$ rpki-client -vvf rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/584ED0CCDD1A11EA96723D11C4F9AE02.roa File: 584ED0CCDD1A11EA96723D11C4F9AE02.roa (raw, json) Hash identifier: rh0SYpKPI4YWrufj0stAAObhOoq6ZpWqFOFkGw1rWIQ= Subject key identifier: 00:CE:D5:25:37:D6:EE:68:84:2D:18:00:E3:62:41:39:66:21:46:BF Certificate issuer: /CN=A9142182/serialNumber=CA23EC00DC36E8F35467F0599174EA0BEFDB41F9 Certificate serial: 08AE Authority key identifier: CA:23:EC:00:DC:36:E8:F3:54:67:F0:59:91:74:EA:0B:EF:DB:41:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiPsANw26PNUZ_BZkXTqC-_bQfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/584ED0CCDD1A11EA96723D11C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:56 +0000 ROA not before: Tue 02 Sep 2025 21:12:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.44.120.0/21 maxlen: 24 2407:1080::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/yiPsANw26PNUZ_BZkXTqC-_bQfk.crl rsync://rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/yiPsANw26PNUZ_BZkXTqC-_bQfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiPsANw26PNUZ_BZkXTqC-_bQfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2222 (0x8ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142182, serialNumber=CA23EC00DC36E8F35467F0599174EA0BEFDB41F9 Validity Not Before: Sep 2 21:12:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a447c4-8e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:30:3b:34:ca:67:a3:20:6b:7d:be:dd:0a:93: 8f:88:93:d7:56:8d:6a:43:6b:60:b4:8b:c5:ce:df: 4d:40:59:ee:8a:0e:e7:7c:50:bb:ea:e1:7f:53:0d: bd:8b:08:b5:8d:5b:1a:29:33:dd:04:3c:7e:70:f9: 0f:51:54:69:5e:01:d6:0e:8e:cf:2d:8f:34:5e:47: 0c:c7:28:a1:00:f7:8c:bd:72:fb:09:e7:a5:00:74: d2:cc:c5:2e:a0:70:30:4e:c2:c6:dc:54:6d:be:48: 95:1c:08:13:d4:25:cb:a0:ff:93:a1:22:7a:80:76: 39:92:55:82:12:77:0a:4f:d2:ac:99:04:99:11:ce: 72:d9:59:44:ba:29:cb:65:7a:f3:57:04:2b:ee:c2: 9e:7e:ca:ff:42:80:ff:b1:c6:63:87:26:cc:51:d8: 4a:3d:58:3b:93:2a:2b:2d:a8:27:3c:bd:95:09:f8: f6:f9:8f:59:a2:1d:20:6c:60:ab:c4:9f:ed:55:a4: 5b:50:38:74:84:83:07:94:5b:29:05:60:c7:87:31: 6d:4b:56:98:4d:af:b5:bc:45:ac:0b:55:35:da:3c: 45:36:bc:47:35:1f:bb:aa:91:50:b4:4f:5c:dd:2c: 21:29:0e:b6:90:4d:38:f3:77:a5:fd:da:09:75:a9: 23:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CE:D5:25:37:D6:EE:68:84:2D:18:00:E3:62:41:39:66:21:46:BF X509v3 Authority Key Identifier: keyid:CA:23:EC:00:DC:36:E8:F3:54:67:F0:59:91:74:EA:0B:EF:DB:41:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/yiPsANw26PNUZ_BZkXTqC-_bQfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiPsANw26PNUZ_BZkXTqC-_bQfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142182/162DDD92DD1411EABFD2B47DC4F9AE02/584ED0CCDD1A11EA96723D11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.44.120.0/21 