$ rpki-client -vvf rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa File: B34FF580C40C11EB9C21CF7BC4F9AE02.roa (raw, json) Hash identifier: sMVM7zjChouZ/zKMndyZ4mwotxlwIoXBJqwxs0PySGc= Subject key identifier: FF:60:1B:EF:E8:5D:9A:73:03:AF:CB:92:7C:C7:05:16:05:BA:5A:30 Certificate issuer: /CN=A913ED35/serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Certificate serial: 3592 Authority key identifier: 7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:26:00 +0000 ROA not before: Fri 02 Jan 2026 06:54:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24550 IP address blocks: 43.228.192.0/22 maxlen: 24 103.225.244.0/22 maxlen: 24 111.119.32.0/19 maxlen: 19 111.119.32.0/21 maxlen: 24 111.119.48.0/20 maxlen: 24 116.90.224.0/20 maxlen: 24 118.91.160.0/20 maxlen: 24 2400:9700::/32 maxlen: 32 2400:9700:5::/48 maxlen: 48 2400:9700:6::/48 maxlen: 48 2400:9700:7::/48 maxlen: 48 2400:9700:8::/48 maxlen: 48 2400:9700:20::/44 maxlen: 44 2400:9700:100::/44 maxlen: 44 2400:9700:100::/48 maxlen: 48 2400:9700:103::/48 maxlen: 48 2400:9700:110::/44 maxlen: 44 2400:9700:110::/48 maxlen: 48 2400:9700:120::/44 maxlen: 44 2400:9700:120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13714 (0x3592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ED35, serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Validity Not Before: Jan 2 06:54:48 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a476a8-98e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:96:6d:38:ce:3c:7b:75:f2:70:2f:b0:b7:54: 0b:8d:38:a8:7c:75:76:1e:d5:78:e2:b4:ca:df:bf: 64:3e:1d:79:48:03:d6:f5:41:e5:71:d1:e3:ce:b2: a1:46:ac:27:95:24:b6:93:bd:24:d6:8f:49:08:55: af:da:9a:d2:9a:00:ec:18:fd:e2:6a:28:a9:af:41: 67:39:5e:ba:25:d9:d0:35:77:4e:3d:07:d9:e2:2a: 24:f4:45:c5:ba:ce:d0:6b:5f:7b:41:0f:17:be:bb: 02:31:b3:4b:53:8a:28:e6:08:bc:a9:d8:84:fa:1e: 7f:cd:f7:0a:32:6d:2d:02:c8:53:f2:7a:09:4a:f6: a3:e3:76:f9:c7:42:31:58:c6:44:ca:53:d7:ff:0c: d9:ea:74:96:18:df:39:75:68:69:86:54:ca:d6:d0: ae:27:0e:a9:49:0c:4d:92:98:21:fd:af:fc:ce:34: b5:43:fe:b1:a7:bd:9c:87:5f:1a:f0:10:2f:c8:fc: dc:e2:19:c1:17:40:7c:0d:d3:5d:4e:26:fc:07:9b: d5:90:19:67:0a:6e:34:7a:11:9d:2d:28:b5:67:a6: b0:e9:4c:a8:d8:14:a3:1e:1a:b1:7f:59:7a:88:32: b3:7d:ba:c9:c8:58:e5:58:d7:27:24:e2:fd:75:ef: 59:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:60:1B:EF:E8:5D:9A:73:03:AF:CB:92:7C:C7:05:16:05:BA:5A:30 X509v3 Authority Key Identifier: keyid:7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/B34FF580C40C11EB9C21CF7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.228.192.0/22 103.225.244.0/22 111.119.32.0/19 