$ rpki-client -vvf rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/C3E640EE917811ED904ACF83C4F9AE02.roa File: C3E640EE917811ED904ACF83C4F9AE02.roa (raw, json) Hash identifier: nquKdBYb17f91RwkbMJz0YJOyUNBfY9B+zJHnQj7Zk8= Subject key identifier: 81:91:43:07:9C:39:7B:F6:18:26:8A:9F:0F:9C:11:1C:DE:2F:F8:FF Certificate issuer: /CN=A911E9B6/serialNumber=2E8CBB8C2600C6A098C958B964C32DCB18B8035C Certificate serial: 0292 Authority key identifier: 2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/C3E640EE917811ED904ACF83C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:44:56 +0000 ROA not before: Sun 07 Dec 2025 00:40:04 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133321 IP address blocks: 203.214.197.0/24 maxlen: 24 203.214.198.0/24 maxlen: 24 203.214.199.0/24 maxlen: 24 2404:c400:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E9B6, serialNumber=2E8CBB8C2600C6A098C958B964C32DCB18B8035C Validity Not Before: Dec 7 00:40:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47b17-fdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:51:c7:6b:e1:38:aa:7d:62:f2:10:1f:23:e3: 03:f3:cd:65:b4:f7:3a:a0:8f:4e:ab:60:35:56:1f: 0c:90:87:8c:2d:6c:d1:6f:4e:a1:d2:1e:23:65:de: 37:79:5f:b1:fd:f8:9a:78:6c:dd:4e:a0:4c:ee:63: e7:26:eb:36:fa:19:3d:78:e1:e4:a6:56:83:22:ce: 47:54:60:40:6e:fa:46:61:a7:91:24:ef:63:a9:92: 0a:ab:02:97:12:cc:ee:7f:f0:58:e0:00:66:95:be: 41:3e:84:59:08:48:54:d4:94:1f:f9:c5:e0:aa:9c: f8:5d:9b:71:21:8a:d1:97:ee:17:b8:b4:1f:03:92: ed:29:fd:ed:ab:87:fb:43:48:a2:54:59:3c:34:f6: 11:55:aa:53:cd:46:5c:26:48:8a:24:50:0c:b6:77: 33:2c:7a:4f:5a:53:cf:d1:4f:30:6f:0e:fc:0f:75: c8:6d:2c:6b:a2:a7:c2:7e:0c:fa:12:d6:88:9f:04: 3b:2b:f9:2c:46:1c:6b:16:84:01:c0:f0:80:6a:bb: 54:22:26:d2:44:40:9b:dd:3d:b8:d0:67:1e:ea:e0: 79:d3:95:ac:ab:37:af:20:53:d9:4c:41:30:2d:54: c4:21:ec:d9:c3:b6:da:94:6f:54:44:a5:7b:80:59: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:91:43:07:9C:39:7B:F6:18:26:8A:9F:0F:9C:11:1C:DE:2F:F8:FF X509v3 Authority Key Identifier: keyid:2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/C3E640EE917811ED904ACF83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.214.197.0-203.214.199.255 IPv6: 2404:c400:9000::/36 Signature Algorithm: sha256WithRSAEncryption 85:b2:ed:79:00:67:9a:4d:da:73:e4:55:34:85:57:55:75:de: b6:c7:90:2a:da:ec:b5:38:14:e8:2e:42:af:1a:db:07:1a:9b: 13:93:a7:62:cb:07:11:36:62:67:73:39:16:81:ce:c5:47:1a: 98:0a:60:cd:2c:e8:a3:f1:de:bb:25:dc:c9:05:41:ea:f3:2d: c8:7c:87:4f:ab:b0:59:44:e6:9e:8f:31:00:d5:bc:03:ea:9f: 06:80:d2:7e:fb:c3:15:99:6a:97:6e:04:13:ad:76:69:e0:71: 78:ca:dc:4f:16:e1:a2:1b:e4:91:73:59:77:9d:09:5c:15:b9: e9:ec:fd:0c:23:ca:4c:d1:da:a5:97:14:f0:c7:83:1f:5b:f0: 71:aa:91:46:6b:fd:42:d7:02:30:7b:96:35:bc:3b:49:86:d0: cd:c0:dc:4d:b7:26:d1:3d:d8:24:0e:87:59:2f:cf:d1:a3:ed: cd:19:a7:1f:be:1a:ed:8d:ea:d7:c3:86:0b:c8:65:d0:c0:63: 3d:c3:ed:b9:f8:3b:26:6f:b4:02:a0:40:01:c5:ca:8b:cb:26: 52:1c:9b:74:9c:1e:54:f3:30:27:e2:7b:ea:a3:6a:7e:fc:2c: 4a:58:04:33:40:71:10:58:eb:62:be:0b:89:90:0c:90:b5:26: ea:96:40:0b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU5QjYxMTAvBgNVBAUTKDJFOENCQjhDMjYwMEM2QTA5OEM5NThCOTY0QzMyRENC MThCODAzNUMwHhcNMjUxMjA3MDA0MDA0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2IxNy1mZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFHHa+E4qn1i8hAfI+MD881ltPc6oI9Oq2A1Vh8MkIeMLWzRb06h0h4jZd43 eV+x/fiaeGzdTqBM7mPnJus2+hk9eOHkplaDIs5HVGBAbvpGYaeRJO9jqZIKqwKX Eszuf/BY4ABmlb5BPoRZCEhU1JQf+cXgqpz4XZtxIYrRl+4XuLQfA5LtKf3tq4f7 Q0iiVFk8NPYRVapTzUZcJkiKJFAMtnczLHpPWlPP0U8wbw78D3XIbSxroqfCfgz6 EtaInwQ7K/ksRhxrFoQBwPCAartUIibSRECb3T240Gce6uB505WsqzevIFPZTEEw LVTEIezZw7balG9URKV7gFkITwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFIGRQwec OXv2GCaKnw+cERzeL/j/MB8GA1UdIwQYMBaAFC6Mu4wmAMagmMlYuWTDLcsYuANc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTlCNi83OTE4Q0IwQzdG RjUxMUVEOUVENDY0MURDNEY5QUUwMi9Mb3k3akNZQXhxQ1l5Vmk1Wk1NdHl4aTRB MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xveTdqQ1lBeHFDWXlWaTVaTU10eXhpNEExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU5QjYvNzkxOENCMEM3RkY1MTFFRDlFRDQ2NDFEQzRGOUFFMDIvQzNFNjQwRUU5 MTc4MTFFRDkwNEFDRjgzQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAU BAIAATAOMAwDBADL1sUDBAPL1sAwDgQCAAIwCAMGBCQExACQMA0GCSqGSIb3DQEB CwUAA4IBAQCFsu15AGeaTdpz5FU0hVdVdd62x5Aq2uy1OBToLkKvGtsHGpsTk6di ywcRNmJnczkWgc7FRxqYCmDNLOij8d67JdzJBUHq8y3IfIdPq7BZROaejzEA1bwD 6p8GgNJ++8MVmWqXbgQTrXZp4HF4ytxPFuGiG+SRc1l3nQlcFbnp7P0MI8pM0dql lxTwx4MfW/BxqpFGa/1C1wIwe5Y1vDtJhtDNwNxNtybRPdgkDodZL8/Ro+3NGacf vhrtjerXw4YLyGXQwGM9w+25+Dsmb7QCoEABxcqLyyZSHJt0nB5U8zAn4nvqo2p+ /CxKWAQzQHEQWOtivguJkAyQtSbqlkAL -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:15 2026 by rpki-client