$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa File: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (raw, json) Hash identifier: hWA9sbtTP3vDnNyxUlzJU40/vhKF33Gp8Ll5fnOcEtw= Subject key identifier: 30:0B:83:DD:49:D4:58:16:4E:0B:9C:FC:2F:8F:44:28:FC:DC:4F:B7 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 017B Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:19:48 +0000 ROA not before: Fri 29 Aug 2025 08:53:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24109 IP address blocks: 45.120.173.0/24 maxlen: 24 121.50.3.0/24 maxlen: 24 121.50.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: Aug 29 08:53:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5aa94-36cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:be:c9:9f:e7:4e:d8:d8:df:1b:3b:a0:d4: 94:bf:2a:d7:8c:2c:17:0d:e4:94:64:b6:8a:7e:3e: 88:bc:7d:9b:9f:9a:35:b6:86:ad:3c:2d:eb:fb:77: ea:c3:28:0c:f5:b4:95:48:e0:de:d2:45:b2:f0:5c: 89:6a:2c:1b:33:a2:50:b0:3f:73:c2:51:5e:82:81: 3e:b1:a3:98:0b:c0:61:65:13:8b:e8:dc:e4:9b:cd: fe:98:4d:bc:dd:1d:77:ce:14:8e:08:ea:84:3d:4c: d3:f3:74:f4:ca:21:9b:e1:15:6f:06:c4:26:b7:6a: 75:07:a4:6a:eb:79:a7:9a:d7:a2:5a:a6:b2:14:37: 99:43:a5:15:bc:36:9f:76:d0:d9:21:67:9e:18:3f: ff:8a:de:39:39:51:a9:c2:35:8f:88:31:cc:85:3a: 63:f2:2a:2f:b1:df:3d:7b:78:38:6e:81:bc:5f:d6: a4:7e:04:34:90:e9:ce:6e:b3:2e:de:00:71:57:1a: 07:8d:b3:12:dc:90:e3:00:3c:15:88:4b:26:6b:90: cc:c0:b2:01:fa:48:09:ab:24:6a:9e:7a:eb:96:8f: f9:07:9b:81:8c:63:0a:cb:24:b0:2d:8e:a1:03:c7: 10:3d:19:20:36:79:b1:8f:56:46:ae:27:8f:4e:9c: 45:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0B:83:DD:49:D4:58:16:4E:0B:9C:FC:2F:8F:44:28:FC:DC:4F:B7 X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.120.173.0/24 121.50.3.0/24 121.50.5.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:03:67:26:cb:1d:56:4e:f7:d5:c5:db:33:3a:10:ba:20:56: 02:ee:0a:19:19:40:46:1e:26:9a:22:f6:ed:48:93:88:63:f1: ec:d9:d0:0a:bd:63:4d:c4:9f:a8:63:5c:f3:a2:cf:af:64:e4: 09:94:e8:4a:13:38:12:10:e3:fa:2d:cf:df:0c:ec:fd:14:9c: f9:ef:7a:66:4b:f2:61:94:44:62:a2:85:03:f1:b9:4f:38:6f: 9d:78:73:81:ef:0f:8b:24:42:16:6a:2f:a9:d3:d4:36:b5:07: 4f:f1:64:a5:d6:53:5b:49:2f:c2:eb:7c:59:ac:b2:5a:3f:e5: 38:a2:a6:3e:e2:f6:66:bf:d1:75:70:99:5c:c2:4e:ce:39:2d: 99:13:17:33:49:e4:30:d7:22:41:2f:09:ca:ec:b0:f7:24:2e: 0b:08:2c:f7:4e:2c:ff:b4:50:2a:8a:03:73:36:bd:d9:77:8f: 0f:37:fb:c8:d9:72:88:5d:91:f1:d2:4a:96:a6:25:f7:44:b5: 5e:33:58:7f:5d:2b:01:f1:eb:b6:1d:e3:d4:42:ac:57:f6:4e: a0:8f:2b:2c:4d:04:ee:63:07:21:61:5f:a6:ac:3d:38:0e:de: 7f:be:41:69:4e:56:33:a5:e2:56:2a:d3:2b:9b:75:fa:d1:07: 16:bf:41:71 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUwODI5MDg1MzEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWE5NC0zNmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmu+yZ/nTtjY3xs7oNSUvyrXjCwXDeSUZLaKfj6IvH2bn5o1toatPC3r+3fq wygM9bSVSODe0kWy8FyJaiwbM6JQsD9zwlFegoE+saOYC8BhZROL6Nzkm83+mE28 3R13zhSOCOqEPUzT83T0yiGb4RVvBsQmt2p1B6Rq63mnmteiWqayFDeZQ6UVvDaf dtDZIWeeGD//it45OVGpwjWPiDHMhTpj8iovsd89e3g4boG8X9akfgQ0kOnObrMu 3gBxVxoHjbMS3JDjADwViEsma5DMwLIB+kgJqyRqnnrrlo/5B5uBjGMKyySwLY6h A8cQPRkgNnmxj1ZGriePTpxFwQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFDALg91J 1FgWTguc/C+PRCj83E+3MB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIyM0YvNjcwQzJGMkNFMjlGMTFFRUI2ODJDNjExQzRGOUFFMDIvNzg1ODVDNUVC NkUwMTFFRkJCM0UyQTBEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQALXitAwQAeTIDAwQAeTIFMA0GCSqGSIb3DQEBCwUAA4IBAQCPA2cm yx1WTvfVxdszOhC6IFYC7goZGUBGHiaaIvbtSJOIY/Hs2dAKvWNNxJ+oY1zzos+v ZOQJlOhKEzgSEOP6Lc/fDOz9FJz573pmS/JhlERiooUD8blPOG+deHOB7w+LJEIW ai+p09Q2tQdP8WSl1lNbSS/C63xZrLJaP+U4oqY+4vZmv9F1cJlcwk7OOS2ZExcz SeQw1yJBLwnK7LD3JC4LCCz3Tiz/tFAqigNzNr3Zd48PN/vI2XKIXZHx0kqWpiX3 RLVeM1h/XSsB8eu2HePUQqxX9k6gjyssTQTuYwchYV+mrD04Dt5/vkFpTlYzpeJW KtMrm3X60QcWv0Fx -----END CERTIFICATE-----Generated at Thu Mar 26 13:04:20 2026 by rpki-client