$ rpki-client -vvf rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa File: EFA0015E593911EFA8EAD43CC4F9AE02.roa (raw, json) Hash identifier: m5xuNZTplMCUcjHyNtIG3B2SyKlaJh5IOTk259XuenA= Subject key identifier: E7:BA:96:8F:74:17:53:D4:93:AA:4B:1D:9D:6F:81:07:F0:E6:C6:C1 Certificate issuer: /CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Certificate serial: 12EA Authority key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:46:14 +0000 ROA not before: Sun 30 Nov 2025 16:45:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134094 IP address blocks: 45.123.116.0/24 maxlen: 24 45.123.118.0/24 maxlen: 24 45.123.119.0/24 maxlen: 24 103.51.140.0/22 maxlen: 22 103.51.140.0/24 maxlen: 24 103.51.141.0/24 maxlen: 24 103.51.142.0/24 maxlen: 24 103.51.143.0/24 maxlen: 24 103.103.128.0/22 maxlen: 22 103.103.128.0/24 maxlen: 24 103.103.129.0/24 maxlen: 24 103.103.130.0/24 maxlen: 24 103.103.131.0/24 maxlen: 24 203.15.150.0/24 maxlen: 24 2401:f540::/48 maxlen: 48 2401:f540:1::/48 maxlen: 48 2401:f540:2::/48 maxlen: 48 2401:f540:3::/48 maxlen: 48 2401:f540:4::/48 maxlen: 48 2401:f540:5::/48 maxlen: 48 2401:f540:6::/48 maxlen: 48 2401:f540:7::/48 maxlen: 48 2401:f540:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4842 (0x12ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C676, serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Validity Not Before: Nov 30 16:45:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44326-5f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6f:be:a7:cc:1a:ad:6b:5f:5e:ff:d3:c0:1d: 1f:8f:c8:40:2e:99:4f:62:b7:23:5e:88:4e:55:28: 45:a1:6d:4e:5a:1f:81:44:21:70:30:d1:04:7b:26: a7:a5:60:aa:d7:0b:ab:64:55:55:2c:da:5b:a5:25: 74:41:6f:22:67:3a:7b:a4:04:de:21:9a:17:36:8e: 6e:04:a7:ed:28:b1:75:02:c9:2f:93:95:3a:e3:ce: 52:68:eb:4d:1d:7e:3f:79:3f:c1:a3:d7:80:d3:69: 3f:a9:fa:b0:86:7b:62:84:63:99:39:01:75:69:6c: 97:2a:ea:11:39:de:a4:f9:cf:b9:fa:64:c7:39:10: 1a:76:7d:c5:ff:d2:72:8e:ee:76:07:90:17:93:cd: 41:af:64:32:50:cd:cb:4f:4d:c2:0f:d9:e1:5a:dc: af:50:cf:11:7d:cc:84:2e:68:b7:86:84:3c:c2:48: 0a:2e:89:d4:43:db:0c:aa:b2:47:47:98:ed:d6:15: d8:e6:5a:d7:6c:35:d0:54:ce:81:44:41:dd:5a:e5: 2b:8e:09:1e:18:18:33:84:76:6d:ef:10:d6:74:d4: 22:15:28:49:51:c5:70:0d:7f:3b:09:84:e2:43:e5: ef:14:fa:13:7f:38:22:e4:ab:07:51:eb:6a:cb:3f: b7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BA:96:8F:74:17:53:D4:93:AA:4B:1D:9D:6F:81:07:F0:E6:C6:C1 X509v3 Authority Key Identifier: keyid:A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.123.116.0/24 45.123.118.0/23 103.51.140.0/22 103.103.128.0/22 203.15.150.0/24 IPv6: 2401:f540::/45 