$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa File: 857A6BC00E9711EB9A6C2B3CC4F9AE02.roa (raw, json) Hash identifier: Cqwbn8OV0ira19Vdp2jD4RZXjsOgW/Jc7y3Y1FQ9VlQ= Subject key identifier: B5:9A:0D:AD:53:69:77:24:F6:75:C7:28:FA:B2:5F:ED:D8:36:79:EE Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 086E Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:02:59 +0000 ROA not before: Wed 16 Apr 2025 21:31:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45600 IP address blocks: 202.92.148.0/22 maxlen: 22 2400:b000:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2158 (0x86e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 16 21:31:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47f52-d251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:22:91:c9:de:98:ce:02:17:96:fa:b9:87:a9: 39:f3:6b:54:f7:aa:48:98:b1:1f:b3:b3:5c:e3:69: cf:1a:f1:11:32:c8:eb:af:80:40:7a:2b:dd:17:96: 1c:50:f1:d4:d6:04:16:7b:70:4f:a1:4f:dd:71:79: b9:5d:bc:03:f1:e0:c1:15:e2:a5:aa:9a:b7:b8:b1: aa:d3:10:c8:c5:06:2e:50:e3:b1:a9:3c:4f:51:4f: f2:e2:10:64:ce:9f:01:96:4e:98:25:96:4a:05:ee: 0c:5e:61:a3:c6:02:88:a3:7b:8a:31:86:9a:ed:94: 8b:c7:43:78:85:91:92:ea:c5:27:63:05:30:79:a7: b6:10:3c:a4:fc:1e:44:b6:0a:1d:1e:7b:6e:d4:74: 61:1a:98:0d:29:dc:d8:d7:da:1f:18:0c:fc:9a:47: 5e:a3:60:24:21:15:98:be:6d:60:ee:88:e5:bc:c7: f4:f8:d7:27:f0:39:c4:2f:f2:92:4c:cc:ec:13:98: 2b:ee:c6:df:68:1b:db:5b:82:84:2c:0e:62:70:ce: 82:37:e4:42:24:c0:17:c3:f8:11:bb:45:2c:7a:d7: 81:c4:2a:fd:b5:26:d6:17:f3:ec:aa:7a:81:54:0f: 9e:00:be:ed:43:fb:6a:89:78:4b:98:da:18:a8:49: a3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9A:0D:AD:53:69:77:24:F6:75:C7:28:FA:B2:5F:ED:D8:36:79:EE X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/857A6BC00E9711EB9A6C2B3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.92.148.0/22 IPv6: 2400:b000:300::/48 Signature Algorithm: sha256WithRSAEncryption 81:5c:a3:c0:0a:9a:d9:93:28:fa:1c:be:99:71:31:f2:4f:24: 4c:e0:12:2a:64:74:74:6f:05:1b:8a:0f:10:f3:a9:23:8b:11: ac:ea:89:5e:ea:a8:ab:32:17:5a:46:43:9c:48:33:71:2f:a1: c3:0e:d4:cc:3f:24:10:50:e8:84:d1:f9:d8:68:86:85:fd:8c: c3:32:7b:d2:67:b9:62:25:ce:40:63:af:f5:b5:98:86:3a:23: 21:ec:1d:1d:88:af:9f:e0:7f:38:db:c8:21:4e:ed:86:f1:2a: 56:0d:e0:4f:eb:a1:3b:e5:04:4b:87:a5:ea:58:61:1b:cc:f1: 40:b3:62:f9:78:99:bc:e4:bf:26:ce:55:6d:ee:d1:03:e3:d8: f2:6d:d4:31:fb:7d:f4:48:a8:95:86:63:8c:78:c3:86:e4:63: 5f:5c:5d:97:06:c6:ad:50:ba:32:8f:33:1b:7f:bc:5f:f4:5e: f7:0b:01:ed:ad:06:d9:67:e3:f1:fa:1f:40:21:56:b0:47:ee: ff:e3:32:66:1a:bc:af:f1:d1:6e:bb:b5:15:29:54:8f:22:66: 8c:b4:9d:cf:a3:1f:24:05:b8:79:77:8d:0b:d8:65:6a:ad:ca: b3:d5:6a:f4:1a:95:67:f1:68:cc:de:44:86:c0:0d:50:17:e3: 1a:cc:a6:7c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjUwNDE2MjEzMTUwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Y1Mi1kMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyKRyd6YzgIXlvq5h6k582tU96pImLEfs7Nc42nPGvERMsjrr4BAeivdF5Yc UPHU1gQWe3BPoU/dcXm5XbwD8eDBFeKlqpq3uLGq0xDIxQYuUOOxqTxPUU/y4hBk zp8Blk6YJZZKBe4MXmGjxgKIo3uKMYaa7ZSLx0N4hZGS6sUnYwUweae2EDyk/B5E tgodHntu1HRhGpgNKdzY19ofGAz8mkdeo2AkIRWYvm1g7ojlvMf0+Ncn8DnEL/KS TMzsE5gr7sbfaBvbW4KELA5icM6CN+RCJMAXw/gRu0UseteBxCr9tSbWF/PsqnqB VA+eAL7tQ/tqiXhLmNoYqEmjZQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLWaDa1T aXck9nXHKPqyX+3YNnnuMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvODU3QTZCQzAw RTk3MTFFQjlBNkMyQjNDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCylyUMA8EAgACMAkDBwAkALAAAwAwDQYJKoZIhvcNAQELBQADggEB AIFco8AKmtmTKPocvplxMfJPJEzgEipkdHRvBRuKDxDzqSOLEazqiV7qqKsyF1pG Q5xIM3EvocMO1Mw/JBBQ6ITR+dhohoX9jMMye9JnuWIlzkBjr/W1mIY6IyHsHR2I r5/gfzjbyCFO7YbxKlYN4E/roTvlBEuHpepYYRvM8UCzYvl4mbzkvybOVW3u0QPj 2PJt1DH7ffRIqJWGY4x4w4bkY19cXZcGxq1QujKPMxt/vF/0XvcLAe2tBtln4/H6 H0AhVrBH7v/jMmYavK/x0W67tRUpVI8iZoy0nc+jHyQFuHl3jQvYZWqtyrPVavQa lWfxaMzeRIbADVAX4xrMpnw= -----END CERTIFICATE-----Generated at Mon Mar 2 06:25:02 2026 by rpki-client