$ rpki-client -vvf rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/BCAF365487C111F0AC525C39C4F9AE02.roa File: BCAF365487C111F0AC525C39C4F9AE02.roa (raw, json) Hash identifier: qXkatjQdk9/LRncp/cgGtu7Z2Y3FqEqyaJABgXad1Wc= Subject key identifier: 28:6D:96:63:D1:EB:C7:EA:94:0D:FE:5D:BE:74:1B:9D:E7:23:1D:6B Certificate issuer: /CN=A916A285/serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Certificate serial: 023C Authority key identifier: 62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/BCAF365487C111F0AC525C39C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:32:16 +0000 ROA not before: Tue 02 Sep 2025 05:57:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45352 IP address blocks: 43.246.176.0/22 maxlen: 24 103.12.152.0/23 maxlen: 24 103.12.154.0/24 maxlen: 24 103.12.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A285, serialNumber=6228AB68A2460BDC56688B6E55891790DD804B10 Validity Not Before: Sep 2 05:57:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3dd70-0237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:90:01:24:73:52:5d:a4:06:13:c0:fe:59: 32:80:f0:91:77:55:3f:0a:a7:1c:86:e2:e7:c3:2b: a1:e0:b8:d1:3e:70:6f:de:5c:12:28:89:0f:43:4b: 48:0b:e1:2a:7b:d3:fe:67:a5:d2:b3:c4:6f:f8:69: bb:35:49:48:f7:e8:3c:41:18:e9:26:a4:f4:de:5f: 01:61:95:e4:54:ca:88:7b:bf:7d:14:e9:49:3f:7d: 13:87:af:a5:a2:d2:61:1b:f5:59:25:d8:79:39:da: de:22:3e:1a:22:5e:80:4e:9e:be:a0:2c:bc:e6:ca: 70:28:7f:2e:13:a4:77:75:6c:b3:30:ea:ff:5e:f8: 40:ef:94:86:0d:60:e1:bc:ae:c2:f2:e6:39:ac:bc: 37:8d:c5:82:f6:67:9b:75:bc:58:fd:ec:ae:ed:67: 4c:00:6e:26:2a:7e:0b:8c:c9:97:8a:cc:4a:2f:27: 5e:d5:0b:ad:fc:18:e3:b2:20:38:2b:8c:07:69:19: a7:7d:9d:63:7a:ae:0a:4f:2d:a3:90:b2:b5:35:bc: ab:30:5f:e2:07:85:34:8d:f2:ee:da:97:9c:80:b3: 76:4b:47:7d:2d:10:a1:d5:94:c8:46:08:ce:47:12: e3:b8:05:71:05:91:41:31:d4:7f:ac:b7:b7:1a:62: dd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6D:96:63:D1:EB:C7:EA:94:0D:FE:5D:BE:74:1B:9D:E7:23:1D:6B X509v3 Authority Key Identifier: keyid:62:28:AB:68:A2:46:0B:DC:56:68:8B:6E:55:89:17:90:DD:80:4B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/YiiraKJGC9xWaItuVYkXkN2ASxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiiraKJGC9xWaItuVYkXkN2ASxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A285/E8192038B97A11EDA285A554C4F9AE02/BCAF365487C111F0AC525C39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.246.176.0/22 103.12.