$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa File: 67827BDC0B8511EA97C80D52C4F9AE02.roa (raw, json) Hash identifier: tcDVHJrWSVmqtE3KfMdxpE8eti6SUsQc8cAfExl/fX0= Subject key identifier: EB:D9:FF:E7:25:7E:C1:32:A0:6F:E0:91:D3:12:96:F1:48:89:82:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0CC9 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:00 +0000 ROA not before: Tue 06 May 2025 18:58:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137526 IP address blocks: 103.111.224.0/22 maxlen: 22 103.111.224.0/24 maxlen: 24 103.111.225.0/24 maxlen: 24 103.111.226.0/24 maxlen: 24 103.111.227.0/24 maxlen: 24 2402:a1c0::/32 maxlen: 32 2402:a1c0::/36 maxlen: 36 2402:a1c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: May 6 18:58:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42f2c-fc7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:6e:61:6a:59:e3:20:d3:4e:e0:e6:57:0c: 7b:f5:6e:5c:78:13:0a:bb:3d:d0:61:58:21:c3:4c: 6c:28:b1:f0:60:dd:66:a7:82:02:50:b3:c9:f3:8e: 13:92:0d:01:5e:98:26:44:20:38:06:0e:a2:ec:e9: 4f:3e:7f:b2:55:ad:00:5c:c4:11:1e:77:19:89:95: 48:0c:11:12:0e:1f:8b:e7:e7:66:f2:83:c4:af:1c: c2:6d:46:cc:69:0a:e9:3d:86:02:70:f6:1a:1c:a8: 4e:19:ae:85:48:f0:f0:db:70:b7:2a:68:dc:7e:12: a0:bd:2f:7c:7e:bb:6a:3e:69:94:9f:75:a7:bc:cd: 20:35:5c:e1:82:00:cf:4e:00:66:06:bc:18:d8:0e: 5d:50:d8:db:45:dd:c9:e0:54:e4:2b:61:34:7b:13: df:9c:72:30:cb:e5:04:85:52:31:a3:e0:5f:53:81: fe:b2:ac:43:35:cb:03:b2:40:06:3c:f6:8c:e9:df: e0:6d:12:73:bb:7d:d8:3e:2e:08:f3:6e:6e:8d:2b: 87:a5:55:a7:b6:98:e4:d0:55:3e:c0:7a:13:03:d4: 5a:33:67:a8:e7:18:e4:72:51:ee:de:a5:b3:d6:3f: e5:1f:5a:4a:2f:3a:c0:bb:bb:41:d7:e1:dc:ce:96: 70:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D9:FF:E7:25:7E:C1:32:A0:6F:E0:91:D3:12:96:F1:48:89:82:4B X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.111.224.0/22 IPv6: 2402:a1c0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:38:4c:95:ff:a2:14:41:dd:34:0d:fc:25:00:dc:74:5f:fb: 39:2d:a8:74:d7:b4:6c:26:06:9f:ab:be:8c:8e:79:6f:ae:b1: 94:d4:10:d7:f0:e2:35:de:f8:ae:8b:42:bc:6e:ff:eb:7a:c2: d1:af:3e:6e:c8:b8:cc:53:fd:33:c9:7e:41:1f:9b:5b:a9:58: 36:ff:ce:26:9f:a0:66:fc:50:c5:f1:2c:64:99:43:9b:9a:b5: d5:53:28:bf:28:de:a0:3b:6b:de:0c:c5:f4:d6:0d:a8:34:aa: f1:08:74:69:dc:cf:e6:53:fe:2a:f8:80:c1:f5:e1:ec:e1:b8: 21:7f:a9:71:d3:52:ed:5d:60:00:11:b3:22:9f:f1:64:8c:02: 1b:eb:5d:1d:a2:28:4f:08:d3:4d:ce:04:45:6d:3e:61:fc:ab: 1f:c1:b3:75:17:37:35:8c:e0:33:e7:28:84:c3:8a:9e:b9:05: fa:9d:77:17:22:4d:9d:61:83:fd:14:64:18:6d:80:20:ae:2a: 8f:1d:e5:10:be:05:db:5b:c4:a1:89:8b:25:71:ae:91:2b:5f: c2:c3:eb:aa:f7:6e:01:a3:58:0e:0b:6d:dc:84:e0:2f:5b:6c: 4b:ce:e6:73:ba:d4:92:5a:e2:e5:f7:b3:ea:f3:45:9e:9b:44: 12:2c:a1:9f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUwNTA2MTg1ODA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmYyYy1mYzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPluYWpZ4yDTTuDmVwx79W5ceBMKuz3QYVghw0xsKLHwYN1mp4ICULPJ844T kg0BXpgmRCA4Bg6i7OlPPn+yVa0AXMQRHncZiZVIDBESDh+L5+dm8oPErxzCbUbM aQrpPYYCcPYaHKhOGa6FSPDw23C3KmjcfhKgvS98frtqPmmUn3WnvM0gNVzhggDP TgBmBrwY2A5dUNjbRd3J4FTkK2E0exPfnHIwy+UEhVIxo+BfU4H+sqxDNcsDskAG PPaM6d/gbRJzu33YPi4I825ujSuHpVWntpjk0FU+wHoTA9RaM2eo5xjkclHu3qWz 1j/lH1pKLzrAu7tB1+HczpZw/wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOvZ/+cl fsEyoG/gkdMSlvFIiYJLMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGMzMvNDYwNjYxREMwQjgzMTFFQTk3MUE4NjREQzRGOUFFMDIvNjc4MjdCREMw Qjg1MTFFQTk3QzgwRDUyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2/gMA0EAgACMAcDBQAkAqHAMA0GCSqGSIb3DQEBCwUAA4IBAQBr OEyV/6IUQd00DfwlANx0X/s5Lah017RsJgafq76MjnlvrrGU1BDX8OI13viui0K8 bv/resLRrz5uyLjMU/0zyX5BH5tbqVg2/84mn6Bm/FDF8SxkmUObmrXVUyi/KN6g O2veDMX01g2oNKrxCHRp3M/mU/4q+IDB9eHs4bghf6lx01LtXWAAEbMin/FkjAIb 610doihPCNNNzgRFbT5h/KsfwbN1Fzc1jOAz5yiEw4qeuQX6nXcXIk2dYYP9FGQY bYAgriqPHeUQvgXbW8ShiYslca6RK1/Cw+uq924Bo1gOC23chOAvW2xLzuZzutSS WuLl97Pq80Wem0QSLKGf -----END CERTIFICATE-----Generated at Mon Mar 2 08:32:20 2026 by rpki-client