$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa File: E35939C2261711EC9990A750C4F9AE02.roa (raw, json) Hash identifier: Tt7F5si+8VlqBf9tJxbcpILHJGM8cBxfiMMMhhgveGI= Subject key identifier: F1:5F:75:E9:ED:8E:47:BC:A6:B3:EC:15:3D:CE:A7:F7:49:EB:AF:39 Certificate issuer: /CN=A9115C2E/serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Certificate serial: 0A63 Authority key identifier: 39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:48:49 +0000 ROA not before: Thu 06 Mar 2025 20:10:31 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45267 IP address blocks: 43.247.172.0/22 maxlen: 24 45.117.36.0/22 maxlen: 24 103.254.132.0/22 maxlen: 24 114.134.0.0/20 maxlen: 24 116.90.76.0/22 maxlen: 24 124.248.128.0/20 maxlen: 21 124.248.141.0/24 maxlen: 24 163.47.240.0/22 maxlen: 24 202.36.75.0/24 maxlen: 24 202.37.168.0/24 maxlen: 24 202.49.36.0/24 maxlen: 24 2400:bd00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Validity Not Before: Mar 6 20:10:31 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a427a1-8550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:16:58:c4:d5:19:c0:cc:f6:0f:45:91:71:3c: 65:65:fe:10:9d:4e:15:26:4d:75:08:16:8c:1c:1f: c0:4b:a6:72:e0:81:22:00:50:c9:37:c8:b8:68:dd: 96:62:dc:46:5a:4c:ac:1d:d1:09:4f:7d:4c:6e:c4: 87:8a:79:45:27:7a:c8:f7:6c:7d:b5:36:c4:c8:c6: 0e:c5:07:9d:8a:06:78:6d:3f:15:f4:1d:7c:af:d2: 2b:e0:2b:89:45:05:2f:83:1b:9a:92:4b:7e:46:6e: d2:29:5b:29:45:aa:47:9a:47:cf:27:5b:be:38:6b: 74:25:ae:31:05:75:61:05:96:50:0c:d7:f7:ec:af: f9:c1:44:60:69:df:76:7f:0b:c9:7a:3a:e6:dc:8c: c4:ba:55:a1:f9:4c:9a:36:41:b2:0a:ea:85:7f:47: 58:9e:1b:0b:20:70:e9:4b:12:9e:14:17:25:83:c9: f7:6b:0b:c9:3b:f3:5f:14:0e:f1:b5:3e:fe:a5:a9: 11:6f:ee:31:30:f7:d5:b9:9c:b7:d1:32:35:76:b2: a6:62:49:b6:66:af:17:2d:77:12:bf:f9:f4:89:6c: fa:72:03:0f:14:7e:6b:35:06:ea:a8:9c:d4:a7:10: 28:bb:32:96:38:83:2d:f1:cf:7f:e3:8d:28:6e:b1: 21:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5F:75:E9:ED:8E:47:BC:A6:B3:EC:15:3D:CE:A7:F7:49:EB:AF:39 X509v3 Authority Key Identifier: keyid:39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.172.0/22 45.117.36.0/22 103.254.132.0/22 114.134.0.0/20 116.90.76.0/22 124.248.128.0/20 163.47.240.0/22 202.36.75.0/24 202.37.168.0/24 202.49.36.0/24 IPv6: 2400:bd00::/32 Signature Algorithm: sha256WithRSAEncryption 98:e8:6f:d9:7d:7f:81:9e:97:fd:00:22:43:2c:c6:6b:32:6e: 