$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa File: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (raw, json) Hash identifier: Z/RkFpCizjgmgGwfqkz29wdou2CdOLuqIgY1kgGpNOU= Subject key identifier: 95:FD:7A:22:06:5C:8E:C1:D2:EB:A8:C3:AD:26:E5:0D:09:B1:5C:A3 Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 020A Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa Signing time: Fri 03 Apr 2026 03:36:01 +0000 ROA not before: Fri 03 Apr 2026 03:36:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24459 IP address blocks: 43.239.96.0/23 maxlen: 23 103.248.176.0/24 maxlen: 24 103.248.177.0/24 maxlen: 24 103.248.178.0/24 maxlen: 24 202.37.129.0/24 maxlen: 24 2403:4f00:6000::/36 maxlen: 36 2406:fd00:100::/40 maxlen: 40 2406:fd00:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Apr 3 03:36:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf35a1-399e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:72:93:05:89:a6:e3:18:7a:00:45:d1:3f:37: 6d:1e:d5:81:47:f5:35:54:69:92:81:a7:fc:ee:f4: f6:87:b7:e2:cb:73:55:08:fd:58:22:42:07:00:e1: 70:c5:22:32:26:66:36:7d:17:c9:82:fb:00:43:0a: bd:2b:47:59:24:57:2a:45:ac:c8:87:ac:2d:fb:71: a5:61:3a:f9:33:91:cd:7f:45:ae:27:b1:bf:a1:15: 72:01:af:8d:32:8e:ac:87:b1:6e:34:ec:f5:47:be: fe:88:dd:0c:71:1a:a6:15:1b:22:53:06:94:58:ad: 39:29:7a:d0:26:e9:e4:60:79:f4:86:f6:22:0b:a2: c2:be:29:eb:89:46:2b:78:dd:b5:d5:d6:54:12:0f: 83:c6:a8:1c:86:db:0f:37:eb:30:8b:f7:9a:a3:07: 7e:d7:df:cd:f6:7d:61:f8:24:20:80:be:f2:7c:ab: 6e:5d:3c:4b:50:20:de:a4:b8:26:18:82:67:10:04: 1a:b3:09:6f:6f:c8:07:d9:4e:96:c4:2a:c0:25:67: 36:83:1b:e8:98:a8:fb:08:1f:d3:ee:38:e0:71:ac: 9e:b0:d1:a2:e8:10:c9:f8:22:db:e2:83:6e:d2:16: 89:f6:4c:c0:a6:15:60:fe:6d:09:19:b3:11:9b:44: ac:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FD:7A:22:06:5C:8E:C1:D2:EB:A8:C3:AD:26:E5:0D:09:B1:5C:A3 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.96.0/23 103.248.176.0-103.248.178.255 202.37.129.0/24 IPv6: 2403:4f00:6000::/36 2406:fd00:100::/40 2406:fd00:800::/40 Signature Algorithm: sha256WithRSAEncryption 29:d0:ea:27:18:68:d7:24:29:27:f1:c9:27:59:6b:a8:19:59: 1b:99:de:24:29:3a:6f:67:2c:87:e2:32:5c:4e:83:de:3d:78: f7:33:81:f3:a5:6c:78:69:5c:d6:f2:fc:8e:7c:5a:a9:c2:63: 27:4d:e4:15:1d:9a:eb:48:55:3d:da:fd:d8:6a:ea:f3:de:f4: 70:01:fe:f2:2f:d9:34:6c:e7:19:25:7d:59:50:3c:d7:0e:13: ee:05:99:99:1a:fd:c0:07:d4:26:84:83:31:f4:00:18:74:0b: 27:5e:9d:bd:e8:d2:7c:20:9f:dc:87:60:bf:6f:93:b4:c3:20: 4e:19:63:ff:94:87:78:73:df:14:4d:fa:b3:46:fe:4e:99:70: 30:ed:1c:c9:18:8e:6b:53:6c:89:f3:ac:2c:05:6d:a0:c8:dd: 45:07:b8:95:60:95:cf:0e:f3:24:cc:61:32:e9:a9:65:da:0b: 83:a1:62:bb:f6:8f:b0:6d:ca:b8:07:ba:2b:9e:05:f3:47:80: 4a:52:6c:bb:8e:0a:20:21:44:fa:86:56:af:db:e8:9a:f7:9f: bc:20:c1:02:75:4e:f4:91:f0:d0:bc:88:b1:8e:ec:bb:2a:97: 1e:ed:fd:32:8a:95:a5:b0:9c:e1:6c:5c:fc:f8:8e:f6:38:d5: 0d:60:a1:1c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjYwNDAzMDMzNjAxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMzVhMS0zOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nKTBYmm4xh6AEXRPzdtHtWBR/U1VGmSgaf87vT2h7fiy3NVCP1YIkIHAOFw xSIyJmY2fRfJgvsAQwq9K0dZJFcqRazIh6wt+3GlYTr5M5HNf0WuJ7G/oRVyAa+N Mo6sh7FuNOz1R77+iN0McRqmFRsiUwaUWK05KXrQJunkYHn0hvYiC6LCvinriUYr eN211dZUEg+DxqgchtsPN+swi/eaowd+19/N9n1h+CQggL7yfKtuXTxLUCDepLgm GIJnEAQaswlvb8gH2U6WxCrAJWc2gxvomKj7CB/T7jjgcayesNGi6BDJ+CLb4oNu 0haJ9kzAphVg/m0JGbMRm0SsKQIDAQABo4IClDCCApAwHQYDVR0OBBYEFJX9eiIG XI7B0uuow60m5Q0JsVyjMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2MjMvQTI1RDQ4OUU1MDQ3MTFFRUI2NzczNjVEQzRGOUFFMDIvQzEyQUNFNkFD MTdFMTFFRTk1RDY4MjFDQzRGOUFFMDIucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjAg BAIAATAaAwQBK+9gMAwDBARn+LADBABn+LIDBADKJYEwHgQCAAIwGAMGBCQDTwBg AwYAJAb9AAEDBgAkBv0ACDANBgkqhkiG9w0BAQsFAAOCAQEAKdDqJxho1yQpJ/HJ J1lrqBlZG5neJCk6b2csh+IyXE6D3j149zOB86VseGlc1vL8jnxaqcJjJ03kFR2a 60hVPdr92Grq8970cAH+8i/ZNGznGSV9WVA81w4T7gWZmRr9wAfUJoSDMfQAGHQL J16dvejSfCCf3Idgv2+TtMMgThlj/5SHeHPfFE36s0b+TplwMO0cyRiOa1NsifOs LAVtoMjdRQe4lWCVzw7zJMxhMumpZdoLg6Fiu/aPsG3KuAe6K54F80eASlJsu44K ICFE+oZWr9vomvefvCDBAnVO9JHw0LyIsY7suyqXHu39MoqVpbCc4Wxc/PiO9jjV DWChHA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:13:32 2026 by rpki-client