$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa File: 2840D3A225FF11EBAF634966C4F9AE02.roa (raw, json) Hash identifier: EtwqGb/CzlP64HTzen0hEAfqgQV3m0e0KLHXsR7RmN0= Subject key identifier: EC:0D:70:7D:E8:12:83:8B:EE:1B:74:9C:E3:E1:A7:64:8C:2B:25:7A Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 083E Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:44:36 +0000 ROA not before: Fri 06 Jun 2025 21:41:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24506 IP address blocks: 202.43.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2110 (0x83e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:41:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45ee4-2a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4e:d6:a8:54:a5:63:18:36:a6:9b:d6:ff:37: a8:05:11:9d:a1:de:95:48:67:6d:84:74:16:71:95: 62:7d:56:fa:c5:96:77:4d:8c:ba:ab:ac:d4:7d:20: b5:f2:95:74:69:3a:ed:23:9e:20:42:6e:82:08:fa: 39:b9:91:8e:e0:55:b5:01:2f:86:5e:ed:0c:29:58: 38:ed:a7:c6:43:8e:1a:25:b2:76:2e:3c:85:ea:69: ea:5a:a1:06:e0:93:73:f8:b5:ad:14:33:a3:eb:2e: 88:66:00:32:a9:40:52:b3:c4:4f:5c:65:ea:f2:ef: 63:f6:02:1a:d8:df:b9:46:25:39:7a:31:3b:bb:cc: ef:e2:82:01:a6:54:bf:42:23:79:91:f6:bd:9c:8a: 61:1d:8d:a0:ff:71:76:0c:2e:e4:7a:aa:91:5c:23: 6d:1e:60:28:aa:d4:b8:c1:a8:88:c7:93:5e:b2:24: e4:e0:1b:c1:3c:8d:a3:0a:49:da:09:1d:38:d0:d3: 09:fc:9e:e7:30:cf:90:09:6a:2d:16:4b:44:2d:2c: 2a:09:5c:24:29:d9:45:02:02:de:dc:e6:ff:85:20: 00:ff:f4:c0:37:24:b8:8a:58:a4:2a:bb:6b:3f:ad: 8c:5f:8c:5b:02:a4:37:b6:af:3e:e1:2a:80:13:90: 23:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0D:70:7D:E8:12:83:8B:EE:1B:74:9C:E3:E1:A7:64:8C:2B:25:7A X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/2840D3A225FF11EBAF634966C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.216.0/23 Signature Algorithm: sha256WithRSAEncryption a7:79:3e:88:b2:12:de:0f:7e:22:2f:45:dd:c4:df:85:3b:49: 8a:fc:c5:b7:78:4f:10:ce:84:5a:2f:64:53:54:c4:f9:c7:e5: ec:f6:7c:bd:e9:01:99:2e:8c:a1:52:b6:69:c3:71:14:c8:68: 46:ab:de:3e:e7:88:79:42:49:12:c0:7c:75:70:a8:97:58:ac: f4:bb:b3:e4:6b:d2:15:56:cf:e8:ec:61:54:2a:54:fc:76:f2: ac:f0:59:31:cd:55:f4:65:ca:98:bc:73:73:15:d8:7e:b8:82: 43:4b:f8:9b:43:87:d3:1e:f1:5a:f8:89:ac:14:0f:93:8d:8b: 04:65:92:15:51:75:d5:b6:0f:82:2f:c4:0d:89:0f:72:0a:e1: 20:e6:2e:04:4b:7c:8a:db:da:28:66:82:db:0d:6f:17:7c:d4: 0a:f9:2a:8a:68:7b:d3:73:8c:39:5f:f1:dc:a9:d5:f8:8c:e5: c7:93:14:79:6a:c1:3e:50:b8:0e:6d:05:72:7b:a7:ca:2d:92: a4:7e:74:52:c8:24:06:7f:20:62:85:e8:ea:bb:78:8f:53:9a: 45:64:f1:ec:0f:ef:b9:8b:9a:b8:21:99:2a:7c:b1:5e:37:f1: f4:9b:01:7c:73:81:15:2e:4e:1e:ea:a9:48:c9:66:36:28:85: 55:ee:5d:b2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjUwNjA2MjE0MTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWVlNC0yYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzE7WqFSlYxg2ppvW/zeoBRGdod6VSGdthHQWcZVifVb6xZZ3TYy6q6zUfSC1 8pV0aTrtI54gQm6CCPo5uZGO4FW1AS+GXu0MKVg47afGQ44aJbJ2LjyF6mnqWqEG 4JNz+LWtFDOj6y6IZgAyqUBSs8RPXGXq8u9j9gIa2N+5RiU5ejE7u8zv4oIBplS/ QiN5kfa9nIphHY2g/3F2DC7keqqRXCNtHmAoqtS4waiIx5NesiTk4BvBPI2jCkna CR040NMJ/J7nMM+QCWotFktELSwqCVwkKdlFAgLe3Ob/hSAA//TANyS4ilikKrtr P62MX4xbAqQ3tq8+4SqAE5AjRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOwNcH3o EoOL7ht0nOPhp2SMKyV6MB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvMjg0MEQzQTIy NUZGMTFFQkFGNjM0OTY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByivYMA0GCSqGSIb3DQEBCwUAA4IBAQCneT6IshLeD34iL0XdxN+F O0mK/MW3eE8QzoRaL2RTVMT5x+Xs9ny96QGZLoyhUrZpw3EUyGhGq94+54h5QkkS wHx1cKiXWKz0u7Pka9IVVs/o7GFUKlT8dvKs8FkxzVX0ZcqYvHNzFdh+uIJDS/ib Q4fTHvFa+ImsFA+TjYsEZZIVUXXVtg+CL8QNiQ9yCuEg5i4ES3yK29ooZoLbDW8X fNQK+SqKaHvTc4w5X/HcqdX4jOXHkxR5asE+ULgObQVye6fKLZKkfnRSyCQGfyBi hejqu3iPU5pFZPHsD++5i5q4IZkqfLFeN/H0mwF8c4EVLk4e6qlIyWY2KIVV7l2y -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:36 2026 by rpki-client