4d:fd:d1:45:87:8e:79:64:a4:af:d0:58:ee:a4:e3:90:c2:59: a4:7d:e7:e4:2e:00:e6:db:7c:5e:6e:cd:81:59:72:88:7a:5a: d8:56:1e:f9:c2:e6:0a:12:10:9b:4b:e0:9d:9a:4d:d6:e0:d3: 8b:cf:07:3e:2f:55:b1:77:a1:bc:fc:82:f0:77:88:62:e4:19: 68:ed:2c:ae:02:14:bf:e3:92:77:4d:cb:d9:93:64:b4:15:5b: fd:5e:e4:64:43:d3:31:e3:26:94:e2:93:fa:10:2a:ea:a1:4b: e9:a9:14:61:4c:35:09:55:5d:95:c9:46:d4:20:cf:25:91:3c: 8a:61:33:dc:d5:bf:79:f4:f5:70:88:65:b6:07:f4:d8:c3:06: 34:b0:4a:bb:cf:ca:1f:54:aa:c2:ff:c2:28:32:3a:85:57:49: 2d:76:23:e4:e6:16:3b:e7:b7:01:4d:e0:25:6e:e9:d3:96:a1: 68:07:9e:58:1f:04:1b:40:09:00:d0:39:62:8c:45:01:6a:b7: e3:b8:37:69:82:31:9d:2b:3e:ff:ad:42:08:96:3a:3c:6f:f7: 83:e8:29:f4:6d:3e:ff:21:3c:68:ce:05:22:2b:13:3e:84:cd: d5:33:7a:c5 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKDM5MkZDMjI3RUVDQzVBNjIxNTcyRkFEQUFDNjUxQTND RUJCMjE2M0MwHhcNMjUwMzA2MjAxMDMxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjdhMS04NTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BZYxNUZwMz2D0WRcTxlZf4QnU4VJk11CBaMHB/AS6Zy4IEiAFDJN8i4aN2W YtxGWkysHdEJT31MbsSHinlFJ3rI92x9tTbEyMYOxQedigZ4bT8V9B18r9Ir4CuJ RQUvgxuakkt+Rm7SKVspRapHmkfPJ1u+OGt0Ja4xBXVhBZZQDNf37K/5wURgad92 fwvJejrm3IzEulWh+UyaNkGyCuqFf0dYnhsLIHDpSxKeFBclg8n3awvJO/NfFA7x tT7+pakRb+4xMPfVuZy30TI1drKmYkm2Zq8XLXcSv/n0iWz6cgMPFH5rNQbqqJzU pxAouzKWOIMt8c9/440obrEhlwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPFfdent jke8prPsFT3Op/dJ6685MB8GA1UdIwQYMBaAFDkvwifuzFpiFXL62qxlGjzrshY8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS8zOEQxNDAxQzgz NDgxMUVBQTdDNDc1NzZDNEY5QUUwMi9PU19DSi03TVdtSVZjdnJhckdVYVBPdXlG ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TX0NKLTdNV21JVmN2cmFyR1VhUE91eUZqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDMkUvMzhEMTQwMUM4MzQ4MTFFQUE3QzQ3NTc2QzRGOUFFMDIvRTM1OTM5QzIy NjE3MTFFQzk5OTBBNzUwQzRGOUFFMDIucm9hMGQGCCsGAQUFBwEHAQH/BFUwUzBC BAIAATA8AwQCK/esAwQCLXUkAwQCZ/6EAwQEcoYAAwQCdFpMAwQEfPiAAwQCoy/w AwQAyiRLAwQAyiWoAwQAyjEkMA0EAgACMAcDBQAkAL0AMA0GCSqGSIb3DQEBCwUA A4IBAQCY6G/ZfX+Bnpf9ACJDLMZrMm5N/dFFh455ZKSv0FjupOOQwlmkfefkLgDm 23xebs2BWXKIelrYVh75wuYKEhCbS+Cdmk3W4NOLzwc+L1Wxd6G8/ILwd4hi5Blo 7SyuAhS/45J3TcvZk2S0FVv9XuRkQ9Mx4yaU4pP6ECrqoUvpqRRhTDUJVV2VyUbU IM8lkTyKYTPc1b959PVwiGW2B/TYwwY0sEq7z8ofVKrC/8IoMjqFV0ktdiPk5hY7 57cBTeAlbunTlqFoB55YHwQbQAkA0DlijEUBarfjuDdpgjGdKz7/rUIIljo8b/eD 6Cn0bT7/ITxozgUiKxM+hM3VM3rF -----END CERTIFICATE-----Generated at Mon Mar 2 13:54:36 2026 by rpki-client