$ rpki-client -vvf rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa File: 2E6008624A5711F0BD4BC13AC4F9AE02.roa (raw, json) Hash identifier: O/7YA16zUHlRs4EqhBTZvR5d/9Wf8oxzD6m86xewXDU= Subject key identifier: 13:D5:AA:93:C0:BE:E7:66:A5:08:CE:4A:EA:42:1D:A2:0F:35:E2:BC Certificate issuer: /CN=A9120522/serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Certificate serial: 0864 Authority key identifier: 4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:59 +0000 ROA not before: Tue 26 Aug 2025 21:31:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24181 IP address blocks: 202.49.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120522, serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Validity Not Before: Aug 26 21:31:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42f67-65d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:c9:5a:03:fe:7f:87:3f:3a:ba:81:66:ff: 67:1b:53:2c:58:1a:64:5f:22:86:6e:41:66:64:18: a3:d2:f0:96:1d:a3:94:f8:93:be:9d:6c:6d:81:7e: 90:f4:db:b2:e8:cd:01:ac:95:16:94:a8:3f:f8:ea: dd:b4:0e:47:2e:20:0b:c0:c1:07:ce:08:2e:4b:d2: f3:f3:b9:ba:1e:ac:9f:42:d0:69:92:e3:1d:05:de: e0:5b:6d:0e:02:21:2e:3c:ef:a5:46:ae:bc:8f:1d: 02:89:83:c6:37:ae:24:dc:47:25:1f:d9:e4:42:fe: 9c:74:1b:fd:f5:15:13:47:31:d3:a1:76:e9:8a:db: 36:10:38:fe:54:2d:c9:58:62:c0:22:1c:5c:36:1b: cb:75:3f:39:a0:8c:41:72:eb:95:2d:d2:ee:a0:3f: f5:2d:b7:e2:49:44:d8:a6:ab:3f:17:69:8f:dc:29: 6e:79:21:e4:ca:dc:53:8c:15:a8:96:9f:0a:56:7a: 10:d9:2a:a5:dc:97:56:61:ef:11:2e:60:2d:cd:d5: f6:3a:6a:a9:27:6c:59:25:ad:1f:4a:f7:1e:a2:11: fa:2d:cb:77:d5:cf:da:20:1f:dc:bf:1c:d5:06:00: f3:1a:db:24:f7:5f:bd:59:1e:4a:40:20:52:e6:f2: 52:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D5:AA:93:C0:BE:E7:66:A5:08:CE:4A:EA:42:1D:A2:0F:35:E2:BC X509v3 Authority Key Identifier: keyid:4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.49.16.0/22 Signature Algorithm: sha256WithRSAEncryption 14:89:23:03:d2:21:2d:9b:bf:82:d1:22:49:a3:0e:ec:6a:01: ae:6f:bc:24:4a:0e:6f:c9:7d:2e:c0:ad:d8:55:ab:60:62:b8: e8:23:6e:de:26:9c:86:b4:64:f1:7d:30:af:7b:04:7e:b9:1e: 2d:84:6b:eb:1f:c6:28:24:53:57:f6:45:57:90:a0:66:3b:d9: c3:01:8d:00:54:3e:5e:c4:d4:85:29:b6:fa:49:e4:f2:4b:77: c7:25:f8:6d:a2:37:af:8a:de:04:07:33:e9:95:8f:04:fd:cc: fa:0f:f2:e8:d2:86:2d:9d:6c:2a:de:1e:e8:20:03:50:81:8c: 7e:4e:57:8c:13:2c:3b:24:25:95:67:3d:95:74:3c:2c:90:ec: 9e:7d:f5:8e:e7:f5:2d:26:d8:5d:48:a7:28:72:56:48:0f:cf: 32:6b:18:a4:63:01:0f:56:5e:cf:ee:98:fb:90:ca:7e:b4:55: 39:4e:9e:67:0c:a7:af:fe:74:3b:89:e8:94:11:47:39:eb:26: a9:b4:99:3b:25:96:a9:ab:cf:d8:d5:94:87:c3:ae:9e:ce:01: 38:65:aa:33:ef:5d:d8:37:1b:21:80:eb:18:b3:9b:ed:a9:55: 10:13:bc:da:2f:9f:e3:51:e8:84:97:0c:3a:1f:50:3b:93:28: 5b:bb:f9:5a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA1MjIxMTAvBgNVBAUTKDREQkZCN0MwRjJEODU3NkJBNTA4RjM2MzY5MTk4Qjg0 OTFDMkIzMzQwHhcNMjUwODI2MjEzMTA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY2Ny02NWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4LJWgP+f4c/OrqBZv9nG1MsWBpkXyKGbkFmZBij0vCWHaOU+JO+nWxtgX6Q 9Nuy6M0BrJUWlKg/+OrdtA5HLiALwMEHzgguS9Lz87m6HqyfQtBpkuMdBd7gW20O AiEuPO+lRq68jx0CiYPGN64k3EclH9nkQv6cdBv99RUTRzHToXbpits2EDj+VC3J WGLAIhxcNhvLdT85oIxBcuuVLdLuoD/1LbfiSUTYpqs/F2mP3ClueSHkytxTjBWo lp8KVnoQ2Sql3JdWYe8RLmAtzdX2OmqpJ2xZJa0fSvceohH6Lct31c/aIB/cvxzV BgDzGtsk91+9WR5KQCBS5vJSPQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBPVqpPA vudmpQjOSupCHaIPNeK8MB8GA1UdIwQYMBaAFE2/t8Dy2FdrpQjzY2kZi4SRwrM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDUyMi8xQzNEQTNBQ0Yw QTYxMUVBOTU5RDc2NEFDNEY5QUUwMi9UYi0zd1BMWVYydWxDUE5qYVJtTGhKSENz elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiLTN3UExZVjJ1bENQTmphUm1MaEpIQ3N6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA1MjIvMUMzREEzQUNGMEE2MTFFQTk1OUQ3NjRBQzRGOUFFMDIvMkU2MDA4NjI0 QTU3MTFGMEJENEJDMTNBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyjEQMA0GCSqGSIb3DQEBCwUAA4IBAQAUiSMD0iEtm7+C0SJJow7s agGub7wkSg5vyX0uwK3YVatgYrjoI27eJpyGtGTxfTCvewR+uR4thGvrH8YoJFNX 9kVXkKBmO9nDAY0AVD5exNSFKbb6SeTyS3fHJfhtojevit4EBzPplY8E/cz6D/Lo 0oYtnWwq3h7oIANQgYx+TleMEyw7JCWVZz2VdDwskOyeffWO5/UtJthdSKcoclZI D88yaxikYwEPVl7P7pj7kMp+tFU5Tp5nDKev/nQ7ieiUEUc56yaptJk7JZapq8/Y 1ZSHw66ezgE4Zaoz713YNxshgOsYs5vtqVUQE7zaL5/jUeiElww6H1A7kyhbu/la -----END CERTIFICATE-----Generated at Mon Mar 2 04:17:40 2026 by rpki-client