$ rpki-client -vvf rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa File: FEA470A4137911EBA3A5F233C4F9AE02.roa (raw, json) Hash identifier: QLTfJIXHekXFtibNVc4Q+2innR3VNQ5N9hMeUx/Akls= Subject key identifier: BB:57:99:D2:21:A5:0D:8B:D6:8F:D6:28:6A:D2:32:C8:CA:30:C2:B9 Certificate issuer: /CN=A915A9FD/serialNumber=CC6AF20750F8DE39FB75C0A1D0A441997CAD37B8 Certificate serial: 0814 Authority key identifier: CC:6A:F2:07:50:F8:DE:39:FB:75:C0:A1:D0:A4:41:99:7C:AD:37:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa Signing time: Mon 02 Mar 2026 21:26:44 +0000 ROA not before: Mon 02 Mar 2026 21:26:44 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 131583 IP address blocks: 202.174.160.0/20 maxlen: 20 202.174.160.0/24 maxlen: 24 202.174.161.0/24 maxlen: 24 202.174.162.0/24 maxlen: 24 202.174.163.0/24 maxlen: 24 202.174.164.0/24 maxlen: 24 202.174.165.0/24 maxlen: 24 202.174.166.0/24 maxlen: 24 202.174.167.0/24 maxlen: 24 202.174.168.0/24 maxlen: 24 202.174.169.0/24 maxlen: 24 202.174.170.0/24 maxlen: 24 202.174.171.0/24 maxlen: 24 202.174.172.0/24 maxlen: 24 202.174.173.0/24 maxlen: 24 202.174.174.0/24 maxlen: 24 202.174.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.crl rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A9FD, serialNumber=CC6AF20750F8DE39FB75C0A1D0A441997CAD37B8 Validity Not Before: Mar 2 21:26:44 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a60093-350a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:00:c0:28:ab:5c:2f:ab:f5:3a:d9:ec:b2:ae: 60:15:c8:65:57:e0:f9:45:3a:81:b6:7d:63:12:6b: 96:67:f9:31:db:4c:70:1d:32:55:28:8f:1b:9c:2e: fe:ad:c5:d9:41:93:38:ce:f5:ad:0c:1f:7a:35:2b: 5d:45:b4:36:70:9f:e5:18:c3:5c:8f:91:c8:7d:23: 44:f9:d6:dd:39:c3:64:34:81:7b:5f:47:8c:5f:64: 14:1b:1c:60:5f:2f:ff:20:8e:15:c1:4e:50:a6:2b: 8f:37:91:99:74:03:c4:c3:eb:f6:be:b9:6e:2f:b6: 8b:07:05:b9:d5:17:dc:18:6a:62:c7:72:ed:47:b1: 4c:c4:73:1a:8c:21:72:19:11:a2:56:4f:38:fd:7c: 65:5f:0f:38:c7:b7:fd:a0:14:bc:59:0d:54:10:43: fc:8a:9d:12:d0:c9:67:34:83:f4:cd:b2:6b:41:b1: a9:98:5e:89:03:dc:c8:d7:97:a7:f6:f2:00:ca:6b: f6:fe:84:cf:9d:75:84:47:bb:77:f7:18:93:b2:c7: 05:98:4b:e9:62:ec:0f:9c:0e:21:bd:3f:24:d2:8e: 4d:aa:5e:0f:e9:22:9d:39:57:ff:5f:b2:cc:15:94: 4d:4c:3c:42:6f:36:ac:86:73:17:ce:71:22:62:39: 96:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:99:D2:21:A5:0D:8B:D6:8F:D6:28:6A:D2:32:C8:CA:30:C2:B9 X509v3 Authority Key Identifier: keyid:CC:6A:F2:07:50:F8:DE:39:FB:75:C0:A1:D0:A4:41:99:7C:AD:37:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.174.160.0/20 