$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa File: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: i5ROrzKB1s+VCKVSWpJPv8NGaUfssmlckuMKuKCQzg4= Subject key identifier: 46:5B:30:DF:17:FD:FF:BF:05:74:64:B9:4D:A0:69:B0:B1:D7:45:45 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0DC5 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:42:20 +0000 ROA not before: Sun 02 Nov 2025 19:08:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 65120 IP address blocks: 1.9.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:20 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4888c-d5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:56:04:74:27:b5:4d:28:6a:87:cf:90:56:85: 0c:ed:22:50:05:e8:56:61:4e:77:07:b4:f6:9a:c4: 69:04:8f:2e:d5:17:90:3c:d5:2f:8a:11:b7:67:f9: 4d:fa:fe:ed:66:9d:33:3a:43:eb:ba:06:a6:e2:4e: 86:9e:5f:46:56:1b:f9:d6:8b:c4:ba:84:2e:fa:15: e9:73:aa:04:73:81:10:5c:0b:01:7e:8b:71:0e:f8: 3d:fc:7a:e4:ed:68:ad:b3:68:12:c1:b0:74:52:1f: 4f:a2:8d:9c:95:59:46:ee:e8:bc:ea:41:63:ec:13: 49:89:f2:36:67:72:f4:b5:0c:e2:5f:70:64:89:7a: 10:bc:7f:85:59:89:34:9b:95:ea:a9:8b:a5:99:8a: e6:c2:82:6b:11:c2:d0:35:d2:55:fe:d5:8f:a6:4d: 50:f5:11:6a:d1:e6:7d:d4:d3:65:05:ed:65:96:96: 04:a4:02:6c:92:c1:23:c2:61:ac:55:0d:72:e1:36: 88:56:31:f0:4f:10:89:1b:9b:f0:02:f4:bd:88:77: b3:2f:ff:29:9b:98:da:1f:1f:65:3b:05:26:52:7a: f8:7f:76:d6:4f:ac:1f:ed:bf:33:af:8d:11:62:ca: 81:8b:4e:0d:d8:42:fb:57:4a:00:6d:81:a1:9e:60: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5B:30:DF:17:FD:FF:BF:05:74:64:B9:4D:A0:69:B0:B1:D7:45:45 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F1DD9E017DC11EE959DE671C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.9.23.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:51:1d:a3:23:2c:6f:b3:f7:b2:86:ef:16:e1:98:ff:c5:1e: 31:77:51:fd:14:1d:cf:60:73:14:74:eb:49:6b:af:81:4a:31: cd:cf:08:67:fd:85:16:71:e9:7d:99:7a:a2:2d:dd:08:7b:be: d4:3f:ec:6d:ab:3a:4c:db:cf:da:97:98:34:96:4f:f2:5d:0e: 61:f3:8f:e8:f2:65:d3:1b:d0:84:2f:44:a5:53:c0:ee:a3:d5: 0e:a0:29:95:45:a5:72:42:89:ca:80:86:8f:c8:05:71:a9:dc: c9:9c:e9:5f:d7:17:e8:85:c3:37:87:e5:4d:e2:6d:ab:30:03: 7e:61:9a:7f:f7:14:0b:02:f1:d2:ca:39:a6:c8:16:3a:a1:12: 8b:6d:e2:07:86:ae:d6:db:4c:04:d7:0e:a6:da:9f:51:e7:b0: 30:b6:24:48:6a:60:46:fd:fb:0e:ea:79:b8:42:f7:92:e2:a2: 1a:19:4f:bd:35:97:cb:d5:95:ba:5d:e5:89:f9:bf:67:ad:7d: f3:e3:95:95:3d:4f:42:08:92:26:51:0e:04:3e:f7:5e:57:8b: 05:15:8d:3d:1a:ae:aa:90:37:77:c9:15:fb:bc:bc:5f:af:19: 49:7a:88:f5:42:a8:2f:a4:a6:d9:1e:05:15:8a:f8:8f:4d:1a: 51:3c:af:db -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODg4Yy1kNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVYEdCe1TShqh8+QVoUM7SJQBehWYU53B7T2msRpBI8u1ReQPNUvihG3Z/lN +v7tZp0zOkPrugam4k6Gnl9GVhv51ovEuoQu+hXpc6oEc4EQXAsBfotxDvg9/Hrk 7Wits2gSwbB0Uh9Poo2clVlG7ui86kFj7BNJifI2Z3L0tQziX3BkiXoQvH+FWYk0 m5XqqYulmYrmwoJrEcLQNdJV/tWPpk1Q9RFq0eZ91NNlBe1llpYEpAJsksEjwmGs VQ1y4TaIVjHwTxCJG5vwAvS9iHezL/8pm5jaHx9lOwUmUnr4f3bWT6wf7b8zr40R YsqBi04N2EL7V0oAbYGhnmCFHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEZbMN8X /f+/BXRkuU2gabCx10VFMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEYxREQ5RTAx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAAQkXMA0GCSqGSIb3DQEBCwUAA4IBAQB/UR2jIyxvs/eyhu8W4Zj/ xR4xd1H9FB3PYHMUdOtJa6+BSjHNzwhn/YUWcel9mXqiLd0Ie77UP+xtqzpM28/a l5g0lk/yXQ5h84/o8mXTG9CEL0SlU8Duo9UOoCmVRaVyQonKgIaPyAVxqdzJnOlf 1xfohcM3h+VN4m2rMAN+YZp/9xQLAvHSyjmmyBY6oRKLbeIHhq7W20wE1w6m2p9R 57AwtiRIamBG/fsO6nm4QveS4qIaGU+9NZfL1ZW6XeWJ+b9nrX3z45WVPU9CCJIm UQ4EPvdeV4sFFY09Gq6qkDd3yRX7vLxfrxlJeoj1QqgvpKbZHgUViviPTRpRPK/b -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:01 2026 by rpki-client