$ rpki-client -vvf rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa File: 165CEF66E60911EB950D930DC4F9AE02.roa (raw, json) Hash identifier: hG8g9R9N6g9xsHSn0imR+1vWSozb3fa3uL51Vy8mhic= Subject key identifier: 8F:9E:6A:28:A2:D9:69:C9:64:FB:68:EC:14:B0:03:EA:0E:91:19:B3 Certificate issuer: /CN=A915A300/serialNumber=E1564FDA5CED5CAE694153097ED1942551209223 Certificate serial: 3649 Authority key identifier: E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:22:08 +0000 ROA not before: Tue 22 Apr 2025 14:40:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 211.29.93.0/24 maxlen: 24 211.29.132.0/24 maxlen: 24 211.29.133.0/24 maxlen: 24 211.29.152.0/24 maxlen: 24 211.31.132.0/24 maxlen: 24 211.31.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13897 (0x3649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A300, serialNumber=E1564FDA5CED5CAE694153097ED1942551209223 Validity Not Before: Apr 22 14:40:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42160-6acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:54:06:c6:ca:a7:bb:96:8b:8f:d5:3d:5c:88: f6:2f:5f:a8:39:15:be:b7:b4:1e:8f:24:62:d9:e6: 87:bf:0c:4c:80:17:7c:36:25:80:64:34:32:c7:10: 65:e0:e8:30:e5:7d:97:59:2a:29:28:a5:51:b3:7d: d9:5d:19:cf:02:e4:5f:91:99:ab:c1:23:4f:61:b4: 74:4f:6c:cd:9b:7e:0e:56:a2:75:9e:57:68:d3:c3: cf:36:55:14:ac:b9:46:e7:1c:17:d6:16:47:e7:d0: 19:62:c1:f1:c1:75:4e:4d:f5:01:cb:31:da:28:1d: 91:6d:6c:75:10:c6:fb:50:45:a5:02:49:c2:07:56: d0:67:ca:6a:39:bc:72:1d:6a:5c:75:3b:f7:a5:c0: 81:e0:e2:9a:16:b6:b8:93:ac:9b:7e:96:32:42:25: 1d:75:77:8b:35:df:8a:a2:ce:37:08:30:c0:0b:09: 06:ac:c9:33:5a:1a:ff:d5:fa:54:cf:2a:fc:ae:1c: d3:fc:37:5f:88:4c:9a:17:0e:a0:f8:fd:74:89:07: 83:15:5d:df:bf:05:26:c6:ea:b0:af:6c:2b:b9:28: 48:f6:1d:1d:f4:16:26:69:31:79:6d:73:39:9a:80: 1f:5b:a7:d7:06:3e:02:fc:95:44:9e:bd:96:2f:77: 1e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9E:6A:28:A2:D9:69:C9:64:FB:68:EC:14:B0:03:EA:0E:91:19:B3 X509v3 Authority Key Identifier: keyid:E1:56:4F:DA:5C:ED:5C:AE:69:41:53:09:7E:D1:94:25:51:20:92:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/4VZP2lztXK5pQVMJftGUJVEgkiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VZP2lztXK5pQVMJftGUJVEgkiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A300/CD2037E21D8811E28A11A0E108B02CD2/165CEF66E60911EB950D930DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 211.29.93.0/24 211.29.132.0/23 211.29.152.0/24 211.31.132.0/24 211.31.138.0/24 Signature Algorithm: sha256WithRSAEncryption 