$ rpki-client -vvf rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/98D7330CA55011EFA7FFA969C4F9AE02.roa File: 98D7330CA55011EFA7FFA969C4F9AE02.roa (raw, json) Hash identifier: ShvQ5H1BhLJtVihTa5b32xsJhzlmQtYYfhOu0sIIiXM= Subject key identifier: A4:BC:DE:0B:07:92:54:1A:C0:FC:52:25:9D:6E:E4:04:4F:80:AC:2A Certificate issuer: /CN=A9154840/serialNumber=9CF71478BF59B008B1B542FA93A7C10EFB7F4D62 Certificate serial: 010C Authority key identifier: 9C:F7:14:78:BF:59:B0:08:B1:B5:42:FA:93:A7:C1:0E:FB:7F:4D:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPcUeL9ZsAixtUL6k6fBDvt_TWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/98D7330CA55011EFA7FFA969C4F9AE02.roa Signing time: Thu 05 Mar 2026 05:41:58 +0000 ROA not before: Thu 05 Mar 2026 05:41:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63842 IP address blocks: 203.22.100.0/24 maxlen: 24 203.22.101.0/24 maxlen: 24 203.22.102.0/24 maxlen: 24 203.22.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/nPcUeL9ZsAixtUL6k6fBDvt_TWI.crl rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/nPcUeL9ZsAixtUL6k6fBDvt_TWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPcUeL9ZsAixtUL6k6fBDvt_TWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154840, serialNumber=9CF71478BF59B008B1B542FA93A7C10EFB7F4D62 Validity Not Before: Mar 5 05:41:58 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a917a6-368d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:67:d6:f0:2b:32:5b:4d:89:05:70:49:bd:6f: 2b:c8:90:9e:e4:9a:c6:ae:87:63:0e:1e:f0:b4:f0: 51:90:46:1b:1e:4e:f1:b1:48:a8:8b:ae:a1:bc:8d: 1a:51:a6:27:e5:f1:72:9b:82:11:8b:b1:fa:73:c6: 0d:eb:c2:0c:79:48:c5:d6:2c:51:a8:eb:6b:82:7d: 29:e0:a0:2a:b4:06:ba:48:e2:5a:30:f6:0c:ac:58: cf:4b:58:74:91:ec:6b:26:72:48:4f:06:6c:d0:eb: f6:c8:12:e0:f0:6b:0e:da:3d:4d:2f:24:17:4d:90: df:4e:87:8c:8c:e8:1b:eb:75:b5:74:77:68:6a:11: f9:16:b1:d6:5c:1c:2a:42:48:4b:3f:65:b8:cc:02: 28:5f:a4:f5:27:32:87:cd:45:4d:0b:12:0a:fb:5b: b6:c3:d1:a7:70:4f:b2:20:1a:85:99:83:ab:50:be: af:c9:25:4c:fc:d0:a1:e1:cd:85:24:39:e7:14:ef: 61:b0:bb:36:5d:1b:8e:a3:c2:00:3e:ef:6b:0f:8c: cb:98:a7:56:0b:98:2d:96:09:78:60:e3:08:de:f7: 58:6e:cb:d4:8a:d0:b5:c8:02:f1:49:cd:6d:53:39: a6:ca:83:9f:a6:35:45:51:18:5e:46:0c:7e:34:45: e4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BC:DE:0B:07:92:54:1A:C0:FC:52:25:9D:6E:E4:04:4F:80:AC:2A X509v3 Authority Key Identifier: keyid:9C:F7:14:78:BF:59:B0:08:B1:B5:42:FA:93:A7:C1:0E:FB:7F:4D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/nPcUeL9ZsAixtUL6k6fBDvt_TWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPcUeL9ZsAixtUL6k6fBDvt_TWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/98D7330CA55011EFA7FFA969C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.22.100.