$ rpki-client -vvf rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa File: 8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa (raw, json) Hash identifier: om/23C7uo81niloUrXFCWHHlzaoIHI7r8hOyNxlvmHQ= Subject key identifier: 3E:66:C0:0B:82:43:B0:08:DD:98:52:28:C2:AC:AF:0F:5E:A5:2C:2C Certificate issuer: /CN=A9178F62/serialNumber=63FA0006261D9E4CD4905906E5439694BE627BB1 Certificate serial: 82 Authority key identifier: 63:FA:00:06:26:1D:9E:4C:D4:90:59:06:E5:43:96:94:BE:62:7B:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:25:57 +0000 ROA not before: Mon 08 Sep 2025 06:32:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153766 IP address blocks: 163.227.14.0/23 maxlen: 23 163.227.14.0/24 maxlen: 24 163.227.15.0/24 maxlen: 24 2401:fc20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.crl rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178F62, serialNumber=63FA0006261D9E4CD4905906E5439694BE627BB1 Validity Not Before: Sep 8 06:32:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a581d5-2a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:8a:c1:7d:86:2d:31:46:d5:fa:0a:e3:3b: 94:ba:f6:e5:75:67:14:0a:4f:5b:da:26:74:f2:df: 6d:e7:ba:98:30:80:93:96:bf:3b:0d:2a:53:b2:a7: 6b:4f:70:34:84:11:f4:18:4d:ca:8f:fc:6d:5a:dd: df:b7:d9:07:62:55:fc:24:18:6f:60:fe:1e:e3:0d: 79:6c:34:a9:51:f3:4c:70:02:11:b0:16:7f:e3:ac: bd:50:d5:9d:ea:7a:9f:2c:89:bc:c0:d4:99:4d:31: 30:82:2f:3c:56:5e:85:50:37:fb:16:b1:ad:2a:28: 44:0a:bc:b2:c6:26:6a:ce:b2:31:7e:9f:2e:82:a4: a0:97:78:2a:ee:fe:d3:96:5c:8c:90:6c:c6:50:ad: 78:62:82:82:57:73:81:27:34:75:89:8e:6b:c1:89: 96:84:f6:d3:c9:a4:e2:eb:f0:42:76:01:ff:a8:ff: c6:d6:16:7e:18:27:15:8d:15:78:e3:8f:84:cb:f8: d3:40:85:fb:0c:42:01:9d:d6:d7:92:8f:9b:9b:43: a6:28:e5:14:b0:19:c8:e3:5d:cf:b5:b1:88:3e:e0: 82:e5:d5:c0:28:a1:46:ba:24:ac:98:28:66:37:d1: 51:02:36:a6:0e:a9:3f:16:9c:aa:f5:79:af:d4:77: 5c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:66:C0:0B:82:43:B0:08:DD:98:52:28:C2:AC:AF:0F:5E:A5:2C:2C X509v3 Authority Key Identifier: keyid:63:FA:00:06:26:1D:9E:4C:D4:90:59:06:E5:43:96:94:BE:62:7B:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.227.14.0/23 IPv6: 2401:fc20::/32 Signature Algorithm: sha256WithRSAEncryption c1:89:93:4d:a8:20:75:7c:18:2c:9a:26:d3:80:37:33:fe:4e: 06:01:2e:2c:b7:f6:a3:98:14:87:7b:62:88:6d:5e:cb:22:c0: 4e:8b:8d:35:95:ee:07:ce:b9:66:56:39:03:19:cb:95:48:95: 6e:53:62:d6:d1:9f:63:29:89:2b:f5:c9:28:6d:3d:76:8f:37: bc:86:c9:4b:cc:1e:95:76:a4:5b:1c:6d:4a:4e:5a:2d:03:be: 04:fa:92:1d:8e:15:f4:13:73:ce:a5:1c:08:91:1d:fa:f3:b0: 56:fc:c7:2c:17:f6:9e:04:b7:0f:07:02:bb:81:d7:fa:62:6c: 9a:ca:f0:74:e6:fe:cc:47:c1:ed:5e:41:83:81:f4:20:b0:97: e4:c7:3e:80:98:3a:b9:af:34:12:2f:70:f2:d3:ba:e4:4f:89: c6:9d:bc:f9:96:75:e6:e5:b1:19:5d:55:eb:82:47:c9:b7:c9: a3:89:38:6e:69:24:cf:4b:63:3d:dd:3e:f5:7f:59:2e:11:dd: 97:b8:b8:2b:d7:08:10:f5:9c:4b:81:51:81:05:53:51:d6:ea: f5:ca:57:e6:71:8d:ad:e6:02:65:4f:01:82:e8:6c:22:55:f6: 87:67:54:17:0d:83:94:80:88:2d:d1:f4:1e:4c:d5:e8:f2:aa: 55:52:77:07 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhGNjIxMTAvBgNVBAUTKDYzRkEwMDA2MjYxRDlFNENENDkwNTkwNkU1NDM5Njk0 QkU2MjdCQjEwHhcNMjUwOTA4MDYzMjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODFkNS0yYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoWKwX2GLTFG1foK4zuUuvbldWcUCk9b2iZ08t9t57qYMICTlr87DSpTsqdr T3A0hBH0GE3Kj/xtWt3ft9kHYlX8JBhvYP4e4w15bDSpUfNMcAIRsBZ/46y9UNWd 6nqfLIm8wNSZTTEwgi88Vl6FUDf7FrGtKihECryyxiZqzrIxfp8ugqSgl3gq7v7T llyMkGzGUK14YoKCV3OBJzR1iY5rwYmWhPbTyaTi6/BCdgH/qP/G1hZ+GCcVjRV4 44+Ey/jTQIX7DEIBndbXko+bm0OmKOUUsBnI413PtbGIPuCC5dXAKKFGuiSsmChm N9FRAjamDqk/Fpyq9Xmv1Hdc0QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFD5mwAuC Q7AI3ZhSKMKsrw9epSwsMB8GA1UdIwQYMBaAFGP6AAYmHZ5M1JBZBuVDlpS+Ynux MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEY2Mi9CODc4QzJDODVE RkQxMUYwQjVDMDdCNEJDNEY5QUUwMi9ZX29BQmlZZG5relVrRmtHNVVPV2xMNWll N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfb0FCaVlkbmt6VWtGa0c1VU9XbEw1aWU3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhGNjIvQjg3OEMyQzg1REZEMTFGMEI1QzA3QjRCQzRGOUFFMDIvOEVBNUE2RTI4 QzdEMTFGMEIwNzA2RjFFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBo+MOMA0EAgACMAcDBQAkAfwgMA0GCSqGSIb3DQEBCwUAA4IBAQDB iZNNqCB1fBgsmibTgDcz/k4GAS4st/ajmBSHe2KIbV7LIsBOi401le4HzrlmVjkD GcuVSJVuU2LW0Z9jKYkr9ckobT12jze8hslLzB6VdqRbHG1KTlotA74E+pIdjhX0 E3POpRwIkR3687BW/McsF/aeBLcPBwK7gdf6YmyayvB05v7MR8HtXkGDgfQgsJfk xz6AmDq5rzQSL3Dy07rkT4nGnbz5lnXm5bEZXVXrgkfJt8mjiThuaSTPS2M93T71 f1kuEd2XuLgr1wgQ9ZxLgVGBBVNR1ur1ylfmcY2t5gJlTwGC6GwiVfaHZ1QXDYOU gIgt0fQeTNXo8qpVUncH -----END CERTIFICATE-----Generated at Fri Mar 27 04:12:21 2026 by rpki-client