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:79:e0:21:05:6e:53:07:40:6f:52:6b:83:de:5f:73:18:0d: 27:1b:4a:55:5d:0b:f2:29:0b:0d:a1:31:07:ac:98:ae:fb:f1: a0:d8:c8:25:15:ce:93:f7:19:ed:1f:19:a0:94:51:6c:c3:90: 7f:ca:61:09:f7:98:c8:ef:aa:70:28:c9:bd:22:39:2b:59:9f: 45:c0:d2:ac:21:36:9b:44:f1:ee:7f:ea:e2:ba:a6:fa:7b:ed: 75:9f:98:50:89:86:db:5b:af:4a:91:33:7c:f7:9e:f9:eb:49: 49:fb:ab:e0:10:82:b8:ba:f0:ce:e6:2b:4b:b8:30:0a:70:27: f9:61:06:31:0d:dc:95:2b:09:81:ca:60:96:d3:e6:15:de:94: bf:c9:f6:e5:5d:ee:45:7a:4e:5e:fc:87:c0:a7:c4:5a:40:24: 9d:0a:fe:67:1d:32:bc:69:74:32:6a:6f:c4:27:06:22:ee:16: d7:da:3d:ac:5a:9e:86:f4:c1:f9:9e:b3:52:9f:a9:2a:43:26: 92:72:44:59:a3:ff:d1:6d:d8:cb:ee:77:0f:56:59:ba:f0:f5: 6b:ff:d9:3a:e3:53:45:4d:80:89:e6:2d:85:8d:a5:4c:d3:f5: 4f:d7:a0:98:75:20:b9:d2:f4:71:c7:bd:51:d3:b2:af:2b:2a: 9d:be:d0:2c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEyODUxMTAvBgNVBAUTKDYyMjhBQjY4QTI0NjBCREM1NjY4OEI2RTU1ODkxNzkw REQ4MDRCMTAwHhcNMjUwOTAyMDU1NzQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGQ3MC0wMjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTuQASRzUl2kBhPA/lkygPCRd1U/CqcchuLnwyuh4LjRPnBv3lwSKIkPQ0tI C+Eqe9P+Z6XSs8Rv+Gm7NUlI9+g8QRjpJqT03l8BYZXkVMqIe799FOlJP30Th6+l otJhG/VZJdh5OdreIj4aIl6ATp6+oCy85spwKH8uE6R3dWyzMOr/XvhA75SGDWDh vK7C8uY5rLw3jcWC9mebdbxY/eyu7WdMAG4mKn4LjMmXisxKLyde1Qut/BjjsiA4 K4wHaRmnfZ1jeq4KTy2jkLK1NbyrMF/iB4U0jfLu2pecgLN2S0d9LRCh1ZTIRgjO RxLjuAVxBZFBMdR/rLe3GmLdFQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFChtlmPR 68fqlA3+Xb50G53nIx1rMB8GA1UdIwQYMBaAFGIoq2iiRgvcVmiLblWJF5DdgEsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTI4NS9FODE5MjAzOEI5 N0ExMUVEQTI4NUE1NTRDNEY5QUUwMi9ZaWlyYUtKR0M5eFdhSXR1VllrWGtOMkFT eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpaXJhS0pHQzl4V2FJdHVWWWtYa04yQVN4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEyODUvRTgxOTIwMzhCOTdBMTFFREEyODVBNTU0QzRGOUFFMDIvQkNBRjM2NTQ4 N0MxMTFGMEFDNTI1QzM5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/awAwQCZwyYMA0GCSqGSIb3DQEBCwUAA4IBAQB6eeAhBW5TB0Bv UmuD3l9zGA0nG0pVXQvyKQsNoTEHrJiu+/Gg2MglFc6T9xntHxmglFFsw5B/ymEJ 95jI76pwKMm9IjkrWZ9FwNKsITabRPHuf+riuqb6e+11n5hQiYbbW69KkTN89575 60lJ+6vgEIK4uvDO5itLuDAKcCf5YQYxDdyVKwmBymCW0+YV3pS/yfblXe5Fek5e /IfAp8RaQCSdCv5nHTK8aXQyam/EJwYi7hbX2j2sWp6G9MH5nrNSn6kqQyaSckRZ o//RbdjL7ncPVlm68PVr/9k641NFTYCJ5i2FjaVM0/VP16CYdSC50vRxx71R07Kv KyqdvtAs -----END CERTIFICATE-----Generated at Mon Mar 2 07:47:42 2026 by rpki-client