$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AEDDE1EE556B11EFA5FB1569C4F9AE02.roa File: AEDDE1EE556B11EFA5FB1569C4F9AE02.roa (raw, json) Hash identifier: ythUy6jha8ZpiLWstgCdl1/wIV+MID0Znxjj8d0P078= Subject key identifier: 23:92:1F:B6:2A:9A:67:D5:81:F2:E7:AF:2A:2F:3C:60:EB:CA:FD:7B Certificate issuer: /CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Certificate serial: 014B Authority key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AEDDE1EE556B11EFA5FB1569C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:59:51 +0000 ROA not before: Wed 27 Aug 2025 06:12:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9435 IP address blocks: 203.0.207.0/24 maxlen: 24 203.0.208.0/24 maxlen: 24 203.21.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D12, serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Validity Not Before: Aug 27 06:12:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a589c7-25d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:29:28:29:c1:35:dd:d8:74:51:ec:70:60:7d: ee:55:17:37:98:cf:34:73:b0:6e:01:76:21:bf:fb: 4b:22:e4:5a:45:07:cf:ff:ba:13:1f:f6:82:00:cf: ff:39:64:d1:f4:17:59:e6:a4:56:3b:fa:e9:fb:09: e7:f1:cc:65:6f:6d:ae:40:12:21:6b:9c:88:9b:49: df:bc:30:7b:c5:7f:47:4b:6b:87:45:33:bd:62:e2: 84:da:31:37:83:12:d9:71:45:e4:b5:80:20:8b:5a: 84:55:91:5b:f8:4d:66:10:45:e9:b1:f3:ba:42:e8: a1:64:a9:20:cf:fc:d2:42:93:10:05:05:36:b5:1c: 1a:58:00:f0:1b:7e:fe:a8:15:1b:b2:6f:38:14:cd: 2e:34:30:f5:b9:24:94:76:18:47:df:ef:36:1b:e9: 8d:8e:30:93:8f:a3:d0:fd:e7:cc:36:87:3a:1d:04: 48:2b:70:3b:ad:08:7c:81:fa:7f:02:2c:96:e5:1b: 7c:9b:42:3d:ac:cc:0f:93:be:be:6e:65:1f:e2:98: 55:10:25:fa:68:44:34:fb:a9:47:1b:a4:96:ee:30: 3b:21:ca:65:44:58:e2:8e:00:37:db:1d:db:f9:90: 2c:52:2b:84:8c:1b:29:4d:b7:b0:18:f3:69:b7:dc: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:92:1F:B6:2A:9A:67:D5:81:F2:E7:AF:2A:2F:3C:60:EB:CA:FD:7B X509v3 Authority Key Identifier: keyid:5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AEDDE1EE556B11EFA5FB1569C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.0.207.0-203.0.208.255 203.21.152.0/23 Signature Algorithm: sha256WithRSAEncryption c2:13:b6:60:08:0c:0d:94:a6:49:10:2f:49:2a:25:4a:12:f9: d9:1b:13:53:1c:6e:5c:0e:f5:03:03:18:80:49:94:11:0e:4f: 04:3c:d0:74:43:8e:9f:22:2b:2f:d5:1e:09:40:62:80:5d:9c: 15:8e:ef:b4:64:30:bf:61:9a:6a:01:ae:0a:23:04:b0:05:d8: 9d:68:1f:af:f9:0b:19:22:5e:2a:1f:17:f5:13:e4:fa:cb:da: da:5c:c9:be:37:70:e9:be:c0:04:ad:93:72:2e:8a:67:bc:b8: 19:fb:86:91:f8:6b:dc:0c:73:29:6a:0b:1e:f5:b0:6d:04:9e: 29:c1:c3:0d:00:d0:bb:c3:ff:ad:80:88:a1:ee:8b:0a:eb:81: bf:cf:9f:11:3e:57:ee:b4:a2:73:da:96:1e:db:91:0f:11:8f: 14:43:1d:bc:59:ac:3f:b3:5a:97:5e:6b:00:7a:3e:28:6b:1c: 61:d7:a5:a1:67:a9:03:cc:5e:d1:b5:33:75:ee:1f:4f:e2:4c: a0:42:52:18:1a:a3:18:7a:ec:c5:88:8c:6b:ce:28:ab:19:29: b9:a4:a4:96:a2:af:e7:bb:33:c4:55:b0:d7:a3:a7:68:2b:8e: 05:91:94:d8:a5:d2:3d:56:5b:11:a3:05:5e:20:07:8c:47:11: 90:60:2c:3e -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEMTIxMTAvBgNVBAUTKDVBOEI2MUJDNTNBMzI0RDdBMkI0RjQxNTNEMDc3NDZF QzJBMzM1RDIwHhcNMjUwODI3MDYxMjQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODljNy0yNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvikoKcE13dh0UexwYH3uVRc3mM80c7BuAXYhv/tLIuRaRQfP/7oTH/aCAM// OWTR9BdZ5qRWO/rp+wnn8cxlb22uQBIha5yIm0nfvDB7xX9HS2uHRTO9YuKE2jE3 gxLZcUXktYAgi1qEVZFb+E1mEEXpsfO6QuihZKkgz/zSQpMQBQU2tRwaWADwG37+ qBUbsm84FM0uNDD1uSSUdhhH3+82G+mNjjCTj6PQ/efMNoc6HQRIK3A7rQh8gfp/ AiyW5Rt8m0I9rMwPk76+bmUf4phVECX6aEQ0+6lHG6SW7jA7IcplRFjijgA32x3b +ZAsUiuEjBspTbewGPNpt9xk2QIDAQABo4ICbjCCAmowHQYDVR0OBBYEFCOSH7Yq mmfVgfLnryovPGDryv17MB8GA1UdIwQYMBaAFFqLYbxToyTXorT0FT0HdG7CozXS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0QxMi9BQjg5MzRGMjUy QzQxMUVGOERERkQ1M0ZDNEY5QUUwMi9Xb3RodkZPakpOZWl0UFFWUFFkMGJzS2pO ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dvdGh2Rk9qSk5laXRQUVZQUWQwYnNLak5kSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEMTIvQUI4OTM0RjI1MkM0MTFFRjhEREZENTNGQzRGOUFFMDIvQUVEREUxRUU1 NTZCMTFFRkE1RkIxNTY5QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBADLAM8DBADLANADBAHLFZgwDQYJKoZIhvcNAQELBQADggEBAMIT tmAIDA2UpkkQL0kqJUoS+dkbE1McblwO9QMDGIBJlBEOTwQ80HRDjp8iKy/VHglA YoBdnBWO77RkML9hmmoBrgojBLAF2J1oH6/5CxkiXiofF/UT5PrL2tpcyb43cOm+ wAStk3Iuime8uBn7hpH4a9wMcylqCx71sG0EninBww0A0LvD/62AiKHuiwrrgb/P nxE+V+60onPalh7bkQ8RjxRDHbxZrD+zWpdeawB6PihrHGHXpaFnqQPMXtG1M3Xu H0/iTKBCUhgaoxh67MWIjGvOKKsZKbmkpJair+e7M8RVsNejp2grjgWRlNil0j1W WxGjBV4gB4xHEZBgLD4= -----END CERTIFICATE-----Generated at Thu Mar 26 17:26:52 2026 by rpki-client