$ rpki-client -vvf rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CFED56A4240411F0B73CB374C4F9AE02.roa File: CFED56A4240411F0B73CB374C4F9AE02.roa (raw, json) Hash identifier: leacEEmdTkGb1Df/JQ/MjxrG9YS5HGpt4Pwn/9is4zg= Subject key identifier: 7F:05:32:CC:E9:BC:C8:E8:E3:D8:65:10:14:87:36:1B:85:A3:BE:ED Certificate issuer: /CN=A913E62B/serialNumber=F2E073092976058EB98656141437F8FB68B7215D Certificate serial: A3 Authority key identifier: F2:E0:73:09:29:76:05:8E:B9:86:56:14:14:37:F8:FB:68:B7:21:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CFED56A4240411F0B73CB374C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:08:09 +0000 ROA not before: Wed 07 May 2025 07:43:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38038 IP address blocks: 203.34.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.crl rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E62B, serialNumber=F2E073092976058EB98656141437F8FB68B7215D Validity Not Before: May 7 07:43:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f3e9-b748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:f4:a1:ef:86:40:04:10:33:7a:c6:ec:79: 16:29:1f:65:c6:a5:84:e9:dd:ea:78:ef:58:fd:8f: 9e:c0:33:99:72:93:78:05:6b:e6:62:ac:20:9c:ab: 19:f9:57:c2:6e:e4:f3:3e:25:89:68:61:ad:3d:9c: c8:96:e0:68:4a:93:56:57:1e:88:d8:45:36:a8:c5: f0:e7:14:68:01:01:58:71:1e:04:54:44:43:01:27: 55:3f:f3:b3:cd:7c:60:40:f4:09:ae:14:10:0c:90: 5d:7b:b4:44:b6:06:0b:df:b4:41:05:08:e3:99:17: 36:b7:d8:73:c4:5d:d4:95:1e:56:ba:b2:9f:ac:e3: 12:68:15:b0:08:17:d1:95:14:26:3f:d8:5d:1b:9d: 1b:50:26:2b:30:2e:5c:21:8d:64:f1:50:01:5c:2f: ed:f0:76:a3:2e:67:e0:a0:33:6f:a3:f0:33:31:c5: c4:65:c2:b9:e5:68:af:3e:57:76:fb:88:f5:04:fe: b5:c8:d9:3e:59:c9:b9:83:ee:5f:20:e4:75:31:78: b9:cc:1e:31:8b:1f:c6:1d:aa:f0:6d:ff:b8:f5:73: 8b:ab:8c:57:9f:71:73:13:e3:40:22:ac:30:76:3b: 1a:b9:ca:1c:e7:66:c4:f8:76:59:90:61:53:41:b3: 34:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:32:CC:E9:BC:C8:E8:E3:D8:65:10:14:87:36:1B:85:A3:BE:ED X509v3 Authority Key Identifier: keyid:F2:E0:73:09:29:76:05:8E:B9:86:56:14:14:37:F8:FB:68:B7:21:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/8uBzCSl2BY65hlYUFDf4-2i3IV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uBzCSl2BY65hlYUFDf4-2i3IV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E62B/61B35616240411F0A4D07273C4F9AE02/CFED56A4240411F0B73CB374C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.34.212.0/24 Signature