$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa File: EDB1F68E3C8811EC889B9D78C4F9AE02.roa (raw, json) Hash identifier: HmmgtKcEaWNEx652ZmG3M6u6VFLBTA0tqlJh4wWcvjo= Subject key identifier: B1:56:E0:6E:27:4C:F9:EC:A0:C1:28:71:94:D1:0A:62:1A:94:BC:25 Certificate issuer: /CN=A9120AC1/serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Certificate serial: 057A Authority key identifier: 8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:37:37 +0000 ROA not before: Thu 05 Feb 2026 09:23:29 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45753 IP address blocks: 43.225.196.0/22 maxlen: 22 43.225.196.0/24 maxlen: 24 43.225.197.0/24 maxlen: 24 43.225.198.0/24 maxlen: 24 43.225.199.0/24 maxlen: 24 103.44.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Validity Not Before: Feb 5 09:23:29 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46b51-cf1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:19:18:c1:00:e0:a4:93:cd:a7:b5:df:95:4a: 38:d5:64:18:7f:05:a2:12:df:f6:e6:33:a1:e7:ea: bd:9e:0c:75:76:f1:a3:5f:58:0d:f4:76:2d:ec:a0: 05:df:a4:c2:c1:9f:5b:b3:45:5d:5b:31:b5:4d:d1: f9:ca:6d:52:e9:c4:3b:84:0f:6a:16:0a:26:94:94: f8:d0:09:00:77:0d:1c:75:f3:03:ce:fa:e4:56:6d: e5:ae:4f:c9:ba:a4:1f:b5:df:3a:57:96:7d:9d:4a: b7:de:54:a5:c5:94:80:8a:0a:f2:92:ba:cb:ba:7a: 7d:ed:2e:4d:d3:16:32:97:42:5e:b8:9d:42:64:51: 4d:6c:cc:a9:87:dc:ea:d2:e0:ea:5b:ca:1f:85:3f: c2:a9:0f:6c:12:9d:f8:23:f5:c1:a8:2c:00:7b:d7: e7:99:84:61:ef:51:d3:a5:de:43:9e:6a:f4:74:55: 94:1a:e2:30:02:37:1c:f0:35:3f:b7:d7:15:54:5c: dd:d0:b1:e5:f2:70:b3:99:c5:2d:e0:6f:0b:3e:2d: 3d:98:a4:9b:99:ba:e3:79:43:f4:af:95:b9:fb:f6: 78:63:d3:51:e9:d8:6f:3e:72:09:3a:55:f5:47:e2: 57:df:61:3c:c0:34:b9:f7:6d:94:6f:40:ae:65:c4: 1a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:56:E0:6E:27:4C:F9:EC:A0:C1:28:71:94:D1:0A:62:1A:94:BC:25 X509v3 Authority Key Identifier: keyid:8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.225.196.0/22 103.44.160.0/22 Signature Algorithm: sha256WithRSAEncryption a4:ee:42:8d:d9:18:78:9d:c6:e9:70:cc:a5:ee:50:7b:d1:92: 54:b5:a3:af:2f:85:5c:13:b4:7b:0f:f5:8b:ba:ef:36:5f:06: 02:45:d8:5d:fb:53:ab:0a:f0:27:9a:65:01:b9:17:48:78:9a: 3a:f4:f3:f1:b9:da:85:50:6a:a3:27:e0:0b:4c:20:ff:6f:4f: 8a:0c:08:78:30:e3:bc:c9:e9:1f:0c:33:01:59:d9:df:1d:c7: 84:9f:91:4f:8f:a3:7d:89:32:19:a2:97:22:08:d1:fd:95:61: 62:12:84:8b:d8:9f:62:0c:ad:7d:2f:6f:91:95:f6:6e:95:bf: f9:4d:5c:42:45:bd:b6:73:10:f4:70:93:5e:1c:b0:87:a7:46: 2d:bd:5c:46:e1:ed:ee:15:a9:2e:88:03:a9:33:fc:cf:75:09: bc:c1:58:bb:8f:c6:02:10:7d:5d:b8:5e:d8:07:30:c5:fe:b1: 05:7b:c6:03:61:28:07:bf:e7:9a:6c:75:43:5b:72:fe:3b:e8: d1:6e:0c:4c:46:9e:b2:f8:b7:b7:ea:db:83:ed:a7:d9:33:8d: 01:13:1a:55:b3:ea:80:12:41:b5:e8:9f:39:93:ee:80:2b:af: 39:e7:a9:93:9f:af:a4:de:e9:d5:65:24:78:0d:bb:04:03:82: 97:2e:dd:56 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDhGMkJENEMxMjYzNkYwMDU5QjQwOEQwNzE2QUYzMkM4 RjU0MDY5QTUwHhcNMjYwMjA1MDkyMzI5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmI1MS1jZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRkYwQDgpJPNp7XflUo41WQYfwWiEt/25jOh5+q9ngx1dvGjX1gN9HYt7KAF 36TCwZ9bs0VdWzG1TdH5ym1S6cQ7hA9qFgomlJT40AkAdw0cdfMDzvrkVm3lrk/J uqQftd86V5Z9nUq33lSlxZSAigrykrrLunp97S5N0xYyl0JeuJ1CZFFNbMyph9zq 0uDqW8ofhT/CqQ9sEp34I/XBqCwAe9fnmYRh71HTpd5Dnmr0dFWUGuIwAjcc8DU/ t9cVVFzd0LHl8nCzmcUt4G8LPi09mKSbmbrjeUP0r5W5+/Z4Y9NR6dhvPnIJOlX1 R+JX32E8wDS5922Ub0CuZcQa0wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLFW4G4n TPnsoMEocZTRCmIalLwlMB8GA1UdIwQYMBaAFI8r1MEmNvAFm0CNBxavMsj1QGml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS80ODAxN0QzODMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhBV2JRSTBIRnE4eXlQVkFh YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dlV3U1kyOEFXYlFJMEhGcTh5eVBWQWFhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvNDgwMTdEMzgzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvRURCMUY2OEUz Qzg4MTFFQzg4OUI5RDc4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK+HEAwQCZyygMA0GCSqGSIb3DQEBCwUAA4IBAQCk7kKN2Rh4ncbp cMyl7lB70ZJUtaOvL4VcE7R7D/WLuu82XwYCRdhd+1OrCvAnmmUBuRdIeJo69PPx udqFUGqjJ+ALTCD/b0+KDAh4MOO8yekfDDMBWdnfHceEn5FPj6N9iTIZopciCNH9 lWFiEoSL2J9iDK19L2+RlfZulb/5TVxCRb22cxD0cJNeHLCHp0YtvVxG4e3uFaku iAOpM/zPdQm8wVi7j8YCEH1duF7YBzDF/rEFe8YDYSgHv+eabHVDW3L+O+jRbgxM Rp6y+Le36tuD7afZM40BExpVs+qAEkG16J85k+6AK68556mTn6+k3unVZSR4DbsE A4KXLt1W -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:39 2026 by rpki-client