$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa File: 652283665B1A11EFA78B847EC4F9AE02.roa (raw, json) Hash identifier: UsVYh0cMVNRpr+Gc87SWu7LilmsEheyEv/IWx8kKIpA= Subject key identifier: AE:9E:75:2E:30:46:AD:12:77:FB:D1:34:36:53:D0:F6:CA:C2:39:E2 Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 0136 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:26:30 +0000 ROA not before: Fri 25 Jul 2025 06:44:22 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 2042 IP address blocks: 103.235.172.0/22 maxlen: 22 150.242.216.0/22 maxlen: 22 150.242.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Jul 25 06:44:22 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a581f5-dfba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7f:4a:65:ff:1b:fd:74:78:85:73:5d:39:3b: cf:74:27:d8:a7:be:ac:90:4d:c8:a3:5d:97:53:59: 42:a2:21:47:7b:62:47:03:31:62:57:12:94:8e:52: 98:a3:03:b5:00:66:6b:16:f4:c3:11:7b:db:1b:e9: 5e:34:f7:ce:7f:5c:9b:0a:25:d1:cc:ad:55:8c:aa: f6:e6:05:43:4e:91:89:61:b6:1b:b6:1e:f2:16:05: 24:e5:a1:f6:1a:b7:63:f9:ba:db:1c:57:64:e7:a1: d3:46:70:cc:0f:19:29:48:b7:9a:1f:1c:d9:0c:c8: 88:93:2c:47:df:c9:cc:50:2f:1e:62:2d:cb:e5:70: 8f:ef:d4:74:ae:b5:14:f5:af:9e:9a:cf:7e:e9:49: 90:74:7c:a8:24:55:ad:61:ae:ab:c9:11:cc:e9:53: 58:5f:47:99:8a:4a:48:e1:01:2f:82:20:04:d3:31: b8:14:2d:2d:fc:7f:58:b4:b4:4c:b8:0a:a3:5a:3f: 8e:53:16:5f:b6:a4:d7:05:7d:3e:a0:1d:fa:8f:fd: 48:31:ee:80:fd:ed:b5:04:fe:bf:9f:45:88:0b:f5: d3:99:9a:e2:d9:7f:35:db:60:78:dd:8d:45:1b:75: 9b:70:20:58:eb:6a:dc:53:19:2e:45:3c:e8:82:e3: c3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9E:75:2E:30:46:AD:12:77:FB:D1:34:36:53:D0:F6:CA:C2:39:E2 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.235.172.0/22 150.242.216.0/22 Signature Algorithm: sha256WithRSAEncryption a9:09:1c:f3:37:64:ee:b0:2d:4c:e1:88:64:db:8c:5c:d0:03: 34:b0:82:94:db:51:02:cc:b9:75:81:fe:59:4b:fb:4c:b8:f7: 69:22:9e:45:a6:5a:36:58:0c:40:2d:71:61:dd:2c:7b:e6:2a: bc:ca:0c:83:89:bb:2d:1a:64:80:36:b5:25:1b:b6:f8:25:aa: a5:de:c6:3f:c1:3f:29:60:6b:c8:46:16:4c:b0:8a:fd:39:4a: f6:6f:15:cf:1f:45:0d:bb:4b:46:35:9c:7e:da:58:c8:3d:85: 68:09:6b:b6:3e:7f:b8:9a:62:c3:d2:38:e8:2a:ff:76:1b:b9: 25:b2:a5:25:e4:52:b7:f5:45:b1:5e:f0:c2:ca:eb:45:8a:43: 13:a6:62:c5:1f:64:80:f0:0e:11:78:85:6a:5f:e7:ed:b4:d0: 91:e4:80:c3:27:75:53:cd:f8:68:9e:5d:e9:e0:db:a7:f1:a4: bd:4c:25:7a:d0:1e:1f:2d:86:93:8a:6d:b5:66:0b:cc:a1:36: a4:71:7c:80:52:07:3c:fd:4d:73:3a:1b:49:4f:4c:23:93:57: 01:d0:b5:5d:07:80:55:a3:cd:b6:6e:48:01:41:b0:7a:e3:33: 3b:b6:c7:9a:5c:a9:b1:64:7b:df:26:30:d4:5c:1e:45:38:85: 24:48:09:48 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUwNzI1MDY0NDIyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODFmNS1kZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6X9KZf8b/XR4hXNdOTvPdCfYp76skE3Io12XU1lCoiFHe2JHAzFiVxKUjlKY owO1AGZrFvTDEXvbG+leNPfOf1ybCiXRzK1VjKr25gVDTpGJYbYbth7yFgUk5aH2 Grdj+brbHFdk56HTRnDMDxkpSLeaHxzZDMiIkyxH38nMUC8eYi3L5XCP79R0rrUU 9a+ems9+6UmQdHyoJFWtYa6ryRHM6VNYX0eZikpI4QEvgiAE0zG4FC0t/H9YtLRM uAqjWj+OUxZftqTXBX0+oB36j/1IMe6A/e21BP6/n0WIC/XTmZri2X8122B43Y1F G3WbcCBY62rcUxkuRTzoguPDgwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFK6edS4w Rq0Sd/vRNDZT0PbKwjniMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUREMDgvOUE1RkJCNjI1QjE5MTFFRkJFRDBDNDdBQzRGOUFFMDIvNjUyMjgzNjY1 QjFBMTFFRkE3OEI4NDdFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ+usAwQClvLYMA0GCSqGSIb3DQEBCwUAA4IBAQCpCRzzN2TusC1M 4Yhk24xc0AM0sIKU21ECzLl1gf5ZS/tMuPdpIp5Fplo2WAxALXFh3Sx75iq8ygyD ibstGmSANrUlG7b4Jaql3sY/wT8pYGvIRhZMsIr9OUr2bxXPH0UNu0tGNZx+2ljI PYVoCWu2Pn+4mmLD0jjoKv92G7klsqUl5FK39UWxXvDCyutFikMTpmLFH2SA8A4R eIVqX+fttNCR5IDDJ3VTzfhonl3p4Nun8aS9TCV60B4fLYaTim21ZgvMoTakcXyA Ugc8/U1zOhtJT0wjk1cB0LVdB4BVo822bkgBQbB64zM7tseaXKmxZHvfJjDUXB5F OIUkSAlI -----END CERTIFICATE-----Generated at Mon Mar 2 21:13:31 2026 by rpki-client