$ rpki-client -vvf rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa File: 4335BE9C0D0611EFA3ECB057C4F9AE02.roa (raw, json) Hash identifier: oY9YOxHEtqccBPNVIb4L2S+9jur6JW7bdSqUcZnETjI= Subject key identifier: 00:E3:1C:45:F4:01:83:BC:5A:9B:A5:B8:44:3F:8A:69:99:E2:A3:4D Certificate issuer: /CN=A9161099/serialNumber=03A02E2F5DABF0FF3938628BC4FF5FB61653F045 Certificate serial: 0188 Authority key identifier: 03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:02:42 +0000 ROA not before: Mon 10 Nov 2025 02:50:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 121.127.32.0/24 maxlen: 24 202.157.180.0/23 maxlen: 24 2401:cb60::/48 maxlen: 48 2401:cb60:1::/48 maxlen: 48 2401:cb60:2::/48 maxlen: 48 2401:cb60:3::/48 maxlen: 48 2401:cb60:4::/48 maxlen: 48 2401:cb60:5::/48 maxlen: 48 2401:cb60:6::/48 maxlen: 48 2401:cb60:7::/48 maxlen: 48 2401:cb60:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161099, serialNumber=03A02E2F5DABF0FF3938628BC4FF5FB61653F045 Validity Not Before: Nov 10 02:50:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59882-2541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:e0:2e:99:26:bc:92:da:72:5a:69:5d:8a: 8b:f6:cc:00:af:69:e5:03:aa:a3:6d:1e:f7:21:ff: d3:19:67:f1:81:f5:cd:95:70:d2:ec:04:43:30:7f: 12:7d:5e:92:40:3b:04:e5:41:26:34:97:50:95:81: 94:d1:4f:8f:1d:39:9a:f8:7d:5e:5b:68:e3:c7:06: 38:07:5c:f1:ca:2f:a5:8e:f7:c4:d0:ac:c1:06:47: 49:69:3b:22:7e:62:ca:8b:b0:c9:9a:c5:48:8b:48: 0d:e9:a9:bd:df:9b:13:a9:40:79:a1:06:2b:4d:11: 11:62:b1:5b:ec:5e:88:e3:98:b8:a2:cb:2c:b2:25: 15:49:2b:24:3e:31:65:b6:fd:16:02:a8:e2:3b:76: e1:a9:a1:18:07:5e:af:d2:c8:ed:34:e2:ca:c9:2b: 5d:c7:9e:3d:b2:62:92:60:6e:2f:bb:a7:18:52:d3: bc:c1:11:e2:4c:c0:7a:b3:75:a1:b4:87:43:7e:db: 71:d9:e1:cb:c2:b5:54:b9:b2:03:0d:cc:3d:4b:28: 08:68:55:33:4a:fb:d9:61:2b:d1:30:d5:f8:9a:e7: dd:ef:1f:25:c2:d4:7f:97:b7:08:3d:0f:87:93:52: a2:3d:7b:5f:d1:ad:64:26:a5:af:b4:fb:ef:7f:2c: 31:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E3:1C:45:F4:01:83:BC:5A:9B:A5:B8:44:3F:8A:69:99:E2:A3:4D X509v3 Authority Key Identifier: keyid:03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/4335BE9C0D0611EFA3ECB057C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.127.32.0/24 202.157.180.0/23 IPv6: 2401:cb60::-2401:cb60:8:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8a:d1:03:d1:55:38:c6:f2:a8:58:71:ee:8c:0d:7c:51:02:21: 