$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa File: CEA093C66CA311ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: Y5IJD6VTuhWClnFmdFpK0wVHP2zwBIg8pv8xQi71sq8= Subject key identifier: 0C:43:25:BF:1C:00:59:C2:41:11:1F:88:90:19:C0:76:BC:A2:E8:61 Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0843 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:10:24 +0000 ROA not before: Wed 16 Apr 2025 21:01:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132256 IP address blocks: 202.127.210.0/24 maxlen: 24 202.127.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Apr 16 21:01:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a860-325c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:de:e7:ab:17:fa:06:07:28:72:41:94:3a:4a: 7d:61:4a:34:88:50:52:83:3c:a9:a3:de:18:bc:f1: bf:ae:33:53:d9:0c:bc:ce:83:22:ba:46:06:ec:8d: 5e:11:77:a1:1c:73:24:17:37:63:07:26:b3:54:91: fc:3e:d2:25:48:17:86:a2:76:68:59:3e:1b:05:2f: 95:58:4f:13:b0:6f:51:1e:ab:99:31:d3:6a:d3:11: 06:18:2c:f1:74:ea:5f:cf:06:26:8b:96:e1:f4:c7: 82:8a:da:b4:59:2d:0c:2e:25:88:79:cf:40:aa:78: 74:62:cb:0a:f8:ef:fc:d5:11:c2:f4:b3:6c:02:96: 6b:87:7d:02:8f:ab:97:e9:98:d8:22:5c:69:d0:e8: 56:90:2c:9d:24:64:83:93:f2:b4:16:d1:79:56:22: 36:af:05:b1:19:dc:d3:30:48:ae:97:59:43:38:89: 64:31:50:a3:4b:f4:6c:ce:c9:da:c3:f7:ab:d9:0a: 92:e5:40:5f:b7:54:f7:fb:49:b7:f1:48:be:c7:89: 14:83:a8:65:2d:64:63:c4:ca:22:b0:b5:89:ad:e7: 58:64:cf:c0:ca:89:25:fc:8e:99:75:37:d7:db:5a: ee:7c:93:48:09:cf:76:3c:b1:11:17:07:cb:44:35: 76:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:43:25:BF:1C:00:59:C2:41:11:1F:88:90:19:C0:76:BC:A2:E8:61 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.127.210.0/23 Signature Algorithm: sha256WithRSAEncryption ce:36:1f:39:02:e3:28:ad:cb:c8:ef:b1:80:81:e4:51:1d:98: da:09:cf:f1:4b:a9:4b:85:3a:13:73:50:39:ef:d6:e6:35:b7: bf:83:78:4f:7f:4a:31:3d:27:a8:12:09:47:f5:45:8c:f4:88: 07:74:59:79:c7:76:c7:69:11:cf:3d:f2:16:ad:a6:16:2e:a8: e7:6d:06:dd:04:a8:6c:0f:3a:de:07:64:5a:3d:60:35:ff:2b: 62:bd:60:3c:5c:73:f5:f3:0f:b5:e4:91:3c:7e:4b:25:72:54: 19:24:4f:29:3c:15:56:24:5f:d7:a0:ab:9f:00:e8:cc:05:b1: 8f:e2:39:26:a9:b7:ee:10:aa:b7:df:48:c1:d0:de:cd:dd:0a: bf:d2:e0:36:68:09:cc:3a:39:e8:76:d3:d6:07:8b:7f:10:be: fc:ea:28:4a:b6:04:85:e5:b3:3d:e2:41:b6:7e:54:c8:6a:4a: b7:8a:b5:77:9c:5f:b6:4d:cf:4e:2c:f6:01:70:77:2b:c1:8f: 04:a6:ce:f5:51:8c:64:be:64:22:4d:c9:cd:97:d7:77:9e:86: cd:12:09:6e:69:65:99:64:53:dd:b1:24:49:d9:1b:58:00:29: 0b:1c:e7:2c:af:de:bb:5d:52:5e:5c:b2:77:8c:5a:be:e2:87: 66:c4:39:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwNDE2MjEwMTI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTg2MC0zMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd7nqxf6BgcockGUOkp9YUo0iFBSgzypo94YvPG/rjNT2Qy8zoMiukYG7I1e EXehHHMkFzdjByazVJH8PtIlSBeGonZoWT4bBS+VWE8TsG9RHquZMdNq0xEGGCzx dOpfzwYmi5bh9MeCitq0WS0MLiWIec9Aqnh0YssK+O/81RHC9LNsApZrh30Cj6uX 6ZjYIlxp0OhWkCydJGSDk/K0FtF5ViI2rwWxGdzTMEiul1lDOIlkMVCjS/Rszsna w/er2QqS5UBft1T3+0m38Ui+x4kUg6hlLWRjxMoisLWJredYZM/Ayokl/I6ZdTfX 21rufJNICc92PLERFwfLRDV2oQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAxDJb8c AFnCQREfiJAZwHa8ouhhMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGQkEvREI5Q0U2NzgwMjk4MTFFQjk4MjNBRTgyQzRGOUFFMDIvQ0VBMDkzQzY2 Q0EzMTFFRDlERDY0MjVDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByn/SMA0GCSqGSIb3DQEBCwUAA4IBAQDONh85AuMorcvI77GAgeRR HZjaCc/xS6lLhToTc1A579bmNbe/g3hPf0oxPSeoEglH9UWM9IgHdFl5x3bHaRHP PfIWraYWLqjnbQbdBKhsDzreB2RaPWA1/ytivWA8XHP18w+15JE8fkslclQZJE8p PBVWJF/XoKufAOjMBbGP4jkmqbfuEKq330jB0N7N3Qq/0uA2aAnMOjnodtPWB4t/ EL786ihKtgSF5bM94kG2flTIakq3irV3nF+2Tc9OLPYBcHcrwY8Eps71UYxkvmQi TcnNl9d3nobNEgluaWWZZFPdsSRJ2RtYACkLHOcsr967XVJeXLJ3jFq+4odmxDkf -----END CERTIFICATE-----Generated at Thu Mar 26 11:55:45 2026 by rpki-client