$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa File: 29D600062C3311EEBFF69B6CC4F9AE02.roa (raw, json) Hash identifier: WAXFjuNGhyF26G8uyhpIZtaDvgXLuDPly79bzyrgzCI= Subject key identifier: 3A:C4:09:59:48:9E:ED:AF:8E:7F:D2:AD:07:E9:9A:F0:8A:7F:6C:72 Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 01ED Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:35:37 +0000 ROA not before: Tue 01 Jul 2025 04:40:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4778 IP address blocks: 203.20.218.0/24 maxlen: 24 203.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Jul 1 04:40:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ec49-107e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:4b:09:3f:de:a0:d1:64:f2:53:36:7a:7f: 6d:58:87:83:f7:6a:2d:c2:fd:55:1e:c4:e2:15:07: 41:62:cb:cb:1c:71:44:05:b6:0c:77:55:3b:6d:f5: 78:71:d3:64:9a:74:89:cf:b0:e6:af:94:a2:90:8f: 78:43:d8:63:20:28:dc:17:fb:5d:14:30:db:48:1c: 34:1d:65:42:bd:03:9f:e1:1c:64:21:21:b0:84:24: 12:a5:fb:ec:83:84:54:c2:b0:95:ad:16:73:c4:61: 06:fa:23:6e:7f:4a:6c:d4:76:e8:6f:86:86:c7:5c: 69:17:7d:35:e1:37:65:ce:21:cb:8a:3c:81:e9:78: 9f:8d:d7:65:e2:22:74:da:b4:c0:58:4f:be:f1:6d: b8:ac:02:df:ee:b6:f0:34:46:7f:7f:ff:08:bf:6e: 8d:00:b3:df:61:85:a0:9b:55:a0:36:12:a5:d0:96: de:da:da:77:92:01:c2:88:6d:a3:0d:a6:0c:f6:68: 08:c2:0a:6b:50:4b:32:93:ec:72:a7:fe:42:ca:c6: fb:bb:c6:f2:f3:17:13:14:e2:65:3f:fe:18:80:29: 05:e7:c4:14:0d:a2:aa:1a:a5:b9:6f:2c:c9:f2:e0: 4a:9c:86:01:0d:74:1f:0c:c0:53:ea:68:72:bd:ec: 36:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C4:09:59:48:9E:ED:AF:8E:7F:D2:AD:07:E9:9A:F0:8A:7F:6C:72 X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:39:6e:7c:dd:1e:45:40:30:15:a3:6f:e5:76:0a:0f:33:d6: f9:ba:b3:c3:2e:b5:a9:27:58:d8:51:a9:1e:12:4b:59:3b:16: 34:8a:29:d3:4d:27:a8:3e:74:46:ed:55:2b:5d:59:22:42:d8: 0f:7b:4e:ba:dc:77:09:67:60:61:db:d1:58:a5:0c:dd:f8:84: 4c:79:a4:59:28:66:4c:25:34:10:17:10:9c:e2:9c:63:c9:16: ca:92:fd:74:f8:a2:53:38:86:45:bd:d1:04:38:31:01:84:a5: 6f:9e:b0:64:7a:27:d6:6f:4d:bb:86:9a:ac:af:70:a2:26:76: 7e:94:49:c8:5e:16:e7:2b:df:34:bc:ab:51:24:69:0a:d2:bb: 36:27:c7:32:e3:d7:b9:8a:5c:98:58:4f:3e:7b:0d:44:b8:e2: 5c:d0:c5:a5:2b:1f:b8:87:48:c6:44:d9:84:b3:fe:78:d0:79: c2:7a:e1:77:08:a6:2d:b0:62:43:21:d8:1b:f2:c1:3e:b7:a4: 44:33:af:18:3e:6e:c3:4e:f0:11:d5:2a:59:c2:55:9a:eb:d3: 8e:85:33:a5:a9:68:09:10:66:9f:f9:27:8b:01:1e:49:bd:2e: fd:0f:c7:59:ac:74:00:3d:da:d0:04:a3:8e:35:25:ae:9b:6a: 4a:15:93:d3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjUwNzAxMDQ0MDEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWM0OS0xMDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytdLCT/eoNFk8lM2en9tWIeD92otwv1VHsTiFQdBYsvLHHFEBbYMd1U7bfV4 cdNkmnSJz7Dmr5SikI94Q9hjICjcF/tdFDDbSBw0HWVCvQOf4RxkISGwhCQSpfvs g4RUwrCVrRZzxGEG+iNuf0ps1Hbob4aGx1xpF3014TdlziHLijyB6Xifjddl4iJ0 2rTAWE++8W24rALf7rbwNEZ/f/8Iv26NALPfYYWgm1WgNhKl0Jbe2tp3kgHCiG2j DaYM9mgIwgprUEsyk+xyp/5Cysb7u8by8xcTFOJlP/4YgCkF58QUDaKqGqW5byzJ 8uBKnIYBDXQfDMBT6mhyvew2BwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDrECVlI nu2vjn/SrQfpmvCKf2xyMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlEQ0QvQTAwRDcwMDYyQzI0MTFFRUFCOTc4RjBGQzRGOUFFMDIvMjlENjAwMDYy QzMzMTFFRUJGRjY5QjZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByxTaMA0GCSqGSIb3DQEBCwUAA4IBAQBPOW583R5FQDAVo2/ldgoP M9b5urPDLrWpJ1jYUakeEktZOxY0iinTTSeoPnRG7VUrXVkiQtgPe0663HcJZ2Bh 29FYpQzd+IRMeaRZKGZMJTQQFxCc4pxjyRbKkv10+KJTOIZFvdEEODEBhKVvnrBk eifWb027hpqsr3CiJnZ+lEnIXhbnK980vKtRJGkK0rs2J8cy49e5ilyYWE8+ew1E uOJc0MWlKx+4h0jGRNmEs/540HnCeuF3CKYtsGJDIdgb8sE+t6REM68YPm7DTvAR 1SpZwlWa69OOhTOlqWgJEGaf+SeLAR5JvS79D8dZrHQAPdrQBKOONSWum2pKFZPT -----END CERTIFICATE-----Generated at Sat Mar 28 15:56:09 2026 by rpki-client