$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa File: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (raw, json) Hash identifier: 0KyBtVxlmiU4yD9g8RswElbHQYxJyKsb4zJLZ1lp6S4= Subject key identifier: A4:15:5A:62:9C:4D:7C:A4:D8:EA:B6:62:34:B1:7D:A5:D8:65:A1:50 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 0A18 Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:31:42 +0000 ROA not before: Mon 24 Mar 2025 20:30:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140603 IP address blocks: 203.24.61.0/24 maxlen: 24 2001:df3:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Mar 24 20:30:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4077e-89bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:ae:c2:4f:cd:11:71:36:3c:d7:82:6b:34: 8d:9f:12:fb:5e:b1:c8:45:88:fd:8b:dc:d5:dc:cd: 84:35:ed:9e:cf:66:ad:d8:7b:5b:b6:f4:30:79:a4: 59:1f:f9:ad:20:45:f8:84:9c:1a:5a:7e:6a:4d:31: 5c:33:a5:e3:0b:ed:ea:5e:49:24:40:f9:2b:b9:d1: 84:86:55:59:41:30:89:a9:bb:95:f9:2e:64:85:35: 23:79:c0:db:a7:47:2a:95:c4:80:e4:8c:c4:71:3b: 10:05:4b:5b:a1:9e:79:26:60:e4:2c:19:c8:fc:be: c3:e9:57:1f:dc:dd:96:c4:99:71:17:47:73:7a:9d: 61:d4:bb:89:1c:31:22:48:f5:9a:6a:eb:d4:f6:de: 1e:04:30:7d:53:88:77:46:2f:4b:7b:c4:6c:35:5a: 20:a0:d4:5b:f2:35:ba:b6:5b:41:8d:25:c6:65:33: 0b:cf:0d:86:10:10:49:e5:c4:8d:af:29:e3:cb:74: 8e:58:fd:dd:0d:50:d5:b2:f0:86:b4:a3:4f:6c:32: 01:f0:79:f8:46:af:78:d9:12:20:e0:76:92:f0:38: d9:1b:2f:01:c9:c9:2f:47:26:fb:cd:56:84:08:48: b0:30:6c:dd:fa:5b:cd:2b:13:e4:1a:8b:90:e9:c0: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:15:5A:62:9C:4D:7C:A4:D8:EA:B6:62:34:B1:7D:A5:D8:65:A1:50 X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.24.61.0/24 IPv6: 2001:df3:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 46:3a:8c:14:92:59:73:96:64:be:ba:2c:e6:34:63:68:dc:4d: a1:29:33:f0:3d:25:95:99:3b:a4:92:e3:15:f1:a7:ca:f2:f6: 68:ef:cc:77:a4:cd:57:7f:ee:43:ea:f9:04:41:23:69:6e:18: 4a:4b:7e:77:2e:4d:da:4d:69:45:cf:3b:d2:a7:e7:4e:64:7a: c0:1c:c1:f5:33:50:95:e3:17:21:9c:98:3c:1b:10:48:1f:a5: fd:ef:0e:57:cc:91:da:fc:db:47:18:c3:88:64:69:43:54:cd: 84:66:61:d0:3a:77:e4:89:10:7a:2e:59:2e:00:d2:79:22:f0: 02:9e:c5:21:f5:4a:2a:7d:06:80:5c:9d:9b:9e:15:75:12:91: 83:1f:af:10:b8:d3:21:60:c1:ab:a2:4f:59:a4:7f:83:88:48: 7d:4d:22:3e:9a:65:b3:5c:8d:90:87:08:16:d7:24:8a:30:d8: 85:de:e7:b4:6f:03:8f:cf:f3:ad:6c:55:af:52:b0:4f:df:14: 1d:20:b7:be:67:26:61:c1:6e:e0:33:e3:03:1b:a7:56:27:5b: 16:cb:5d:b3:e7:13:e0:76:fb:30:fb:0f:20:48:fe:cd:47:3b: 38:4c:09:f8:d1:83:80:ea:8c:00:31:bb:a5:38:ad:41:86:94: 36:29:fe:3b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUwMzI0MjAzMDEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDc3ZS04OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9Cuwk/NEXE2PNeCazSNnxL7XrHIRYj9i9zV3M2ENe2ez2at2HtbtvQweaRZ H/mtIEX4hJwaWn5qTTFcM6XjC+3qXkkkQPkrudGEhlVZQTCJqbuV+S5khTUjecDb p0cqlcSA5IzEcTsQBUtboZ55JmDkLBnI/L7D6Vcf3N2WxJlxF0dzep1h1LuJHDEi SPWaauvU9t4eBDB9U4h3Ri9Le8RsNVogoNRb8jW6tltBjSXGZTMLzw2GEBBJ5cSN rynjy3SOWP3dDVDVsvCGtKNPbDIB8Hn4Rq942RIg4HaS8DjZGy8ByckvRyb7zVaE CEiwMGzd+lvNKxPkGouQ6cCDmwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKQVWmKc TXyk2Oq2YjSxfaXYZaFQMB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIzNDIvMEI0MTAwQzA4RThDMTFFQUJEMzQ1ODExQzRGOUFFMDIvNEQyM0E3N0U4 RThGMTFFQUIzMERDQTFBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyxg9MA8EAgACMAkDBwAgAQ3zj4AwDQYJKoZIhvcNAQELBQADggEB AEY6jBSSWXOWZL66LOY0Y2jcTaEpM/A9JZWZO6SS4xXxp8ry9mjvzHekzVd/7kPq +QRBI2luGEpLfncuTdpNaUXPO9Kn505kesAcwfUzUJXjFyGcmDwbEEgfpf3vDlfM kdr820cYw4hkaUNUzYRmYdA6d+SJEHouWS4A0nki8AKexSH1Sip9BoBcnZueFXUS kYMfrxC40yFgwauiT1mkf4OISH1NIj6aZbNcjZCHCBbXJIow2IXe57RvA4/P861s Va9SsE/fFB0gt75nJmHBbuAz4wMbp1YnWxbLXbPnE+B2+zD7DyBI/s1HOzhMCfjR g4DqjAAxu6U4rUGGlDYp/js= -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:14 2026 by rpki-client