$ rpki-client -vvf rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa File: 7416299C4B0C11EDB8430084C4F9AE02.roa (raw, json) Hash identifier: fuU1wzFAik7IbNhPKdo3Uv+askPxbppv3V474lR1Znc= Subject key identifier: C0:79:67:BF:E5:3F:14:2E:EA:78:0E:E5:14:72:97:18:C7:0C:B5:84 Certificate issuer: /CN=A911DED4/serialNumber=8264AB280ADE993F3D222FBC864DEE2286BA9065 Certificate serial: 0280 Authority key identifier: 82:64:AB:28:0A:DE:99:3F:3D:22:2F:BC:86:4D:EE:22:86:BA:90:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:09:49 +0000 ROA not before: Thu 21 Aug 2025 02:39:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38038 IP address blocks: 103.152.222.0/23 maxlen: 24 2406:35c0::/32 maxlen: 32 2406:35c0:4000::/36 maxlen: 36 2406:35c0:5000::/36 maxlen: 36 2406:35c0:6000::/35 maxlen: 36 2406:35c0:8000::/33 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.crl rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DED4, serialNumber=8264AB280ADE993F3D222FBC864DEE2286BA9065 Validity Not Before: Aug 21 02:39:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42c8d-c095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:da:3c:41:0b:45:0e:24:82:09:37:ff:ce:ac: 68:75:e4:f7:76:26:04:cc:86:4d:10:cf:4a:b2:61: 52:c7:1e:53:ae:16:e5:ed:0d:a8:78:ce:3a:dc:9d: 71:a5:c7:84:04:a7:96:10:07:6f:07:7e:cb:ad:a1: 20:91:e5:ed:aa:e0:06:b7:48:19:10:ec:29:03:3d: 33:e7:20:15:90:21:96:01:4d:f0:3e:8c:4f:d9:ea: db:e7:f6:d6:5a:07:8f:4c:1b:5d:cb:5d:57:8b:2a: a3:cf:fe:d7:9e:d6:be:2c:51:29:f8:4d:4f:98:bc: 59:30:a3:c3:04:9e:0b:3f:61:aa:fe:df:0f:0e:32: f6:d9:bf:d3:c8:c4:c7:f2:7f:27:c8:42:26:6a:9b: aa:81:0d:51:7e:80:e3:d5:6a:ec:ee:40:43:6a:fa: 6b:9c:7a:24:ca:17:38:57:35:ce:80:38:44:12:3c: 44:66:bb:78:b5:ff:ed:13:2f:0f:3d:64:55:b3:88: 67:9a:88:19:39:bd:89:26:3f:d8:4a:8a:b0:f8:0f: 37:df:f0:7b:52:dc:f7:b2:c1:a5:85:93:c6:e0:0a: 95:d3:cf:2b:54:fa:29:76:e5:2e:ed:04:8d:20:0c: 47:72:7c:17:26:b6:4c:ba:29:b3:ee:b1:08:3c:67: a8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:79:67:BF:E5:3F:14:2E:EA:78:0E:E5:14:72:97:18:C7:0C:B5:84 X509v3 Authority Key Identifier: keyid:82:64:AB:28:0A:DE:99:3F:3D:22:2F:BC:86:4D:EE:22:86:BA:90:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/gmSrKAremT89Ii-8hk3uIoa6kGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmSrKAremT89Ii-8hk3uIoa6kGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DED4/E4FB2BE44B0711ED8EC33947C4F9AE02/7416299C4B0C11EDB8430084C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.222.0/23 