$ rpki-client -vvf rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa File: 9F0B162A252C11EFB58A7552C4F9AE02.roa (raw, json) Hash identifier: U+JPeLwDFc/9KD5pjtuqdCZiF9ijWo40ru9xcuKUWDA= Subject key identifier: 05:05:36:4A:7B:A5:B5:F8:BD:B5:DB:88:4E:77:8A:7B:12:3F:F5:57 Certificate issuer: /CN=A9184F65/serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Certificate serial: 0160 Authority key identifier: DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa Signing time: Sat 07 Mar 2026 04:41:11 +0000 ROA not before: Sat 07 Mar 2026 04:41:11 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 56106 IP address blocks: 119.252.189.0/24 maxlen: 24 119.252.190.0/24 maxlen: 24 119.252.191.0/24 maxlen: 24 203.98.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184F65, serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Validity Not Before: Mar 7 04:41:11 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69abac67-aa68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:34:4a:c2:33:1f:bf:05:49:7a:64:03:d0: ca:e8:8d:79:b3:40:cf:2a:4c:5b:e8:7b:dc:c7:fb: 09:0d:34:40:1e:db:5f:33:2b:a7:75:94:82:41:74: 2a:3e:f6:14:5b:26:b6:3d:bb:51:94:4b:1d:e4:de: 8a:6f:c4:c9:05:19:da:55:f8:6d:cb:96:c4:6a:7f: 26:23:70:9f:1f:d6:2c:de:ab:e2:80:fc:26:c3:d0: 22:f0:0b:b8:53:67:ff:78:7f:6e:7c:d4:34:a9:98: 26:89:4d:fd:a9:a7:13:ef:80:2c:e3:bd:4c:81:fb: ec:4e:23:9b:e8:d2:78:89:0f:96:65:5c:a8:f0:9a: 85:5e:6c:20:cc:d9:a1:20:89:49:35:06:0b:28:69: 2a:fb:19:4d:31:6f:29:81:21:d4:1a:82:31:2b:80: 9e:ed:5e:f1:58:a5:0d:d4:70:01:8d:59:bd:75:60: 63:bd:ea:fc:1f:ef:e5:10:13:64:0a:d9:94:1d:73: 47:81:8f:f2:f4:21:bb:a2:61:a2:76:6b:c9:83:ea: 7f:34:f3:18:1d:8c:90:4b:30:69:5c:21:9d:77:0b: 74:31:8b:3e:54:88:47:57:b8:a9:f1:56:6d:5e:2a: ac:9f:12:86:ed:32:60:2e:4c:b9:4e:bf:66:56:98: 50:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:05:36:4A:7B:A5:B5:F8:BD:B5:DB:88:4E:77:8A:7B:12:3F:F5:57 X509v3 Authority Key Identifier: keyid:DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.252.189.0-119.252.191.255 203.98.81.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:35:7e:37:85:02:e0:05:b9:7b:e7:92:bf:f1:66:07:3f:fb: a8:65:47:e4:15:f8:2f:bb:ab:64:f6:d1:2f:37:7e:99:80:0c: ca:eb:29:71:a6:be:9b:b1:3f:eb:62:cb:cd:b6:34:2a:d5:61: 89:e4:74:db:5c:c3:43:7f:e2:f6:b0:92:d2:57:6b:09:8e:d4: e2:75:21:fc:36:0a:b4:7c:5b:92:03:98:7f:19:d9:e5:1a:ec: c2:f1:7e:bc:f1:e0:0f:e8:81:9b:3c:75:f3:65:bb:b6:57:aa: c7:08:da:7f:ca:1e:e2:88:23:eb:df:e3:6e:dd:30:7e:0b:d7: 89:1c:87:a7:4a:a4:d7:72:b5:c6:86:62:b0:0f:6f:65:24:fc: 0f:6b:9b:8c:f1:24:53:23:2a:10:55:88:ce:80:4f:98:bc:f6: e7:57:3d:ec:5c:71:af:1d:76:70:1b:47:10:1c:66:1d:d0:13: fb:b1:8e:0d:a3:ec:ce:a4:1f:3e:13:4b:0e:b6:00:03:9e:ad: cc:9a:90:b5:6a:a4:ec:cb:6e:53:8c:ce:ab:30:f9:1c:7c:4b: 99:17:2b:29:f3:62:05:26:6b:13:0f:07:92:8c:6c:42:09:d5: 58:d6:3c:ee:37:35:78:08:81:2f:30:c9:c1:7d:c1:6e:eb:1c: 4f:73:74:ab -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRGNjUxMTAvBgNVBAUTKERBRDVFMEQ3M0QwNTRBNjk3QjIyODM5QUYxRkE0QUNE OTRGNTBBMUEwHhcNMjYwMzA3MDQ0MTExWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYWM2Ny1hYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9w0SsIzH78FSXpkA9DK6I15s0DPKkxb6Hvcx/sJDTRAHttfMyundZSCQXQq PvYUWya2PbtRlEsd5N6Kb8TJBRnaVfhty5bEan8mI3CfH9Ys3qvigPwmw9Ai8Au4 U2f/eH9ufNQ0qZgmiU39qacT74As471MgfvsTiOb6NJ4iQ+WZVyo8JqFXmwgzNmh IIlJNQYLKGkq+xlNMW8pgSHUGoIxK4Ce7V7xWKUN1HABjVm9dWBjver8H+/lEBNk CtmUHXNHgY/y9CG7omGidmvJg+p/NPMYHYyQSzBpXCGddwt0MYs+VIhHV7ip8VZt XiqsnxKG7TJgLky5Tr9mVphQ/wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFAUFNkp7 pbX4vbXbiE53insSP/VXMB8GA1UdIwQYMBaAFNrV4Nc9BUppeyKDmvH6Ss2U9Qoa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEY2NS9BQzYzQURDNjI1 MjQxMUVGODJBOTVCNzRDNEY5QUUwMi8ydFhnMXowRlNtbDdJb09hOGZwS3paVDFD aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ0WGcxejBGU21sN0lvT2E4ZnBLelpUMUNoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODRGNjUvQUM2M0FEQzYyNTI0MTFFRjgyQTk1Qjc0QzRGOUFFMDIvOUYwQjE2MkEy NTJDMTFFRkI1OEE3NTUyQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAB3/L0DBAZ3/IADBADLYlEwDQYJKoZIhvcNAQELBQADggEBAE01 fjeFAuAFuXvnkr/xZgc/+6hlR+QV+C+7q2T20S83fpmADMrrKXGmvpuxP+tiy822 NCrVYYnkdNtcw0N/4vawktJXawmO1OJ1Ifw2CrR8W5IDmH8Z2eUa7MLxfrzx4A/o gZs8dfNlu7ZXqscI2n/KHuKII+vf427dMH4L14kch6dKpNdytcaGYrAPb2Uk/A9r m4zxJFMjKhBViM6AT5i89udXPexcca8ddnAbRxAcZh3QE/uxjg2j7M6kHz4TSw62 AAOercyakLVqpOzLblOMzqsw+Rx8S5kXKynzYgUmaxMPB5KMbEIJ1VjWPO43NXgI gS8wycF9wW7rHE9zdKs= -----END CERTIFICATE-----Generated at Thu Mar 26 17:48:58 2026 by rpki-client