$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/86A83D10DA3E11F09B1225578ED3641D.roa File: 86A83D10DA3E11F09B1225578ED3641D.roa (raw, json) Hash identifier: qT26ksHr1adpPy4+cs/Tb7K/RRcosClSwKww1XyI5BQ= Subject key identifier: AE:61:AA:FC:77:10:5F:EC:AC:51:7C:DB:B3:2F:04:AB:80:C9:5F:28 Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 31 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/86A83D10DA3E11F09B1225578ED3641D.roa Signing time: Sun 01 Mar 2026 05:55:02 +0000 ROA not before: Tue 03 Feb 2026 08:26:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152194 IP address blocks: 43.226.16.0/24 maxlen: 24 103.45.64.0/24 maxlen: 24 103.45.65.0/24 maxlen: 24 103.45.66.0/24 maxlen: 24 103.45.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Feb 3 08:26:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d4b6-9585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:98:43:ce:a0:b9:81:d6:9c:7b:ee:94:7f: 99:1f:88:4f:12:0a:02:79:1a:2d:66:79:9b:d4:f3: f2:57:61:82:9e:d2:be:1f:43:3e:84:31:a2:ed:b2: 87:1a:81:7a:21:17:d9:bd:d2:fc:e4:ec:df:03:92: 88:40:b3:93:95:fb:7e:63:1f:cd:31:bf:68:1f:49: 52:2e:79:fb:90:1c:d3:9a:54:07:f2:7e:90:f3:e1: 4a:60:d2:e8:a8:44:46:ca:fc:96:dc:1a:ce:ef:54: ea:e6:64:33:00:54:2b:d7:3a:88:8d:33:f6:b3:b3: 82:23:ba:2c:eb:cd:ee:74:79:2a:ce:6f:0d:36:c4: 98:fe:54:a7:6d:a8:39:07:26:ea:6a:00:2b:56:08: 4b:23:3e:69:71:fc:20:3d:e1:63:b1:7d:dd:fe:11: ae:61:ba:9a:be:8a:83:c7:9d:b2:a5:17:a6:ce:0d: 4c:d9:1d:a5:59:6a:c4:6a:29:46:54:97:35:f5:86: e3:56:89:75:d0:b7:b2:32:8c:e6:2b:ce:5f:b9:8d: 80:68:25:02:91:63:98:86:87:20:41:45:28:f3:0e: e3:48:01:0c:6a:92:2a:10:b9:db:18:7e:d1:60:bc: 5d:b0:73:c5:b7:e5:22:31:f5:5a:d9:c7:45:da:24: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:61:AA:FC:77:10:5F:EC:AC:51:7C:DB:B3:2F:04:AB:80:C9:5F:28 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/86A83D10DA3E11F09B1225578ED3641D.roa sbgp-ipAddrBlock: critical IPv4: 43.226.16.0/24 103.45.64.0/22 Signature Algorithm: sha256WithRSAEncryption 79:57:61:d4:42:29:e3:e4:1a:4d:75:cf:e4:3c:64:d0:94:cb: 8c:9e:eb:2f:82:60:0c:b9:32:22:0f:45:5f:08:16:8a:6c:78: 22:b0:1a:0a:d1:7b:6f:3e:c4:50:18:71:b6:54:fe:0c:07:0f: 21:b3:c0:07:8d:fb:58:ee:2e:34:8f:5a:23:9a:f9:7b:ce:b7: c4:f3:9c:6e:b2:59:88:26:61:11:23:a0:0f:d1:d6:ef:de:43: ab:49:53:b3:97:e3:1a:26:34:07:6c:4d:05:90:3c:e7:77:15: a1:d8:96:88:ac:28:51:c6:a3:92:f9:8d:64:06:01:12:8a:00: d7:7d:88:20:85:6e:d5:ee:7c:e3:d2:de:66:10:7c:9e:89:72: f5:da:98:c4:0a:fe:ee:29:d3:b0:cd:2f:b7:4b:5c:48:d8:f4: 62:7e:6b:6f:3a:95:ed:3a:6b:72:93:1a:68:1c:77:85:97:cc: 4b:7a:9d:59:ab:d8:e5:c5:73:70:b1:c7:d9:d9:d2:64:6f:58: e2:60:20:e1:08:6f:42:1d:95:ce:a0:51:4c:16:63:9f:b8:8d: 62:2d:49:ef:b1:b4:45:4b:5e:62:76:44:2f:52:db:bd:11:c2: 74:28:2b:f1:6d:f7:3d:45:cf:6d:fc:01:65:03:9d:67:31:35: dc:40:51:9c -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAyMDMwODI2MDdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNGI2LTk1ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmO5hDzqC5gdace+6Uf5kfiE8SCgJ5Gi1meZvU8/JXYYKe0r4fQz6EMaLtsoca gXohF9m90vzk7N8DkohAs5OV+35jH80xv2gfSVIuefuQHNOaVAfyfpDz4Upg0uio REbK/JbcGs7vVOrmZDMAVCvXOoiNM/azs4Ijuizrze50eSrObw02xJj+VKdtqDkH JupqACtWCEsjPmlx/CA94WOxfd3+Ea5hupq+ioPHnbKlF6bODUzZHaVZasRqKUZU lzX1huNWiXXQt7IyjOYrzl+5jYBoJQKRY5iGhyBBRSjzDuNIAQxqkioQudsYftFg vF2wc8W35SIx9VrZx0XaJDHtAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUrmGq/HcQ X+ysUXzbsy8Eq4DJXygwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0M2MS8zMzFEMTQxOERBM0UxMUYwOEZEMUU4Mzg4RUQzNjQxRC84NkE4M0QxMERB M0UxMUYwOUIxMjI1NTc4RUQzNjQxRC5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAAr4hADBAJnLUAwDQYJKoZIhvcNAQELBQADggEBAHlXYdRCKePkGk11 z+Q8ZNCUy4ye6y+CYAy5MiIPRV8IFopseCKwGgrRe28+xFAYcbZU/gwHDyGzwAeN +1juLjSPWiOa+XvOt8TznG6yWYgmYREjoA/R1u/eQ6tJU7OX4xomNAdsTQWQPOd3 FaHYloisKFHGo5L5jWQGARKKANd9iCCFbtXufOPS3mYQfJ6JcvXamMQK/u4p07DN L7dLXEjY9GJ+a286le06a3KTGmgcd4WXzEt6nVmr2OXFc3Cxx9nZ0mRvWOJgIOEI b0Idlc6gUUwWY5+4jWItSe+xtEVLXmJ2RC9S270RwnQoK/Ft9z1Fz238AWUDnWcx NdxAUZw= -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:56 2026 by rpki-client