$ rpki-client -vvf rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa File: 2EEE5DDCB88011EB9C88057CC4F9AE02.roa (raw, json) Hash identifier: yOuFWEMRjDuMVm01IbqIe3i9wqxDvbb8W9g8zqSmMx0= Subject key identifier: A5:73:57:E4:1C:80:3B:A9:01:25:5C:9C:B7:10:ED:C5:1C:67:2C:DF Certificate issuer: /CN=A912BCCF/serialNumber=8BD8799DCBA757C5B458D66E39C60C9CA3F79A6B Certificate serial: 080A Authority key identifier: 8B:D8:79:9D:CB:A7:57:C5:B4:58:D6:6E:39:C6:0C:9C:A3:F7:9A:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:25:36 +0000 ROA not before: Sat 08 Nov 2025 20:41:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133096 IP address blocks: 43.249.200.0/22 maxlen: 22 43.249.203.0/24 maxlen: 24 103.242.244.0/22 maxlen: 22 103.242.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.crl rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BCCF, serialNumber=8BD8799DCBA757C5B458D66E39C60C9CA3F79A6B Validity Not Before: Nov 8 20:41:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43040-8aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:64:69:5c:6b:47:e2:3a:b0:a1:d7:5f:2d: b6:fa:c6:8e:f7:ac:37:ef:d7:77:3e:f1:74:4c:85: 6d:be:eb:10:1f:02:29:b4:1d:b9:6c:fe:60:8e:98: cb:cc:a4:5a:8a:44:d3:6d:98:f8:0e:67:97:be:64: 82:4e:a8:fc:fa:41:d4:cb:1b:0a:17:d6:a7:85:30: dc:27:d9:72:46:a9:ba:3c:b8:49:bf:4d:cb:b9:a0: 26:4c:96:e4:99:3d:6e:22:f8:02:11:dc:62:60:82: 4a:62:d7:ef:4e:d1:0c:91:4a:e9:d8:e2:52:94:30: e1:77:70:05:8a:43:b0:e9:9d:fa:3d:b5:bb:c5:43: db:fb:dd:f4:64:40:2f:6a:ff:38:7b:d3:47:4e:6b: 46:df:ac:2f:da:ff:f0:53:87:97:be:e5:b3:cc:4c: aa:25:04:99:b8:fb:ba:c7:bf:70:e3:3f:2c:af:fb: 90:99:4a:92:78:c0:bb:5f:84:40:83:15:9b:9d:50: 8a:08:3b:4c:8a:38:75:b5:50:e0:74:e1:8d:87:c8: d6:1e:6d:b4:dd:14:06:33:a7:14:44:8a:d5:14:21: 5a:07:8a:3c:fc:89:1e:4c:9b:95:64:d0:4e:0a:f4: d5:68:5a:2d:fc:9f:cf:d7:c7:41:99:cf:8c:fb:68: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:73:57:E4:1C:80:3B:A9:01:25:5C:9C:B7:10:ED:C5:1C:67:2C:DF X509v3 Authority Key Identifier: keyid:8B:D8:79:9D:CB:A7:57:C5:B4:58:D6:6E:39:C6:0C:9C:A3:F7:9A:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.249.200.0/22 103.242.244.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:ff:2a:62:27:0c:33:fa:d6:44:99:73:27:7d:44:08:a1:1e: 58:41:96:d5:7c:f8:b6:50:69:f9:d9:28:64:96:55:42:31:77: fe:39:00:ee:b9:20:19:c7:48:89:ca:9b:28:22:a9:c1:26:3c: 9e:56:dc:ff:52:3c:75:4d:00:0f:ce:d6:0d:a5:f1:4c:c3:ee: 91:2a:49:73:12:ed:5e:85:b1:80:09:84:29:7f:09:bb:9d:fc: e3:32:a3:d5:83:83:ab:c6:7b:03:07:15:7b:f8:14:93:9b:9c: a3:a7:03:6f:25:31:46:a0:f8:99:ff:fd:41:72:87:8d:00:62: 78:83:79:ed:8f:93:be:b3:c1:9c:ad:89:88:53:3f:72:25:85: 8d:99:11:4b:71:dd:c1:d0:1f:89:17:3e:36:bd:b0:0c:f4:66: b8:60:2d:24:e7:35:e1:63:20:ea:86:fb:5a:93:e6:5d:20:73: 07:21:e5:20:3a:af:4b:ac:00:bd:48:7a:de:c7:54:6a:a5:fd: f0:50:5f:98:85:54:3e:5b:20:67:f0:05:64:fb:f4:3c:f3:56: e0:97:43:f8:d8:98:c6:3d:6e:3f:ff:38:ec:31:44:57:1e:92: 00:19:0c:0c:f3:72:36:91:8e:85:45:fa:f5:b0:37:5b:9b:c8: 55:aa:6a:ba -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDQ0YxMTAvBgNVBAUTKDhCRDg3OTlEQ0JBNzU3QzVCNDU4RDY2RTM5QzYwQzlD QTNGNzlBNkIwHhcNMjUxMTA4MjA0MTE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzA0MC04YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso5kaVxrR+I6sKHXXy22+saO96w379d3PvF0TIVtvusQHwIptB25bP5gjpjL zKRaikTTbZj4DmeXvmSCTqj8+kHUyxsKF9anhTDcJ9lyRqm6PLhJv03LuaAmTJbk mT1uIvgCEdxiYIJKYtfvTtEMkUrp2OJSlDDhd3AFikOw6Z36PbW7xUPb+930ZEAv av84e9NHTmtG36wv2v/wU4eXvuWzzEyqJQSZuPu6x79w4z8sr/uQmUqSeMC7X4RA gxWbnVCKCDtMijh1tVDgdOGNh8jWHm203RQGM6cURIrVFCFaB4o8/IkeTJuVZNBO CvTVaFot/J/P18dBmc+M+2iDvQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKVzV+Qc gDupASVcnLcQ7cUcZyzfMB8GA1UdIwQYMBaAFIvYeZ3Lp1fFtFjWbjnGDJyj95pr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkNDRi82NDI0RTE2MDE5 MDcxMUVCQUY0NjhEMkJDNEY5QUUwMi9pOWg1bmN1blY4VzBXTlp1T2NZTW5LUDNt bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5aDVuY3VuVjhXMFdOWnVPY1lNbktQM21tcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJDQ0YvNjQyNEUxNjAxOTA3MTFFQkFGNDY4RDJCQzRGOUFFMDIvMkVFRTVERENC ODgwMTFFQjlDODgwNTdDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/nIAwQCZ/L0MA0GCSqGSIb3DQEBCwUAA4IBAQAN/ypiJwwz+tZE mXMnfUQIoR5YQZbVfPi2UGn52ShkllVCMXf+OQDuuSAZx0iJypsoIqnBJjyeVtz/ Ujx1TQAPztYNpfFMw+6RKklzEu1ehbGACYQpfwm7nfzjMqPVg4OrxnsDBxV7+BST m5yjpwNvJTFGoPiZ//1BcoeNAGJ4g3ntj5O+s8GcrYmIUz9yJYWNmRFLcd3B0B+J Fz42vbAM9Ga4YC0k5zXhYyDqhvtak+ZdIHMHIeUgOq9LrAC9SHrex1Rqpf3wUF+Y hVQ+WyBn8AVk+/Q881bgl0P42JjGPW4//zjsMURXHpIAGQwM83I2kY6FRfr1sDdb m8hVqmq6 -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:06 2026 by rpki-client