$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/2FCFD692395C11F1A22F7EE2CB833773.roa File: 2FCFD692395C11F1A22F7EE2CB833773.roa (raw, json) Hash identifier: N0Hc/HxaJxuTJcm6mTEnZUv6QgPmxBhvGFlA3gJBs0c= Subject key identifier: 4F:AC:74:5C:77:80:4C:5C:3C:0E:D4:6B:2F:C6:32:EC:4C:4F:66:07 Certificate issuer: /CN=A911DD4C/serialNumber=F4C30A776EB5A3EC8AC3EE00A5AAA60A23EF2E78 Certificate serial: 03 Authority key identifier: F4:C3:0A:77:6E:B5:A3:EC:8A:C3:EE:00:A5:AA:A6:0A:23:EF:2E:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMKd261o-yKw-4ApaqmCiPvLng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/2FCFD692395C11F1A22F7EE2CB833773.roa Signing time: Thu 16 Apr 2026 06:19:13 +0000 ROA not before: Thu 16 Apr 2026 06:19:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4134 IP address blocks: 203.191.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/9MMKd261o-yKw-4ApaqmCiPvLng.crl rsync://rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/9MMKd261o-yKw-4ApaqmCiPvLng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMKd261o-yKw-4ApaqmCiPvLng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD4C, serialNumber=F4C30A776EB5A3EC8AC3EE00A5AAA60A23EF2E78 Validity Not Before: Apr 16 06:19:13 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69e07f61-1674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:98:ba:b6:de:c7:de:37:8f:b0:69:2f:44:c2: 64:c8:15:71:ea:70:e5:9f:58:a5:ed:8d:77:60:c7: d5:35:0a:88:2c:76:34:25:03:f1:d4:51:d1:20:b0: 54:26:87:63:d5:58:bf:39:93:99:0b:2d:6e:11:0d: 61:ab:62:1a:ec:4d:46:16:3a:ef:e8:00:9d:ba:3f: ce:0d:a1:12:0d:ac:4a:73:c1:8c:4b:90:7d:20:99: 35:3a:c6:de:7d:e6:14:67:e3:60:17:b1:c2:14:cd: b3:e6:56:5f:c3:ab:9d:5b:50:a3:50:1e:57:9d:4e: 41:50:ce:70:8b:8f:09:58:c9:04:96:e1:29:9c:93: 9a:a5:ac:3a:39:31:44:98:8e:5e:e6:98:73:84:60: 63:d4:23:f3:87:9b:7d:af:a4:d3:b0:38:70:16:73: 0e:e7:aa:4e:df:68:ae:6f:2e:84:28:e3:60:81:7c: f4:65:53:4a:7a:c4:f6:c5:ce:fb:92:74:22:19:ed: e1:7f:eb:66:1a:f4:ae:fa:d4:45:06:75:40:eb:c2: e9:9d:94:f9:08:bf:02:7d:fb:72:36:c1:04:76:b5: 48:5a:a3:0d:df:5f:6b:f0:41:b8:4a:bf:ef:bb:c2: 71:3d:59:28:87:b5:c2:50:af:cc:2d:ac:9b:46:f4: c6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AC:74:5C:77:80:4C:5C:3C:0E:D4:6B:2F:C6:32:EC:4C:4F:66:07 X509v3 Authority Key Identifier: keyid:F4:C3:0A:77:6E:B5:A3:EC:8A:C3:EE:00:A5:AA:A6:0A:23:EF:2E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/9MMKd261o-yKw-4ApaqmCiPvLng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MMKd261o-yKw-4ApaqmCiPvLng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD4C/8D5D3828395B11F19CECA08BCB833773/2FCFD692395C11F1A22F7EE2CB833773.roa