116.90.224.0/20 118.91.160.0/20 IPv6: 2400:9700::/32 Signature Algorithm: sha256WithRSAEncryption 39:de:d7:12:7f:37:81:50:fe:af:30:d8:95:c4:1c:0e:59:46: 78:84:27:0d:fe:8d:6d:48:5c:16:a0:bf:fe:aa:45:9f:a0:cc: 37:30:31:54:d2:dc:ec:a9:e7:ad:17:5e:56:69:c2:e3:fb:9e: 68:f4:e3:db:a4:f2:08:dc:71:ed:3e:12:e3:cb:77:d2:f0:11: d3:91:b5:8d:9e:ae:17:9c:f9:2b:32:7d:70:06:9c:88:ab:11: db:4e:dd:82:14:17:92:5f:f5:c8:87:e3:fe:11:6a:4d:97:c9: 10:ad:4b:c6:72:2f:40:10:28:2f:24:ce:26:5a:57:e9:b0:ac: 32:63:5b:0e:69:de:78:96:b9:d2:3c:9c:22:18:69:24:15:a7: 65:3a:df:cb:75:44:cb:a1:cf:e4:99:71:aa:a3:f3:4e:8e:60: ff:b9:65:22:2f:1f:d8:75:d2:a8:eb:47:92:a1:56:a2:e4:bc: f0:22:da:5f:2c:cc:86:47:c7:c7:fe:65:cb:ee:ad:98:ff:b5: dc:09:e8:11:90:a1:4a:3e:09:b3:e6:af:a0:24:76:dd:a0:a5: 64:2b:7d:20:b2:97:7c:6c:81:2f:fc:25:64:b9:94:98:16:fe: 6e:e1:93:c3:a4:e4:f8:f1:53:4a:30:f8:45:af:c1:46:00:27: a5:37:9e:f4 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICNZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VEMzUxMTAvBgNVBAUTKDdFRTk0NUU5RTVFNTFDNEI0MUQ5OUM0MzMyOTUyRjlD OTU4NzY2MDgwHhcNMjYwMTAyMDY1NDQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzZhOC05OGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5ZtOM48e3XycC+wt1QLjTiofHV2HtV44rTK379kPh15SAPW9UHlcdHjzrKh RqwnlSS2k70k1o9JCFWv2prSmgDsGP3iaiipr0FnOV66JdnQNXdOPQfZ4iok9EXF us7Qa197QQ8XvrsCMbNLU4oo5gi8qdiE+h5/zfcKMm0tAshT8noJSvaj43b5x0Ix WMZEylPX/wzZ6nSWGN85dWhphlTK1tCuJw6pSQxNkpgh/a/8zjS1Q/6xp72ch18a 8BAvyPzc4hnBF0B8DdNdTib8B5vVkBlnCm40ehGdLSi1Z6aw6Uyo2BSjHhqxf1l6 iDKzfbrJyFjlWNcnJOL9de9ZlQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFP9gG+/o XZpzA6/LknzHBRYFulowMB8GA1UdIwQYMBaAFH7pRenl5RxLQdmcQzKVL5yVh2YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUQzNS9CNjNCQTdFRTFE OTQxMUUyOUQxQTJFRjkwOEIwMkNEMi9mdWxGNmVYbEhFdEIyWnhETXBVdm5KV0ha Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1bEY2ZVhsSEV0QjJaeERNcFV2bkpXSFpnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VEMzUvQjYzQkE3RUUxRDk0MTFFMjlEMUEyRUY5MDhCMDJDRDIvQjM0RkY1ODBD NDBDMTFFQjlDMjFDRjdCQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCK+TAAwQCZ+H0AwQFb3cgAwQEdFrgAwQEdlugMA0EAgACMAcDBQAk AJcAMA0GCSqGSIb3DQEBCwUAA4IBAQA53tcSfzeBUP6vMNiVxBwOWUZ4hCcN/o1t SFwWoL/+qkWfoMw3MDFU0tzsqeetF15WacLj+55o9OPbpPII3HHtPhLjy3fS8BHT kbWNnq4XnPkrMn1wBpyIqxHbTt2CFBeSX/XIh+P+EWpNl8kQrUvGci9AECgvJM4m WlfpsKwyY1sOad54lrnSPJwiGGkkFadlOt/LdUTLoc/kmXGqo/NOjmD/uWUiLx/Y ddKo60eSoVai5LzwItpfLMyGR8fH/mXL7q2Y/7XcCegRkKFKPgmz5q+gJHbdoKVk K30gspd8bIEv/CVkuZSYFv5u4ZPDpOT48VNKMPhFr8FGACelN570 -----END CERTIFICATE-----Generated at Mon Mar 2 09:03:32 2026 by rpki-client