$ rpki-client -vvf rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/DB056F0C688011F09D2C9A15C4F9AE02.roa File: DB056F0C688011F09D2C9A15C4F9AE02.roa (raw, json) Hash identifier: 1FdqXdOFWWUo+KdLUHGDbep6dZHGEbAaO0icxl7Y07Q= Subject key identifier: F7:7F:53:DD:75:82:E0:FD:2A:3F:8A:35:13:94:15:82:A0:E5:93:60 Certificate issuer: /CN=A9111F72/serialNumber=6C49B9537C26701EDA7C03B536AD7F52E6C9D51A Certificate serial: 1238 Authority key identifier: 6C:49:B9:53:7C:26:70:1E:DA:7C:03:B5:36:AD:7F:52:E6:C9:D5:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/DB056F0C688011F09D2C9A15C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:56:43 +0000 ROA not before: Wed 28 Jan 2026 17:14:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38056 IP address blocks: 125.253.132.0/22 maxlen: 24 125.253.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.crl rsync://rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4664 (0x1238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111F72, serialNumber=6C49B9537C26701EDA7C03B536AD7F52E6C9D51A Validity Not Before: Jan 28 17:14:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a461bb-0ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:30:3e:49:15:8c:fb:47:8a:7b:2e:66:8d:00: b5:1a:d6:d5:8f:0f:87:af:48:94:12:2a:ff:70:a7: 8d:57:1a:3c:c1:1e:cf:cc:76:6c:9a:05:dd:e3:ac: b3:1b:e5:93:d7:a8:77:d3:71:4b:77:1f:1d:6f:87: 1b:71:60:b3:46:e1:45:93:e1:11:48:69:47:70:45: 62:2c:fa:74:aa:b0:7d:a4:a6:c6:05:f4:6c:d9:fa: 2f:50:6a:79:db:94:40:21:5a:99:02:3a:8a:73:f6: d6:b1:b6:48:4d:0a:43:73:34:30:65:c9:4f:35:65: 62:2e:20:51:85:d5:c3:b3:02:67:3d:a8:e1:92:bf: 05:8d:e3:2e:60:32:b4:b8:0a:3e:d8:8b:2c:51:6d: f4:72:f3:a1:30:84:09:c0:6d:2c:17:33:ab:98:f5: ac:49:fc:2a:04:49:c8:49:79:78:9e:bf:15:e6:d8: 61:42:94:18:a3:97:a3:3f:1e:27:31:85:10:dc:f2: bd:bf:5d:17:a5:5c:90:3d:ef:ca:e7:98:d3:22:44: c7:f7:cb:ba:32:d8:8a:bd:cc:4a:48:1c:6e:73:96: 26:53:cd:39:dd:c0:de:45:71:97:38:d1:db:7a:6a: 70:3d:f6:87:d3:28:ad:ce:cb:f2:a0:ff:ef:55:61: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7F:53:DD:75:82:E0:FD:2A:3F:8A:35:13:94:15:82:A0:E5:93:60 X509v3 Authority Key Identifier: keyid:6C:49:B9:53:7C:26:70:1E:DA:7C:03:B5:36:AD:7F:52:E6:C9:D5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bEm5U3wmcB7afAO1Nq1_UubJ1Ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111F72/6F4293D4F8D511E883631D7AC4F9AE02/DB056F0C688011F09D2C9A15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.253.132.0-125.253.139.255 Signature Algorithm: