$ rpki-client -vvf rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/65A459FE54BD11EE8C958973C4F9AE02.roa File: 65A459FE54BD11EE8C958973C4F9AE02.roa (raw, json) Hash identifier: ygFLVggZHnv9whDU4ujjfyV418+cMpDVMJ9ym333+no= Subject key identifier: 4A:12:AC:DC:FD:3F:C8:8F:22:95:53:3A:45:02:95:41:22:0F:FA:2C Certificate issuer: /CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Certificate serial: 01D2 Authority key identifier: 0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/65A459FE54BD11EE8C958973C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:20:34 +0000 ROA not before: Mon 01 Dec 2025 01:59:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 59217 IP address blocks: 43.248.248.0/22 maxlen: 24 103.243.164.0/22 maxlen: 24 2402:c940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F8DB, serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Validity Not Before: Dec 1 01:59:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a412f2-3a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c2:cd:5f:91:b8:f8:06:3e:74:77:ee:df:d8: a7:81:8d:ed:96:26:1f:11:6f:80:0c:9f:21:38:aa: f8:83:db:a2:73:27:95:1e:4b:ca:06:cd:85:37:a8: d3:09:b6:c3:ae:b5:eb:f6:ff:e7:53:67:dc:eb:2a: 49:b0:9c:71:90:6d:39:b5:62:fe:13:c9:8e:c0:f5: 4d:e5:44:da:d3:5c:16:b8:dc:e4:46:c1:a2:82:e6: 54:6b:a5:16:7f:80:c4:2d:6a:79:17:62:ca:66:74: 37:27:11:03:76:45:cd:92:ad:2e:29:5f:da:2d:53: 79:8c:9b:a3:65:0a:c3:a8:86:3e:69:99:85:55:01: f8:ac:fe:23:03:1f:df:ed:ec:21:ee:57:c8:95:df: e9:8d:25:54:3e:4c:91:54:3d:53:0e:55:9a:18:0c: 85:e9:ea:f3:83:06:df:0f:01:93:f4:b4:28:86:1f: a5:ad:9f:7d:34:dd:88:72:17:0e:32:8f:a5:2d:2a: 19:31:85:2f:00:86:f3:ce:c7:7e:c2:dd:dc:a6:1c: 8d:7a:70:3b:7b:9e:fc:9b:f9:53:af:25:44:5c:36: 98:7e:76:44:d7:3c:a3:b1:d4:4f:76:94:c2:31:a1: 83:94:00:8b:ab:4c:41:e7:c0:21:c0:69:c7:d4:33: c3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:12:AC:DC:FD:3F:C8:8F:22:95:53:3A:45:02:95:41:22:0F:FA:2C X509v3 Authority Key Identifier: keyid:0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/65A459FE54BD11EE8C958973C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.248.0/22 103.243.164.0/22 IPv6: 2402:c940::/32 Signature Algorithm: sha256WithRSAEncryption 98:14:ee:54:a6:1b:c8:35:5b:ce:12:39:61:a4:cd:62:ab:23: d0:a4:c0:9b:ea:f8:a6:87:c0:68:86:cc:58:89:5b:96:19:d2: ba:6f:93:b6:ec:19:c8:d7:1e:cf:51:07:a3:44:ec:81:42:61: 2c:5f:6e:30:4a:39:54:75:56:4c:48:41:a0:c8:ac:fe:8b:0d: ec:ba:4a:61:be:46:d0:ad:1e:06:c7:86:ca:02:41:0c:17:da: 90:d2:65:e6:2a:82:6b:c8:24:bb:88:c3:dc:05:dd:8b:eb:42: f4:71:19:9b:22:dd:b5:b3:b6:1a:97:7f:46:0d:a6:68:76:f9: e6:77:1a:a0:1d:52:79:f6:99:f6:ca:1f:73:18:84:d6:04:e5: 38:8c:a1:f1:58:7e:e8:5a:b7:8d:f9:1c:28:8c:91:71:2f:69: 52:ac:ce:30:3a:29:a6:7f:37:9e:be:54:f4:e7:9d:b8:ea:cd: 16:c4:c5:d7:1a:24:e1:56:c5:21:55:82:cd:fb:7e:ce:1e:69: d7:53:16:54:ce:40:fa:c4:13:88:97:26:40:a3:7b:be:53:2d: ce:48:d6:c7:da:a8:7b:41:5a:15:43:a7:04:1d:f2:78:29:84: 26:0f:f1:6c:bc:6d:78:e2:a1:73:33:1f:90:96:f1:aa:8a:f0: d3:ab:37:dd -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY4REIxMTAvBgNVBAUTKDBERTJCNkE2MkU1NEEwQTYxQkNGMzE0QjZFMkVGQjhG M0ExRTNBN0EwHhcNMjUxMjAxMDE1OTE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTJmMi0zYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cLNX5G4+AY+dHfu39ingY3tliYfEW+ADJ8hOKr4g9uicyeVHkvKBs2FN6jT CbbDrrXr9v/nU2fc6ypJsJxxkG05tWL+E8mOwPVN5UTa01wWuNzkRsGiguZUa6UW f4DELWp5F2LKZnQ3JxEDdkXNkq0uKV/aLVN5jJujZQrDqIY+aZmFVQH4rP4jAx/f 7ewh7lfIld/pjSVUPkyRVD1TDlWaGAyF6erzgwbfDwGT9LQohh+lrZ99NN2IchcO Mo+lLSoZMYUvAIbzzsd+wt3cphyNenA7e578m/lTryVEXDaYfnZE1zyjsdRPdpTC MaGDlACLq0xB58AhwGnH1DPDtwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEoSrNz9 P8iPIpVTOkUClUEiD/osMB8GA1UdIwQYMBaAFA3itqYuVKCmG88xS24u+486Hjp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjhEQi82QzhCQjg2MjU0 QkMxMUVFQjhEQjExNEFDNEY5QUUwMi9EZUsycGk1VW9LWWJ6ekZMYmk3N2p6b2VP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlSzJwaTVVb0tZYnp6RkxiaTc3anpvZU9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkY4REIvNkM4QkI4NjI1NEJDMTFFRUI4REIxMTRBQzRGOUFFMDIvNjVBNDU5RkU1 NEJEMTFFRThDOTU4OTczQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/j4AwQCZ/OkMA0EAgACMAcDBQAkAslAMA0GCSqGSIb3DQEBCwUA A4IBAQCYFO5UphvINVvOEjlhpM1iqyPQpMCb6vimh8BohsxYiVuWGdK6b5O27BnI 1x7PUQejROyBQmEsX24wSjlUdVZMSEGgyKz+iw3sukphvkbQrR4Gx4bKAkEMF9qQ 0mXmKoJryCS7iMPcBd2L60L0cRmbIt21s7Yal39GDaZodvnmdxqgHVJ59pn2yh9z GITWBOU4jKHxWH7oWreN+RwojJFxL2lSrM4wOimmfzeevlT055246s0WxMXXGiTh VsUhVYLN+37OHmnXUxZUzkD6xBOIlyZAo3u+Uy3OSNbH2qh7QVoVQ6cEHfJ4KYQm D/FsvG144qFzMx+QlvGqivDTqzfd -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:18 2026 by rpki-client