$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa File: BD843CCE984011E79A256C82C4F9AE02.roa (raw, json) Hash identifier: jJwP90lV+q6WXhwVY0B4Efvs4u3oObXh+KWbb3d4U00= Subject key identifier: 9D:54:2E:87:5F:93:81:C8:84:C5:1C:ED:D5:B8:DB:FD:35:50:71:F3 Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 1965 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa Signing time: Sat 30 May 2026 16:20:06 +0000 ROA not before: Sat 30 May 2026 16:20:06 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 134732 IP address blocks: 45.248.148.0/22 maxlen: 24 103.217.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6501 (0x1965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: May 30 16:20:06 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1b0e36-89e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:32:a2:1e:67:37:1f:64:d8:29:86:de:03:7f: 5a:c7:e9:2f:f5:6f:64:6f:a4:ed:2a:12:1e:dc:6e: b0:2e:71:f4:0d:a5:57:6c:b6:77:56:2b:06:8f:f5: e7:f1:33:1b:ed:1f:aa:d5:5e:24:9f:6a:bf:bf:af: da:31:5a:01:d9:00:67:8d:88:29:bc:24:22:36:7b: 0f:36:a9:7e:cf:b9:95:0f:76:0f:a9:88:d5:e7:57: 2e:1f:c5:dd:99:14:59:89:8b:76:d3:e9:4a:88:69: 12:92:9d:96:06:46:2f:0b:f5:9f:0a:70:9a:de:e1: ef:e7:f4:5c:99:b2:50:f8:74:c2:96:3e:21:7e:63: 2f:1e:14:9b:4b:98:d7:17:8f:4d:d0:a3:aa:40:61: fb:d2:2e:df:24:03:e8:06:5d:50:7f:2d:a2:4f:b0: 51:9b:f1:28:73:00:42:98:dc:84:c4:50:2d:86:4e: 84:7e:a4:25:09:de:3d:c7:ce:e7:25:38:f3:ae:23: 6b:55:f3:d0:5e:7c:79:d8:e8:8e:27:98:83:95:b4: 96:74:99:11:83:7d:40:4b:62:17:83:51:0d:47:30: f9:19:84:bc:ad:f8:c1:5f:c0:ba:9d:8f:83:94:6e: eb:f8:6a:d9:7b:c0:b4:c5:75:23:e3:ec:82:8c:e0: ee:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:54:2E:87:5F:93:81:C8:84:C5:1C:ED:D5:B8:DB:FD:35:50:71:F3 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.248.148.0/22 103.217.108.0/22 Signature Algorithm: sha256WithRSAEncryption 23:1c:74:14:ee:65:56:9c:f5:c3:7b:c5:9b:97:71:4b:72:98: 00:e8:4a:38:8a:f6:05:93:2b:42:46:35:f8:0d:66:0b:97:7b: 60:91:79:0a:05:d9:ea:5f:5a:44:99:f1:6e:c6:f7:3e:f8:b4: 2a:fc:97:d4:33:63:4b:9d:51:d2:5b:36:01:8d:c8:29:d5:93: 02:28:64:4d:b4:86:d5:2b:3d:12:53:b7:d6:ba:01:83:d4:06: 23:f1:a2:71:15:13:e2:33:ed:3d:9a:78:32:50:d7:10:7e:14: e2:90:26:d1:88:fc:d6:88:37:1f:94:03:cc:b0:78:21:2a:cf: ed:02:c0:91:a0:d3:f6:b7:0b:44:17:86:1e:97:9a:d9:f3:44: cc:cd:3f:47:1d:29:fe:b5:5f:bc:aa:02:f0:e3:b3:42:4a:49: 4f:64:34:df:f8:88:04:8d:fb:49:47:d8:68:fa:44:4f:5f:2c: 5b:85:19:97:ed:89:6a:72:90:40:63:f6:96:41:f8:9e:e6:db: 3b:84:16:c7:a2:f7:66:26:4d:88:a7:f7:73:ef:24:38:ba:8b: 04:c3:a0:df:1a:e0:97:63:4d:76:8c:13:7c:4f:ee:c5:61:fd: ed:5a:9a:48:20:45:e9:26:c5:22:a0:64:f1:d1:46:f1:88:a6: 42:1d:0b:b5 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjYwNTMwMTYyMDA2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFiMGUzNi04OWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjKiHmc3H2TYKYbeA39ax+kv9W9kb6TtKhIe3G6wLnH0DaVXbLZ3VisGj/Xn 8TMb7R+q1V4kn2q/v6/aMVoB2QBnjYgpvCQiNnsPNql+z7mVD3YPqYjV51cuH8Xd mRRZiYt20+lKiGkSkp2WBkYvC/WfCnCa3uHv5/RcmbJQ+HTClj4hfmMvHhSbS5jX F49N0KOqQGH70i7fJAPoBl1Qfy2iT7BRm/EocwBCmNyExFAthk6EfqQlCd49x87n JTjzriNrVfPQXnx52OiOJ5iDlbSWdJkRg31AS2IXg1ENRzD5GYS8rfjBX8C6nY+D lG7r+GrZe8C0xXUj4+yCjODu9QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJ1ULodf k4HIhMUc7dW42/01UHHzMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4MkUvMzExRUFDNTY5ODQwMTFFN0I3NjhFQjgxQzRGOUFFMDIvQkQ4NDNDQ0U5 ODQwMTFFNzlBMjU2QzgyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLfiUAwQCZ9lsMA0GCSqGSIb3DQEBCwUAA4IBAQAjHHQU7mVWnPXD e8Wbl3FLcpgA6Eo4ivYFkytCRjX4DWYLl3tgkXkKBdnqX1pEmfFuxvc++LQq/JfU M2NLnVHSWzYBjcgp1ZMCKGRNtIbVKz0SU7fWugGD1AYj8aJxFRPiM+09mngyUNcQ fhTikCbRiPzWiDcflAPMsHghKs/tAsCRoNP2twtEF4Yel5rZ80TMzT9HHSn+tV+8 qgLw47NCSklPZDTf+IgEjftJR9ho+kRPXyxbhRmX7YlqcpBAY/aWQfie5ts7hBbH ovdmJk2Ip/dz7yQ4uosEw6DfGuCXY012jBN8T+7FYf3tWppIIEXpJsUioGTx0Ubx iKZCHQu1 -----END CERTIFICATE-----Generated at Wed Jun 17 13:02:36 2026 by rpki-client