IPv6: 2407:1080::/32 Signature Algorithm: sha256WithRSAEncryption af:44:43:b1:51:99:52:88:95:2c:92:c5:ed:14:de:f6:1c:0b: 2e:a6:3c:74:43:f0:a9:9e:39:06:7d:9e:b3:98:77:36:4e:d7: be:31:70:3c:9b:32:fd:9f:6a:3e:29:17:98:f4:7f:20:00:52: 8b:04:ad:6f:49:09:bb:64:ce:d2:d5:3a:40:2b:d0:9e:aa:7d: 13:76:03:81:9a:4c:2d:ad:25:0c:72:be:db:10:60:09:b3:61: 4b:e6:41:4a:1b:2a:dc:1c:a0:2e:49:67:68:10:99:e9:0f:0a: 5a:6c:ac:88:1c:ff:e2:ad:d6:34:2f:a6:81:81:64:9c:0b:83: b9:38:d0:f7:2d:19:eb:07:21:64:84:4a:ea:97:c7:2d:6c:26: 2c:d0:6e:3a:b0:5a:26:e9:bb:74:49:d4:a7:41:c0:e5:61:df: 7e:a9:7b:55:f1:35:fb:7f:c7:6f:29:22:0b:e2:47:1b:70:66: dd:a0:e2:82:3b:12:db:54:22:f8:4e:35:0a:62:5d:d5:01:be: 2b:40:db:2a:74:42:75:28:f1:be:c3:dc:b8:db:a9:87:04:b0: d9:1b:0e:f7:93:99:af:22:31:bf:95:f5:b9:cd:25:0a:75:2e: 88:bd:d4:32:44:2b:51:e1:87:ae:7b:e8:ce:ee:13:68:f0:f0: 09:23:1c:0a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxODIxMTAvBgNVBAUTKENBMjNFQzAwREMzNkU4RjM1NDY3RjA1OTkxNzRFQTBC RUZEQjQxRjkwHhcNMjUwOTAyMjExMjM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDdjNC04ZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDA7NMpnoyBrfb7dCpOPiJPXVo1qQ2tgtIvFzt9NQFnuig7nfFC76uF/Uw29 iwi1jVsaKTPdBDx+cPkPUVRpXgHWDo7PLY80XkcMxyihAPeMvXL7CeelAHTSzMUu oHAwTsLG3FRtvkiVHAgT1CXLoP+ToSJ6gHY5klWCEncKT9KsmQSZEc5y2VlEuinL ZXrzVwQr7sKefsr/QoD/scZjhybMUdhKPVg7kyorLagnPL2VCfj2+Y9Zoh0gbGCr xJ/tVaRbUDh0hIMHlFspBWDHhzFtS1aYTa+1vEWsC1U12jxFNrxHNR+7qpFQtE9c 3SwhKQ62kE0483el/doJdakjRQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFADO1SU3 1u5ohC0YAONiQTlmIUa/MB8GA1UdIwQYMBaAFMoj7ADcNujzVGfwWZF06gvv20H5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjE4Mi8xNjJEREQ5MkRE MTQxMUVBQkZEMkI0N0RDNEY5QUUwMi95aVBzQU53MjZQTlVaX0Jaa1hUcUMtX2JR ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpUHNBTncyNlBOVVpfQlprWFRxQy1fYlFmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxODIvMTYyREREOTJERDE0MTFFQUJGRDJCNDdEQzRGOUFFMDIvNTg0RUQwQ0NE RDFBMTFFQTk2NzIzRDExQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQDyix4MA0EAgACMAcDBQAkBxCAMA0GCSqGSIb3DQEBCwUAA4IBAQCv REOxUZlSiJUsksXtFN72HAsupjx0Q/CpnjkGfZ6zmHc2Tte+MXA8mzL9n2o+KReY 9H8gAFKLBK1vSQm7ZM7S1TpAK9Ceqn0TdgOBmkwtrSUMcr7bEGAJs2FL5kFKGyrc HKAuSWdoEJnpDwpabKyIHP/irdY0L6aBgWScC4O5OND3LRnrByFkhErql8ctbCYs 0G46sFom6bt0SdSnQcDlYd9+qXtV8TX7f8dvKSIL4kcbcGbdoOKCOxLbVCL4TjUK Yl3VAb4rQNsqdEJ1KPG+w9y426mHBLDZGw73k5mvIjG/lfW5zSUKdS6IvdQyRCtR 4Yeue+jO7hNo8PAJIxwK -----END CERTIFICATE-----Generated at Thu Mar 26 06:58:33 2026 by rpki-client