$ rpki-client -vvf rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/6A1ACEF4D5B711ECB09BCC49C4F9AE02.roa File: 6A1ACEF4D5B711ECB09BCC49C4F9AE02.roa (raw, json) Hash identifier: TVT+VrCwN+2S5FW1bm5sxd84i0yBJ4gQw0ij0DCJg48= Subject key identifier: 7C:C1:2C:38:E0:21:FC:D6:C1:EB:B1:A0:8D:A0:E4:B0:5A:B4:DD:6E Certificate issuer: /CN=A912142C/serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Certificate serial: 3553 Authority key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/6A1ACEF4D5B711ECB09BCC49C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:25:43 +0000 ROA not before: Mon 23 Feb 2026 05:56:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10076 IP address blocks: 202.5.192.0/20 maxlen: 24 202.5.192.28/32 maxlen: 32 2404:ec80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13651 (0x3553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912142C, serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A Validity Not Before: Feb 23 05:56:16 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47697-30ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:45:22:c2:61:31:a2:92:04:c2:03:5b:dc:3c: 5d:72:e9:99:c5:62:c3:f4:79:f0:b9:02:23:10:61: 33:6e:2c:24:1e:04:d0:5d:b2:a5:00:c9:5d:a0:ab: cd:dd:ee:7e:59:64:6a:25:9e:f7:a3:a1:31:06:45: 5e:f6:8e:e2:a3:dd:68:11:4a:36:9a:b3:32:e2:78: e4:0c:4b:5b:9c:c4:7d:c2:a0:f6:78:1e:fc:43:d8: 97:47:86:04:43:b3:f4:cb:34:ec:7a:c8:9e:b3:b3: 50:6f:32:fb:09:d4:dd:e9:1e:e0:35:dd:80:65:cd: 84:7c:f8:c2:8c:ba:2a:7c:94:fd:05:95:87:7a:47: 42:71:a8:d8:02:c8:00:1f:26:73:31:e1:8e:e1:23: 5c:7c:b6:be:7e:86:4c:66:ff:0f:cf:85:cc:64:2a: db:a4:97:92:f1:63:ec:1d:7c:1d:f1:08:23:ef:b7: b0:30:ea:10:a0:22:83:3c:e6:39:f2:30:a9:ac:49: c2:13:de:cc:b2:52:0d:fb:d7:9d:1e:52:51:66:49: 70:5d:d8:5e:c3:a6:00:36:75:8e:77:87:77:d2:f5: 8a:2b:8a:65:31:68:81:45:f7:09:55:a9:9a:ee:04: 7c:1c:ab:db:1e:8f:c3:44:f3:af:c4:f1:ad:80:d9: 31:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C1:2C:38:E0:21:FC:D6:C1:EB:B1:A0:8D:A0:E4:B0:5A:B4:DD:6E X509v3 Authority Key Identifier: keyid:BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/6A1ACEF4D5B711ECB09BCC49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.5.192.0/20 IPv6: 2404:ec80::/32 Signature Algorithm: sha256WithRSAEncryption 5c:3a:5a:45:e7:df:d3:91:fc:b3:bd:41:60:23:98:93:40:5f: f0:0c:9c:9d:83:8f:4a:82:aa:17:a3:b3:88:4d:7e:e7:c1:22: 87:ac:18:ba:06:9a:1a:40:b5:2b:50:46:84:55:13:3a:66:74: 71:f6:62:a9:4b:3a:d1:45:2f:85:fd:2b:23:b6:e2:33:30:5a: 50:0b:bf:9e:d3:0e:69:29:b7:97:1f:3c:35:af:9d:eb:37:f2: 19:d8:99:d1:bf:63:84:ed:ce:03:c0:d4:e1:6e:30:16:06:e9: 5e:00:db:de:8f:3b:98:2c:66:fe:e1:b3:7e:6a:2d:f8:05:1a: 0d:66:fb:5f:70:11:3b:c9:4f:40:7f:95:d8:10:0c:7b:50:7c: 8f:57:02:5d:44:10:b8:33:a5:73:fc:8a:dc:86:0e:67:18:9a: 02:3c:37:3a:60:fd:94:de:f5:9e:ee:51:91:e5:9d:ae:11:16: 8b:12:f0:51:2b:41:c8:53:bf:bd:30:d6:42:1a:a0:45:2d:54: 41:81:d1:1c:c0:1d:c4:7a:b8:7b:1a:35:5d:17:79:ed:45:0e: 5f:6c:ff:4e:a2:c3:65:86:ee:d9:df:8e:ca:04:2e:34:6e:6d: 8a:b9:52:45:07:29:df:57:6a:ae:d2:c5:4e:ed:14:d3:bb:c2: 28:0b:b2:51 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0MkMxMTAvBgNVBAUTKEJGNTgzRkYwN0RBMzU2RkRFMjgyODE5RjQ3QkNFRTI0 NzUxMzExOUEwHhcNMjYwMjIzMDU1NjE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzY5Ny0zMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUUiwmExopIEwgNb3DxdcumZxWLD9HnwuQIjEGEzbiwkHgTQXbKlAMldoKvN 3e5+WWRqJZ73o6ExBkVe9o7io91oEUo2mrMy4njkDEtbnMR9wqD2eB78Q9iXR4YE Q7P0yzTsesies7NQbzL7CdTd6R7gNd2AZc2EfPjCjLoqfJT9BZWHekdCcajYAsgA HyZzMeGO4SNcfLa+foZMZv8Pz4XMZCrbpJeS8WPsHXwd8Qgj77ewMOoQoCKDPOY5 8jCprEnCE97MslIN+9edHlJRZklwXdhew6YANnWOd4d30vWKK4plMWiBRfcJVama 7gR8HKvbHo/DRPOvxPGtgNkxaQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHzBLDjg IfzWweuxoI2g5LBatN1uMB8GA1UdIwQYMBaAFL9YP/B9o1b94oKBn0e87iR1ExGa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQyQy8yMEIzN0NGRTFE ODcxMUUyQkRFRkY3REUwOEIwMkNEMi92MWdfOEgyalZ2M2lnb0dmUjd6dUpIVVRF Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxZ184SDJqVnYzaWdvR2ZSN3p1SkhVVEVaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0MkMvMjBCMzdDRkUxRDg3MTFFMkJERUZGN0RFMDhCMDJDRDIvNkExQUNFRjRE NUI3MTFFQ0IwOUJDQzQ5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEygXAMA0EAgACMAcDBQAkBOyAMA0GCSqGSIb3DQEBCwUAA4IBAQBc OlpF59/TkfyzvUFgI5iTQF/wDJydg49KgqoXo7OITX7nwSKHrBi6BpoaQLUrUEaE VRM6ZnRx9mKpSzrRRS+F/SsjtuIzMFpQC7+e0w5pKbeXHzw1r53rN/IZ2JnRv2OE 7c4DwNThbjAWBuleANvejzuYLGb+4bN+ai34BRoNZvtfcBE7yU9Af5XYEAx7UHyP VwJdRBC4M6Vz/Irchg5nGJoCPDc6YP2U3vWe7lGR5Z2uERaLEvBRK0HIU7+9MNZC GqBFLVRBgdEcwB3Eerh7GjVdF3ntRQ5fbP9OosNlhu7Z347KBC40bm2KuVJFBynf V2qu0sVO7RTTu8IoC7JR -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:22 2026 by rpki-client