$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa File: C7C28CAC4A0711EEBE153131C4F9AE02.roa (raw, json) Hash identifier: zSb47nnqcSo0q+t6SFN6CD4mTM/NoGmHqKcXlsWnJ7E= Subject key identifier: 81:C9:FD:D1:52:74:D4:B7:01:DE:E5:52:A7:BD:87:28:9A:F2:1F:31 Certificate issuer: /CN=A911EA9E/serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Certificate serial: 01D9 Authority key identifier: D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:19:27 +0000 ROA not before: Tue 07 Oct 2025 04:01:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151650 IP address blocks: 103.249.198.0/23 maxlen: 23 103.249.198.0/24 maxlen: 24 103.249.199.0/24 maxlen: 24 2401:2260::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA9E, serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Validity Not Before: Oct 7 04:01:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a412af-6f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d6:8f:2f:e4:9e:e4:1d:cd:38:e0:57:f7:4b: ae:8a:b1:28:9d:22:72:97:08:9f:47:1f:aa:55:21: c5:91:e8:a4:18:92:a5:ac:43:6f:b0:7b:f7:36:2d: a7:ee:9a:73:df:2b:c9:7d:18:c9:f3:0f:3e:d6:4d: f3:34:f0:8b:ac:34:87:a5:19:d0:8c:ea:a7:58:99: 75:dd:9e:3d:ad:95:6a:24:87:4a:eb:09:d7:e5:24: af:7b:b9:aa:79:35:71:bb:5c:55:80:a3:25:64:91: 6f:6b:6f:12:81:c7:f6:02:65:24:f8:c8:51:c7:c5: 73:bb:3a:5f:92:6f:ef:c7:17:ad:c4:5f:d2:57:be: 85:e4:bd:9b:25:48:3c:44:ca:b0:c8:a4:d7:7b:f4: 31:02:b8:0d:9a:d9:05:a4:32:2d:e7:c5:bb:68:e2: 21:87:40:d5:94:30:17:91:28:96:82:1f:b9:45:35: c0:4a:15:1f:6f:49:e2:c8:d0:a5:39:5f:91:99:bd: 40:81:83:60:23:fc:48:a4:c4:64:ed:4b:33:4d:cb: 44:5e:64:5d:77:7c:ee:d5:32:87:26:05:c3:32:99: cb:43:16:36:a9:a6:2f:7b:21:4a:a4:9e:78:0c:8e: d3:28:19:a1:a3:e5:07:7e:ce:c0:9c:c4:f4:10:5e: e0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:FD:D1:52:74:D4:B7:01:DE:E5:52:A7:BD:87:28:9A:F2:1F:31 X509v3 Authority Key Identifier: keyid:D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.249.198.0/23 IPv6: 2401:2260::/32 Signature Algorithm: sha256WithRSAEncryption 31:b0:82:62:24:a8:48:f2:35:87:5e:aa:2f:fe:e3:56:aa:39: d8:9b:50:85:35:68:31:6b:d9:8e:39:7f:08:ea:7b:1f:f0:6b: 06:61:17:f6:21:d1:fc:34:a5:4b:3c:54:f1:03:1b:06:34:43: f8:46:28:8c:b2:9a:85:53:6d:e9:85:13:7b:ef:cb:3f:52:f0: 7b:ae:58:44:30:76:4d:a9:56:18:25:33:44:56:cb:ea:5d:68: 76:3b:7b:74:26:d2:6b:5b:83:9e:28:7c:ab:17:2e:b7:44:8e: 4d:5a:37:47:61:56:f0:0d:ee:be:16:f3:8c:24:c9:37:f1:dc: 81:90:ae:74:fa:13:b0:25:0d:07:5a:95:b0:22:a0:7d:9a:34: 0d:c1:8a:e9:2f:78:95:8e:0e:a5:7e:c0:99:03:29:6f:5a:b2: 66:c8:b3:47:9d:7a:6c:5a:73:18:67:b8:a6:9d:90:36:d4:61: 0b:3b:c7:f2:ae:38:55:4b:ef:97:2e:d8:55:57:ad:5d:b0:28: 86:72:f7:fa:7c:7f:31:d7:8d:88:05:c4:2a:85:a7:2a:5e:88: 68:5f:1d:dc:38:84:70:5e:0d:93:f3:b2:ba:c2:c8:73:d8:04: c8:34:b3:c7:05:c9:71:c4:6d:5b:57:d6:09:42:37:90:13:8b: fc:d9:81:d2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBOUUxMTAvBgNVBAUTKEQ2NzU3RkMzMjQwOURCQzJGMjJCNjJDMzE5QjlFNDRE QjlFQTA3OTkwHhcNMjUxMDA3MDQwMTA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTJhZi02ZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5taPL+Se5B3NOOBX90uuirEonSJylwifRx+qVSHFkeikGJKlrENvsHv3Ni2n 7ppz3yvJfRjJ8w8+1k3zNPCLrDSHpRnQjOqnWJl13Z49rZVqJIdK6wnX5SSve7mq eTVxu1xVgKMlZJFva28Sgcf2AmUk+MhRx8Vzuzpfkm/vxxetxF/SV76F5L2bJUg8 RMqwyKTXe/QxArgNmtkFpDIt58W7aOIhh0DVlDAXkSiWgh+5RTXAShUfb0niyNCl OV+Rmb1AgYNgI/xIpMRk7UszTctEXmRdd3zu1TKHJgXDMpnLQxY2qaYveyFKpJ54 DI7TKBmho+UHfs7AnMT0EF7gwQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIHJ/dFS dNS3Ad7lUqe9hyia8h8xMB8GA1UdIwQYMBaAFNZ1f8MkCdvC8itiwxm55E256geZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE5RS82NkUwQzYzODRB MDcxMUVFQTFCRjUwMzBDNEY5QUUwMi8xblZfd3lRSjI4THlLMkxER2Jua1RibnFC NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFuVl93eVFKMjhMeUsyTERHYm5rVGJucUI1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBOUUvNjZFMEM2Mzg0QTA3MTFFRUExQkY1MDMwQzRGOUFFMDIvQzdDMjhDQUM0 QTA3MTFFRUJFMTUzMTMxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ/nGMA0EAgACMAcDBQAkASJgMA0GCSqGSIb3DQEBCwUAA4IBAQAx sIJiJKhI8jWHXqov/uNWqjnYm1CFNWgxa9mOOX8I6nsf8GsGYRf2IdH8NKVLPFTx AxsGNEP4RiiMspqFU23phRN778s/UvB7rlhEMHZNqVYYJTNEVsvqXWh2O3t0JtJr W4OeKHyrFy63RI5NWjdHYVbwDe6+FvOMJMk38dyBkK50+hOwJQ0HWpWwIqB9mjQN wYrpL3iVjg6lfsCZAylvWrJmyLNHnXpsWnMYZ7imnZA21GELO8fyrjhVS++XLthV V61dsCiGcvf6fH8x142IBcQqhacqXohoXx3cOIRwXg2T87K6wshz2ATINLPHBclx xG1bV9YJQjeQE4v82YHS -----END CERTIFICATE-----Generated at Tue Mar 3 00:58:00 2026 by rpki-client