$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa File: 2DB78476C69411F09B705765C4F9AE02.roa (raw, json) Hash identifier: A0rm2mFuiHBcSkCFk/ARgcp9MkAC3nii71By+7KQSoI= Subject key identifier: 46:D3:29:58:DD:93:83:DC:97:38:7F:F8:53:E4:EE:CE:C8:10:B1:90 Certificate issuer: /CN=A9110C2F/serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Certificate serial: 353A Authority key identifier: B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:31:20 +0000 ROA not before: Fri 21 Nov 2025 04:40:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 22 IP address blocks: 116.206.180.0/22 maxlen: 22 116.206.180.0/24 maxlen: 24 116.206.181.0/24 maxlen: 24 116.206.182.0/24 maxlen: 24 116.206.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C2F, serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Validity Not Before: Nov 21 04:40:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a44db8-d563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:af:7a:c6:d4:4a:e2:e8:d8:97:d4:4d:3c:00: 9c:15:ee:cd:a4:ae:19:97:01:00:96:05:23:21:31: c3:7f:88:2a:01:a4:e7:a7:04:37:3c:b3:af:3c:10: d9:ae:fc:91:05:ac:6f:3a:ff:30:1a:b5:09:bf:f5: 24:c7:39:f2:fe:73:b3:7e:dd:2e:86:54:b9:61:e1: 40:17:95:79:2a:53:d3:02:27:d7:47:17:74:f6:e3: db:c0:31:89:17:42:0a:3a:31:80:3e:f9:83:33:ff: c2:ce:bf:58:6c:96:54:03:db:b2:ee:26:c9:d9:08: 15:8f:29:41:c2:c0:85:7b:66:3d:82:31:06:92:f7: b5:43:a2:77:57:f4:5a:d6:2c:d9:98:34:af:e2:af: 4b:55:f0:85:a6:8a:95:08:fc:4e:eb:84:3e:ae:d6: 85:3f:8b:10:7d:b1:5b:13:0b:05:7c:cb:87:01:61: 67:c0:62:85:ca:e7:9a:e2:0b:9f:66:44:57:5e:58: 5e:42:63:6d:2d:54:a6:67:86:2d:d2:ec:01:06:19: ca:81:22:f9:90:fd:d8:dd:03:75:18:4e:a7:83:90: d3:fe:1b:ee:a5:15:f8:62:2f:a3:32:50:c1:e0:c3: 5d:7c:89:ec:b1:c3:61:fc:7e:51:55:97:93:f6:ec: 23:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D3:29:58:DD:93:83:DC:97:38:7F:F8:53:E4:EE:CE:C8:10:B1:90 X509v3 Authority Key Identifier: keyid:B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/2DB78476C69411F09B705765C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.206.180.0/22 Signature Algorithm: sha256WithRSAEncryption 18:5f:a4:7f:b7:f5:36:a6:ef:02:0e:51:f6:c9:98:71:91:c4: 17:5a:1f:b3:14:11:0b:2d:fb:50:41:46:e6:fa:39:ba:46:57: 7a:65:9b:45:ba:fc:d2:15:c8:be:9f:69:38:60:3c:72:ff:7e: 15:ab:a1:d6:c8:bd:f8:85:c6:12:01:0a:02:e4:b8:46:42:6f: 94:81:cb:67:48:99:a2:7e:f9:f0:a7:cd:68:9f:cf:aa:21:df: d3:11:7b:ab:61:7f:f2:4c:dc:60:b0:f0:a1:76:77:f9:45:31: 4f:af:53:bf:17:56:e5:88:73:d3:61:31:cf:44:80:43:4b:71: 1c:b3:62:9b:41:a9:30:01:a5:45:34:1e:03:3d:37:72:3b:1b: e3:32:4b:26:d1:78:74:ac:8b:4b:de:3f:cc:da:b1:3d:98:ab: 43:30:6b:6f:2a:6f:96:9f:f4:6d:4c:c8:9b:cf:cd:7d:91:14: 2d:ef:67:42:30:d3:f4:d7:ad:6b:cd:50:91:4d:da:f0:50:11: 8b:d6:11:66:40:52:4a:5f:f0:28:fb:38:ae:f0:2f:7f:20:6b: 52:6f:48:33:7c:1c:46:2e:43:c4:c9:fb:7c:fd:84:b4:2f:b6: b1:d0:11:af:48:08:fa:0e:95:b1:b7:60:1a:36:8c:b2:c6:0f: 7a:fc:fa:d0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDMkYxMTAvBgNVBAUTKEI2MEM0NzBEMzEyMDU4NzJFN0I2RkJGRDY4NEYzNzA3 NEQ3RTlENzMwHhcNMjUxMTIxMDQ0MDE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRiOC1kNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1q96xtRK4ujYl9RNPACcFe7NpK4ZlwEAlgUjITHDf4gqAaTnpwQ3PLOvPBDZ rvyRBaxvOv8wGrUJv/Ukxzny/nOzft0uhlS5YeFAF5V5KlPTAifXRxd09uPbwDGJ F0IKOjGAPvmDM//Czr9YbJZUA9uy7ibJ2QgVjylBwsCFe2Y9gjEGkve1Q6J3V/Ra 1izZmDSv4q9LVfCFpoqVCPxO64Q+rtaFP4sQfbFbEwsFfMuHAWFnwGKFyuea4guf ZkRXXlheQmNtLVSmZ4Yt0uwBBhnKgSL5kP3Y3QN1GE6ng5DT/hvupRX4Yi+jMlDB 4MNdfInsscNh/H5RVZeT9uwj9QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEbTKVjd k4Pclzh/+FPk7s7IELGQMB8GA1UdIwQYMBaAFLYMRw0xIFhy57b7/WhPNwdNfp1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEMyRi83MDVGNTJGQzFE OTkxMUUyODVDOUVEODUwOEIwMkNEMi90Z3hIRFRFZ1dITG50dnY5YUU4M0IwMS1u WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RneEhEVEVnV0hMbnR2djlhRTgzQjAxLW5YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDMkYvNzA1RjUyRkMxRDk5MTFFMjg1QzlFRDg1MDhCMDJDRDIvMkRCNzg0NzZD Njk0MTFGMDlCNzA1NzY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdM60MA0GCSqGSIb3DQEBCwUAA4IBAQAYX6R/t/U2pu8CDlH2yZhx kcQXWh+zFBELLftQQUbm+jm6Rld6ZZtFuvzSFci+n2k4YDxy/34Vq6HWyL34hcYS AQoC5LhGQm+UgctnSJmifvnwp81on8+qId/TEXurYX/yTNxgsPChdnf5RTFPr1O/ F1bliHPTYTHPRIBDS3Ecs2KbQakwAaVFNB4DPTdyOxvjMksm0Xh0rItL3j/M2rE9 mKtDMGtvKm+Wn/RtTMibz819kRQt72dCMNP0161rzVCRTdrwUBGL1hFmQFJKX/Ao +ziu8C9/IGtSb0gzfBxGLkPEyft8/YS0L7ax0BGvSAj6DpWxt2AaNoyyxg96/PrQ -----END CERTIFICATE-----Generated at Thu Mar 26 13:20:14 2026 by rpki-client