$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa File: 0AC1EDE6D0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: ASjnTKPv932QYEBpJ7WAKTfGNbtojzRlqWSz32jd01k= Subject key identifier: 08:55:CD:59:92:2D:B2:DB:C6:18:0A:7B:4F:91:BB:88:C7:4A:5E:DB Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 08CC Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:21 +0000 ROA not before: Tue 18 Feb 2025 22:09:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198504 IP address blocks: 103.255.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C, serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Validity Not Before: Feb 18 22:09:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42f41-e957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:dd:60:7a:0a:d0:28:9d:1d:6c:1e:1c:7d: 11:95:7d:32:6c:ea:bc:f1:de:39:a3:f7:24:0a:15: 90:91:67:a1:9d:1a:28:35:cb:7b:7d:5d:3d:6c:60: 9d:61:d6:ef:61:79:91:ad:db:da:77:3a:17:df:71: 16:ce:98:19:7e:01:ec:21:04:3d:b4:7a:2f:18:59: 08:e9:86:9e:0d:9c:fb:0b:dd:15:1b:7f:25:0d:f4: ff:67:12:14:5d:c8:0b:80:5c:b7:7d:b5:bf:27:6c: d1:08:be:a6:5e:d1:06:56:c9:97:09:0e:21:fd:10: 09:56:a4:42:f3:77:61:d5:6e:55:fa:ce:35:a1:36: d7:2d:4e:3e:58:57:4b:b7:75:a9:82:0d:3e:6b:7f: 45:3e:5b:3a:91:fa:cc:f3:f7:c6:ee:11:f1:d6:02: 85:87:28:b0:61:a3:59:2a:f4:bd:45:d5:fd:4d:64: a3:43:95:76:4c:da:77:0d:76:94:e9:e3:c4:93:f5: 54:0f:f8:b2:26:10:10:d1:eb:34:2a:3a:81:76:8a: 1d:14:58:7b:a7:35:7e:36:1b:ed:46:20:21:79:65: 8a:91:ef:ee:fa:27:1a:3a:b6:3f:1f:8a:a2:ae:c6: 76:8c:be:23:23:27:51:f3:ea:5d:86:c8:de:03:23: 9a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:55:CD:59:92:2D:B2:DB:C6:18:0A:7B:4F:91:BB:88:C7:4A:5E:DB X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0AC1EDE6D0C511EABB9E0868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.131.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:d3:a9:24:6e:73:53:a1:da:12:5f:9d:a0:10:5e:3b:4a:62: df:cb:40:15:06:1d:bf:ad:1c:ff:8b:ae:79:21:a7:1c:f4:1d: 57:34:ff:b6:be:58:9c:1c:f3:d9:36:13:38:03:3a:0b:69:6e: 9f:44:1c:09:54:64:7a:01:0a:62:19:5a:bc:9a:54:e2:fd:09: 28:87:db:82:d1:cc:fb:d2:58:9b:ae:8e:31:62:1c:1f:0a:ea: c1:19:aa:16:e8:45:e5:d0:61:ec:7c:fe:ee:5e:8c:22:d4:a1: c4:cf:8e:b3:a6:93:c8:da:9e:c9:17:c5:4b:b6:56:0a:e8:54: 0e:bf:f8:77:fc:1a:78:b3:12:00:fe:a4:1c:b7:65:c4:7f:d1: 95:70:26:85:87:62:fb:be:02:e5:9d:b1:fe:d4:dc:8b:c8:c1: c5:fa:c3:b0:c7:a4:f5:82:23:00:81:ec:f1:db:64:1d:f8:04: 2a:3c:1e:c5:c9:5d:8d:c8:60:de:77:be:b7:fa:38:dc:10:2b: 9f:2e:47:30:f6:5f:88:2d:3e:84:51:cd:e4:04:32:6f:2f:69: b3:47:44:9f:a4:01:af:25:73:ab:85:43:bb:e8:cd:b7:4d:38: b7:5c:f0:e7:27:b7:b9:86:06:ea:93:90:5e:f0:1a:ca:34:ed: e1:e2:a0:02 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjUwMjE4MjIwOTU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY0MS1lOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SLdYHoK0CidHWweHH0RlX0ybOq88d45o/ckChWQkWehnRooNct7fV09bGCd YdbvYXmRrdvadzoX33EWzpgZfgHsIQQ9tHovGFkI6YaeDZz7C90VG38lDfT/ZxIU XcgLgFy3fbW/J2zRCL6mXtEGVsmXCQ4h/RAJVqRC83dh1W5V+s41oTbXLU4+WFdL t3Wpgg0+a39FPls6kfrM8/fG7hHx1gKFhyiwYaNZKvS9RdX9TWSjQ5V2TNp3DXaU 6ePEk/VUD/iyJhAQ0es0KjqBdoodFFh7pzV+NhvtRiAheWWKke/u+icaOrY/H4qi rsZ2jL4jIydR8+pdhsjeAyOaGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAhVzVmS LbLbxhgKe0+Ru4jHSl7bMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEFDMUVERTZE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ/+DMA0GCSqGSIb3DQEBCwUAA4IBAQBd06kkbnNTodoSX52gEF47 SmLfy0AVBh2/rRz/i655Iacc9B1XNP+2vlicHPPZNhM4AzoLaW6fRBwJVGR6AQpi GVq8mlTi/Qkoh9uC0cz70libro4xYhwfCurBGaoW6EXl0GHsfP7uXowi1KHEz46z ppPI2p7JF8VLtlYK6FQOv/h3/Bp4sxIA/qQct2XEf9GVcCaFh2L7vgLlnbH+1NyL yMHF+sOwx6T1giMAgezx22Qd+AQqPB7FyV2NyGDed763+jjcECufLkcw9l+ILT6E Uc3kBDJvL2mzR0SfpAGvJXOrhUO76M23TTi3XPDnJ7e5hgbqk5Be8BrKNO3h4qAC -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:13 2026 by rpki-client