$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa File: 17A5A8400EC811F088512D41C4F9AE02.roa (raw, json) Hash identifier: kAcVejf2v61m+dqDwgqkFV7Bb75fP9Efwhiqg+ESLEc= Subject key identifier: 60:55:87:B2:F1:82:28:92:E7:DD:64:D2:24:0C:1E:D2:6E:B2:02:63 Certificate issuer: /CN=A9120AC1/serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Certificate serial: 057B Authority key identifier: 8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:37:38 +0000 ROA not before: Thu 05 Feb 2026 09:23:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 963 IP address blocks: 43.225.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Validity Not Before: Feb 5 09:23:30 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46b52-3f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:27:2e:c3:c5:63:48:42:26:4c:42:58:f9: b8:91:c3:9d:e9:8a:77:32:f1:ea:7c:4d:fb:89:60: f0:d8:0a:f8:8c:fc:f2:99:09:0b:89:49:f9:7b:20: b0:cd:cc:11:48:3b:e5:89:6f:f1:9e:8f:8a:8a:80: fb:b2:a3:3a:1e:cb:ea:ee:40:91:fa:0c:4f:96:34: bc:6a:03:ff:e9:1e:9c:0e:52:b3:3b:1e:3d:5a:95: ac:c3:6f:d5:f1:80:23:ef:42:ab:40:a3:00:3d:49: 39:14:fb:63:9f:98:74:e6:85:ce:ea:c0:ee:ba:84: 3f:a3:61:12:65:52:57:59:d7:4b:ec:c3:39:8e:c7: b2:02:f1:a0:fe:77:04:f8:ce:27:81:5e:94:d4:3e: d1:63:25:41:45:15:d1:eb:81:db:76:f2:0a:4c:ea: 01:15:83:76:fa:9c:2b:c2:4d:f0:64:eb:84:24:db: de:f7:00:36:72:15:57:c0:27:e0:8b:88:ee:74:56: 1b:6c:f2:3b:ab:b2:b4:5e:68:cc:70:c2:fc:00:f4: d6:cc:4e:66:c6:9e:bb:d0:f2:03:98:47:45:4e:4f: 1d:cf:b9:55:a4:01:10:58:f7:73:3a:de:db:13:18: d4:f2:83:e7:b0:24:36:ee:11:bf:ba:f5:3c:df:84: f5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:55:87:B2:F1:82:28:92:E7:DD:64:D2:24:0C:1E:D2:6E:B2:02:63 X509v3 Authority Key Identifier: keyid:8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/17A5A8400EC811F088512D41C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.225.196.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:28:ac:31:b0:41:56:65:16:bb:ce:e7:9f:eb:c8:da:86:6d: eb:65:4d:03:7b:f7:3a:96:4f:9a:f1:5e:59:bd:94:fc:01:62: fc:d3:23:11:fe:28:b3:65:6e:f7:05:5f:06:47:ae:2c:e6:0d: 60:ce:7c:a0:19:9e:9c:f4:8a:d7:0e:71:75:80:c8:43:59:de: db:45:ad:6a:4e:56:16:a1:6c:b9:d7:b3:8b:af:fa:cc:b0:cd: 57:ef:5d:c8:10:79:a7:0d:b4:69:87:7e:ea:af:22:9e:5d:4c: 87:f4:81:36:77:dd:e1:f0:4a:c5:ca:21:96:63:13:8f:e4:74: be:e7:5a:0f:8e:70:36:cf:71:64:8c:31:97:f5:90:e8:78:91: 4f:78:f9:8e:1d:a1:7e:a7:1e:3a:18:4d:31:e2:70:f2:a5:06: c2:78:80:51:4f:1e:40:37:78:55:5b:9b:86:4b:db:ba:da:1c: 5e:fa:16:0f:0f:27:bf:5b:20:f4:0d:1e:bf:c9:9f:62:60:fd: 10:a5:ba:b0:6f:62:7f:4a:1a:5e:32:ca:3c:e9:f8:a6:95:19: c1:6c:c3:8d:2a:13:a5:e3:44:62:58:c4:e0:60:2b:7c:a6:5f: 21:cb:f6:ce:36:40:2f:27:8d:57:fb:04:74:e4:9a:9a:26:c5: a3:2c:71:18 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDhGMkJENEMxMjYzNkYwMDU5QjQwOEQwNzE2QUYzMkM4 RjU0MDY5QTUwHhcNMjYwMjA1MDkyMzMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmI1Mi0zZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoInLsPFY0hCJkxCWPm4kcOd6Yp3MvHqfE37iWDw2Ar4jPzymQkLiUn5eyCw zcwRSDvliW/xno+KioD7sqM6Hsvq7kCR+gxPljS8agP/6R6cDlKzOx49WpWsw2/V 8YAj70KrQKMAPUk5FPtjn5h05oXO6sDuuoQ/o2ESZVJXWddL7MM5jseyAvGg/ncE +M4ngV6U1D7RYyVBRRXR64HbdvIKTOoBFYN2+pwrwk3wZOuEJNve9wA2chVXwCfg i4judFYbbPI7q7K0XmjMcML8APTWzE5mxp670PIDmEdFTk8dz7lVpAEQWPdzOt7b ExjU8oPnsCQ27hG/uvU834T1FQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGBVh7Lx giiS591k0iQMHtJusgJjMB8GA1UdIwQYMBaAFI8r1MEmNvAFm0CNBxavMsj1QGml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS80ODAxN0QzODMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhBV2JRSTBIRnE4eXlQVkFh YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dlV3U1kyOEFXYlFJMEhGcTh5eVBWQWFhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvNDgwMTdEMzgzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvMTdBNUE4NDAw RUM4MTFGMDg4NTEyRDQxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+HEMA0GCSqGSIb3DQEBCwUAA4IBAQCdKKwxsEFWZRa7zuef68ja hm3rZU0De/c6lk+a8V5ZvZT8AWL80yMR/iizZW73BV8GR64s5g1gznygGZ6c9IrX DnF1gMhDWd7bRa1qTlYWoWy517OLr/rMsM1X713IEHmnDbRph37qryKeXUyH9IE2 d93h8ErFyiGWYxOP5HS+51oPjnA2z3FkjDGX9ZDoeJFPePmOHaF+px46GE0x4nDy pQbCeIBRTx5AN3hVW5uGS9u62hxe+hYPDye/WyD0DR6/yZ9iYP0Qpbqwb2J/Shpe Mso86fimlRnBbMONKhOl40RiWMTgYCt8pl8hy/bONkAvJ41X+wR05JqaJsWjLHEY -----END CERTIFICATE-----Generated at Mon Mar 2 09:08:15 2026 by rpki-client