2401:f540:10::/48 Signature Algorithm: sha256WithRSAEncryption 55:27:5f:25:bc:9a:a8:03:9d:24:9b:a3:19:74:73:6d:48:39: 16:31:9d:72:bb:92:a0:c1:2a:84:19:58:cd:da:65:9a:3a:1a: 70:30:6b:c2:04:ad:cf:fe:dd:b9:61:e4:c2:de:66:22:f5:3b: 1a:35:eb:cb:cc:3a:d7:52:c4:6b:b6:e4:3e:36:e0:55:f0:9e: 8d:43:df:b3:43:d8:18:23:bb:22:b4:83:87:60:f6:8f:bd:6a: b8:ad:79:63:d4:77:da:16:de:86:43:b1:62:5e:e5:7b:4c:7d: 6b:50:34:5c:f7:89:13:97:79:e1:8a:72:46:2f:ce:3e:cd:30: d0:4a:fe:eb:e4:8d:e2:fb:55:6d:6d:b9:67:1c:71:5c:e5:78: 7e:0c:8e:45:ee:cd:7b:85:8c:9c:40:d6:72:fa:ae:30:41:ca: 80:63:21:1b:62:b3:6d:b7:e4:40:71:e1:9e:39:b3:ee:43:84: 44:69:bf:d9:09:50:4f:a3:0a:b8:18:ee:35:44:9b:b3:7f:45: a5:26:b8:e4:a0:e5:47:fa:da:3c:68:e9:55:86:20:43:b3:be: 70:fe:b8:84:a0:22:38:41:03:ec:ec:a9:bd:fd:c6:e8:a1:01: 0b:92:4b:f9:71:3b:e7:9d:29:97:6d:56:1c:9b:d7:1c:80:fa: d2:f2:c7:e3 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICEuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2NzYxMTAvBgNVBAUTKEE5RTk1QTQxNkJDQ0VFRkQ4NkVBMkZBMDE5QzI1RTRE NzZCOEU5RDkwHhcNMjUxMTMwMTY0NTU1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDMyNi01ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5m++p8warWtfXv/TwB0fj8hALplPYrcjXohOVShFoW1OWh+BRCFwMNEEeyan pWCq1wurZFVVLNpbpSV0QW8iZzp7pATeIZoXNo5uBKftKLF1Askvk5U6485SaOtN HX4/eT/Bo9eA02k/qfqwhntihGOZOQF1aWyXKuoROd6k+c+5+mTHORAadn3F/9Jy ju52B5AXk81Br2QyUM3LT03CD9nhWtyvUM8RfcyELmi3hoQ8wkgKLonUQ9sMqrJH R5jt1hXY5lrXbDXQVM6BREHdWuUrjgkeGBgzhHZt7xDWdNQiFShJUcVwDX87CYTi Q+XvFPoTfzgi5KsHUetqyz+3YwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFOe6lo90 F1PUk6pLHZ1vgQfw5sbBMB8GA1UdIwQYMBaAFKnpWkFrzO79huovoBnCXk12uOnZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzY3Ni9DRDM4QUIxNkRE RDkxMUU4QUY0NTFGMEFDNEY5QUUwMi9xZWxhUVd2TTd2Mkc2aS1nR2NKZVRYYTQ2 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlbGFRV3ZNN3YyRzZpLWdHY0plVFhhNDZkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2NzYvQ0QzOEFCMTZEREQ5MTFFOEFGNDUxRjBBQzRGOUFFMDIvRUZBMDAxNUU1 OTM5MTFFRkE4RUFENDNDQzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDAk BAIAATAeAwQALXt0AwQBLXt2AwQCZzOMAwQCZ2eAAwQAyw+WMBgEAgACMBIDBwMk AfVAAAADBwAkAfVAABAwDQYJKoZIhvcNAQELBQADggEBAFUnXyW8mqgDnSSboxl0 c21IORYxnXK7kqDBKoQZWM3aZZo6GnAwa8IErc/+3blh5MLeZiL1Oxo168vMOtdS xGu25D424FXwno1D37ND2BgjuyK0g4dg9o+9ariteWPUd9oW3oZDsWJe5XtMfWtQ NFz3iROXeeGKckYvzj7NMNBK/uvkjeL7VW1tuWcccVzleH4MjkXuzXuFjJxA1nL6 rjBByoBjIRtis2235EBx4Z45s+5DhERpv9kJUE+jCrgY7jVEm7N/RaUmuOSg5Uf6 2jxo6VWGIEOzvnD+uISgIjhBA+zsqb39xuihAQuSS/lxO+edKZdtVhyb1xyA+tLy x+M= -----END CERTIFICATE-----Generated at Mon Mar 2 04:04:39 2026 by rpki-client