07:41:21:b0:50:e7:1c:4a:0d:a1:a8:9c:c3:29:d5:a1:14:56: eb:8a:49:f4:1f:f5:59:66:2a:a2:bd:16:85:c2:85:d9:a0:3d: 32:22:16:a4:8f:3c:73:bd:36:9f:48:65:d7:80:e7:2e:7c:80: 2e:0b:10:e8:be:d8:ee:bf:aa:88:aa:1c:4f:3e:d1:50:67:80: f7:08:ee:05:53:19:23:45:e3:94:a1:5e:56:2d:98:23:68:03: 60:d0:e6:b8:a7:a4:a5:55:e3:01:d2:7f:f4:d4:c9:b7:2c:8e: 02:34:8b:e2:1f:b5:7e:09:f8:bc:8e:a1:6a:60:18:eb:56:4d: be:b7:ca:2e:17:6e:b5:5b:29:55:a8:2f:b4:3e:f4:7a:fa:f3: 14:6e:20:fa:9a:ba:5d:1a:07:ee:f4:b3:b2:f4:6a:09:11:c5: 22:c2:a3:9a:a3:b8:08:af:a0:8b:9c:db:6b:ef:5e:ff:01:9d: 39:4e:23:3f:a6:24:90:5d:ff:44:20:a5:f2:f2:73:35:69:30: 39:cf:c4:07:8c:0f:04:7f:8a:86:49:c6:dc:ce:00:0d:44:3d: 67:38:44:f5:8a:f3:e8:fd:e6:c9:9d:92:b8:db:24:91:5d:30: ba:28:81:de:7f:d3:3f:a5:94:1e:62:2d:0f:b0:c9:e7:51:ff: f6:f9:c3:32 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICNkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzMDAxMTAvBgNVBAUTKEUxNTY0RkRBNUNFRDVDQUU2OTQxNTMwOTdFRDE5NDI1 NTEyMDkyMjMwHhcNMjUwNDIyMTQ0MDM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjE2MC02YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lQGxsqnu5aLj9U9XIj2L1+oORW+t7QejyRi2eaHvwxMgBd8NiWAZDQyxxBl 4Ogw5X2XWSopKKVRs33ZXRnPAuRfkZmrwSNPYbR0T2zNm34OVqJ1nldo08PPNlUU rLlG5xwX1hZH59AZYsHxwXVOTfUByzHaKB2RbWx1EMb7UEWlAknCB1bQZ8pqObxy HWpcdTv3pcCB4OKaFra4k6ybfpYyQiUddXeLNd+Kos43CDDACwkGrMkzWhr/1fpU zyr8rhzT/DdfiEyaFw6g+P10iQeDFV3fvwUmxuqwr2wruShI9h0d9BYmaTF5bXM5 moAfW6fXBj4C/JVEnr2WL3ce0wIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFI+eaiii 2WnJZPto7BSwA+oOkRmzMB8GA1UdIwQYMBaAFOFWT9pc7VyuaUFTCX7RlCVRIJIj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTMwMC9DRDIwMzdFMjFE ODgxMUUyOEExMUEwRTEwOEIwMkNEMi80VlpQMmx6dFhLNXBRVk1KZnRHVUpWRWdr aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWWlAybHp0WEs1cFFWTUpmdEdVSlZFZ2tpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEzMDAvQ0QyMDM3RTIxRDg4MTFFMjhBMTFBMEUxMDhCMDJDRDIvMTY1Q0VGNjZF NjA5MTFFQjk1MEQ5MzBEQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQA0x1dAwQB0x2EAwQA0x2YAwQA0x+EAwQA0x+KMA0GCSqGSIb3DQEB CwUAA4IBAQAHQSGwUOccSg2hqJzDKdWhFFbrikn0H/VZZiqivRaFwoXZoD0yIhak jzxzvTafSGXXgOcufIAuCxDovtjuv6qIqhxPPtFQZ4D3CO4FUxkjReOUoV5WLZgj aANg0Oa4p6SlVeMB0n/01Mm3LI4CNIviH7V+Cfi8jqFqYBjrVk2+t8ouF261WylV qC+0PvR6+vMUbiD6mrpdGgfu9LOy9GoJEcUiwqOao7gIr6CLnNtr717/AZ05TiM/ piSQXf9EIKXy8nM1aTA5z8QHjA8Ef4qGScbczgANRD1nOET1ivPo/ebJnZK42ySR XTC6KIHef9M/pZQeYi0PsMnnUf/2+cMy -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:38 2026 by rpki-client