$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa File: 300438B6C03511EFA42E9085C4F9AE02.roa (raw, json) Hash identifier: bPTiYTxBxLwgfGF9jUdmUbDxjsKoq1F4YRnN4H89Q34= Subject key identifier: 24:38:00:1F:2D:14:7E:C1:D7:C0:81:FF:05:42:31:FC:18:4B:44:D1 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 01BA Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:01:45 +0000 ROA not before: Mon 05 Jan 2026 03:22:22 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152114 IP address blocks: 180.94.24.0/23 maxlen: 23 180.94.24.0/24 maxlen: 24 180.94.25.0/24 maxlen: 24 2001:df3:2dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Jan 5 03:22:22 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41c98-f15d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:e9:aa:08:6a:de:47:45:44:30:4e:51:e2: 7b:9a:d5:56:a5:f5:71:e3:1a:e5:25:0e:fd:e4:b4: 23:fc:d1:18:b7:d0:df:06:92:f1:35:63:42:a9:1c: b5:16:70:ef:a5:5d:b4:1c:d6:d5:3d:30:9c:79:e4: 62:f6:b8:54:2b:03:95:13:9e:b2:7b:65:01:a7:79: 02:f7:1f:bf:b5:42:61:0c:c6:b2:00:c1:d6:8f:31: 2c:8f:99:9a:8e:75:ee:52:ce:7c:97:8f:9b:48:ec: 1e:fe:b7:b1:1d:da:68:ca:17:42:45:ac:17:53:f7: 57:69:3e:67:e4:c0:a0:30:eb:28:ea:1b:a9:e7:09: 4a:86:87:9a:4f:65:6a:16:2a:af:78:b1:0d:4b:b8: 41:c9:7e:ce:e8:53:a5:ee:bc:78:de:3a:d0:d8:08: 05:27:f3:21:2d:d1:d9:0c:21:40:b1:e0:01:af:e5: d8:4b:bf:ce:0e:48:5f:f6:38:4b:15:6c:78:94:44: 22:fd:b7:73:74:ad:bc:dc:9b:59:a5:e3:6e:19:71: 51:d3:5a:cd:44:57:4d:71:24:fd:ac:be:4c:a4:79: 0e:cc:56:6f:b7:2c:1c:53:73:e9:c1:dc:7a:a0:09: ba:d9:e4:b4:05:17:bd:86:30:cd:d4:28:8f:35:51: 1f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:38:00:1F:2D:14:7E:C1:D7:C0:81:FF:05:42:31:FC:18:4B:44:D1 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/300438B6C03511EFA42E9085C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.94.24.0/23 IPv6: 2001:df3:2dc0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:37:b5:fe:c0:23:b7:34:04:08:48:8f:3b:ac:48:d3:3f:87: 65:1a:d1:e7:52:b0:84:08:c1:fe:f2:72:01:af:e9:6c:45:82: 5b:13:43:b6:99:f9:06:cb:70:40:77:e2:d5:3e:a8:cb:83:3a: aa:8f:b4:a1:de:bb:f5:60:8d:d0:67:08:c6:91:1f:67:02:15: 9f:48:bb:d5:34:b7:71:8f:c8:86:21:5c:f8:71:fc:55:62:43: 36:ac:21:07:34:0b:a6:b0:cf:35:f1:c9:46:93:3f:d6:46:ed: 87:2b:92:36:2e:22:26:20:4b:96:35:8a:8a:3e:88:5c:78:f3: cc:6c:92:25:02:ee:43:3c:52:df:41:37:98:3f:f2:36:2c:58: c9:c0:6a:4f:d6:1f:33:d3:6e:b4:ed:47:bf:7a:cf:b9:20:a4: 0f:2b:3a:1b:07:30:89:a2:58:93:9f:01:7a:23:af:b3:03:eb: 0c:47:19:1e:2d:8b:6d:18:ca:1e:6a:c0:bd:a4:4e:95:bf:4c: 34:d2:98:bb:fc:37:3c:dd:68:f5:8b:9e:8d:03:f8:2c:1c:c4: 47:42:e5:0f:c3:37:e5:e8:ff:71:c2:e8:bf:13:08:e7:24:1c: 31:f4:1d:e3:ae:63:85:8b:e3:19:69:a4:86:2a:61:20:dd:fd: e4:5f:e4:f1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjYwMTA1MDMyMjIyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWM5OC1mMTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2vpqghq3kdFRDBOUeJ7mtVWpfVx4xrlJQ795LQj/NEYt9DfBpLxNWNCqRy1 FnDvpV20HNbVPTCceeRi9rhUKwOVE56ye2UBp3kC9x+/tUJhDMayAMHWjzEsj5ma jnXuUs58l4+bSOwe/rexHdpoyhdCRawXU/dXaT5n5MCgMOso6hup5wlKhoeaT2Vq FiqveLENS7hByX7O6FOl7rx43jrQ2AgFJ/MhLdHZDCFAseABr+XYS7/ODkhf9jhL FWx4lEQi/bdzdK283JtZpeNuGXFR01rNRFdNcST9rL5MpHkOzFZvtywcU3Ppwdx6 oAm62eS0BRe9hjDN1CiPNVEf7wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCQ4AB8t FH7B18CB/wVCMfwYS0TRMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNDQTQvQjc1MTZCMTA4OUI2MTFFRTk5NTEyQTZEQzRGOUFFMDIvMzAwNDM4QjZD MDM1MTFFRkE0MkU5MDg1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBtF4YMA8EAgACMAkDBwAgAQ3zLcAwDQYJKoZIhvcNAQELBQADggEB ACw3tf7AI7c0BAhIjzusSNM/h2Ua0edSsIQIwf7ycgGv6WxFglsTQ7aZ+QbLcEB3 4tU+qMuDOqqPtKHeu/VgjdBnCMaRH2cCFZ9Iu9U0t3GPyIYhXPhx/FViQzasIQc0 C6awzzXxyUaTP9ZG7YcrkjYuIiYgS5Y1ioo+iFx488xskiUC7kM8Ut9BN5g/8jYs WMnAak/WHzPTbrTtR796z7kgpA8rOhsHMImiWJOfAXojr7MD6wxHGR4ti20Yyh5q wL2kTpW/TDTSmLv8NzzdaPWLno0D+CwcxEdC5Q/DN+Xo/3HC6L8TCOckHDH0HeOu Y4WL4xlppIYqYSDd/eRf5PE= -----END CERTIFICATE-----Generated at Mon Mar 2 23:23:40 2026 by rpki-client