IPv6: 2406:35c0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:8a:87:6f:ef:e5:51:3e:09:62:ce:31:f7:94:fd:7c:83:01: 2d:46:26:4c:24:38:fb:a1:e4:5b:e9:50:0a:b9:22:a0:47:bf: 9e:62:13:fb:77:f3:5c:35:2b:08:e8:40:f3:f6:85:9f:96:2e: ff:bd:f2:07:de:27:5d:cc:8b:89:43:2b:b5:46:2a:ff:cb:0b: 08:a6:3b:d9:4f:70:53:ac:eb:07:16:c0:87:d3:36:5c:ea:c5: a8:50:83:97:4d:39:42:ae:00:86:c0:d5:96:6a:28:5a:c3:e3: c2:d3:9e:6e:93:30:09:fe:23:3c:74:72:b0:c7:ab:16:7c:b3: 51:1b:3c:1c:ab:c8:7b:e8:03:dc:27:0a:68:c3:07:10:2c:4b: dc:06:80:8a:a8:f0:a9:83:7e:ee:39:a9:11:b5:0a:5b:b9:b9: 73:4c:e6:4a:af:4b:4d:82:80:2f:3c:03:95:7e:d2:32:63:92: 11:0d:aa:19:7c:05:87:31:9d:0b:fa:60:5d:1d:bb:f7:6b:23: 85:1b:43:a9:9d:8b:86:5f:03:5a:70:75:de:a8:f2:8a:93:72: 2f:1a:22:4c:4a:3a:6d:c9:08:2c:55:82:4b:d5:85:3a:d6:0c: 46:4c:fe:86:6f:27:25:d9:4d:79:1d:13:28:d6:3a:b9:2e:5f: bc:32:0c:12 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFRDQxMTAvBgNVBAUTKDgyNjRBQjI4MEFERTk5M0YzRDIyMkZCQzg2NERFRTIy ODZCQTkwNjUwHhcNMjUwODIxMDIzOTQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmM4ZC1jMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnto8QQtFDiSCCTf/zqxodeT3diYEzIZNEM9KsmFSxx5Trhbl7Q2oeM463J1x pceEBKeWEAdvB37LraEgkeXtquAGt0gZEOwpAz0z5yAVkCGWAU3wPoxP2erb5/bW WgePTBtdy11Xiyqjz/7Xnta+LFEp+E1PmLxZMKPDBJ4LP2Gq/t8PDjL22b/TyMTH 8n8nyEImapuqgQ1RfoDj1Wrs7kBDavprnHokyhc4VzXOgDhEEjxEZrt4tf/tEy8P PWRVs4hnmogZOb2JJj/YSoqw+A833/B7Utz3ssGlhZPG4AqV088rVPopduUu7QSN IAxHcnwXJrZMuimz7rEIPGeoSwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMB5Z7/l PxQu6ngO5RRylxjHDLWEMB8GA1UdIwQYMBaAFIJkqygK3pk/PSIvvIZN7iKGupBl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREVENC9FNEZCMkJFNDRC MDcxMUVEOEVDMzM5NDdDNEY5QUUwMi9nbVNyS0FyZW1UODlJaS04aGszdUlvYTZr R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtU3JLQXJlbVQ4OUlpLThoazN1SW9hNmtHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFRDQvRTRGQjJCRTQ0QjA3MTFFRDhFQzMzOTQ3QzRGOUFFMDIvNzQxNjI5OUM0 QjBDMTFFREI4NDMwMDg0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5jeMA0EAgACMAcDBQAkBjXAMA0GCSqGSIb3DQEBCwUAA4IBAQCc iodv7+VRPglizjH3lP18gwEtRiZMJDj7oeRb6VAKuSKgR7+eYhP7d/NcNSsI6EDz 9oWfli7/vfIH3iddzIuJQyu1Rir/ywsIpjvZT3BTrOsHFsCH0zZc6sWoUIOXTTlC rgCGwNWWaihaw+PC055ukzAJ/iM8dHKwx6sWfLNRGzwcq8h76APcJwpowwcQLEvc BoCKqPCpg37uOakRtQpbublzTOZKr0tNgoAvPAOVftIyY5IRDaoZfAWHMZ0L+mBd Hbv3ayOFG0OpnYuGXwNacHXeqPKKk3IvGiJMSjptyQgsVYJL1YU61gxGTP6Gbycl 2U15HRMo1jq5Ll+8MgwS -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:33 2026 by rpki-client