQ4Pw2W12Jbck+ 9TjqdqMrPTmVAwQH8xrVj3gb3BwpQaFIZ0PP5RZ7gCmSfm+74CVuUQnoryVe//Bd tjQ4F9xHzYpvLufzGPW2jIkOS6IdIm09eMlEABQY/uywTsRmoWkUnKET/LEx7DDt u0NMTXbouhsqcL/W/wAt8mPY6Apn+tpf6wyVSx/gAHTi0tDPezOtZRqHKMNfp408 AeHNn1QnuXIYqf9Gj58GD0w= -----END CERTIFICATE-----Generated at Mon Mar 2 09:17:23 2026 by rpki-client