sha256WithRSAEncryption 7b:e8:b2:05:c6:ca:30:d7:82:30:c3:05:fa:a3:b3:d2:9a:8e: d4:2d:40:b3:53:d6:52:44:dd:57:78:89:e4:09:0d:bd:1d:c6: e3:b6:fe:3a:44:27:8c:a7:34:6a:78:d6:f1:6e:41:82:0c:36: 5b:bf:4a:5c:53:da:99:bb:c0:34:26:23:8b:c0:b9:49:47:13: ae:63:c6:85:41:cf:64:1e:6e:4a:d3:0f:b0:08:3f:86:45:a8: fb:65:32:86:e2:8b:6d:51:6d:89:be:34:d6:f2:f8:2e:69:03: 49:92:c9:9f:15:c9:6d:65:b7:99:92:42:3e:4f:d1:be:e8:1c: a8:22:6d:8b:ed:1e:ad:e3:b6:6f:9c:47:e1:57:17:f1:44:11: 10:70:58:af:71:4f:32:87:b5:82:79:67:45:06:f5:db:4c:58: 34:8d:ff:54:bc:0c:d9:82:b9:aa:d1:bd:c2:72:e8:0b:89:a2: c5:c5:56:35:ae:2c:8f:d3:34:79:ad:2f:02:66:0a:10:d0:2e: a4:5e:e5:cc:25:bd:66:41:50:1a:7b:6b:5d:33:03:44:f0:1b: 41:7b:f4:0c:06:b2:4f:89:ce:9e:2c:b9:39:74:25:21:f2:68: b8:fd:7b:00:7e:b2:b1:a2:1d:e9:73:ca:31:3f:98:7a:fb:a1: c8:99:5f:1d -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICEjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFGNzIxMTAvBgNVBAUTKDZDNDlCOTUzN0MyNjcwMUVEQTdDMDNCNTM2QUQ3RjUy RTZDOUQ1MUEwHhcNMjYwMTI4MTcxNDQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjFiYi0wY2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TA+SRWM+0eKey5mjQC1GtbVjw+Hr0iUEir/cKeNVxo8wR7PzHZsmgXd46yz G+WT16h303FLdx8db4cbcWCzRuFFk+ERSGlHcEViLPp0qrB9pKbGBfRs2fovUGp5 25RAIVqZAjqKc/bWsbZITQpDczQwZclPNWViLiBRhdXDswJnPajhkr8FjeMuYDK0 uAo+2IssUW30cvOhMIQJwG0sFzOrmPWsSfwqBEnISXl4nr8V5thhQpQYo5ejPx4n MYUQ3PK9v10XpVyQPe/K55jTIkTH98u6MtiKvcxKSBxuc5YmU8053cDeRXGXONHb empwPfaH0yitzsvyoP/vVWGmlwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFPd/U911 guD9Kj+KNROUFYKg5ZNgMB8GA1UdIwQYMBaAFGxJuVN8JnAe2nwDtTatf1LmydUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUY3Mi82RjQyOTNENEY4 RDUxMUU4ODM2MzFEN0FDNEY5QUUwMi9iRW01VTN3bWNCN2FmQU8xTnExX1V1Ykox Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JFbTVVM3dtY0I3YWZBTzFOcTFfVXViSjFSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFGNzIvNkY0MjkzRDRGOEQ1MTFFODgzNjMxRDdBQzRGOUFFMDIvREIwNTZGMEM2 ODgwMTFGMDlEMkM5QTE1QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAJ9/YQDBAJ9/YgwDQYJKoZIhvcNAQELBQADggEBAHvosgXGyjDX gjDDBfqjs9KajtQtQLNT1lJE3Vd4ieQJDb0dxuO2/jpEJ4ynNGp41vFuQYIMNlu/ SlxT2pm7wDQmI4vAuUlHE65jxoVBz2QebkrTD7AIP4ZFqPtlMobii21RbYm+NNby +C5pA0mSyZ8VyW1lt5mSQj5P0b7oHKgibYvtHq3jtm+cR+FXF/FEERBwWK9xTzKH tYJ5Z0UG9dtMWDSN/1S8DNmCuarRvcJy6AuJosXFVjWuLI/TNHmtLwJmChDQLqRe 5cwlvWZBUBp7a10zA0TwG0F79AwGsk+Jzp4suTl0JSHyaLj9ewB+srGiHelzyjE/ mHr7ociZXx0= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:11 2026 by rpki-client