$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa File: 9D4131DE13D511EF883BC527C4F9AE02.roa (raw, json) Hash identifier: oAi8+6tT0gDEU/KDzVHW25eJUv7lPHmrdBhdNKi7zNc= Subject key identifier: 30:D4:19:2E:F1:5D:F9:78:24:5E:E4:1C:B7:9C:B3:ED:17:D1:DD:D8 Certificate issuer: /CN=A912A3E1/serialNumber=F35268F976E8AE71FEFA66CA4516361C58AE1D91 Certificate serial: 0CF7 Authority key identifier: F3:52:68:F9:76:E8:AE:71:FE:FA:66:CA:45:16:36:1C:58:AE:1D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:40:15 +0000 ROA not before: Tue 06 May 2025 18:28:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 202.77.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.crl rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3319 (0xcf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3E1, serialNumber=F35268F976E8AE71FEFA66CA4516361C58AE1D91 Validity Not Before: May 6 18:28:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4259f-15fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:94:ac:b2:98:1f:1c:14:f8:92:23:a0:dd:ef: 16:9f:cd:f3:d5:db:4a:f4:47:f9:a7:f3:26:5d:0c: 87:6f:57:96:27:c9:c4:d9:67:3c:64:16:23:1a:c7: 36:58:fb:f2:99:b8:53:cb:c5:3c:21:b8:aa:96:2f: 7c:a8:39:da:c0:9b:3c:ac:02:52:df:f7:48:ea:50: fa:ac:19:a5:88:ff:34:2b:4d:6a:c7:c7:f2:95:80: 3b:20:61:e8:b8:45:95:6c:60:da:28:40:61:b9:23: b9:78:87:d9:21:44:97:1a:82:db:88:f1:e1:dc:ae: c2:7c:d2:46:97:a0:72:17:d2:da:5e:ff:ae:a8:51: 2d:5e:f7:5c:ce:70:c9:f1:88:dc:69:68:62:98:7f: 55:ae:7c:24:ef:78:a7:8f:e2:96:3f:97:22:89:29: 59:d2:4f:6b:24:84:56:c7:dd:05:4c:e0:c0:8d:33: 03:ea:96:16:83:f9:3e:de:75:98:4c:12:b1:90:3a: 68:b8:d6:54:a0:96:42:94:ad:f3:b9:aa:8c:80:d8: f2:30:5c:82:b7:57:e9:1d:f4:41:f5:a4:3d:86:d8: e1:b6:58:8d:db:ab:08:7a:2d:05:dd:97:70:e1:8c: 94:85:9e:b5:dc:2e:2c:92:a9:06:d1:19:68:a0:5a: 02:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D4:19:2E:F1:5D:F9:78:24:5E:E4:1C:B7:9C:B3:ED:17:D1:DD:D8 X509v3 Authority Key Identifier: keyid:F3:52:68:F9:76:E8:AE:71:FE:FA:66:CA:45:16:36:1C:58:AE:1D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.77.88.0/22 Signature Algorithm: sha256WithRSAEncryption 25:e6:7a:7b:dd:c6:23:24:f5:2d:68:7a:00:42:b1:ad:a6:6c: 2c:67:3f:0e:ad:79:df:31:b9:d2:ef:03:50:8a:40:b9:e0:e3: 35:e0:aa:a3:84:f7:9a:a4:ff:71:dc:0f:a4:57:58:47:74:f8: 5f:92:85:63:59:37:16:be:e2:5e:84:7c:ef:bd:7c:ec:1d:ef: ac:bf:65:43:1d:81:65:0f:03:86:e8:00:61:19:89:f1:c3:32: 41:96:d2:d5:c5:c0:5b:e0:3a:2b:c9:16:e5:b8:67:ec:d3:ff: 04:8e:01:fc:28:05:22:6c:a4:30:42:aa:0f:d7:7c:e7:ba:73: 56:a8:da:27:41:f4:ea:d2:ea:e0:5e:6c:e3:5c:0d:6e:3e:1a: 2b:19:ed:8a:16:49:e4:ca:ea:d6:a9:73:26:37:da:54:a4:6a: 18:a8:fc:f7:c0:2a:f5:33:59:7d:33:75:15:d7:ca:17:c8:c2: 10:28:52:46:ee:18:5f:be:a0:ec:c2:76:10:1f:5a:af:6d:be: c8:db:29:a7:60:34:91:16:8d:0b:91:d6:c2:dc:24:ac:c4:e1: dd:65:0a:2d:3a:c5:5e:da:12:bc:98:e7:c3:4e:e1:57:7f:0a: 87:c6:fc:4c:eb:75:3c:be:b8:9f:cc:5a:58:6a:dd:4f:62:34: d3:f4:20:df -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzRTExMTAvBgNVBAUTKEYzNTI2OEY5NzZFOEFFNzFGRUZBNjZDQTQ1MTYzNjFD NThBRTFEOTEwHhcNMjUwNTA2MTgyODM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU5Zi0xNWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj5SsspgfHBT4kiOg3e8Wn83z1dtK9Ef5p/MmXQyHb1eWJ8nE2Wc8ZBYjGsc2 WPvymbhTy8U8Ibiqli98qDnawJs8rAJS3/dI6lD6rBmliP80K01qx8fylYA7IGHo uEWVbGDaKEBhuSO5eIfZIUSXGoLbiPHh3K7CfNJGl6ByF9LaXv+uqFEtXvdcznDJ 8YjcaWhimH9Vrnwk73inj+KWP5ciiSlZ0k9rJIRWx90FTODAjTMD6pYWg/k+3nWY TBKxkDpouNZUoJZClK3zuaqMgNjyMFyCt1fpHfRB9aQ9htjhtliN26sIei0F3Zdw 4YyUhZ613C4skqkG0RlooFoCxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDDUGS7x Xfl4JF7kHLecs+0X0d3YMB8GA1UdIwQYMBaAFPNSaPl26K5x/vpmykUWNhxYrh2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNFMS85RkQ1OERBNjA1 QjAxMUVBOTIzNTRCNUFDNEY5QUUwMi84MUpvLVhib3JuSC0tbWJLUlJZMkhGaXVI WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxSm8tWGJvcm5ILS1tYktSUlkySEZpdUhaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzRTEvOUZENThEQTYwNUIwMTFFQTkyMzU0QjVBQzRGOUFFMDIvOUQ0MTMxREUx M0Q1MTFFRjg4M0JDNTI3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyk1YMA0GCSqGSIb3DQEBCwUAA4IBAQAl5np73cYjJPUtaHoAQrGt pmwsZz8OrXnfMbnS7wNQikC54OM14KqjhPeapP9x3A+kV1hHdPhfkoVjWTcWvuJe hHzvvXzsHe+sv2VDHYFlDwOG6ABhGYnxwzJBltLVxcBb4DoryRbluGfs0/8EjgH8 KAUibKQwQqoP13znunNWqNonQfTq0urgXmzjXA1uPhorGe2KFknkyurWqXMmN9pU pGoYqPz3wCr1M1l9M3UV18oXyMIQKFJG7hhfvqDswnYQH1qvbb7I2ymnYDSRFo0L kdbC3CSsxOHdZQotOsVe2hK8mOfDTuFXfwqHxvxM63U8vrifzFpYat1PYjTT9CDf -----END CERTIFICATE-----Generated at Thu Mar 26 10:51:28 2026 by rpki-client