$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/3A304DB4F54411EE8FF34627C4F9AE02.roa File: 3A304DB4F54411EE8FF34627C4F9AE02.roa (raw, json) Hash identifier: +9NKbw4Yf5cbYoj9nHJEgGLqyGEjkbYD3jkxgLpPwwo= Subject key identifier: 40:D1:4E:74:6A:8C:F4:B2:35:13:CE:5A:88:B7:1E:D6:41:73:06:1C Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 3533 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/3A304DB4F54411EE8FF34627C4F9AE02.roa Signing time: Wed 18 Mar 2026 15:13:05 +0000 ROA not before: Wed 18 Mar 2026 15:13:05 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 198949 IP address blocks: 202.7.8.0/21 maxlen: 21 203.5.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13619 (0x3533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Mar 18 15:13:05 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bac101-d608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:11:d1:30:4b:cb:da:4e:23:9a:e9:8b:ea:52: 11:f4:94:f6:36:ea:99:db:77:60:28:4e:0c:22:ce: 01:5a:9f:65:be:da:6a:90:79:c7:58:a5:18:ca:91: 59:8c:af:85:7a:80:5a:19:40:0e:e5:fe:e8:c0:ea: 89:9c:ac:6e:07:05:e8:9c:c6:90:7d:48:e2:bb:61: 65:2b:86:28:40:6e:d3:54:3e:0e:23:6c:cb:f7:15: fe:e5:62:a8:42:3c:30:60:9e:31:3c:29:70:37:9d: b3:7c:a9:a1:67:08:d1:7c:5a:91:8d:09:a1:8b:4d: 80:4a:b0:0d:14:92:8a:27:dd:b9:8e:84:56:72:03: 77:c2:cd:a1:89:d1:6f:88:9e:45:2b:da:8e:36:83: 62:58:b6:50:b4:93:e1:b4:c4:ff:47:9f:57:48:0b: 53:ae:a4:96:93:b2:89:f4:11:4b:f2:93:4b:6d:e7: ec:63:24:fd:b3:ea:67:60:5c:1c:d8:61:4f:97:69: 6c:79:14:bf:e1:7b:d8:d2:4f:ca:22:91:60:58:13: c3:24:a8:7b:26:ff:9a:85:10:53:ba:eb:7d:ab:05: b4:da:ab:db:45:87:ce:02:7f:d4:40:55:7d:23:43: 35:69:1d:2d:b4:d0:da:03:f3:81:6f:55:78:0c:0f: cb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D1:4E:74:6A:8C:F4:B2:35:13:CE:5A:88:B7:1E:D6:41:73:06:1C X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/3A304DB4F54411EE8FF34627C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.7.8.0/21 203.5.121.0/24 Signature Algorithm: sha256WithRSAEncryption 81:ef:fc:b1:2c:f9:b9:5a:87:3e:62:66:cf:b1:19:9a:22:e6: 60:5d:a6:e4:21:90:f6:fa:18:e4:0f:2a:61:ee:f3:a1:5d:7d: 57:4f:59:26:7b:16:59:02:45:52:09:3c:e5:56:e2:ca:bc:34: 97:8a:74:4d:46:7a:4a:73:d0:ba:cd:c9:1d:f1:b4:d6:bf:47: f6:f3:3d:19:04:33:6e:10:67:dd:4a:17:06:7a:bb:4a:87:1f: 06:37:5c:9b:6c:4c:c0:93:8f:90:67:2d:eb:fd:6d:15:1b:89: a9:66:ac:b9:c7:fa:97:68:44:ab:24:99:87:06:9a:b8:10:d2: 23:ae:e7:9b:01:39:f4:ab:80:7a:4b:d3:4f:ce:37:79:7a:64: 6a:ce:d7:aa:3b:96:05:3e:2c:0e:80:63:e6:40:ed:4e:d7:14: aa:cd:d0:c5:ec:f8:5a:de:d3:1a:35:a3:f7:8a:cc:4e:91:c5: 16:ed:27:e1:b4:26:8a:1a:c4:58:69:52:54:bd:58:47:13:0f: e4:5c:e3:6c:7a:38:91:20:6c:d2:ab:4a:a8:95:35:0a:d6:50: 2f:be:61:7d:d3:57:70:4e:58:0b:f3:6f:19:db:d5:7a:27:62: 5e:22:df:cf:3b:49:3e:4a:38:c3:fc:28:cf:f5:f7:7f:f9:82: 50:0f:5b:ab -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjYwMzE4MTUxMzA1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhYzEwMS1kNjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBHRMEvL2k4jmumL6lIR9JT2NuqZ23dgKE4MIs4BWp9lvtpqkHnHWKUYypFZ jK+FeoBaGUAO5f7owOqJnKxuBwXonMaQfUjiu2FlK4YoQG7TVD4OI2zL9xX+5WKo QjwwYJ4xPClwN52zfKmhZwjRfFqRjQmhi02ASrANFJKKJ925joRWcgN3ws2hidFv iJ5FK9qONoNiWLZQtJPhtMT/R59XSAtTrqSWk7KJ9BFL8pNLbefsYyT9s+pnYFwc 2GFPl2lseRS/4XvY0k/KIpFgWBPDJKh7Jv+ahRBTuut9qwW02qvbRYfOAn/UQFV9 I0M1aR0ttNDaA/OBb1V4DA/LoQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEDRTnRq jPSyNRPOWoi3HtZBcwYcMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAzMDQvQUI4MjQ5QjIxRDhFMTFFMkIxODIyNkVEMDhCMDJDRDIvM0EzMDREQjRG NTQ0MTFFRThGRjM0NjI3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDygcIAwQAywV5MA0GCSqGSIb3DQEBCwUAA4IBAQCB7/yxLPm5Woc+ YmbPsRmaIuZgXabkIZD2+hjkDyph7vOhXX1XT1kmexZZAkVSCTzlVuLKvDSXinRN RnpKc9C6zckd8bTWv0f28z0ZBDNuEGfdShcGertKhx8GN1ybbEzAk4+QZy3r/W0V G4mpZqy5x/qXaESrJJmHBpq4ENIjruebATn0q4B6S9NPzjd5emRqzteqO5YFPiwO gGPmQO1O1xSqzdDF7Pha3tMaNaP3isxOkcUW7SfhtCaKGsRYaVJUvVhHEw/kXONs ejiRIGzSq0qolTUK1lAvvmF901dwTlgL828Z29V6J2JeIt/PO0k+SjjD/CjP9fd/ +YJQD1ur -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:05 2026 by rpki-client