$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/9F8B79C2C78E11EBB4983F5BC4F9AE02.roa File: 9F8B79C2C78E11EBB4983F5BC4F9AE02.roa (raw, json) Hash identifier: d9F++wY6Y6kgkdiYtZ2QORaHxCioMHguW70TTV+zajY= Subject key identifier: EC:F1:F5:A6:33:9D:69:E0:39:D8:B4:A1:EE:96:FB:3A:12:40:E8:F0 Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0E8D Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/9F8B79C2C78E11EBB4983F5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:27:36 +0000 ROA not before: Thu 28 Aug 2025 18:08:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23855 IP address blocks: 203.30.38.0/23 maxlen: 24 2001:df0:21a::/48 maxlen: 48 2401:c7c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3725 (0xe8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4, serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: Aug 28 18:08:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a468f7-e524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:43:d3:85:54:49:db:a2:f2:54:0d:60:c6:b2: 98:7a:22:f0:8a:02:35:79:a8:e6:f0:6d:d6:38:d0: 88:db:fe:54:90:95:63:fe:29:d9:3e:0a:fd:91:53: 87:4e:b9:0c:13:c5:0d:8b:4e:55:22:ae:7b:7d:0b: 28:6a:0e:93:0b:97:35:89:f9:8f:15:2e:a7:6c:37: d3:26:de:6d:58:f2:10:77:61:91:fe:e3:58:34:f4: df:10:e1:c0:d2:10:a6:6e:df:1e:51:3b:c5:17:b3: 02:05:74:c1:fb:d6:5c:b7:50:1e:44:ca:c7:a8:ee: e9:fa:68:d4:6c:51:17:93:4a:ac:c6:6a:17:be:cc: 38:1a:34:3d:8c:bf:82:70:c9:ae:4b:1e:69:4c:0e: 9c:f4:66:39:4b:84:db:9b:d5:47:14:fb:cf:dd:d5: 3d:e3:69:45:32:a1:25:ea:cd:78:b8:e2:60:5c:41: 5a:5c:ac:78:11:c9:dc:48:2a:4e:0d:db:4f:6f:86: 7c:d0:28:7c:04:b2:62:52:0a:75:36:2a:d0:8c:88: c2:c7:5d:98:1c:7e:d3:c7:89:8e:78:f6:e9:b7:61: 76:36:d1:50:a1:d3:0a:da:bf:23:68:6c:e7:48:09: c0:b0:57:db:69:f0:33:aa:13:67:4a:f0:1d:fc:c1: d2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F1:F5:A6:33:9D:69:E0:39:D8:B4:A1:EE:96:FB:3A:12:40:E8:F0 X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/9F8B79C2C78E11EBB4983F5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.30.38.0/23 IPv6: 2001:df0:21a::/48 2401:c7c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 84:f9:85:a7:b4:59:4c:ca:40:07:19:22:3a:51:bc:b0:59:76: 22:e6:66:cb:ed:cb:bf:cc:95:75:fd:af:d1:c3:47:a8:a3:33: 28:43:b1:6a:b7:79:30:36:29:3f:b4:71:3a:f2:a4:31:81:61: e3:07:9d:6d:af:7d:6e:af:7d:5d:54:67:a3:6d:66:20:8e:11: 31:7d:79:b2:78:00:ac:9d:70:92:4c:e2:c2:a0:4e:3d:65:c6: 60:dd:fd:ab:8a:9c:a0:90:8a:c0:fe:e2:aa:c8:4e:1e:85:85: c4:ee:6b:24:98:fe:71:7a:00:60:50:69:8e:45:dc:b3:c7:1a: d1:6d:6f:64:44:0b:f2:a1:ae:7f:f9:6b:c3:ba:0b:22:3a:26: 1d:43:a5:ab:37:13:70:9b:fa:1e:fb:4d:13:f7:01:cb:1e:13: 00:48:12:a6:13:ef:ab:33:9e:95:38:81:3f:8a:e6:ea:3a:18: cd:5a:b9:a2:91:55:a9:8e:74:a6:82:76:87:a8:13:ee:b8:80: 0f:8a:6f:cf:c1:a6:4e:8f:84:39:f1:86:22:75:94:ce:ef:15: 56:43:65:6b:62:81:8b:84:aa:f9:f0:ef:0d:a7:3a:d5:44:6b: 4a:4f:1f:de:a8:3e:be:b3:1c:71:41:77:cf:0a:41:4b:3a:52: de:ca:a3:66 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICDo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjUwODI4MTgwODM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhmNy1lNTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUPThVRJ26LyVA1gxrKYeiLwigI1eajm8G3WONCI2/5UkJVj/inZPgr9kVOH TrkME8UNi05VIq57fQsoag6TC5c1ifmPFS6nbDfTJt5tWPIQd2GR/uNYNPTfEOHA 0hCmbt8eUTvFF7MCBXTB+9Zct1AeRMrHqO7p+mjUbFEXk0qsxmoXvsw4GjQ9jL+C cMmuSx5pTA6c9GY5S4Tbm9VHFPvP3dU942lFMqEl6s14uOJgXEFaXKx4EcncSCpO DdtPb4Z80Ch8BLJiUgp1NirQjIjCx12YHH7Tx4mOePbpt2F2NtFQodMK2r8jaGzn SAnAsFfbafAzqhNnSvAd/MHSzwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFOzx9aYz nWngOdi0oe6W+zoSQOjwMB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI1QjQvNzA5RjdBMjZCODI5MTFFOTkzNzM4QTA5QzRGOUFFMDIvOUY4Qjc5QzJD NzhFMTFFQkI0OTgzRjVCQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQByx4mMBgEAgACMBIDBwAgAQ3wAhoDBwAkAcfAAAMwDQYJKoZIhvcN AQELBQADggEBAIT5hae0WUzKQAcZIjpRvLBZdiLmZsvty7/MlXX9r9HDR6ijMyhD sWq3eTA2KT+0cTrypDGBYeMHnW2vfW6vfV1UZ6NtZiCOETF9ebJ4AKydcJJM4sKg Tj1lxmDd/auKnKCQisD+4qrITh6FhcTuaySY/nF6AGBQaY5F3LPHGtFtb2REC/Kh rn/5a8O6CyI6Jh1Dpas3E3Cb+h77TRP3AcseEwBIEqYT76sznpU4gT+K5uo6GM1a uaKRVamOdKaCdoeoE+64gA+Kb8/Bpk6PhDnxhiJ1lM7vFVZDZWtigYuEqvnw7w2n OtVEa0pPH96oPr6zHHFBd88KQUs6Ut7Ko2Y= -----END CERTIFICATE-----Generated at Mon Mar 2 08:18:15 2026 by rpki-client