sbgp-ipAddrBlock: critical IPv4: 203.191.144.0/21 Signature Algorithm: sha256WithRSAEncryption a8:0b:9e:30:88:e8:be:e3:30:a0:2c:ee:92:80:a0:58:a9:55: ac:12:40:06:ad:29:98:b9:51:d1:80:c7:8d:a0:3b:23:59:27: 70:0d:18:ff:f9:87:7b:ea:5d:70:48:1e:03:ea:0c:f4:db:3d: b1:39:80:90:0f:7d:12:06:a7:82:19:1e:fa:c2:a4:99:2a:bb: 21:9a:cb:07:af:5b:df:b9:74:ab:13:00:76:20:a6:ea:63:e8: c9:73:c8:b5:f2:38:bb:04:72:1b:c6:52:79:b9:fa:34:fa:4c: d4:f5:74:61:fc:31:e8:ae:51:f3:c7:02:6c:f9:49:cb:1d:87: a6:a8:59:d1:68:eb:d2:37:c7:28:1d:cd:69:fb:da:11:9d:04: 18:38:4c:4d:f0:13:36:fc:44:5a:10:b1:79:0e:d2:c1:23:99: 44:a3:35:af:0b:a4:02:a9:de:85:0e:7b:a7:68:fc:a8:23:b3: db:6f:c1:63:bb:11:a8:96:4b:ac:e4:cc:2b:d9:e7:5e:88:01: 10:e2:88:17:3c:b1:75:ea:5e:37:c3:4e:9b:02:8e:24:9c:f4: f3:fe:3a:0d:48:90:41:33:b0:41:8f:8a:f9:a8:ff:ea:c5:b2: 22:97:a9:26:5a:fd:63:e2:06:ea:38:38:9e:58:66:a2:8d:25: ed:b3:3a:a1 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQ0QzExMC8GA1UEBRMoRjRDMzBBNzc2RUI1QTNFQzhBQzNFRTAwQTVBQUE2MEEy M0VGMkU3ODAeFw0yNjA0MTYwNjE5MTNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTA3ZjYxLTE2NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdmLq23sfeN4+waS9EwmTIFXHqcOWfWKXtjXdgx9U1CogsdjQlA/HUUdEgsFQm h2PVWL85k5kLLW4RDWGrYhrsTUYWOu/oAJ26P84NoRINrEpzwYxLkH0gmTU6xt59 5hRn42AXscIUzbPmVl/Dq51bUKNQHledTkFQznCLjwlYyQSW4Smck5qlrDo5MUSY jl7mmHOEYGPUI/OHm32vpNOwOHAWcw7nqk7faK5vLoQo42CBfPRlU0p6xPbFzvuS dCIZ7eF/62Ya9K761EUGdUDrwumdlPkIvwJ9+3I2wQR2tUhaow3fX2vwQbhKv++7 wnE9WSiHtcJQr8wtrJtG9MbbAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUT6x0XHeA TFw8DtRrL8Yy7ExPZgcwHwYDVR0jBBgwFoAU9MMKd261o+yKw+4ApaqmCiPvLngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDRDLzhENUQzODI4Mzk1 QjExRjE5Q0VDQTA4QkNCODMzNzczLzlNTUtkMjYxby15S3ctNEFwYXFtQ2lQdkxu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOU1NS2QyNjFvLXlLdy00QXBhcW1DaVB2TG5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQ0Qy84RDVEMzgyODM5NUIxMUYxOUNFQ0EwOEJDQjgzMzc3My8yRkNGRDY5MjM5 NUMxMUYxQTIyRjdFRTJDQjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPLv5AwDQYJKoZIhvcNAQELBQADggEBAKgLnjCI6L7jMKAs7pKAoFip VawSQAatKZi5UdGAx42gOyNZJ3ANGP/5h3vqXXBIHgPqDPTbPbE5gJAPfRIGp4IZ HvrCpJkquyGaywevW9+5dKsTAHYgpupj6MlzyLXyOLsEchvGUnm5+jT6TNT1dGH8 MeiuUfPHAmz5Scsdh6aoWdFo69I3xygdzWn72hGdBBg4TE3wEzb8RFoQsXkO0sEj mUSjNa8LpAKp3oUOe6do/Kgjs9tvwWO7EaiWS6zkzCvZ516IARDiiBc8sXXqXjfD TpsCjiSc9PP+Og1IkEEzsEGPivmo/+rFsiKXqSZa/WPiBuo4OJ5YZqKNJe2zOqE= -----END CERTIFICATE-----Generated at Sun Apr 19 09:33:43 2026 by rpki-client