$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa File: A8051CC4508011EF81053074C4F9AE02.roa (raw, json) Hash identifier: gEOQ4Shko9Ffhb3sUw/V54wk1wOVzUKZiGrhJDBT6Fs= Subject key identifier: AC:97:3B:6D:63:16:D3:F8:41:BA:87:C3:1B:08:60:72:B8:8C:D4:CB Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: 013E Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:41:30 +0000 ROA not before: Wed 03 Dec 2025 03:32:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132087 IP address blocks: 203.29.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2, serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: Dec 3 03:32:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5938a-7a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:53:d9:db:7f:fd:e3:9b:6d:2e:db:5a:c4:51: d5:a6:34:a7:61:0c:7d:b8:6a:b5:82:2a:4e:7f:c5: 53:7e:26:e7:85:7c:a2:d2:cd:75:31:36:0f:4d:a9: a9:92:40:88:0a:10:00:ed:01:2e:f5:4a:1e:f0:e5: d7:fa:4d:df:a3:bf:94:87:65:20:e2:12:a1:c0:cf: 04:09:72:29:1e:3e:b1:a6:36:81:b0:21:4f:7c:69: e3:05:2f:88:40:46:e6:ce:fe:ad:f9:dd:9b:80:0e: bb:5b:1b:66:8c:a2:d3:fd:5c:77:b9:66:3f:d2:19: 58:3b:c3:ca:c3:e1:62:df:36:40:25:38:68:91:ca: bd:54:24:aa:64:b2:cb:b6:f1:67:79:20:df:b3:be: 5a:6d:1c:4b:ba:ab:b3:fa:6f:bb:86:8d:e6:f6:7c: 61:bf:4c:20:35:17:2b:99:41:1c:b9:c5:c5:d8:85: a1:71:c8:fc:ea:0b:3f:a1:32:37:55:67:14:c7:0a: ef:51:ee:9d:e3:03:6b:cd:96:53:dd:41:43:3a:37: 82:c0:73:5c:2a:90:b1:2f:c8:2e:f1:d3:9d:ab:fd: 89:bf:d0:e5:23:c3:ea:39:a8:c7:3a:74:66:59:a1: 4c:15:85:c9:37:64:74:85:d0:9d:cd:9f:54:c5:29: 3b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:97:3B:6D:63:16:D3:F8:41:BA:87:C3:1B:08:60:72:B8:8C:D4:CB X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/A8051CC4508011EF81053074C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.29.68.0/24 Signature Algorithm: sha256WithRSAEncryption 96:0d:c3:52:29:01:39:dd:dc:aa:2f:51:5c:43:55:85:da:1d: 35:52:86:e9:4d:b5:8f:0a:eb:13:d5:2e:8b:a8:07:74:c6:e5: 03:4d:63:24:03:a8:b6:ba:50:72:e3:cf:a5:bb:ad:b0:ae:26: 42:1c:97:0e:99:52:74:9a:e5:d7:65:3f:fb:c0:89:99:e7:44: e9:ca:0a:92:80:99:11:b0:f9:86:e9:29:0c:ad:12:7f:04:ca: 5d:f5:f6:0c:ae:de:a9:64:62:2c:a9:bb:0a:a0:5b:75:c1:9d: bb:e7:38:00:b4:3a:45:46:2c:3f:ea:5a:81:91:88:ff:0a:f0: b0:39:8d:9c:57:d1:c2:ce:9d:12:35:a7:21:d7:48:5d:f7:05: cc:1c:8f:79:27:ff:30:a4:79:40:ec:02:73:51:b1:ec:24:f2: 37:bc:7e:97:44:65:b3:d9:4f:b1:d2:2e:18:60:35:5f:00:1c: 01:51:b8:52:b8:ef:c4:b0:1f:ce:34:e7:58:e7:46:7b:8d:0f: 2f:c9:79:df:ae:2c:f0:0b:76:8b:95:4b:29:f4:7f:a7:a0:2b: ad:de:6d:68:13:1f:4c:72:91:62:b7:2e:15:f8:1d:bb:a6:e7: 9b:06:1d:31:3c:3b:41:3a:55:40:86:bf:de:9d:20:43:4e:19: d3:80:4a:e7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyRTIxMTAvBgNVBAUTKDIxMjYxQjg5NzQ5ODkzQzNCMzE4NDFCOTZGRTNGQjYz MjMwMzJGMTgwHhcNMjUxMjAzMDMzMjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTM4YS03YTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9lPZ23/945ttLttaxFHVpjSnYQx9uGq1gipOf8VTfibnhXyi0s11MTYPTamp kkCIChAA7QEu9Uoe8OXX+k3fo7+Uh2Ug4hKhwM8ECXIpHj6xpjaBsCFPfGnjBS+I QEbmzv6t+d2bgA67WxtmjKLT/Vx3uWY/0hlYO8PKw+Fi3zZAJThokcq9VCSqZLLL tvFneSDfs75abRxLuquz+m+7ho3m9nxhv0wgNRcrmUEcucXF2IWhccj86gs/oTI3 VWcUxwrvUe6d4wNrzZZT3UFDOjeCwHNcKpCxL8gu8dOdq/2Jv9DlI8PqOajHOnRm WaFMFYXJN2R0hdCdzZ9UxSk7ewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKyXO21j FtP4QbqHwxsIYHK4jNTLMB8GA1UdIwQYMBaAFCEmG4l0mJPDsxhBuW/j+2MjAy8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJFMi9DNUI2QjkzNjQ0 MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9JU1liaVhTWWs4T3pHRUc1Yi1QN1l5TURM eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YyRTIvQzVCNkI5MzY0NDA0MTFFRkI5QTYyQzBEQzRGOUFFMDIvQTgwNTFDQzQ1 MDgwMTFFRjgxMDUzMDc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyx1EMA0GCSqGSIb3DQEBCwUAA4IBAQCWDcNSKQE53dyqL1FcQ1WF 2h01UobpTbWPCusT1S6LqAd0xuUDTWMkA6i2ulBy48+lu62wriZCHJcOmVJ0muXX ZT/7wImZ50TpygqSgJkRsPmG6SkMrRJ/BMpd9fYMrt6pZGIsqbsKoFt1wZ275zgA tDpFRiw/6lqBkYj/CvCwOY2cV9HCzp0SNach10hd9wXMHI95J/8wpHlA7AJzUbHs JPI3vH6XRGWz2U+x0i4YYDVfABwBUbhSuO/EsB/ONOdY50Z7jQ8vyXnfrizwC3aL lUsp9H+noCut3m1oEx9McpFity4V+B27puebBh0xPDtBOlVAhr/enSBDThnTgErn -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:45 2026 by rpki-client