$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa File: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w= Subject key identifier: E1:91:1B:91:4C:5A:4B:98:63:49:B7:64:49:9E:BA:84:56:30:8E:D6 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0553 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:47:20 +0000 ROA not before: Thu 05 Feb 2026 09:23:28 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9744 IP address blocks: 69.72.80.0/21 maxlen: 24 148.66.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Feb 5 09:23:28 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45f88-482e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:be:11:cc:fc:fe:0b:52:c7:0f:20:b8:bb:2f: 26:6d:cf:f5:91:09:d7:7c:68:f7:80:4e:2e:95:ae: eb:09:23:87:0a:e6:60:23:76:c4:d4:8c:d1:e2:5e: f9:e6:16:a3:d3:0d:ad:04:39:81:3b:36:a6:25:f7: 96:16:38:fb:cc:cb:4e:9c:17:28:1a:ab:91:f1:fc: c3:ca:1a:87:8f:7b:07:80:04:40:7f:93:7c:b3:83: 86:b1:27:81:85:ff:85:a7:3b:5f:42:54:39:32:a5: ca:bb:b5:ce:65:7f:3c:e5:ab:93:80:87:88:87:f9: 18:25:c4:f5:86:f5:c1:b4:c7:e0:e6:94:16:07:5c: 02:8b:64:1e:72:e3:71:d9:19:f0:63:dc:be:5f:13: 43:4e:27:f8:4c:1c:0c:1a:68:02:48:2e:18:3f:1f: 67:ae:84:ac:eb:6e:06:2f:e2:b0:e6:7c:b4:a6:d2: f5:66:3f:ad:9f:07:f3:00:21:c0:42:60:53:9a:9c: 5b:b9:dd:00:9e:da:b7:a3:d8:6e:e0:13:30:26:1b: 30:54:e1:63:ef:b3:33:a9:c7:47:31:06:2a:56:dc: 44:10:61:7b:6f:de:7e:9d:cb:93:98:e6:8b:42:6a: 33:8a:22:db:a1:e1:8d:42:73:16:88:d2:50:19:cf: 38:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:91:1B:91:4C:5A:4B:98:63:49:B7:64:49:9E:BA:84:56:30:8E:D6 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 69.72.80.0/21 148.66.48.0/20 Signature Algorithm: sha256WithRSAEncryption 32:67:8c:e9:72:c5:42:40:ee:79:a2:47:ab:91:e5:dd:f7:33: 4c:db:16:8d:47:4e:40:05:d5:1e:f4:8d:b8:5b:69:06:11:dd: 91:c1:b7:ef:15:51:60:5c:ec:03:47:f3:7a:db:d9:76:bf:53: 8a:eb:e7:d4:ac:c4:33:c3:0e:0a:c2:a2:6a:63:47:98:91:46: f3:dd:47:c2:81:fb:fa:12:ea:69:5e:09:fd:0a:97:60:4a:54: c3:43:bb:58:a8:57:18:de:a2:00:1b:2b:37:77:91:41:fb:10: 54:f5:7a:22:f2:bc:4a:80:11:36:14:5a:60:2d:6c:11:2e:25: 97:1d:a2:5b:0c:a7:69:49:ca:26:5f:f7:44:2c:41:ec:39:32: 26:31:fc:78:2c:85:39:23:df:3d:7d:35:c8:d5:9e:5c:0b:c4: e7:0a:a5:5d:97:93:74:b8:aa:ca:5a:f9:5d:85:70:1a:da:d2: 33:ec:02:33:8e:bf:43:9b:b6:08:4d:3c:a8:d4:3c:da:2a:69: 42:63:4b:97:31:a4:0a:16:ea:9a:87:e0:85:b1:b6:29:f7:2d: 4b:f5:7b:08:e2:80:52:7e:e0:39:62:cc:5a:b5:f4:7c:cd:4c: d2:5d:db:ce:f0:d7:aa:da:7b:fb:73:c8:c0:dc:d6:d9:8c:74: 90:e8:95:68 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwMjA1MDkyMzI4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWY4OC00ODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmL4RzPz+C1LHDyC4uy8mbc/1kQnXfGj3gE4ula7rCSOHCuZgI3bE1IzR4l75 5haj0w2tBDmBOzamJfeWFjj7zMtOnBcoGquR8fzDyhqHj3sHgARAf5N8s4OGsSeB hf+FpztfQlQ5MqXKu7XOZX885auTgIeIh/kYJcT1hvXBtMfg5pQWB1wCi2QecuNx 2RnwY9y+XxNDTif4TBwMGmgCSC4YPx9nroSs624GL+Kw5ny0ptL1Zj+tnwfzACHA QmBTmpxbud0Antq3o9hu4BMwJhswVOFj77MzqcdHMQYqVtxEEGF7b95+ncuTmOaL QmoziiLboeGNQnMWiNJQGc848wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOGRG5FM WkuYY0m3ZEmeuoRWMI7WMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvM0U5QTRBRTAzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvM0EyQTgwQUUz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDRUhQAwQElEIwMA0GCSqGSIb3DQEBCwUAA4IBAQAyZ4zpcsVCQO55 okerkeXd9zNM2xaNR05ABdUe9I24W2kGEd2RwbfvFVFgXOwDR/N629l2v1OK6+fU rMQzww4KwqJqY0eYkUbz3UfCgfv6EuppXgn9CpdgSlTDQ7tYqFcY3qIAGys3d5FB +xBU9Xoi8rxKgBE2FFpgLWwRLiWXHaJbDKdpScomX/dELEHsOTImMfx4LIU5I989 fTXI1Z5cC8TnCqVdl5N0uKrKWvldhXAa2tIz7AIzjr9Dm7YITTyo1DzaKmlCY0uX MaQKFuqah+CFsbYp9y1L9XsI4oBSfuA5YsxatfR8zUzSXdvO8Neq2nv7c8jA3NbZ jHSQ6JVo -----END CERTIFICATE-----Generated at Mon Mar 2 05:38:12 2026 by rpki-client