$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa File: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (raw, json) Hash identifier: XKjx+2JVREc1vEzkeaWV20vVw40lW7PDQ/F2fJTa5K4= Subject key identifier: D9:99:46:52:47:EB:02:BA:F3:01:9D:5C:7B:D5:0A:E9:70:1B:B5:5C Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1EC9 Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:53:22 +0000 ROA not before: Fri 08 Aug 2025 15:52:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17887 IP address blocks: 180.128.252.0/22 maxlen: 22 180.128.252.0/23 maxlen: 23 180.128.252.0/24 maxlen: 24 180.128.253.0/24 maxlen: 24 180.128.254.0/23 maxlen: 23 180.128.254.0/24 maxlen: 24 180.128.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7881 (0x1ec9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Aug 8 15:52:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a460f2-d2fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:99:e4:de:5c:28:02:ed:24:52:fd:48:97: 56:d9:e0:b6:33:33:19:87:4d:42:a1:35:ca:70:88: 53:7c:ae:18:b4:8f:61:a7:0b:14:0b:9e:bb:97:be: bf:95:a8:c8:67:9c:05:05:a9:34:60:45:3f:4f:37: a3:3b:94:34:02:46:04:d7:e8:aa:45:6b:23:ad:b8: d3:63:62:79:fb:a1:e7:ee:7a:35:e2:18:78:35:07: ad:45:02:a6:3b:87:bf:75:d1:7f:fa:c5:c3:00:9e: 8d:26:a1:cb:4d:a1:58:51:f2:26:d1:1b:78:cf:bb: cd:b5:cd:43:cf:52:ea:f2:fe:a9:c7:31:8b:36:9d: 03:5f:bc:92:25:ab:53:ad:41:c4:82:d8:95:fa:75: 1f:ab:fc:08:02:1a:de:9d:62:91:3b:f2:3b:0e:37: 8c:80:03:ab:b7:6c:a6:5a:8e:69:d1:34:38:6a:02: d0:2d:7b:53:e0:15:23:67:91:d5:72:74:ff:97:95: 88:e4:cf:dd:63:b7:65:82:8e:2f:24:ed:7a:f3:37: ed:55:45:0b:64:6d:29:1c:91:f0:5f:af:57:64:4e: 19:0b:7c:9d:9c:ed:91:8d:32:9a:d9:2c:8f:ba:79: 02:93:85:2a:88:58:3b:6e:dd:bb:7a:05:cb:de:ba: bf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:99:46:52:47:EB:02:BA:F3:01:9D:5C:7B:D5:0A:E9:70:1B:B5:5C X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.128.252.0/22 Signature Algorithm: sha256WithRSAEncryption 58:9f:31:05:87:3c:bb:a3:9e:1b:2f:23:93:a7:d9:b6:60:7a: 2f:46:6e:c7:25:3e:89:86:f1:46:c1:db:a0:5b:80:6d:c4:a2: 3a:95:9a:24:f6:d4:52:f6:47:1f:6a:f4:d4:db:7a:80:e3:8e: be:90:03:b2:36:9e:08:b3:6a:2a:8f:3d:3d:79:78:69:c3:51: 2b:54:ab:df:ae:33:e7:79:0e:d5:40:c0:72:e4:19:9c:7a:0b: 6e:24:83:23:01:db:cb:6c:87:c7:2d:17:7c:60:bc:d9:86:da: 66:bf:12:6f:70:35:16:d2:42:15:e4:50:87:f0:4f:b1:4b:fb: 2c:f8:fb:6d:19:0d:c0:fe:59:05:98:52:cc:57:7d:69:62:65: d0:d4:06:35:a0:38:ee:3b:59:5e:38:a2:1f:78:84:3d:57:18: 9e:6c:49:b3:dc:69:8e:05:bb:c5:c3:20:4f:b4:d3:e3:49:29: 40:0e:ca:c9:96:17:c9:86:23:8e:ad:8b:f2:da:e1:1d:f6:63: 81:de:02:b0:c6:36:ce:05:9e:78:5c:9f:6d:79:0a:48:e0:12: 46:93:c9:fd:df:1a:47:0c:41:ef:79:18:c8:06:e1:be:9f:fa: 5b:71:78:4a:b9:9d:e4:86:2c:62:73:c6:4b:34:e9:f7:ac:12: 02:b5:59:10 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICHskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjUwODA4MTU1MjU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBmMi1kMmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU2Z5N5cKALtJFL9SJdW2eC2MzMZh01CoTXKcIhTfK4YtI9hpwsUC567l76/ lajIZ5wFBak0YEU/TzejO5Q0AkYE1+iqRWsjrbjTY2J5+6Hn7no14hh4NQetRQKm O4e/ddF/+sXDAJ6NJqHLTaFYUfIm0Rt4z7vNtc1Dz1Lq8v6pxzGLNp0DX7ySJatT rUHEgtiV+nUfq/wIAhrenWKRO/I7DjeMgAOrt2ymWo5p0TQ4agLQLXtT4BUjZ5HV cnT/l5WI5M/dY7dlgo4vJO168zftVUULZG0pHJHwX69XZE4ZC3ydnO2RjTKa2SyP unkCk4UqiFg7bt27egXL3rq/pQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNmZRlJH 6wK68wGdXHvVCulwG7VcMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCREQvM0FFMDA0QjRENzc4MTFFNEIzNzc4QjcyQzRGOUFFMDIvNEVCODE0QkE4 RjY3MTFFNkE1MDlDOTJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCtID8MA0GCSqGSIb3DQEBCwUAA4IBAQBYnzEFhzy7o54bLyOTp9m2 YHovRm7HJT6JhvFGwdugW4BtxKI6lZok9tRS9kcfavTU23qA446+kAOyNp4Is2oq jz09eXhpw1ErVKvfrjPneQ7VQMBy5BmcegtuJIMjAdvLbIfHLRd8YLzZhtpmvxJv cDUW0kIV5FCH8E+xS/ss+PttGQ3A/lkFmFLMV31pYmXQ1AY1oDjuO1leOKIfeIQ9 VxiebEmz3GmOBbvFwyBPtNPjSSlADsrJlhfJhiOOrYvy2uEd9mOB3gKwxjbOBZ54 XJ9teQpI4BJGk8n93xpHDEHveRjIBuG+n/pbcXhKuZ3khixic8ZLNOn3rBICtVkQ -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:26 2026 by rpki-client