$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa File: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (raw, json) Hash identifier: M4JLOJ0KBDUs8GKGl3QSSzCZeqstWHcvqiMr77NsytE= Subject key identifier: BC:6D:54:64:27:84:2F:E8:1E:62:82:02:DB:CD:DF:AD:A9:47:35:3C Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 01F4 Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:15:38 +0000 ROA not before: Wed 12 Nov 2025 20:43:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24459 IP address blocks: 43.239.96.0/23 maxlen: 23 103.248.176.0/24 maxlen: 24 103.248.177.0/24 maxlen: 24 103.248.178.0/24 maxlen: 24 202.37.129.0/24 maxlen: 24 2403:4f00:6000::/36 maxlen: 36 2406:fd00:100::/40 maxlen: 40 2406:fd00:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Nov 12 20:43:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4743a-4642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d2:04:51:22:74:97:86:51:85:2c:bb:e1:b3: 2c:7a:d0:e8:18:7b:23:16:69:1a:38:be:e2:a9:b5: 53:84:92:30:f3:89:05:4c:25:ca:36:6c:5b:e6:c4: e5:f5:bd:5a:8a:b3:c3:e9:19:31:d7:ab:b6:9a:56: 24:34:b8:b0:c9:c3:96:28:a3:7e:e7:ce:f2:54:e4: 51:fd:d4:09:b7:b4:1a:c6:63:a2:3d:ba:f3:fe:79: 80:37:f7:0a:55:1f:c9:f4:1c:42:a3:38:9a:01:2a: 56:f3:e9:d2:5a:57:64:02:13:77:5c:74:ad:0a:a3: de:78:69:f8:42:2e:1f:9d:e3:14:09:93:26:a9:ad: eb:45:b2:72:24:fb:cf:78:c1:db:2b:01:b7:75:f7: 76:b1:32:fc:d1:49:86:d3:85:dc:22:33:40:c4:66: 48:fe:74:fe:5a:b0:7a:6d:89:d2:9b:35:b2:d7:0d: 0f:74:1b:8e:7a:02:63:37:db:47:f8:3b:34:16:20: 30:1b:24:3c:0d:ec:11:9e:ac:7c:da:81:64:c1:57: 81:3c:e2:69:5f:4d:34:a0:9b:16:f6:8e:4c:01:2f: ca:56:7b:ba:cc:6e:07:f8:11:36:d7:e5:78:00:b6: 4f:76:02:a3:2e:a2:37:89:b1:33:52:61:88:6e:31: 06:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:6D:54:64:27:84:2F:E8:1E:62:82:02:DB:CD:DF:AD:A9:47:35:3C X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.96.0/23 103.248.176.0-103.248.178.255 202.37.129.0/24 IPv6: 2403:4f00:6000::/36 2406:fd00:100::/40 2406:fd00:800::/40 Signature Algorithm: sha256WithRSAEncryption 10:7f:45:a4:85:3b:00:82:27:4a:00:70:ec:65:a4:e1:08:6c: da:55:ce:65:f8:4e:89:24:08:55:a4:13:63:1d:fb:03:7c:ac: 80:08:f4:aa:2d:fd:15:71:4e:b0:4f:89:8b:36:71:10:f0:26: 67:89:7b:fa:38:0a:62:b0:49:ab:ce:18:62:fe:c5:d3:45:38: e8:2a:ad:29:30:25:52:a3:a9:83:d6:5d:4c:dd:1f:c2:6d:2f: b1:f2:bc:1a:72:e0:fd:e6:70:35:00:77:fa:f7:52:e6:77:12: 9a:6f:d9:b7:a1:1e:dc:98:9b:8f:a9:8f:2d:f0:e2:99:af:fc: 93:64:35:51:90:c4:41:87:cd:05:69:07:83:a3:a9:79:4d:70: 58:14:65:6a:47:ea:18:1a:fb:b2:bc:0d:bc:b4:8f:96:f1:6b: bd:20:9e:6a:a5:7b:65:7e:96:3a:99:5d:1d:2e:38:a5:a5:98: f8:e1:d6:3e:be:71:3b:de:b7:83:e6:b2:56:35:0f:dc:1d:db: b6:68:92:08:0c:68:14:a0:32:28:3a:3e:d7:ff:90:4d:06:ba: 54:60:63:f1:bb:c4:b2:dd:e7:df:bb:c4:46:51:3d:04:d1:d2: 42:67:3e:2e:d4:44:9a:7c:8d:37:d3:11:61:be:df:a2:a5:33: 35:3e:ed:0e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUxMTEyMjA0MzMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQzYS00NjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNIEUSJ0l4ZRhSy74bMsetDoGHsjFmkaOL7iqbVThJIw84kFTCXKNmxb5sTl 9b1airPD6Rkx16u2mlYkNLiwycOWKKN+587yVORR/dQJt7QaxmOiPbrz/nmAN/cK VR/J9BxCoziaASpW8+nSWldkAhN3XHStCqPeeGn4Qi4fneMUCZMmqa3rRbJyJPvP eMHbKwG3dfd2sTL80UmG04XcIjNAxGZI/nT+WrB6bYnSmzWy1w0PdBuOegJjN9tH +Ds0FiAwGyQ8DewRnqx82oFkwVeBPOJpX000oJsW9o5MAS/KVnu6zG4H+BE21+V4 ALZPdgKjLqI3ibEzUmGIbjEGlwIDAQABo4IClDCCApAwHQYDVR0OBBYEFLxtVGQn hC/oHmKCAtvN362pRzU8MB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2MjMvQTI1RDQ4OUU1MDQ3MTFFRUI2NzczNjVEQzRGOUFFMDIvQzEyQUNFNkFD MTdFMTFFRTk1RDY4MjFDQzRGOUFFMDIucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjAg BAIAATAaAwQBK+9gMAwDBARn+LADBABn+LIDBADKJYEwHgQCAAIwGAMGBCQDTwBg AwYAJAb9AAEDBgAkBv0ACDANBgkqhkiG9w0BAQsFAAOCAQEAEH9FpIU7AIInSgBw 7GWk4Qhs2lXOZfhOiSQIVaQTYx37A3ysgAj0qi39FXFOsE+JizZxEPAmZ4l7+jgK YrBJq84YYv7F00U46CqtKTAlUqOpg9ZdTN0fwm0vsfK8GnLg/eZwNQB3+vdS5ncS mm/Zt6Ee3Jibj6mPLfDima/8k2Q1UZDEQYfNBWkHg6OpeU1wWBRlakfqGBr7srwN vLSPlvFrvSCeaqV7ZX6WOpldHS44paWY+OHWPr5xO963g+ayVjUP3B3btmiSCAxo FKAyKDo+1/+QTQa6VGBj8bvEst3n37vERlE9BNHSQmc+LtREmnyNN9MRYb7foqUz NT7tDg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:38 2026 by rpki-client