Algorithm: sha256WithRSAEncryption b6:8d:51:01:57:7b:9c:c6:1f:26:e1:0b:63:e1:07:3d:3b:35: cd:e6:40:3b:97:fc:3a:f3:95:cb:81:6c:cf:cd:7c:13:9c:82: e1:f4:e1:37:5a:6e:e0:43:7e:4b:6e:2e:86:18:95:6e:fb:5e: 96:95:de:0f:ed:08:25:b6:17:c4:34:7d:8f:aa:3c:8b:9e:29: bc:02:e1:d6:84:26:ec:a0:4a:52:d7:7a:b2:56:0d:65:79:24: 9d:73:0a:6d:2c:48:a9:4d:87:be:43:5c:f2:3a:20:ca:30:e3: 56:c6:d8:f8:8c:b4:fd:bf:24:a5:be:a9:43:ae:95:15:d7:23: 2f:b5:84:b2:db:e2:eb:77:a0:52:25:4b:1f:7c:fd:b8:e6:96: c3:9d:c2:b2:8b:09:4b:84:40:26:72:85:66:68:68:60:34:cb: 46:9f:37:dc:80:6b:47:aa:2c:4b:88:4f:6e:70:85:88:f4:d1: a7:f4:c6:29:6e:de:5e:d4:e0:3a:7d:06:58:87:fb:14:30:b6: b1:dd:84:aa:cb:60:53:a9:57:b8:1b:9b:b7:ca:15:7b:6a:a7: 6a:6c:af:32:6a:a1:3b:ae:70:9d:48:df:53:0a:09:d5:d0:39: c8:10:84:bc:41:62:8a:f1:7f:27:3c:29:a6:94:42:83:a2:34: 68:20:77:00 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2MkIxMTAvBgNVBAUTKEYyRTA3MzA5Mjk3NjA1OEVCOTg2NTYxNDE0MzdGOEZC NjhCNzIxNUQwHhcNMjUwNTA3MDc0MzU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjNlOS1iNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbf0oe+GQAQQM3rG7HkWKR9lxqWE6d3qeO9Y/Y+ewDOZcpN4BWvmYqwgnKsZ +VfCbuTzPiWJaGGtPZzIluBoSpNWVx6I2EU2qMXw5xRoAQFYcR4EVERDASdVP/Oz zXxgQPQJrhQQDJBde7REtgYL37RBBQjjmRc2t9hzxF3UlR5WurKfrOMSaBWwCBfR lRQmP9hdG50bUCYrMC5cIY1k8VABXC/t8HajLmfgoDNvo/AzMcXEZcK55WivPld2 +4j1BP61yNk+Wcm5g+5fIOR1MXi5zB4xix/GHarwbf+49XOLq4xXn3FzE+NAIqww djsaucoc52bE+HZZkGFTQbM0YQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH8FMszp vMjo49hlEBSHNhuFo77tMB8GA1UdIwQYMBaAFPLgcwkpdgWOuYZWFBQ3+PtotyFd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTYyQi82MUIzNTYxNjI0 MDQxMUYwQTREMDcyNzNDNEY5QUUwMi84dUJ6Q1NsMkJZNjVobFlVRkRmNC0yaTNJ VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh1QnpDU2wyQlk2NWhsWVVGRGY0LTJpM0lWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U2MkIvNjFCMzU2MTYyNDA0MTFGMEE0RDA3MjczQzRGOUFFMDIvQ0ZFRDU2QTQy NDA0MTFGMEI3M0NCMzc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyyLUMA0GCSqGSIb3DQEBCwUAA4IBAQC2jVEBV3ucxh8m4Qtj4Qc9 OzXN5kA7l/w685XLgWzPzXwTnILh9OE3Wm7gQ35Lbi6GGJVu+16Wld4P7QglthfE NH2PqjyLnim8AuHWhCbsoEpS13qyVg1leSSdcwptLEipTYe+Q1zyOiDKMONWxtj4 jLT9vySlvqlDrpUV1yMvtYSy2+Lrd6BSJUsffP245pbDncKyiwlLhEAmcoVmaGhg NMtGnzfcgGtHqixLiE9ucIWI9NGn9MYpbt5e1OA6fQZYh/sUMLax3YSqy2BTqVe4 G5u3yhV7aqdqbK8yaqE7rnCdSN9TCgnV0DnIEIS8QWKK8X8nPCmmlEKDojRoIHcA -----END CERTIFICATE-----Generated at Mon Mar 2 04:40:14 2026 by rpki-client