$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/70B74E2A16D811F1AFC6DD17323D8C67.roa File: 70B74E2A16D811F1AFC6DD17323D8C67.roa (raw, json) Hash identifier: eQFsvDFHzFce0nm0Oa3r0SGBs4a/g5Gg8WsXKdPpffg= Subject key identifier: A9:19:D7:B0:74:8D:CD:15:F3:57:8C:2E:5C:F8:B8:88:D2:AA:EC:4D Certificate issuer: /CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Certificate serial: 3567 Authority key identifier: E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/70B74E2A16D811F1AFC6DD17323D8C67.roa Signing time: Tue 17 Mar 2026 01:13:43 +0000 ROA not before: Tue 17 Mar 2026 01:13:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 2914 IP address blocks: 101.0.12.0/24 maxlen: 24 101.0.13.0/24 maxlen: 24 101.0.14.0/24 maxlen: 24 101.0.15.0/24 maxlen: 24 101.0.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13671 (0x3567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E03, serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521 Validity Not Before: Mar 17 01:13:43 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69b8aac7-ff1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9f:5e:8c:93:a3:e7:6c:70:ca:20:a7:12:e8: b8:6c:22:49:51:e6:2a:08:e8:f0:53:e5:bd:27:6a: 35:6d:f0:21:86:6f:dd:76:37:9a:67:17:98:98:d8: 0a:b5:57:04:c0:00:e5:a0:6f:c0:f0:97:23:98:67: 5e:cb:df:16:d2:63:8e:a6:38:d6:dc:5d:98:ed:4c: 15:18:a0:45:39:52:af:a1:80:76:3c:04:0b:87:1a: f2:4f:05:4d:71:51:db:4a:04:99:76:b2:2c:e5:83: 4d:a5:49:68:0c:34:7b:a7:a4:d9:53:a5:4a:fa:0d: e1:1a:cb:4a:7d:aa:c6:ff:c0:de:fc:f1:5e:71:bd: 0f:2a:10:6e:22:e3:6a:8b:3c:32:4e:55:39:bb:d7: bc:c0:7f:8e:5b:3d:a1:95:96:e6:c9:7f:6b:af:26: 15:a8:a3:4b:5a:a7:27:2d:6d:c7:b2:ac:c8:15:3f: bd:e9:c1:c4:c7:81:6d:19:b7:27:31:52:2e:9e:65: 76:3b:07:e4:ca:c7:9b:51:7e:b6:51:cc:a8:10:73: b2:eb:5b:85:fb:95:3e:98:13:a7:2b:07:3a:b7:e6: d9:e6:9e:b7:d9:00:24:7e:0d:b9:a4:84:2a:8d:f2: 6d:93:70:eb:27:d2:3f:1b:ce:9c:80:98:09:9f:bc: fd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:19:D7:B0:74:8D:CD:15:F3:57:8C:2E:5C:F8:B8:88:D2:AA:EC:4D X509v3 Authority Key Identifier: keyid:E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/70B74E2A16D811F1AFC6DD17323D8C67.roa sbgp-ipAddrBlock: critical IPv4: 101.0.12.0/22 101.0.20.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:05:ee:f8:1e:70:90:05:15:88:f4:5f:9b:4a:0b:79:0f:48: 1f:0f:19:df:df:b0:b3:47:e8:46:77:05:a6:23:76:44:6b:aa: ac:dd:be:52:52:50:13:60:e8:8c:26:1e:cf:c2:00:09:cc:e5: c9:52:61:1b:bb:4d:97:04:18:f9:c5:aa:83:4e:0f:60:44:89: d0:b9:24:1f:b2:dc:75:02:b9:83:09:17:8d:34:86:2e:70:33: ac:97:a7:78:a6:aa:7d:9c:36:32:73:60:23:52:ff:1e:75:28: 3c:5b:21:87:5d:1c:54:f4:79:e8:a1:ec:a0:7b:23:ce:ae:32: f9:dd:01:07:d9:e4:5e:d5:bb:26:da:c4:f9:9f:38:9b:46:b3: 62:f6:c6:b3:11:6d:0f:3c:d4:12:8a:8f:30:a9:7d:44:2e:dd: fd:96:5f:f7:01:93:7a:99:a3:fb:33:47:a4:f2:87:0e:dc:3f: 29:80:18:de:3b:6e:66:61:fb:b5:53:06:4e:37:e0:15:c0:62: dc:ec:3f:f2:11:f6:f6:c9:66:3f:7e:08:72:d7:54:8e:06:b4: 2c:68:f9:3e:78:7d:0d:d6:67:cf:5b:69:ce:be:86:c6:31:31: 2e:00:50:07:ab:16:df:57:b7:a4:65:56:6e:2d:d8:ec:6e:f5: b7:b0:63:da -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFMDMxMTAvBgNVBAUTKEUzOUFCMUQwN0I1MERCQjlBQkUyQ0I1MUNEOUIxRTNB NUE4NTQ1MjEwHhcNMjYwMzE3MDExMzQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4YWFjNy1mZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Z9ejJOj52xwyiCnEui4bCJJUeYqCOjwU+W9J2o1bfAhhm/ddjeaZxeYmNgK tVcEwADloG/A8JcjmGdey98W0mOOpjjW3F2Y7UwVGKBFOVKvoYB2PAQLhxryTwVN cVHbSgSZdrIs5YNNpUloDDR7p6TZU6VK+g3hGstKfarG/8De/PFecb0PKhBuIuNq izwyTlU5u9e8wH+OWz2hlZbmyX9rryYVqKNLWqcnLW3HsqzIFT+96cHEx4FtGbcn MVIunmV2OwfkysebUX62UcyoEHOy61uF+5U+mBOnKwc6t+bZ5p632QAkfg25pIQq jfJtk3DrJ9I/G86cgJgJn7z97QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKkZ17B0 jc0V81eMLlz4uIjSquxNMB8GA1UdIwQYMBaAFOOasdB7UNu5q+LLUc2bHjpahUUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEUwMy8zRjQ4RjIyNDFE QTYxMUUyOUEwNzVEOUQwOEIwMkNEMi80NXF4MEh0UTI3bXI0c3RSelpzZU9scUZS U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1cXgwSHRRMjdtcjRzdFJ6WnNlT2xxRlJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFMDMvM0Y0OEYyMjQxREE2MTFFMjlBMDc1RDlEMDhCMDJDRDIvNzBCNzRFMkEx NkQ4MTFGMUFGQzZERDE3MzIzRDhDNjcucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZQAMAwQAZQAUMA0GCSqGSIb3DQEBCwUAA4IBAQA9Be74HnCQBRWI 9F+bSgt5D0gfDxnf37CzR+hGdwWmI3ZEa6qs3b5SUlATYOiMJh7PwgAJzOXJUmEb u02XBBj5xaqDTg9gRInQuSQfstx1ArmDCReNNIYucDOsl6d4pqp9nDYyc2AjUv8e dSg8WyGHXRxU9HnooeygeyPOrjL53QEH2eRe1bsm2sT5nzibRrNi9sazEW0PPNQS io8wqX1ELt39ll/3AZN6maP7M0ek8ocO3D8pgBjeO25mYfu1UwZON+AVwGLc7D/y Efb2yWY/fghy11SOBrQsaPk+eH0N1mfPW2nOvobGMTEuAFAHqxbfV7ekZVZuLdjs bvW3sGPa -----END CERTIFICATE-----Generated at Thu Mar 26 09:12:13 2026 by rpki-client