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:c3:d5:ad:5a:e8:d3:35:07:c4:a1:7e:bb:eb:65:a7:19:23: a8:99:ac:82:6d:05:84:32:1c:08:75:9b:4f:04:f9:21:09:17: a3:2a:f3:c8:7b:e6:75:cc:05:ae:15:82:84:bd:f4:96:19:f4: 03:0b:6e:49:90:89:14:ff:9d:82:c8:8a:82:8c:d1:23:f6:f2: 84:ad:13:7d:a8:8a:11:0e:8a:a0:a8:d4:7d:49:78:f3:31:c3: f1:2b:e3:65:d4:b5:96:4c:b5:eb:cd:36:d9:91:c6:b1:6d:e4: 59:95:f1:db:57:57:8c:8a:d5:87:08:4c:52:91:81:e6:17:a8: 0e:10:b5:b7:e9:96:37:5a:92:3a:e7:e0:a9:fa:1b:38:5b:33: e8:62:c7:28:9d:10:6b:6b:ce:82:ce:21:16:b4:d9:ca:c4:1c: a9:51:93:f2:5e:70:61:80:8b:e1:43:97:0f:e5:1a:c5:a9:ae: 68:c2:76:6f:91:db:d0:1b:c3:48:63:38:f1:33:d6:ee:65:8a: f9:dd:f2:67:d2:63:74:91:c3:a8:57:51:2e:00:82:5a:26:d5: 08:03:b1:83:d6:6c:8d:5b:bc:a7:0b:7f:8e:67:02:2c:df:ee: f7:b8:21:29:9d:fe:a8:87:1e:3a:99:ed:74:36:44:9d:ef:3c: 0a:72:ce:eb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ4NDAxMTAvBgNVBAUTKDlDRjcxNDc4QkY1OUIwMDhCMUI1NDJGQTkzQTdDMTBF RkI3RjRENjIwHhcNMjYwMzA1MDU0MTU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE5MTdhNi0zNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWfW8CsyW02JBXBJvW8ryJCe5JrGrodjDh7wtPBRkEYbHk7xsUioi66hvI0a UaYn5fFym4IRi7H6c8YN68IMeUjF1ixRqOtrgn0p4KAqtAa6SOJaMPYMrFjPS1h0 kexrJnJITwZs0Ov2yBLg8GsO2j1NLyQXTZDfToeMjOgb63W1dHdoahH5FrHWXBwq QkhLP2W4zAIoX6T1JzKHzUVNCxIK+1u2w9GncE+yIBqFmYOrUL6vySVM/NCh4c2F JDnnFO9hsLs2XRuOo8IAPu9rD4zLmKdWC5gtlgl4YOMI3vdYbsvUitC1yALxSc1t UzmmyoOfpjVFURheRgx+NEXkxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKS83gsH klQawPxSJZ1u5ARPgKwqMB8GA1UdIwQYMBaAFJz3FHi/WbAIsbVC+pOnwQ77f01i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDg0MC8zNDJGODBEMDlG QzQxMUVGOTYzMUY4MzZDNEY5QUUwMi9uUGNVZUw5WnNBaXh0VUw2azZmQkR2dF9U V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25QY1VlTDlac0FpeHRVTDZrNmZCRHZ0X1RXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ4NDAvMzQyRjgwRDA5RkM0MTFFRjk2MzFGODM2QzRGOUFFMDIvOThENzMzMENB NTUwMTFFRkE3RkZBOTY5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyxZkMA0GCSqGSIb3DQEBCwUAA4IBAQA9w9WtWujTNQfEoX6762Wn GSOomayCbQWEMhwIdZtPBPkhCRejKvPIe+Z1zAWuFYKEvfSWGfQDC25JkIkU/52C yIqCjNEj9vKErRN9qIoRDoqgqNR9SXjzMcPxK+Nl1LWWTLXrzTbZkcaxbeRZlfHb V1eMitWHCExSkYHmF6gOELW36ZY3WpI65+Cp+hs4WzPoYsconRBra86CziEWtNnK xBypUZPyXnBhgIvhQ5cP5RrFqa5ownZvkdvQG8NIYzjxM9buZYr53fJn0mN0kcOo V1EuAIJaJtUIA7GD1myNW7ynC3+OZwIs3+73uCEpnf6ohx46me10NkSd7zwKcs7r -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:34 2026 by rpki-client