$ rpki-client -vvf rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa File: 1C64580A4F6111ED9365FC4AC4F9AE02.roa (raw, json) Hash identifier: 7DXtwSwU/C4iovO/6DBIhc26z7olkA5c3kZppgmFDQ4= Subject key identifier: 5C:87:C9:D2:10:86:EE:60:62:A0:D2:4F:B9:B4:EC:2C:DA:02:0D:6D Certificate issuer: /CN=A919D209/serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Certificate serial: 07C9 Authority key identifier: EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:41:44 +0000 ROA not before: Tue 08 Apr 2025 22:02:23 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56082 IP address blocks: 43.230.188.0/24 maxlen: 24 103.50.9.0/24 maxlen: 24 103.50.10.0/24 maxlen: 24 103.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1993 (0x7c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D209, serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Validity Not Before: Apr 8 22:02:23 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a409d8-f253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:c2:32:68:3e:ec:be:33:20:10:62:7d:50: 36:46:99:5a:5b:7c:cb:10:8d:c1:81:b8:1c:e5:c0: bd:2c:61:40:40:ec:f0:15:46:24:1c:b2:e3:19:81: 4a:b3:cc:0f:9d:94:94:61:db:2d:00:9e:6f:57:6c: 67:77:19:61:c9:6b:c8:63:8b:4e:51:75:ba:f4:47: aa:c6:02:a2:b7:19:81:f4:e7:ed:99:39:ec:9d:ad: 28:2c:35:5a:ac:98:1c:36:fd:28:84:3d:2c:20:09: c5:c6:0a:30:7d:2b:5c:bc:4d:70:f5:41:69:ca:30: 0a:38:c1:0d:ee:b1:94:cf:eb:4f:2e:18:f0:d7:e3: 00:7c:b9:e2:11:60:cc:c4:6f:1b:7c:b2:47:79:3a: 7e:ca:3e:ff:7b:7b:2a:b6:fd:f9:79:5f:57:1e:f2: f4:3f:f5:97:c9:95:f5:24:10:23:b6:26:74:fd:c9: 6c:8d:08:82:18:8e:53:84:1a:d6:5e:71:fa:62:c0: a5:03:09:62:82:05:47:67:0f:74:49:a0:ca:0f:bf: 05:e1:30:0f:f6:bf:cf:ac:d2:ad:ac:ea:32:0c:c2: e2:2f:f2:ed:57:76:98:8b:bb:e9:e9:1e:63:06:33: 96:dc:92:33:f0:6b:4b:a2:78:cb:ec:81:6c:6e:f5: 69:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:87:C9:D2:10:86:EE:60:62:A0:D2:4F:B9:B4:EC:2C:DA:02:0D:6D X509v3 Authority Key Identifier: keyid:EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.230.188.0/24 103.50.9.0-103.50.11.255 Signature Algorithm: sha256WithRSAEncryption 75:60:1f:84:6e:f5:59:f1:d1:0f:df:bc:2d:55:32:1c:1f:3f: 48:38:2a:97:a4:5f:80:64:24:e1:bc:9a:48:b4:44:87:ff:91: 7a:a2:c6:58:b0:71:f2:a2:3e:c4:12:db:3a:d4:07:a6:db:28: c9:0d:11:6a:a4:f2:70:43:1a:be:14:33:b4:01:c1:fe:e4:bc: f9:5c:22:91:a5:ad:65:5c:10:a3:08:2e:39:0c:d8:99:4c:b8: 2f:7f:22:a5:ff:a9:8d:e8:d6:03:44:1f:72:2c:b4:3f:ea:b2: 07:55:04:a9:60:6a:f9:f7:c8:cb:c7:be:ac:77:5c:27:74:6a: e4:97:19:92:04:8f:eb:00:5d:1a:4b:87:d0:8e:e6:b2:52:d6: 49:7d:eb:ed:15:af:fd:98:98:f2:52:74:6e:2b:34:3d:01:85: da:79:15:47:08:a3:52:b0:b1:ce:3f:d2:d0:11:6f:03:5e:2b: 5d:05:12:fb:99:67:95:af:96:32:12:fb:1a:67:53:a7:60:72: c2:98:b7:ae:46:bb:7e:78:9c:93:93:98:12:32:7e:66:72:14: 90:9a:40:82:bf:d3:0b:e4:b5:56:40:af:86:35:36:0e:21:a1: a7:31:d8:35:90:76:d6:22:94:91:5e:45:8e:d9:f9:7a:fb:a3: 43:3c:25:03 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICB8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyMDkxMTAvBgNVBAUTKEVCNjJERkM3MzRBMjVCQzE1NEQzNjdBOThDRjI3RUQx NkY0MUVBRDAwHhcNMjUwNDA4MjIwMjIzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDlkOC1mMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6fCMmg+7L4zIBBifVA2RplaW3zLEI3Bgbgc5cC9LGFAQOzwFUYkHLLjGYFK s8wPnZSUYdstAJ5vV2xndxlhyWvIY4tOUXW69EeqxgKitxmB9OftmTnsna0oLDVa rJgcNv0ohD0sIAnFxgowfStcvE1w9UFpyjAKOMEN7rGUz+tPLhjw1+MAfLniEWDM xG8bfLJHeTp+yj7/e3sqtv35eV9XHvL0P/WXyZX1JBAjtiZ0/clsjQiCGI5ThBrW XnH6YsClAwliggVHZw90SaDKD78F4TAP9r/PrNKtrOoyDMLiL/LtV3aYi7vp6R5j BjOW3JIz8GtLonjL7IFsbvVpawIDAQABo4ICbjCCAmowHQYDVR0OBBYEFFyHydIQ hu5gYqDST7m07CzaAg1tMB8GA1UdIwQYMBaAFOti38c0olvBVNNnqYzyftFvQerQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDIwOS9CMzM5N0I0QTM1 M0ExMUVCQjdFQjZCMThDNEY5QUUwMi82MkxmeHpTaVc4RlUwMmVwalBKLTBXOUI2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYyTGZ4elNpVzhGVTAyZXBqUEotMFc5QjZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyMDkvQjMzOTdCNEEzNTNBMTFFQkI3RUI2QjE4QzRGOUFFMDIvMUM2NDU4MEE0 RjYxMTFFRDkzNjVGQzRBQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAK+a8MAwDBABnMgkDBAJnMggwDQYJKoZIhvcNAQELBQADggEBAHVg H4Ru9Vnx0Q/fvC1VMhwfP0g4KpekX4BkJOG8mki0RIf/kXqixliwcfKiPsQS2zrU B6bbKMkNEWqk8nBDGr4UM7QBwf7kvPlcIpGlrWVcEKMILjkM2JlMuC9/IqX/qY3o 1gNEH3IstD/qsgdVBKlgavn3yMvHvqx3XCd0auSXGZIEj+sAXRpLh9CO5rJS1kl9 6+0Vr/2YmPJSdG4rND0Bhdp5FUcIo1Kwsc4/0tARbwNeK10FEvuZZ5WvljIS+xpn U6dgcsKYt65Gu354nJOTmBIyfmZyFJCaQIK/0wvktVZAr4Y1Ng4hoacx2DWQdtYi lJFeRY7Z+Xr7o0M8JQM= -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:48 2026 by rpki-client