Signature Algorithm: sha256WithRSAEncryption bb:32:1b:fa:c1:8f:8b:bc:69:06:8b:6e:62:54:ed:9f:23:91: 59:89:53:3c:d3:6f:bd:4e:b0:95:5a:65:7f:b4:55:02:10:aa: 07:16:f6:34:4e:90:50:f6:aa:c3:37:8f:8b:df:6c:07:ea:9d: c3:ae:ca:2b:1f:d2:06:ee:59:65:14:c1:4b:6f:42:2a:3c:ec: af:80:27:1d:77:02:bf:4c:09:00:e6:92:20:7d:c9:63:fb:4e: cf:e7:24:62:31:5f:28:ad:ea:96:04:ff:a7:e9:2c:bf:7d:5e: 2a:bf:b1:a7:ba:bd:ff:84:c0:d6:87:36:11:a3:b7:1d:ba:3b: 6b:e3:b6:6b:34:e5:47:39:b7:39:8b:27:75:e1:ed:4d:6d:06: a7:4a:ac:a7:e4:c5:b8:4c:e3:4f:a0:40:88:d4:82:73:63:7b: 47:95:e8:85:20:93:ae:43:f5:1e:57:5d:cc:8f:cc:90:99:10: 5d:ce:f8:14:3e:06:7f:48:28:a5:43:a8:61:23:29:a3:13:51: 09:20:20:d0:4f:e6:c7:50:e5:3e:d7:f3:34:66:44:ae:ad:90: 71:05:ec:7c:9b:83:47:26:bb:82:4e:38:14:dd:4a:9a:c9:66: d6:aa:ac:d8:8f:61:b6:66:fd:7c:7c:d9:69:e6:cb:7c:c0:b4: ca:44:d5:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE5RkQxMTAvBgNVBAUTKENDNkFGMjA3NTBGOERFMzlGQjc1QzBBMUQwQTQ0MTk5 N0NBRDM3QjgwHhcNMjYwMzAyMjEyNjQ0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MDA5My0zNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ADAKKtcL6v1Otnssq5gFchlV+D5RTqBtn1jEmuWZ/kx20xwHTJVKI8bnC7+ rcXZQZM4zvWtDB96NStdRbQ2cJ/lGMNcj5HIfSNE+dbdOcNkNIF7X0eMX2QUGxxg Xy//II4VwU5QpiuPN5GZdAPEw+v2vrluL7aLBwW51RfcGGpix3LtR7FMxHMajCFy GRGiVk84/XxlXw84x7f9oBS8WQ1UEEP8ip0S0MlnNIP0zbJrQbGpmF6JA9zI15en 9vIAymv2/oTPnXWER7t39xiTsscFmEvpYuwPnA4hvT8k0o5Nql4P6SKdOVf/X7LM FZRNTDxCbzashnMXznEiYjmWmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLtXmdIh pQ2L1o/WKGrSMsjKMMK5MB8GA1UdIwQYMBaAFMxq8gdQ+N45+3XAodCkQZl8rTe4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTlGRC9BOTU2MThCNjEz NzcxMUVCQTQ0MzZGMzBDNEY5QUUwMi96R3J5QjFENDNqbjdkY0NoMEtSQm1YeXRO N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pHcnlCMUQ0M2puN2RjQ2gwS1JCbVh5dE43Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE5RkQvQTk1NjE4QjYxMzc3MTFFQkE0NDM2RjMwQzRGOUFFMDIvRkVBNDcwQTQx Mzc5MTFFQkEzQTVGMjMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEyq6gMA0GCSqGSIb3DQEBCwUAA4IBAQC7Mhv6wY+LvGkGi25iVO2f I5FZiVM802+9TrCVWmV/tFUCEKoHFvY0TpBQ9qrDN4+L32wH6p3DrsorH9IG7lll FMFLb0IqPOyvgCcddwK/TAkA5pIgfclj+07P5yRiMV8oreqWBP+n6Sy/fV4qv7Gn ur3/hMDWhzYRo7cdujtr47ZrNOVHObc5iyd14e1NbQanSqyn5MW4TONPoECI1IJz Y3tHleiFIJOuQ/UeV13Mj8yQmRBdzvgUPgZ/SCilQ6hhIymjE1EJICDQT+bHUOU+ 1/M0ZkSurZBxBex8m4NHJruCTjgU3UqayWbWqqzYj2G2Zv18fNlp5st8wLTKRNVC -----END CERTIFICATE-----Generated at Fri Mar 27 02:03:22 2026 by rpki-client