$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa File: 66C1BA862FBB11EB9B861059C4F9AE02.roa (raw, json) Hash identifier: azCvE0MXDPIZCtICB6ofLTQq6LREywUXev2jJIJ9EIU= Subject key identifier: D7:20:F4:D8:D5:BA:84:B5:4A:A7:F4:70:91:71:A2:7D:7F:92:5F:0F Certificate issuer: /CN=A9186E8A/serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8 Certificate serial: 0878 Authority key identifier: A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa Signing time: Fri 06 Mar 2026 21:28:32 +0000 ROA not before: Fri 06 Mar 2026 21:28:32 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135026 IP address blocks: 118.193.79.0/24 maxlen: 24 123.58.202.0/24 maxlen: 24 123.58.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186E8A, serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8 Validity Not Before: Mar 6 21:28:32 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ab4700-2a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:69:40:46:64:7e:6f:fd:e4:ab:83:3f:e6:a0: a7:46:dd:1f:3b:60:08:84:34:40:38:aa:4c:25:a1: 9f:b6:71:c3:14:91:24:ec:17:10:c4:fe:4d:b0:9e: 0e:61:50:9a:9f:26:08:0b:27:28:95:a0:40:23:9a: f2:8f:7a:28:87:74:62:9a:91:f1:38:f0:a4:10:6d: 06:8d:b6:e7:e7:70:8d:12:fd:49:b2:9f:43:fe:f3: f1:ec:f3:af:47:3c:27:b6:34:b0:5c:b8:7b:8c:99: 4f:fe:02:2f:5e:6c:87:d1:44:1d:ee:54:9d:cc:b6: f1:e6:ef:42:e9:92:31:da:dc:b1:0d:f4:8a:36:66: 59:4a:49:ff:fe:66:4e:8a:d9:90:a9:c9:79:3e:a5: ba:a9:c6:9d:26:34:86:67:0f:f7:3e:bc:2d:1f:85: 72:1c:21:3d:5a:e4:a3:ef:b1:2a:1b:26:28:dc:52: e2:21:d4:d1:7f:39:9a:47:7a:45:21:7e:d3:21:77: 55:d1:66:d5:8e:3d:d3:68:41:3a:89:d0:9b:1b:c3: 4b:77:18:a4:c1:7f:bb:e2:79:f0:6c:48:6f:72:38: 5c:a1:ed:c7:10:76:06:7c:72:27:cf:0e:a5:39:fb: db:07:ff:c4:a4:c2:a4:de:2c:1a:33:55:2b:9a:b6: 76:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:20:F4:D8:D5:BA:84:B5:4A:A7:F4:70:91:71:A2:7D:7F:92:5F:0F X509v3 Authority Key Identifier: keyid:A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.193.79.0/24 123.58.202.0/24 123.58.222.0/24 Signature Algorithm: sha256WithRSAEncryption 11:6b:df:b2:0b:0b:90:45:04:df:7a:af:99:54:b3:75:54:91: 37:9b:c3:e4:7a:e2:1f:32:d4:37:a0:5d:16:89:d7:41:2b:c9: a0:3a:6f:db:db:4a:16:1d:86:74:57:fe:4d:8b:19:65:c5:a2: 46:07:9a:73:de:19:19:a7:92:af:5c:25:76:d1:5c:89:eb:9d: c6:af:d9:22:00:9c:9c:63:f2:50:f3:c6:89:64:6c:ab:60:3a: 97:ca:77:d8:c2:0b:8d:19:8a:1a:2f:40:91:e9:a9:4e:1f:cb: 16:d3:48:ed:0d:99:9c:f5:3d:9e:3f:86:4f:49:50:93:28:bc: 39:18:18:10:55:e6:ea:1f:8d:37:b5:18:5d:0e:e4:f2:05:94: ba:62:8d:e3:08:70:dc:08:34:10:77:6e:b7:63:10:ee:63:10: a8:78:98:fb:6b:2b:6e:6b:48:4e:10:f5:97:df:e9:3b:98:08: a5:c8:a1:77:be:65:e6:18:c1:54:ed:e5:65:74:b2:ef:ba:b4: cc:21:7e:ba:59:cc:3b:bf:94:8b:9a:5a:c9:62:c7:26:e9:1d: 2c:44:8f:b1:1d:47:ed:1e:32:0f:07:8b:f2:89:ff:2a:89:15: 2d:db:34:86:ff:af:32:48:c6:e5:6a:80:6e:8a:9a:e9:97:d3: c9:8b:40:23 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZFOEExMTAvBgNVBAUTKEE5QkNDQTZEMzREM0Q1RjFFRkY4QkJFNzgzRDQ5Nzcz ODEzRTVFRjgwHhcNMjYwMzA2MjEyODMyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiNDcwMC0yYTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2lARmR+b/3kq4M/5qCnRt0fO2AIhDRAOKpMJaGftnHDFJEk7BcQxP5NsJ4O YVCanyYICycolaBAI5ryj3ooh3RimpHxOPCkEG0Gjbbn53CNEv1Jsp9D/vPx7POv RzwntjSwXLh7jJlP/gIvXmyH0UQd7lSdzLbx5u9C6ZIx2tyxDfSKNmZZSkn//mZO itmQqcl5PqW6qcadJjSGZw/3PrwtH4VyHCE9WuSj77EqGyYo3FLiIdTRfzmaR3pF IX7TIXdV0WbVjj3TaEE6idCbG8NLdxikwX+74nnwbEhvcjhcoe3HEHYGfHInzw6l OfvbB//EpMKk3iwaM1UrmrZ29QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNcg9NjV uoS1Sqf0cJFxon1/kl8PMB8GA1UdIwQYMBaAFKm8ym0009Xx7/i754PUl3OBPl74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkU4QS8zQjQ3NkU3QzJE RkYxMUVCODY4QTkxMzVDNEY5QUUwMi9xYnpLYlRUVDFmSHYtTHZuZzlTWGM0RS1Y dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FiektiVFRUMWZIdi1Mdm5nOVNYYzRFLVh2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZFOEEvM0I0NzZFN0MyREZGMTFFQjg2OEE5MTM1QzRGOUFFMDIvNjZDMUJBODYy RkJCMTFFQjlCODYxMDU5QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAdsFPAwQAezrKAwQAezreMA0GCSqGSIb3DQEBCwUAA4IBAQARa9+y CwuQRQTfeq+ZVLN1VJE3m8PkeuIfMtQ3oF0WiddBK8mgOm/b20oWHYZ0V/5Nixll xaJGB5pz3hkZp5KvXCV20VyJ653Gr9kiAJycY/JQ88aJZGyrYDqXynfYwguNGYoa L0CR6alOH8sW00jtDZmc9T2eP4ZPSVCTKLw5GBgQVebqH403tRhdDuTyBZS6Yo3j CHDcCDQQd263YxDuYxCoeJj7aytua0hOEPWX3+k7mAilyKF3vmXmGMFU7eVldLLv urTMIX66Wcw7v5SLmlrJYscm6R0sRI+xHUftHjIPB4vyif8qiRUt2zSG/68ySMbl aoBuiprpl9PJi0Aj -----END CERTIFICATE-----Generated at Thu Mar 26 16:14:16 2026 by rpki-client