$ rpki-client -vvf rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa File: 229253A4A1F111F084328A39C4F9AE02.roa (raw, json) Hash identifier: YOyCJ71TebX1l/yy1zYnl+ETDJGSru1yrNBDf999HOQ= Subject key identifier: 6B:21:8E:53:21:A4:5C:B3:51:BD:58:CF:84:37:06:DB:A6:70:EF:92 Certificate issuer: /CN=A9168949/serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Certificate serial: 0197 Authority key identifier: 10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:38:07 +0000 ROA not before: Sun 05 Oct 2025 13:42:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151781 IP address blocks: 203.20.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168949, serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Validity Not Before: Oct 5 13:42:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a592bf-3a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ab:71:3a:8d:da:54:38:90:a7:4b:2e:bc:23: c4:59:52:4f:37:29:0f:69:80:ba:4a:17:aa:e7:b7: 38:97:7d:f2:b2:a9:a3:d7:9d:91:cf:21:07:be:60: f0:6d:02:40:e0:b7:79:ef:e3:d1:61:9c:6c:09:2e: ac:03:f9:51:d1:c6:a8:0d:15:9d:08:a4:31:6f:75: e6:e6:a5:66:fd:e9:ba:b6:79:73:67:1f:81:c4:fe: ec:de:d3:ec:e1:2e:8d:47:0a:85:7d:99:c1:5d:9b: c7:8f:1c:8d:fb:11:7a:a2:04:cf:e4:ed:e4:09:63: 92:a0:a3:81:69:3b:88:8f:5c:8c:f8:b4:37:3f:38: bb:24:f0:c4:65:e7:d7:72:0d:8b:5a:8f:40:45:8f: fb:1b:c7:8e:20:51:d0:49:81:b5:90:b8:5c:23:5c: 23:bb:03:3a:c1:40:3e:fe:d2:e3:6c:c1:16:e1:3b: 0e:3d:72:de:fc:13:3d:21:97:01:a3:4a:6b:6e:a2: 3f:b6:1a:88:6b:f5:da:aa:42:f4:a2:5a:b5:12:96: 4a:03:7d:d4:bd:51:17:bc:30:f0:a0:70:11:4c:22: 0a:39:54:71:3e:a8:e0:88:77:54:31:9d:2d:f6:bd: 9e:27:fb:c9:18:e6:1a:f0:ce:41:49:80:a4:65:06: 6f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:21:8E:53:21:A4:5C:B3:51:BD:58:CF:84:37:06:DB:A6:70:EF:92 X509v3 Authority Key Identifier: keyid:10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.109.0/24 Signature Algorithm: sha256WithRSAEncryption 40:40:4e:ce:87:af:d3:9b:54:0c:2b:d7:36:b7:b8:32:72:29: 99:d3:5c:8f:15:d2:90:4b:13:d6:d5:2f:6b:21:32:0c:f8:db: 0a:d5:0c:fc:89:25:8b:6e:73:64:7c:f6:d7:4f:9d:4b:94:c6: 0c:e6:b4:57:1e:16:a9:65:90:7e:c5:aa:36:4f:06:fa:b8:e3: 38:46:82:56:70:33:60:13:72:e3:13:ad:3f:40:e6:15:16:3d: 3b:f3:04:22:b5:0b:83:f7:75:06:bc:7b:a2:e6:0f:78:da:ce: af:5d:da:66:e6:65:bb:a7:9f:be:39:b3:af:ba:01:9e:5b:a7: ff:4c:3d:39:76:16:7d:22:bf:2a:ca:d9:a3:a3:cb:7c:cc:f5: 90:b8:cd:c0:40:aa:25:9c:85:0b:11:ae:ab:a7:e5:96:d0:ca: c9:06:77:96:f4:82:13:69:38:c8:4f:d1:f5:95:2a:d5:7b:6c: 0b:94:c6:e4:23:cb:d2:db:7f:a2:11:50:95:19:9d:ef:4c:ac: b3:5a:63:cf:79:da:9a:a9:f1:ad:58:29:73:5d:45:f8:d6:4e: f6:bd:b2:f3:29:99:2f:8f:7b:7d:55:96:62:52:11:ff:cb:61: df:18:29:d6:2e:31:c4:f1:e8:39:73:13:6e:42:44:36:06:a3: a5:c5:c2:d1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5NDkxMTAvBgNVBAUTKDEwRTA1MDJGM0QzODJFOEMxNTY2RUNDQzJBMTIxQjZD NDM5REU5NzcwHhcNMjUxMDA1MTM0MjI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTJiZi0zYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAratxOo3aVDiQp0suvCPEWVJPNykPaYC6Sheq57c4l33ysqmj152RzyEHvmDw bQJA4Ld57+PRYZxsCS6sA/lR0caoDRWdCKQxb3Xm5qVm/em6tnlzZx+BxP7s3tPs 4S6NRwqFfZnBXZvHjxyN+xF6ogTP5O3kCWOSoKOBaTuIj1yM+LQ3Pzi7JPDEZefX cg2LWo9ARY/7G8eOIFHQSYG1kLhcI1wjuwM6wUA+/tLjbMEW4TsOPXLe/BM9IZcB o0prbqI/thqIa/XaqkL0olq1EpZKA33UvVEXvDDwoHARTCIKOVRxPqjgiHdUMZ0t 9r2eJ/vJGOYa8M5BSYCkZQZvgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGshjlMh pFyzUb1Yz4Q3BtumcO+SMB8GA1UdIwQYMBaAFBDgUC89OC6MFWbszCoSG2xDnel3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk0OS8zRjI0MkFDMkU0 RjMxMUVFOTkxMDE0MzhDNEY5QUUwMi9FT0JRTHowNExvd1ZadXpNS2hJYmJFT2Q2 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VPQlFMejA0TG93Vlp1ek1LaEliYkVPZDZYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5NDkvM0YyNDJBQzJFNEYzMTFFRTk5MTAxNDM4QzRGOUFFMDIvMjI5MjUzQTRB MUYxMTFGMDg0MzI4QTM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxRtMA0GCSqGSIb3DQEBCwUAA4IBAQBAQE7Oh6/Tm1QMK9c2t7gy cimZ01yPFdKQSxPW1S9rITIM+NsK1Qz8iSWLbnNkfPbXT51LlMYM5rRXHhapZZB+ xao2Twb6uOM4RoJWcDNgE3LjE60/QOYVFj078wQitQuD93UGvHui5g942s6vXdpm 5mW7p5++ObOvugGeW6f/TD05dhZ9Ir8qytmjo8t8zPWQuM3AQKolnIULEa6rp+WW 0MrJBneW9IITaTjIT9H1lSrVe2wLlMbkI8vS23+iEVCVGZ3vTKyzWmPPedqaqfGt WClzXUX41k72vbLzKZkvj3t9VZZiUhH/y2HfGCnWLjHE8eg5cxNuQkQ2BqOlxcLR -----END CERTIFICATE-----Generated at Thu Mar 26 10:05:57 2026 by rpki-client