$ rpki-client -vvf rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa File: EF4B2E301CE411EB95E5A216C4F9AE02.roa (raw, json) Hash identifier: 4QsDMDAa6fXs4bWa6QotOZsAqIzC29boJI/VGeWpJB8= Subject key identifier: FB:DE:1F:0F:EC:85:E4:08:CC:DF:E4:CB:13:E7:65:FA:5D:93:E8:3F Certificate issuer: /CN=A914CD2D/serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Certificate serial: 0B5A Authority key identifier: 32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:59:57 +0000 ROA not before: Fri 04 Jul 2025 20:00:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134974 IP address blocks: 110.92.25.0/24 maxlen: 24 110.92.26.0/24 maxlen: 24 110.92.27.0/24 maxlen: 24 110.92.31.0/24 maxlen: 24 202.61.64.0/24 maxlen: 24 202.61.65.0/24 maxlen: 24 202.61.66.0/24 maxlen: 24 202.61.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:09:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CD2D, serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Validity Not Before: Jul 4 20:00:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4465d-4ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fb:90:a6:fb:90:cf:ba:e4:3a:a7:c9:ea:ee: 4d:41:2c:98:c7:a6:7e:40:dc:05:cb:97:b1:f4:95: 9d:43:ed:2a:a2:8a:57:81:94:bf:48:42:7e:3e:94: 52:3a:a9:49:d3:52:db:bb:89:99:a2:85:c4:28:8c: fc:12:97:9d:82:42:8c:2c:9e:42:8e:87:7a:7f:f0: 14:af:45:b8:5b:30:1f:42:07:cf:28:b9:98:0d:b9: 4d:21:20:07:09:45:52:43:72:22:3d:7f:ea:bd:e9: 28:ef:35:d7:f0:33:99:2d:e0:b1:5f:29:eb:49:38: c4:b2:df:6c:69:12:ab:e1:ef:90:a8:01:8d:c0:ca: 7e:6a:bf:aa:20:45:7b:e6:b0:94:2f:d6:17:54:4d: bd:15:d3:ed:3c:ab:d3:b8:43:66:eb:42:50:ad:48: a9:35:64:12:40:8e:f7:8a:6d:5d:55:d1:ff:d0:fb: ab:d1:0b:80:10:ee:5c:eb:ab:11:5c:58:3e:a2:e5: 0d:a2:16:3a:fe:0e:50:4a:89:53:26:f2:ee:a8:65: 25:bd:dc:4d:ef:1d:1b:7b:b0:75:c4:14:d2:cf:58: a2:9f:46:82:48:df:d6:84:c5:c8:8b:56:74:26:9b: 43:4c:db:4d:ae:f7:7e:f3:d8:ee:5a:5b:2d:90:33: 3a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DE:1F:0F:EC:85:E4:08:CC:DF:E4:CB:13:E7:65:FA:5D:93:E8:3F X509v3 Authority Key Identifier: keyid:32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.92.25.0-110.92.27.255 110.92.31.0/24 202.61.64.0/22 Signature Algorithm: sha256WithRSAEncryption 43:b6:96:93:0d:34:79:69:3d:62:f9:1d:70:b8:1f:e1:b2:71: c6:1e:56:e7:85:fd:b5:ae:b9:be:12:fb:61:7e:1f:a7:71:09: e0:43:0b:d4:c0:0d:4e:dd:62:e9:dc:64:5c:a7:84:02:9a:30: 08:2a:87:83:f6:0e:5d:b6:c2:4e:7d:fe:9c:24:14:67:cd:f2: dc:d6:d5:28:95:53:17:d4:22:3e:ef:96:74:b5:bb:26:2c:8e: 09:40:89:91:03:60:e4:b1:cc:bb:26:e5:e7:ed:7c:76:e0:5a: 2e:4f:24:bd:64:3d:f7:ac:d9:df:24:f4:33:22:58:5c:59:a4: 03:f1:93:cf:27:9c:f5:9f:53:4a:9c:89:2e:70:df:d9:c3:6d: 02:5e:53:eb:a0:de:5c:ae:75:19:fe:35:84:fe:88:2c:fe:d4: bc:8d:8c:41:dc:b4:39:c0:29:e7:e8:c6:bb:be:f8:68:87:af: 24:b2:b4:77:5a:81:85:cf:88:9a:3c:eb:88:f7:6e:08:a4:35: cb:8f:b9:89:23:8d:3d:35:eb:d0:67:c1:f4:e3:18:11:8b:e5: 89:11:b1:b7:8a:14:47:a5:d5:db:51:02:94:f8:a3:72:5a:ab: fa:09:c4:de:1d:99:e9:89:86:88:64:ed:68:94:7f:bc:7f:bd: 04:36:50:2e -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICC1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENEMkQxMTAvBgNVBAUTKDMyOTUyRUE0NjE5NTYzNTZEMzc3RUJERDRCRkExODcy QThFMUU0NDMwHhcNMjUwNzA0MjAwMDQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDY1ZC00ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/uQpvuQz7rkOqfJ6u5NQSyYx6Z+QNwFy5ex9JWdQ+0qoopXgZS/SEJ+PpRS OqlJ01Lbu4mZooXEKIz8EpedgkKMLJ5Cjod6f/AUr0W4WzAfQgfPKLmYDblNISAH CUVSQ3IiPX/qveko7zXX8DOZLeCxXynrSTjEst9saRKr4e+QqAGNwMp+ar+qIEV7 5rCUL9YXVE29FdPtPKvTuENm60JQrUipNWQSQI73im1dVdH/0Pur0QuAEO5c66sR XFg+ouUNohY6/g5QSolTJvLuqGUlvdxN7x0be7B1xBTSz1iin0aCSN/WhMXIi1Z0 JptDTNtNrvd+89juWlstkDM6pQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFPveHw/s heQIzN/kyxPnZfpdk+g/MB8GA1UdIwQYMBaAFDKVLqRhlWNW03fr3Uv6GHKo4eRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0QyRC85NEZGMUZCQzU4 ODIxMUVBOTVCNDdGNTFDNEY5QUUwMi9NcFV1cEdHVlkxYlRkLXZkU19vWWNxamg1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wVXVwR0dWWTFiVGQtdmRTX29ZY3FqaDVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENEMkQvOTRGRjFGQkM1ODgyMTFFQTk1QjQ3RjUxQzRGOUFFMDIvRUY0QjJFMzAx Q0U0MTFFQjk1RTVBMjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBABuXBkDBAJuXBgDBABuXB8DBALKPUAwDQYJKoZIhvcNAQELBQAD ggEBAEO2lpMNNHlpPWL5HXC4H+GyccYeVueF/bWuub4S+2F+H6dxCeBDC9TADU7d YuncZFynhAKaMAgqh4P2Dl22wk59/pwkFGfN8tzW1SiVUxfUIj7vlnS1uyYsjglA iZEDYOSxzLsm5eftfHbgWi5PJL1kPfes2d8k9DMiWFxZpAPxk88nnPWfU0qciS5w 39nDbQJeU+ug3lyudRn+NYT+iCz+1LyNjEHctDnAKefoxru++GiHrySytHdagYXP iJo864j3bgikNcuPuYkjjT0169BnwfTjGBGL5YkRsbeKFEel1dtRApT4o3Jaq/oJ xN4dmemJhohk7WiUf7x/vQQ2UC4= -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:06 2026 by rpki-client