$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa File: C2A410D4ADA011F08E990C1DC4F9AE02.roa (raw, json) Hash identifier: qwwYep7qRlTP8X6SrltD3/DTpF9H98KfUFFBA+dvWXU= Subject key identifier: B9:FF:F5:10:68:7D:F5:5A:51:4A:4C:E3:6E:07:B4:EE:EB:B8:D8:68 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 0A1E Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:36:43 +0000 ROA not before: Fri 06 Feb 2026 04:17:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135377 IP address blocks: 43.224.65.0/24 maxlen: 24 43.224.66.0/24 maxlen: 24 43.224.67.0/24 maxlen: 24 45.253.246.0/24 maxlen: 24 45.255.133.0/24 maxlen: 24 45.255.134.0/24 maxlen: 24 45.255.135.0/24 maxlen: 24 61.29.241.0/24 maxlen: 24 61.29.249.0/24 maxlen: 24 61.29.251.0/24 maxlen: 24 103.98.10.0/24 maxlen: 24 103.98.11.0/24 maxlen: 24 103.216.100.0/24 maxlen: 24 103.216.101.0/24 maxlen: 24 157.119.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Feb 6 04:17:37 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4873b-86c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7e:ce:d5:40:8a:16:36:1e:46:15:d0:90:63: 9f:76:47:a7:68:69:e6:6f:91:7e:d3:83:5b:3a:3a: 4a:0e:3d:d7:8d:27:20:2d:8b:8d:e1:e0:4b:c5:b7: a3:6f:cd:0c:ba:fe:83:15:4b:29:bb:c0:08:c7:66: 9b:e1:1c:dc:cf:17:0a:e8:af:9e:77:bc:2c:13:42: e1:56:cb:a7:7d:7a:bb:ea:3b:b5:1c:98:80:f9:cb: f7:6a:5d:6f:7b:a1:ce:96:98:58:ee:1b:5b:5a:c8: 65:57:c4:48:47:59:9c:c3:f9:5e:ee:81:a2:57:90: d4:22:db:1d:03:77:34:f1:ff:c8:f1:0f:9d:66:6e: 3f:a0:02:53:22:a4:85:99:5b:e2:ba:3d:3b:a1:a4: 41:62:f6:3c:2f:46:72:b5:a2:b9:fb:42:a2:95:f1: 98:9e:68:9a:02:45:12:47:37:66:15:45:ba:17:c6: 63:9c:6a:4a:9c:97:ee:21:b4:75:00:ce:e1:fe:3f: 22:a3:76:a4:07:38:a5:e2:5d:6e:c9:11:1e:8d:c4: c8:67:13:d3:c3:08:a3:59:6a:f8:78:8d:56:37:30: c6:ad:7b:4e:8e:99:7a:0c:6a:0c:0a:51:f9:6d:62: 4e:b4:f9:ff:26:3f:84:a2:7e:de:80:f0:9c:f4:7c: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FF:F5:10:68:7D:F5:5A:51:4A:4C:E3:6E:07:B4:EE:EB:B8:D8:68 X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.65.0-43.224.67.255 45.253.246.0/24 45.255.133.0-45.255.135.255 61.29.241.0/24 61.29.249.0/24 61.29.251.0/24 103.98.10.0/23 103.216.100.0/23 157.119.233.0/24 Signature Algorithm: sha256WithRSAEncryption 72:3b:b3:2f:eb:ec:68:4e:b2:ca:ad:b1:56:69:61:b9:f5:19: 81:35:8f:7b:7a:9f:c9:12:45:b2:50:8e:94:02:81:52:e4:53: c4:aa:3a:1d:6b:6a:5f:62:c6:8f:d1:f1:92:62:5c:6a:0d:82: 3f:b2:48:b4:a7:38:46:2f:aa:2b:ac:55:8f:d8:41:6a:d7:56: cd:cb:71:79:c0:ed:e1:bd:52:87:8f:e7:3c:d7:45:16:51:2e: d4:a0:fb:ae:b0:83:10:59:af:bf:7a:d1:53:f3:d6:32:06:d8: 6e:fe:72:ea:7b:9d:60:1f:5c:b5:00:10:40:a5:98:47:f2:98: a3:22:58:37:d8:02:ca:60:34:ce:3f:cb:3f:cf:18:4d:84:e8: 22:0e:ec:ee:97:43:a3:b7:4b:d4:fc:fe:3c:05:d4:a4:73:d6: 7d:d9:f0:d5:a3:a3:c7:72:47:ac:97:11:3c:f6:dc:72:39:cf: 33:40:ae:91:8d:37:d8:90:78:4a:4e:a3:71:1b:e2:e8:d5:bb: d8:de:a9:99:e2:e2:4a:41:83:2b:8f:ec:7d:f5:4c:3b:1b:98: f6:0d:da:11:3f:36:d8:fb:1b:bd:50:10:f5:50:4f:53:a5:65: 14:d0:f7:b4:78:e0:84:bd:07:40:a0:29:1c:a2:1b:cd:2d:b2: 86:83:55:22 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjYwMjA2MDQxNzM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODczYi04NmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH7O1UCKFjYeRhXQkGOfdkenaGnmb5F+04NbOjpKDj3XjScgLYuN4eBLxbej b80Muv6DFUspu8AIx2ab4RzczxcK6K+ed7wsE0LhVsunfXq76ju1HJiA+cv3al1v e6HOlphY7htbWshlV8RIR1mcw/le7oGiV5DUItsdA3c08f/I8Q+dZm4/oAJTIqSF mVviuj07oaRBYvY8L0ZytaK5+0KilfGYnmiaAkUSRzdmFUW6F8ZjnGpKnJfuIbR1 AM7h/j8io3akBzil4l1uyREejcTIZxPTwwijWWr4eI1WNzDGrXtOjpl6DGoMClH5 bWJOtPn/Jj+Eon7egPCc9HwItQIDAQABo4ICoDCCApwwHQYDVR0OBBYEFLn/9RBo ffVaUUpM424HtO7ruNhoMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvQzJBNDEwRDRB REEwMTFGMDhFOTkwQzFEQzRGOUFFMDIucm9hMF8GCCsGAQUFBwEHAQH/BFAwTjBM BAIAATBGMAwDBAAr4EEDBAIr4EADBAAt/fYwDAMEAC3/hQMEAy3/gAMEAD0d8QME AD0d+QMEAD0d+wMEAWdiCgMEAWfYZAMEAJ136TANBgkqhkiG9w0BAQsFAAOCAQEA cjuzL+vsaE6yyq2xVmlhufUZgTWPe3qfyRJFslCOlAKBUuRTxKo6HWtqX2LGj9Hx kmJcag2CP7JItKc4Ri+qK6xVj9hBatdWzctxecDt4b1Sh4/nPNdFFlEu1KD7rrCD EFmvv3rRU/PWMgbYbv5y6nudYB9ctQAQQKWYR/KYoyJYN9gCymA0zj/LP88YTYTo Ig7s7pdDo7dL1Pz+PAXUpHPWfdnw1aOjx3JHrJcRPPbccjnPM0CukY032JB4Sk6j cRvi6NW72N6pmeLiSkGDK4/sffVMOxuY9g3aET822PsbvVAQ9VBPU6VlFND3tHjg hL0HQKApHKIbzS2yhoNVIg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:19:39 2026 by rpki-client