1c:e0:5b:f7:59:c4:3a:4d:21:f1:8d:45:9d:3c:6c:37:a5:fb: ca:7f:0f:aa:84:f6:4b:5d:f7:e0:5a:79:70:ec:ec:9c:0c:d0: b5:2b:f5:a8:1d:55:dc:db:e1:a3:a8:3e:29:c3:76:22:d8:5c: 4f:79:d0:ef:44:71:70:97:d4:45:28:41:ad:5d:48:80:9b:bd: aa:55:f8:96:ef:36:14:d7:1a:b5:18:5b:a6:99:e2:91:8d:f9: a2:2e:9b:04:e4:21:4e:00:6e:f1:1d:d3:a1:11:77:bb:4f:ad: 70:09:b0:f2:4b:9f:a8:0e:7e:6b:7f:0b:ad:d6:96:88:3d:23: da:a9:aa:5a:64:96:c3:19:a3:07:af:5e:87:28:30:fc:e4:c8: 1e:a3:2b:47:ff:a5:7a:52:8c:e7:24:0f:e0:d6:ab:7c:54:84: 6e:2a:40:44:f8:0d:4d:47:b4:9b:d4:43:dd:24:43:ae:a8:ce: ff:8f:60:f2:c1:8b:74:ff:a0:26:b9:cd:3c:38:19:5d:5e:67: 5e:fe:e1:66:b2:38:59:70:12:f9:87:d4:45:94:2f:46:32:25: 53:1d:ad:f0:54:79:4e:0a:38:af:8c:03:e2:9f:d9:46:e8:6c: 61:1e:08:1f -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwOTkxMTAvBgNVBAUTKDAzQTAyRTJGNURBQkYwRkYzOTM4NjI4QkM0RkY1RkI2 MTY1M0YwNDUwHhcNMjUxMTEwMDI1MDE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTg4Mi0yNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvangLpkmvJLaclppXYqL9swAr2nlA6qjbR73If/TGWfxgfXNlXDS7ARDMH8S fV6SQDsE5UEmNJdQlYGU0U+PHTma+H1eW2jjxwY4B1zxyi+ljvfE0KzBBkdJaTsi fmLKi7DJmsVIi0gN6am935sTqUB5oQYrTRERYrFb7F6I45i4ossssiUVSSskPjFl tv0WAqjiO3bhqaEYB16v0sjtNOLKyStdx549smKSYG4vu6cYUtO8wRHiTMB6s3Wh tIdDfttx2eHLwrVUubIDDcw9SygIaFUzSvvZYSvRMNX4mufd7x8lwtR/l7cIPQ+H k1KiPXtf0a1kJqWvtPvvfywx8wIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFADjHEX0 AYO8WpuluEQ/immZ4qNNMB8GA1UdIwQYMBaAFAOgLi9dq/D/OThii8T/X7YWU/BF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA5OS9GRDM2N0M3MDBE MDQxMUVGODVFNDZGNTVDNEY5QUUwMi9BNkF1TDEycjhQODVPR0tMeFA5ZnRoWlQ4 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2QXVMMTJyOFA4NU9HS0x4UDlmdGhaVDhFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjEwOTkvRkQzNjdDNzAwRDA0MTFFRjg1RTQ2RjU1QzRGOUFFMDIvNDMzNUJFOUMw RDA2MTFFRkEzRUNCMDU3QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAS BAIAATAMAwQAeX8gAwQByp20MBgEAgACMBIwEAMFBSQBy2ADBwAkActgAAgwDQYJ KoZIhvcNAQELBQADggEBAIrRA9FVOMbyqFhx7owNfFECIRzgW/dZxDpNIfGNRZ08 bDel+8p/D6qE9ktd9+BaeXDs7JwM0LUr9agdVdzb4aOoPinDdiLYXE950O9EcXCX 1EUoQa1dSICbvapV+JbvNhTXGrUYW6aZ4pGN+aIumwTkIU4AbvEd06ERd7tPrXAJ sPJLn6gOfmt/C63Wlog9I9qpqlpklsMZowevXocoMPzkyB6jK0f/pXpSjOckD+DW q3xUhG4qQET4DU1HtJvUQ90kQ66ozv+PYPLBi3T/oCa5zTw4GV1eZ17+4WayOFlw EvmH1EWUL0YyJVMdrfBUeU4KOK+MA+Kf2UbobGEeCB8= -----END CERTIFICATE-----Generated at Thu Mar 26 11:11:41 2026 by rpki-client