$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa File: 2840D3A225FF11EBAF634966C4F9AE02.roa (raw, json) Hash identifier: L0U0RcVKixHM80nNmnQh09Mgzv1FHdU2PsTdoVdSV8U= Subject key identifier: 5C:2C:AD:D2:B1:D5:F0:9A:F6:0B:F5:F3:5F:41:A0:E8:F8:71:1C:FA Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 087A Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa Signing time: Sat 06 Jun 2026 21:25:38 +0000 ROA not before: Sat 06 Jun 2026 21:25:38 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 24506 IP address blocks: 202.43.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:25:38 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a249052-3986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:0b:e8:11:07:08:30:1f:0e:dd:73:cc:bd: b3:c8:9a:4d:3b:a3:e1:f2:05:be:30:4f:43:04:93: 65:55:7e:12:71:bb:f4:d7:83:81:1c:30:9e:03:c0: 8d:5a:bb:fd:62:64:28:47:67:e1:9e:fb:ff:89:03: 34:92:7c:6a:99:f4:91:eb:d3:bc:c0:95:2e:cc:b1: 30:47:4a:f0:f7:12:d0:46:c9:b0:12:f2:01:6f:8c: bf:64:10:42:f8:0d:c6:bc:b5:29:c8:53:44:28:18: 75:7b:b2:96:e9:a5:dd:04:9a:0b:6c:6c:5b:9b:f7: 30:0a:64:a1:3c:79:44:8c:5f:99:f0:01:7c:6f:30: e6:7e:af:36:4a:14:1c:3c:0f:f1:4e:e7:c1:b0:7d: 3a:c3:9b:9e:ed:87:f9:d7:2a:fa:11:ec:86:4b:50: 55:d8:a4:51:cf:05:89:7a:29:3f:f9:bd:e9:28:a5: c2:d5:ca:cc:e4:9b:16:78:89:7c:03:5c:77:50:23: 7f:50:b6:f2:03:6c:e1:8a:46:0d:af:6d:51:d1:2d: ba:9a:8d:99:46:4b:16:99:48:3f:bf:9e:97:d5:43: ec:e5:c3:56:68:2b:2f:5d:87:cb:94:f3:33:9b:22: 09:64:60:88:12:0c:4e:5a:73:be:ff:48:83:d8:3a: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2C:AD:D2:B1:D5:F0:9A:F6:0B:F5:F3:5F:41:A0:E8:F8:71:1C:FA X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.216.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:65:82:93:27:4e:8f:ab:ec:b8:d0:4c:db:6f:b6:a0:a6:ba: 81:b9:6f:02:53:9f:91:da:53:11:6f:bf:f1:db:46:1f:1d:51: 18:10:c6:6b:6e:e5:68:2b:28:b0:1d:64:4b:06:6f:b4:e8:c2: 79:68:d3:0f:d6:74:47:00:2b:13:14:2b:4a:69:d8:35:8c:57: 94:b4:1c:6e:fb:d8:0c:9b:91:c0:a1:03:ba:46:c3:25:47:63: 73:cd:82:46:16:b8:76:bf:8c:23:fe:57:18:ad:41:cb:c4:86: ae:6f:9c:f7:2a:03:fa:3e:81:49:d6:df:ac:14:22:c9:da:c4: 36:e2:e3:51:ca:da:c8:b2:6d:63:c2:58:b2:79:47:ae:8b:16: 4b:94:f1:7c:67:7d:5c:b3:2e:92:f7:9c:06:c9:34:ce:89:7a: 33:1b:19:23:74:54:f4:e8:41:13:23:c5:77:8e:d2:cf:86:cd: 74:95:1d:46:eb:a0:7f:00:1b:e0:83:7f:66:f6:b1:b1:5f:ba: 80:9b:30:3e:4b:61:9d:d5:b4:c9:48:4b:2f:cf:ce:a8:a3:c1: b4:8d:dd:c7:cc:13:0d:e4:26:e6:94:f1:ab:aa:cd:ad:15:b7: 32:ec:1f:57:08:01:6c:04:96:6c:6e:c6:14:8c:9f:1f:ea:f0: 47:80:d1:50 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjYwNjA2MjEyNTM4WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI0OTA1Mi0zOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzk4L6BEHCDAfDt1zzL2zyJpNO6Ph8gW+ME9DBJNlVX4Scbv014OBHDCeA8CN Wrv9YmQoR2fhnvv/iQM0knxqmfSR69O8wJUuzLEwR0rw9xLQRsmwEvIBb4y/ZBBC +A3GvLUpyFNEKBh1e7KW6aXdBJoLbGxbm/cwCmShPHlEjF+Z8AF8bzDmfq82ShQc PA/xTufBsH06w5ue7Yf51yr6EeyGS1BV2KRRzwWJeik/+b3pKKXC1crM5JsWeIl8 A1x3UCN/ULbyA2zhikYNr21R0S26mo2ZRksWmUg/v56X1UPs5cNWaCsvXYfLlPMz myIJZGCIEgxOWnO+/0iD2DpsewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFwsrdKx 1fCa9gv1819BoOj4cRz6MB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvMjg0MEQzQTIy NUZGMTFFQkFGNjM0OTY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByivYMA0GCSqGSIb3DQEBCwUAA4IBAQBvZYKTJ06Pq+y40Ezbb7ag prqBuW8CU5+R2lMRb7/x20YfHVEYEMZrbuVoKyiwHWRLBm+06MJ5aNMP1nRHACsT FCtKadg1jFeUtBxu+9gMm5HAoQO6RsMlR2NzzYJGFrh2v4wj/lcYrUHLxIaub5z3 KgP6PoFJ1t+sFCLJ2sQ24uNRytrIsm1jwliyeUeuixZLlPF8Z31csy6S95wGyTTO iXozGxkjdFT06EETI8V3jtLPhs10lR1G66B/ABvgg39m9rGxX7qAmzA+S2Gd1bTJ SEsvz86oo8G0jd3HzBMN5CbmlPGrqs2tFbcy7B9XCAFsBJZsbsYUjJ8f6vBHgNFQ -----END CERTIFICATE-----Generated at Sun Jun 14 03:02:34 2026 by rpki-client