$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/E82DE3C290AB11ECAB81252FC4F9AE02.roa File: E82DE3C290AB11ECAB81252FC4F9AE02.roa (raw, json) Hash identifier: 8RK3wMUcaIlDFax8CoO7B3J+G4IwltOjR9G0Tg+XrZw= Subject key identifier: DE:95:39:BD:A8:50:4E:F3:E4:D1:4B:6B:05:6B:08:57:A1:2F:73:EE Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 04D5 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/E82DE3C290AB11ECAB81252FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:47:49 +0000 ROA not before: Wed 26 Nov 2025 22:46:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 148968 IP address blocks: 103.174.228.0/23 maxlen: 24 202.130.206.0/24 maxlen: 24 203.12.29.0/24 maxlen: 24 2001:df7:d980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Nov 26 22:46:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43575-b19a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4a:fe:9e:68:5b:d2:35:9e:48:2b:77:e9:34: 0e:9d:28:1b:39:81:fd:b5:10:9b:73:75:e7:a4:c7: ec:b2:59:6e:32:6b:4e:e8:16:fa:f3:b9:53:7d:46: f1:05:4d:29:6c:52:ab:61:63:07:95:a5:0f:81:23: ab:77:45:7c:93:61:7d:69:86:08:60:12:5a:7e:51: 91:8a:e3:8a:2e:6d:d4:86:bc:88:e2:61:f1:07:6a: da:83:b9:ea:da:98:3c:02:bf:24:38:e5:25:48:e8: 96:8a:67:c5:09:62:e1:c1:eb:b3:b4:a1:84:48:37: a9:72:5c:ac:79:cf:fd:28:2a:1b:d3:b7:78:3b:95: 85:50:1b:fa:97:86:6d:80:a9:32:1a:69:fd:bb:7d: d5:dc:8b:ad:01:11:4e:f5:15:23:fb:84:3a:cf:dc: c0:c6:d8:b6:c4:81:d8:7a:67:47:5e:9e:1e:de:a0: d0:02:4e:99:3a:70:4a:39:dd:bf:8f:33:2c:9b:16: 6a:37:f1:0c:41:f9:39:46:ee:4f:67:27:21:65:23: 0c:58:e9:09:aa:28:a2:62:f1:ca:56:f3:e7:ff:8f: 70:d9:6a:91:f5:85:50:8f:8e:82:12:22:6e:dd:17: 3f:ed:60:25:8c:04:d2:d6:08:c5:1e:b4:39:c8:44: fc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:95:39:BD:A8:50:4E:F3:E4:D1:4B:6B:05:6B:08:57:A1:2F:73:EE X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/E82DE3C290AB11ECAB81252FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.174.228.0/23 202.130.206.0/24 203.12.29.0/24 IPv6: 2001:df7:d980::/48 Signature Algorithm: sha256WithRSAEncryption 3a:53:ca:2e:36:e7:92:5a:18:2e:20:5c:45:69:7c:22:de:d4: 9e:07:34:3c:b2:9f:68:5c:a3:c4:85:d1:fb:83:d4:d7:3c:d6: ff:22:13:3f:73:39:1a:2e:28:0a:20:57:82:ae:7a:ec:84:e1: 9c:26:2a:56:d4:2e:53:d0:4c:d3:5b:95:36:ba:bb:d8:ee:d4: 7a:0c:1f:72:64:e4:ca:2f:c2:f6:b2:3f:fd:e2:a5:91:95:7a: 9b:26:43:2f:86:09:b2:26:d4:a0:89:c1:91:38:39:39:68:44: 2d:ed:de:87:df:ca:3c:02:dd:62:e9:be:e6:54:68:3b:cb:bc: 2a:42:e7:88:74:51:57:55:e0:53:f7:4e:fa:f5:a9:fa:c6:cf: ed:a4:b9:c2:c8:61:9b:9d:79:2d:73:30:40:88:63:f8:56:06: e8:09:c9:6c:39:24:36:20:aa:8a:6c:4e:79:40:7a:6e:2b:f0: 8e:ba:f3:bd:a8:62:14:f0:35:d4:a1:0a:fb:94:cd:57:77:06: 16:21:e0:d9:6d:6d:d0:b9:68:34:e6:18:35:78:2c:d1:91:c6: ff:97:5f:5f:b9:06:b0:52:c8:bf:74:23:d5:ae:4c:60:49:5c: 54:5d:4d:4e:97:07:77:e0:3d:0d:63:db:d1:98:61:28:c2:83: e8:51:5b:8a -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUxMTI2MjI0NjQ1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzU3NS1iMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kr+nmhb0jWeSCt36TQOnSgbOYH9tRCbc3XnpMfsslluMmtO6Bb687lTfUbx BU0pbFKrYWMHlaUPgSOrd0V8k2F9aYYIYBJaflGRiuOKLm3UhryI4mHxB2rag7nq 2pg8Ar8kOOUlSOiWimfFCWLhweuztKGESDepclysec/9KCob07d4O5WFUBv6l4Zt gKkyGmn9u33V3IutARFO9RUj+4Q6z9zAxti2xIHYemdHXp4e3qDQAk6ZOnBKOd2/ jzMsmxZqN/EMQfk5Ru5PZychZSMMWOkJqiiiYvHKVvPn/49w2WqR9YVQj46CEiJu 3Rc/7WAljATS1gjFHrQ5yET8owIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFN6VOb2o UE7z5NFLawVrCFehL3PuMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk5MUIvN0QwQzM3RDA2MDQzMTFFQzhEMzc1MTBFQzRGOUFFMDIvRTgyREUzQzI5 MEFCMTFFQ0FCODEyNTJGQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQBZ67kAwQAyoLOAwQAywwdMA8EAgACMAkDBwAgAQ332YAwDQYJKoZI hvcNAQELBQADggEBADpTyi4255JaGC4gXEVpfCLe1J4HNDyyn2hco8SF0fuD1Nc8 1v8iEz9zORouKAogV4KueuyE4ZwmKlbULlPQTNNblTa6u9ju1HoMH3Jk5Movwvay P/3ipZGVepsmQy+GCbIm1KCJwZE4OTloRC3t3offyjwC3WLpvuZUaDvLvCpC54h0 UVdV4FP3Tvr1qfrGz+2kucLIYZudeS1zMECIY/hWBugJyWw5JDYgqopsTnlAem4r 8I66872oYhTwNdShCvuUzVd3BhYh4NltbdC5aDTmGDV4LNGRxv+XX1+5BrBSyL90 I9WuTGBJXFRdTU6XB3fgPQ1j29GYYSjCg+hRW4o= -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:28 2026 by rpki-client