$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa File: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (raw, json) Hash identifier: Ae2D09RrIAEsj2zD2tu6+cplYXPngj1cvZnsDaiUJHM= Subject key identifier: 98:3D:52:C5:22:9B:B1:31:A8:B1:82:70:07:B0:78:13:2C:EB:07:47 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 0292 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:09:12 +0000 ROA not before: Tue 05 Aug 2025 02:41:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4658 IP address blocks: 202.81.224.0/19 maxlen: 24 2401:300::/35 maxlen: 35 2401:300:2000::/35 maxlen: 35 2401:300:4000::/35 maxlen: 35 2401:300:6000::/35 maxlen: 35 2401:300:8000::/35 maxlen: 35 2401:300:a000::/35 maxlen: 35 2401:300:c000::/35 maxlen: 35 2401:300:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Aug 5 02:41:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40238-2126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:f6:64:03:4d:1e:de:f2:ea:44:c1:56:5e: 24:5d:7f:6b:6d:a5:da:e1:99:0e:fa:db:cf:a0:37: f8:f5:ec:24:fe:52:10:25:12:43:9b:c9:5c:97:ce: c3:33:7e:6e:81:a6:22:08:22:a9:8c:4c:17:b7:e5: 65:c8:0b:1d:54:53:f2:ad:31:da:c3:f8:0e:cc:2b: 1b:98:01:fd:62:79:65:6d:0e:97:06:da:ca:64:49: 66:d7:d8:f5:c9:12:fb:7b:14:9e:80:e5:56:16:6c: 55:1f:e9:c5:b7:34:1b:26:74:39:5b:37:b7:c3:01: 9f:70:5a:2f:b0:14:63:4e:5d:7d:25:42:b1:a4:69: f3:60:ff:41:e1:b8:06:dc:dc:85:4d:87:51:ce:ff: e7:ee:43:a5:7a:53:83:a2:97:84:51:d3:03:24:a8: ad:a3:a3:24:bb:bd:45:08:f0:fc:0a:20:91:d0:87: 0f:12:43:a3:80:2d:51:bd:58:8d:80:f5:24:a1:36: 72:93:1f:42:fa:a6:31:9f:b5:63:40:9b:05:9a:4a: eb:b9:99:1d:15:7f:ca:e6:38:52:d5:9b:dd:5d:3b: d2:c2:27:79:f8:54:e2:44:01:e5:bc:a9:06:27:94: 0a:c3:da:ee:4e:b5:dc:32:3c:69:20:90:7d:81:a4: 9e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:3D:52:C5:22:9B:B1:31:A8:B1:82:70:07:B0:78:13:2C:EB:07:47 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.81.224.0/19 IPv6: 2401:300::/32 Signature Algorithm: sha256WithRSAEncryption 1f:01:2d:f5:72:be:97:4f:f9:3f:34:b5:db:ef:c5:b3:62:d7: fb:6b:dd:72:ac:75:71:30:a2:b4:64:e3:2c:a5:9f:18:a8:79: 6c:bf:b7:38:52:86:eb:05:79:dc:2f:7a:2c:84:a3:b8:d9:f2: cc:a7:99:8a:24:c2:cd:96:8b:3c:77:26:a6:57:0a:1c:49:22: 0c:ba:40:09:68:60:bb:1e:91:fc:16:3d:30:c2:78:2f:73:1d: f5:db:49:34:2d:44:65:73:77:f2:ba:91:57:18:9d:56:6d:ea: 14:c2:0a:80:b7:c8:81:99:46:d5:35:84:6d:a7:1a:09:70:c7: b0:15:60:37:d1:53:a9:2f:a7:33:78:ff:ca:f8:8b:fa:83:fe: bd:8a:45:0a:de:54:c3:74:1d:03:54:41:31:7b:fa:73:71:d0: 3c:06:18:b3:8a:25:28:c5:be:75:e3:5c:ed:aa:7a:ef:95:cc: f2:3e:c8:b0:36:6f:f4:d9:6c:ac:e2:3d:80:59:cf:7c:29:7d: 90:28:74:4e:87:5f:4e:20:87:de:1a:0a:63:a9:b2:72:86:0e: dd:9a:45:cb:ee:b3:bc:61:23:69:df:e9:38:9b:23:df:20:0d: c9:b5:38:3c:ed:66:70:67:ec:9e:d9:a1:af:e6:e5:87:0a:a1: eb:fc:1d:fc -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUwODA1MDI0MTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDIzOC0yMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEL2ZANNHt7y6kTBVl4kXX9rbaXa4ZkO+tvPoDf49ewk/lIQJRJDm8lcl87D M35ugaYiCCKpjEwXt+VlyAsdVFPyrTHaw/gOzCsbmAH9YnllbQ6XBtrKZElm19j1 yRL7exSegOVWFmxVH+nFtzQbJnQ5Wze3wwGfcFovsBRjTl19JUKxpGnzYP9B4bgG 3NyFTYdRzv/n7kOlelODopeEUdMDJKito6Mku71FCPD8CiCR0IcPEkOjgC1RvViN gPUkoTZykx9C+qYxn7VjQJsFmkrruZkdFX/K5jhS1ZvdXTvSwid5+FTiRAHlvKkG J5QKw9ruTrXcMjxpIJB9gaSeMwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJg9UsUi m7ExqLGCcAeweBMs6wdHMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQ2RkMvODg3NTkxODI0MzJGMTFFREJCRDk4RjVDQzRGOUFFMDIvMTFFQzUwQjQ4 QjhGMTFFRjhERTk2RTYwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFylHgMA0EAgACMAcDBQAkAQMAMA0GCSqGSIb3DQEBCwUAA4IBAQAf AS31cr6XT/k/NLXb78WzYtf7a91yrHVxMKK0ZOMspZ8YqHlsv7c4UobrBXncL3os hKO42fLMp5mKJMLNlos8dyamVwocSSIMukAJaGC7HpH8Fj0wwngvcx3120k0LURl c3fyupFXGJ1WbeoUwgqAt8iBmUbVNYRtpxoJcMewFWA30VOpL6czeP/K+Iv6g/69 ikUK3lTDdB0DVEExe/pzcdA8BhiziiUoxb5141ztqnrvlczyPsiwNm/02Wys4j2A Wc98KX2QKHROh19OIIfeGgpjqbJyhg7dmkXL7rO8YSNp3+k4myPfIA3JtTg87WZw Z+ye2aGv5uWHCqHr/B38 -----END CERTIFICATE-----Generated at Mon Mar 2 20:01:54 2026 by rpki-client