$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa File: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (raw, json) Hash identifier: EmtqkldBy+S1KrrhPoPa/VOGFTeYDwSx06Mb2C05cC8= Subject key identifier: 8F:F1:01:B0:02:5F:3E:57:67:36:82:77:21:6B:7C:92:6A:98:A6:D8 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 355C Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa Signing time: Mon 20 Apr 2026 15:12:47 +0000 ROA not before: Mon 20 Apr 2026 15:12:47 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 139759 IP address blocks: 119.252.112.0/21 maxlen: 21 119.252.112.0/24 maxlen: 24 119.252.116.0/22 maxlen: 22 119.252.122.0/24 maxlen: 24 124.109.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13660 (0x355c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Apr 20 15:12:47 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69e6426f-9fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:32:d8:92:80:2b:8c:87:fd:32:6f:be:6e:bd: ff:d5:35:13:92:74:5b:59:48:d6:92:00:f0:07:d6: e9:eb:d3:c1:6c:e7:09:d7:c3:5f:0e:f9:27:8c:3f: e5:07:24:93:b6:4d:41:90:b3:ba:b1:97:01:cd:f7: d4:0c:ff:75:66:53:1e:73:95:a5:18:a7:a1:34:23: 91:5e:3a:df:e7:22:92:3c:0c:b1:2d:55:3d:13:1a: db:68:a4:c6:1a:4b:8a:7e:29:23:01:f6:a6:a2:98: 29:3e:71:22:8a:d4:03:4b:ce:e7:11:c2:53:05:94: 7f:4b:06:60:74:52:49:c5:09:00:cf:99:dc:8b:c8: 2a:7d:bd:73:25:11:a7:e0:4e:1a:d8:26:1f:1d:09: 90:5f:e3:67:5b:d3:14:2d:6b:9e:e4:de:92:08:a9: 9d:24:f9:ae:a5:ae:24:90:d0:8f:a5:86:3c:08:3b: ec:24:82:52:c7:a2:fe:3f:7d:07:14:2c:a7:a9:6a: b9:eb:a5:02:0a:98:de:96:1d:c7:84:c8:9a:2a:83: 1b:77:c7:62:19:ad:4b:05:9a:4c:d7:7b:02:c3:a6: e4:d4:50:6c:64:4d:89:e5:08:8a:1b:e3:8b:af:46: 79:b5:99:2b:cb:fe:3b:c9:cc:3f:ac:9f:c4:19:6d: 6e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F1:01:B0:02:5F:3E:57:67:36:82:77:21:6B:7C:92:6A:98:A6:D8 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.252.112.0/21 119.252.122.0/24 124.109.8.0/22 Signature Algorithm: sha256WithRSAEncryption 12:2d:4b:79:f9:fe:2f:a5:f3:9b:59:9b:1f:60:2b:84:42:c0: cf:e1:64:c3:59:bd:2f:5e:4b:79:71:9e:59:d9:78:e2:01:a0: 9f:c3:ce:11:5b:e8:ba:b2:70:88:0c:4f:c7:b1:2a:cb:06:a9: ec:4e:19:d7:b2:8a:6e:55:48:4f:d2:0c:a8:c7:51:b9:fa:cf: 89:e7:6b:0c:02:71:1d:c0:1e:90:53:d0:e3:f5:fb:16:69:4b: 2c:c8:1d:9f:32:a4:38:4e:2d:24:a6:d7:67:bc:04:bb:f1:a1: bb:ff:24:a4:93:c0:e8:7a:e0:76:19:a8:bc:47:60:e7:e3:0b: ee:db:66:2e:28:e9:fa:26:97:15:37:53:18:cc:56:c1:6d:1d: 41:66:19:5b:7f:93:fd:e6:99:2b:28:96:35:ff:4b:d2:0f:7f: 2f:df:fa:2b:14:77:ba:72:f2:b4:2e:e9:01:c8:fc:f5:30:dd: 71:32:5a:8a:91:73:ca:57:d0:b0:27:fe:f2:9a:3d:6d:6d:6c: fa:34:f5:ed:0e:ce:b1:07:be:5e:e4:6c:a3:a4:3f:0c:43:a5: 96:71:93:a3:1d:b8:3f:b0:e2:52:e5:76:c4:ad:f2:23:11:95: 7b:8b:cd:54:b3:f3:cb:b2:9c:a2:d3:d9:51:f3:b2:58:98:50: 43:4b:72:f0 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICNVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwNDIwMTUxMjQ3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NDI2Zi05ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DLYkoArjIf9Mm++br3/1TUTknRbWUjWkgDwB9bp69PBbOcJ18NfDvknjD/l BySTtk1BkLO6sZcBzffUDP91ZlMec5WlGKehNCORXjrf5yKSPAyxLVU9ExrbaKTG GkuKfikjAfamopgpPnEiitQDS87nEcJTBZR/SwZgdFJJxQkAz5nci8gqfb1zJRGn 4E4a2CYfHQmQX+NnW9MULWue5N6SCKmdJPmupa4kkNCPpYY8CDvsJIJSx6L+P30H FCynqWq566UCCpjelh3HhMiaKoMbd8diGa1LBZpM13sCw6bk1FBsZE2J5QiKG+OL r0Z5tZkry/47ycw/rJ/EGW1u2QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFI/xAbAC Xz5XZzaCdyFrfJJqmKbYMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQTAvM0EwRDkzMTAxRDhDMTFFMjhFRkY1N0U3MDhCMDJDRDIvRTRCQTNDRThE RkNFMTFFRkJDNENENjMxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQDd/xwAwQAd/x6AwQCfG0IMA0GCSqGSIb3DQEBCwUAA4IBAQASLUt5 +f4vpfObWZsfYCuEQsDP4WTDWb0vXkt5cZ5Z2XjiAaCfw84RW+i6snCIDE/HsSrL BqnsThnXsopuVUhP0gyox1G5+s+J52sMAnEdwB6QU9Dj9fsWaUssyB2fMqQ4Ti0k ptdnvAS78aG7/ySkk8DoeuB2Gai8R2Dn4wvu22YuKOn6JpcVN1MYzFbBbR1BZhlb f5P95pkrKJY1/0vSD38v3/orFHe6cvK0LukByPz1MN1xMlqKkXPKV9CwJ/7ymj1t bWz6NPXtDs6xB75e5GyjpD8MQ6WWcZOjHbg/sOJS5XbErfIjEZV7i81Us/PLspyi 09lR87JYmFBDS3Lw -----END CERTIFICATE-----Generated at Wed May 13 02:44:16 2026 by rpki-client