$ rpki-client -vvf rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa File: 09DF69582A3411EB9E69467DC4F9AE02.roa (raw, json) Hash identifier: KzRK2aas8eOCnSmqY3CGoTXt2kRSyd0CQk65Ns8wG6U= Subject key identifier: 2F:26:FD:EF:42:82:12:36:9F:7F:C8:F3:C5:D0:27:97:B3:AF:9C:46 Certificate issuer: /CN=A9148827/serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Certificate serial: 0B9C Authority key identifier: 48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa Signing time: Wed 04 Mar 2026 19:25:03 +0000 ROA not before: Wed 04 Mar 2026 19:25:03 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58689 IP address blocks: 116.204.228.0/22 maxlen: 23 116.204.228.0/24 maxlen: 24 116.204.229.0/24 maxlen: 24 116.204.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148827, serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Validity Not Before: Mar 4 19:25:03 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a8870f-bacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:70:e6:24:bb:ab:53:68:d1:eb:45:53:3c:19: a8:a9:cd:91:c6:84:82:97:93:49:21:07:40:30:fd: c1:c8:17:0d:74:aa:54:5d:48:13:82:5f:5c:84:05: 29:65:a3:0e:97:ec:ce:55:6b:bf:df:99:7e:88:e5: 30:96:00:13:93:18:8c:c9:99:16:a1:aa:ac:e9:ff: 81:bf:41:31:c9:09:85:6a:a4:86:e0:d9:39:dd:0e: e3:7f:ec:6d:54:22:aa:69:e8:7f:a5:51:4d:53:cf: 21:2d:da:8d:2f:27:7b:b5:ca:b7:27:3f:1e:0e:9d: a6:fb:a0:2c:5d:1b:c0:5b:d2:9a:d2:93:6e:61:e9: db:61:77:e6:25:ec:27:bd:43:9e:de:3f:ec:a9:bb: 30:94:5b:69:4c:94:25:57:7c:51:5c:fe:a4:06:e6: 4e:ee:25:59:78:ea:ff:ec:a1:d3:24:5f:52:b1:f4: 1a:12:c0:0b:f9:f8:05:3b:57:30:27:67:85:b9:52: d9:5e:63:82:4a:da:46:3a:ed:89:12:5b:34:f3:45: 3b:37:5a:3e:de:3a:98:cf:25:b3:32:31:8f:2d:f8: e0:d6:f0:3f:76:e6:2b:97:c0:44:83:d4:87:01:20: 8a:26:26:96:07:88:71:11:ad:4c:7e:be:2c:1e:b7: 87:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:26:FD:EF:42:82:12:36:9F:7F:C8:F3:C5:D0:27:97:B3:AF:9C:46 X509v3 Authority Key Identifier: keyid:48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.228.0/22 Signature Algorithm: sha256WithRSAEncryption 98:f7:22:b8:46:7a:7d:33:db:d4:6e:e3:49:a2:05:45:0f:03: de:4d:15:32:26:b0:1d:4d:a9:f1:be:f1:56:da:43:b9:6e:c7: 4c:a0:34:a0:2b:b0:33:16:f4:92:6b:c3:4f:e6:8b:66:2b:98: 1f:8d:7b:a5:cf:b5:0d:40:88:24:84:1b:62:cf:6d:64:3e:f5: b0:12:fe:49:a5:05:70:d8:df:90:5b:61:33:af:99:4b:c0:4e: 16:87:1a:6f:14:35:89:92:cc:d8:75:38:bc:03:38:fe:43:14: 14:35:e7:e6:98:e3:11:a6:b2:c4:26:63:54:8c:c1:aa:6d:40: 65:27:7a:34:2a:e1:5c:cd:7b:dc:03:33:6e:2f:0b:1e:1a:e1: 1b:20:f6:44:6f:dc:f4:7a:4a:16:0b:17:7b:5a:cb:cd:31:ee: c3:5b:f6:14:12:ba:92:1c:f6:40:57:ce:e2:c0:ab:c5:af:ee: 76:00:a6:20:d6:e4:2b:5c:93:dc:34:e9:6d:9e:94:11:77:72: 16:5c:5b:13:53:90:aa:e0:2f:e2:6d:27:ab:15:03:78:5f:16: 52:ab:64:a2:bb:e6:d0:e3:21:14:a2:06:09:d8:e1:08:3a:17: b9:ee:51:b6:1f:53:ce:1d:6d:8f:2d:ca:ef:4b:21:c8:cc:f8: 06:7a:20:d3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg4MjcxMTAvBgNVBAUTKDQ4NEFFOEMwRDE1Nzk5QjVGRjA4MUZFNDBDM0UxRTAw RTRFODk0NzgwHhcNMjYwMzA0MTkyNTAzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4ODcwZi1iYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXDmJLurU2jR60VTPBmoqc2RxoSCl5NJIQdAMP3ByBcNdKpUXUgTgl9chAUp ZaMOl+zOVWu/35l+iOUwlgATkxiMyZkWoaqs6f+Bv0ExyQmFaqSG4Nk53Q7jf+xt VCKqaeh/pVFNU88hLdqNLyd7tcq3Jz8eDp2m+6AsXRvAW9Ka0pNuYenbYXfmJewn vUOe3j/sqbswlFtpTJQlV3xRXP6kBuZO7iVZeOr/7KHTJF9SsfQaEsAL+fgFO1cw J2eFuVLZXmOCStpGOu2JEls080U7N1o+3jqYzyWzMjGPLfjg1vA/duYrl8BEg9SH ASCKJiaWB4hxEa1Mfr4sHreHzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC8m/e9C ghI2n3/I88XQJ5ezr5xGMB8GA1UdIwQYMBaAFEhK6MDRV5m1/wgf5Aw+HgDk6JR4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODgyNy84ODg3MTkzNjQ5 MjUxMUVBQTk0NDk3NkZDNEY5QUUwMi9TRXJvd05GWG1iWF9DQl9rREQ0ZUFPVG9s SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFcm93TkZYbWJYX0NCX2tERDRlQU9Ub2xIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg4MjcvODg4NzE5MzY0OTI1MTFFQUE5NDQ5NzZGQzRGOUFFMDIvMDlERjY5NTgy QTM0MTFFQjlFNjk0NjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMzkMA0GCSqGSIb3DQEBCwUAA4IBAQCY9yK4Rnp9M9vUbuNJogVF DwPeTRUyJrAdTanxvvFW2kO5bsdMoDSgK7AzFvSSa8NP5otmK5gfjXulz7UNQIgk hBtiz21kPvWwEv5JpQVw2N+QW2Ezr5lLwE4WhxpvFDWJkszYdTi8Azj+QxQUNefm mOMRprLEJmNUjMGqbUBlJ3o0KuFczXvcAzNuLwseGuEbIPZEb9z0ekoWCxd7WsvN Me7DW/YUErqSHPZAV87iwKvFr+52AKYg1uQrXJPcNOltnpQRd3IWXFsTU5Cq4C/i bSerFQN4XxZSq2Siu+bQ4yEUogYJ2OEIOhe57lG2H1POHW2PLcrvSyHIzPgGeiDT -----END CERTIFICATE-----Generated at Thu Mar 26 11:35:21 2026 by rpki-client