$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa File: BD843CCE984011E79A256C82C4F9AE02.roa (raw, json) Hash identifier: YEfPuupkj6+rYgnnK9KPFgtKEqtP8lyWUzvWsUKBop0= Subject key identifier: D2:E1:F4:E9:9A:46:B5:0B:6A:F1:E2:48:3F:9B:79:B0:F2:55:CC:59 Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 1933 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:15:47 +0000 ROA not before: Wed 04 Jun 2025 16:36:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134732 IP address blocks: 45.248.148.0/22 maxlen: 24 103.217.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6451 (0x1933) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Jun 4 16:36:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a403c3-de67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:e2:25:88:ae:46:85:59:33:da:89:be:39: b0:f4:5b:0d:40:6f:10:f2:ec:ad:2d:20:d3:d4:84: f2:1b:48:c0:84:6b:91:05:33:ab:3c:33:5f:17:d4: e6:06:26:44:89:e4:90:f8:51:b5:e8:88:48:ff:06: d9:16:c2:97:d9:d3:00:57:86:27:86:e7:cb:af:d4: f9:b9:ab:13:2d:c2:f0:ec:1c:3d:6b:3e:9e:a7:a5: 2d:b5:4b:43:cc:b4:fe:76:f6:57:89:fc:04:63:7c: 49:29:63:0e:fc:4c:15:d9:07:e7:20:97:a5:af:76: 5e:87:00:b6:40:da:41:f8:e1:1a:63:47:ea:3d:0e: 9d:7b:a4:17:70:95:e5:c0:fb:2c:14:b4:a3:f5:ae: b8:ac:b5:fd:51:ad:26:36:f3:74:8e:c8:76:94:cc: b2:d8:7c:61:56:1f:df:a4:21:46:73:1b:e0:36:51: 03:14:2d:85:69:43:a0:c8:7f:b8:53:ef:3d:d6:7f: c9:f5:da:58:be:8d:4a:76:9b:8f:b3:2b:ba:99:0c: ad:13:af:e1:f1:85:9f:8a:c3:f9:dd:1b:36:df:f2: b6:97:1f:b5:05:a7:d2:57:fa:d8:c7:e9:31:91:45: f1:86:00:5e:c0:19:0c:4c:87:02:75:56:c6:7d:48: 10:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E1:F4:E9:9A:46:B5:0B:6A:F1:E2:48:3F:9B:79:B0:F2:55:CC:59 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/BD843CCE984011E79A256C82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.248.148.0/22 103.217.108.0/22 Signature Algorithm: sha256WithRSAEncryption 15:cd:ed:89:85:9b:98:29:ec:88:c6:56:0c:2e:9f:33:6b:f2: 22:d6:53:28:1a:3b:2d:12:0c:6e:86:e5:ad:45:e7:f4:d0:23: 6f:1e:1a:5b:78:c9:f4:35:48:f6:d4:d5:0e:de:32:45:d4:8e: 3d:22:33:a9:e5:8d:3e:55:79:06:a7:d2:c1:ce:54:6c:09:2c: 2b:12:24:45:5e:70:c2:7c:41:ad:44:41:22:76:e5:17:bf:52: 16:4f:c1:c2:0c:97:fb:6f:5f:c8:08:aa:ea:4f:5c:27:af:89: 48:25:cf:c3:c4:0e:66:6c:ba:ec:68:56:6f:93:98:3a:b8:b4: f5:06:a6:7d:6e:67:b9:a8:52:08:b5:e7:50:2e:bb:cc:8e:f9: 28:d6:9c:a2:f6:f2:e8:3e:f4:06:6b:c7:95:47:d6:0a:82:f1: bc:da:0f:df:89:bc:02:2c:51:9c:c9:fa:22:1d:3e:c2:45:99: 79:27:cf:19:c9:b8:78:3b:5d:d7:c1:0b:a7:86:4a:8e:94:cc: 24:b5:55:ac:21:14:5e:20:50:3f:8c:e4:37:76:e7:99:44:da: e0:96:c2:d5:0f:85:56:66:0d:ca:5b:2a:8f:35:76:3c:6e:59: 87:d7:1a:9d:d4:65:05:b9:fe:5e:fc:c7:fa:32:3e:26:a6:04: 23:00:8c:23 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUwNjA0MTYzNjUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDNjMy1kZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5/iJYiuRoVZM9qJvjmw9FsNQG8Q8uytLSDT1ITyG0jAhGuRBTOrPDNfF9Tm BiZEieSQ+FG16IhI/wbZFsKX2dMAV4YnhufLr9T5uasTLcLw7Bw9az6ep6UttUtD zLT+dvZXifwEY3xJKWMO/EwV2QfnIJelr3ZehwC2QNpB+OEaY0fqPQ6de6QXcJXl wPssFLSj9a64rLX9Ua0mNvN0jsh2lMyy2HxhVh/fpCFGcxvgNlEDFC2FaUOgyH+4 U+891n/J9dpYvo1KdpuPsyu6mQytE6/h8YWfisP53Rs23/K2lx+1BafSV/rYx+kx kUXxhgBewBkMTIcCdVbGfUgQLwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNLh9Oma RrULavHiSD+bebDyVcxZMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4MkUvMzExRUFDNTY5ODQwMTFFN0I3NjhFQjgxQzRGOUFFMDIvQkQ4NDNDQ0U5 ODQwMTFFNzlBMjU2QzgyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLfiUAwQCZ9lsMA0GCSqGSIb3DQEBCwUAA4IBAQAVze2JhZuYKeyI xlYMLp8za/Ii1lMoGjstEgxuhuWtRef00CNvHhpbeMn0NUj21NUO3jJF1I49IjOp 5Y0+VXkGp9LBzlRsCSwrEiRFXnDCfEGtREEiduUXv1IWT8HCDJf7b1/ICKrqT1wn r4lIJc/DxA5mbLrsaFZvk5g6uLT1BqZ9bme5qFIItedQLrvMjvko1pyi9vLoPvQG a8eVR9YKgvG82g/fibwCLFGcyfoiHT7CRZl5J88Zybh4O13XwQunhkqOlMwktVWs IRReIFA/jOQ3dueZRNrglsLVD4VWZg3KWyqPNXY8blmH1xqd1GUFuf5e/Mf6Mj4m pgQjAIwj -----END CERTIFICATE-----Generated at Mon Mar 2 14:07:47 2026 by rpki-client