$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa File: ECFCBBA4D8D711EF91AD5538C4F9AE02.roa (raw, json) Hash identifier: LRJxJww+/gu+IFKYRQ6pAaAoq0ZFUvScy/6Qo3joR0o= Subject key identifier: D4:EB:4E:C1:98:10:47:B4:CE:64:C3:90:74:98:BB:F9:F6:3B:06:6C Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 054A Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa Signing time: Sun 01 Mar 2026 20:06:36 +0000 ROA not before: Tue 20 Jan 2026 01:45:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138115 IP address blocks: 202.155.14.0/24 maxlen: 24 202.155.18.0/23 maxlen: 24 202.155.132.0/24 maxlen: 24 202.155.137.0/24 maxlen: 24 202.155.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Jan 20 01:45:10 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a49c4c-11ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2e:13:bd:c7:35:1f:41:db:bc:1e:3f:23:08: fa:b7:19:0f:b1:d3:48:c6:36:80:61:73:56:88:e3: 5b:18:f4:20:51:c3:20:09:cf:7c:55:d0:f3:6a:30: 2f:55:39:d1:5d:97:51:f9:13:91:13:7c:8f:a8:7f: 9a:14:62:01:82:af:45:1d:d3:b2:0c:a0:bb:2f:57: 3e:ee:2e:83:1f:e9:f8:13:83:c8:65:8c:f2:7a:6b: 41:63:56:72:7f:ae:0b:61:b9:3f:e1:86:a0:18:cc: fc:83:2e:e6:b9:06:64:7b:e5:63:00:e3:c5:36:66: d1:96:81:42:91:ec:00:dd:50:45:3c:5e:e9:0f:18: 4d:ad:8e:38:97:ed:c0:86:31:26:6d:93:3e:c2:fd: b9:11:78:01:d2:4a:7d:63:fa:a7:08:42:95:bb:54: ba:ef:cc:bd:2c:4a:59:1b:a7:a3:b5:14:fd:4c:1b: 92:6d:1d:f0:fa:ae:fb:13:83:c2:4e:aa:48:e3:92: 99:7e:8c:25:cd:04:c8:7e:d5:b3:e9:b4:b4:58:a3: 2e:6e:1a:1a:78:bd:36:5e:92:b4:b3:1f:cf:c0:0b: 06:41:05:4d:62:d6:ae:c6:06:9a:91:3b:ed:a3:09: 59:1f:74:02:8a:4b:d8:2c:a8:d4:9d:e7:94:59:a3: 62:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EB:4E:C1:98:10:47:B4:CE:64:C3:90:74:98:BB:F9:F6:3B:06:6C X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/ECFCBBA4D8D711EF91AD5538C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.155.14.0/24 202.155.18.0/23 202.155.132.0/24 202.155.137.0/24 202.155.157.0/24 Signature Algorithm: sha256WithRSAEncryption a5:97:b3:b7:86:d4:17:ed:7f:8d:f7:1b:37:78:50:ef:ce:2e: bb:11:29:fc:9e:b1:a6:0b:e6:61:c8:a4:27:97:fb:45:e3:89: bb:e5:2e:a6:0a:a6:9c:d1:5b:ed:8a:41:2e:ab:06:fe:d9:63: e1:24:70:d4:25:5f:0a:e0:1f:ae:5e:d8:2d:39:bb:c2:29:05: b8:52:dd:5a:a4:88:ea:ae:ce:41:67:56:3f:36:dd:b6:58:c7: 35:36:cd:2c:e3:95:54:f7:a3:57:6f:e3:73:6b:7f:c7:77:77: cd:ac:dc:6c:3b:2f:c6:45:ce:3f:fe:7f:38:9a:7d:7d:c2:89: 69:df:8d:e5:72:36:98:47:66:e5:9c:58:c5:6f:4a:cf:4f:d9: 67:c0:34:a3:70:ba:56:96:98:49:ed:65:81:39:41:77:3d:58: 42:ed:4e:af:5f:e8:ba:57:65:f6:ae:1f:5c:f3:84:b7:ed:a3: 63:42:63:f3:1a:20:5a:e4:c6:48:ca:12:56:0e:fc:a5:f6:5d: d9:b9:b8:08:ad:b7:d0:ca:86:f0:52:0a:f2:59:23:5e:93:26: e1:8e:e3:63:b6:69:d6:17:0a:0f:2a:5a:fa:18:2d:a2:d2:6f: 21:01:fc:a1:42:e1:04:ca:28:9f:dd:81:0f:24:e2:e4:79:7f: 26:9f:f9:7d -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjYwMTIwMDE0NTEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OWM0Yy0xMWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2i4Tvcc1H0HbvB4/Iwj6txkPsdNIxjaAYXNWiONbGPQgUcMgCc98VdDzajAv VTnRXZdR+RORE3yPqH+aFGIBgq9FHdOyDKC7L1c+7i6DH+n4E4PIZYzyemtBY1Zy f64LYbk/4YagGMz8gy7muQZke+VjAOPFNmbRloFCkewA3VBFPF7pDxhNrY44l+3A hjEmbZM+wv25EXgB0kp9Y/qnCEKVu1S678y9LEpZG6ejtRT9TBuSbR3w+q77E4PC TqpI45KZfowlzQTIftWz6bS0WKMubhoaeL02XpK0sx/PwAsGQQVNYtauxgaakTvt owlZH3QCikvYLKjUneeUWaNiEwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFNTrTsGY EEe0zmTDkHSYu/n2OwZsMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvRUNGQ0JCQTRE OEQ3MTFFRjkxQUQ1NTM4QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQAypsOAwQBypsSAwQAypuEAwQAypuJAwQAypudMA0GCSqGSIb3DQEB CwUAA4IBAQCll7O3htQX7X+N9xs3eFDvzi67ESn8nrGmC+ZhyKQnl/tF44m75S6m Cqac0VvtikEuqwb+2WPhJHDUJV8K4B+uXtgtObvCKQW4Ut1apIjqrs5BZ1Y/Nt22 WMc1Ns0s45VU96NXb+Nza3/Hd3fNrNxsOy/GRc4//n84mn19wolp343lcjaYR2bl nFjFb0rPT9lnwDSjcLpWlphJ7WWBOUF3PVhC7U6vX+i6V2X2rh9c84S37aNjQmPz GiBa5MZIyhJWDvyl9l3ZubgIrbfQyobwUgryWSNekybhjuNjtmnWFwoPKlr6GC2i 0m8hAfyhQuEEyiif3YEPJOLkeX8mn/l9 -----END CERTIFICATE-----Generated at Thu Mar 26 12:35:18 2026 by rpki-client