$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa File: AF4E5B08483911EEB846EA36C4F9AE02.roa (raw, json) Hash identifier: 7AD0EtO6OgTcq7iPrxEzW9VN1IAYjbMxwXVENNdHRmk= Subject key identifier: 3F:9A:C0:CB:60:EB:07:7F:45:51:FF:DC:DA:42:53:43:71:80:3F:DA Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0B14 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:44:58 +0000 ROA not before: Thu 14 Aug 2025 19:59:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150744 IP address blocks: 123.253.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D, serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Aug 14 19:59:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46d0a-2fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:67:79:6c:be:95:d0:37:1a:f2:7f:aa:fe: 39:40:8c:89:df:31:4a:c3:6e:6a:b4:ce:6c:b9:b6: 95:56:9c:08:81:c1:40:bc:2a:03:51:1d:56:4d:e0: 51:77:d0:92:95:d5:ef:6f:a5:19:99:f5:fc:9d:b5: 44:ba:81:95:8f:f8:85:53:ce:69:38:57:23:7a:52: 42:2c:58:a8:7c:86:a9:5f:36:d8:9c:c4:bb:0e:94: 64:a3:48:68:97:ce:6e:fc:99:72:5f:90:b9:d9:d6: 98:fb:b8:96:19:96:a8:57:49:d8:2a:57:3c:7c:81: 68:61:27:a3:a7:95:8c:85:a7:bf:16:3d:71:49:48: 98:97:16:db:9a:89:47:43:69:77:e1:fe:74:67:82: d2:d6:fb:32:66:31:b6:28:1b:cd:70:ed:e1:88:c4: 29:3c:c1:36:2e:64:9a:e2:4b:6c:80:d9:99:56:d6: 48:e7:e2:6a:6b:20:58:5c:6b:be:ed:24:81:1f:73: 70:51:f1:4b:f1:41:dd:47:3c:5f:05:a4:1c:6b:1b: bc:2f:43:fa:5a:aa:5c:2f:74:47:ce:df:7f:18:b9: dc:d1:a7:87:c6:bb:a6:ff:e1:ff:9e:58:6a:4e:13: c2:09:3d:fc:b4:87:20:ab:66:c0:32:b0:50:d1:65: c4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9A:C0:CB:60:EB:07:7F:45:51:FF:DC:DA:42:53:43:71:80:3F:DA X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.96.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:04:3b:8f:50:b7:ea:9b:a9:56:06:67:52:f2:06:ab:f4:ec: d1:d7:c8:c0:96:9f:63:ed:45:e5:a9:13:d6:e0:8c:0d:a5:35: 20:a6:bf:72:39:41:89:d3:3e:24:fa:3f:0a:d2:1e:74:fc:9e: bf:d0:17:8e:c8:18:82:3b:24:69:53:41:93:b1:50:f7:32:03: 21:57:01:11:ce:8a:e2:45:88:ea:48:24:91:74:4b:f9:70:03: d7:ef:92:5d:07:d3:71:70:31:5d:61:1d:e5:37:8e:aa:d8:4d: 2e:e9:9a:e0:17:7e:14:97:e0:7c:95:a2:e8:2f:9e:12:45:e5: 80:4a:de:9e:68:97:1b:f0:8c:7d:d1:35:21:99:18:11:42:f1: 3f:d1:cb:71:c7:a0:d8:34:b0:b4:15:a7:6f:ac:fc:2f:6a:45: 65:d6:51:41:9a:85:de:85:0a:ad:bb:09:ff:2a:ff:a5:53:d0: a8:44:c9:52:8e:49:7c:e6:5f:fd:0a:fb:0e:b2:0f:6f:47:2d: ae:be:d8:74:d2:a7:59:bd:77:82:90:b7:c1:5a:ff:fc:95:3f: 49:72:16:af:f3:29:87:90:4a:95:c7:e1:ad:bd:40:f3:d6:1c: c6:ba:73:0d:0f:d1:52:24:a9:39:6c:c7:47:aa:ba:68:aa:a0: 1f:99:4d:c1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjUwODE0MTk1OTU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQwYS0yZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbZneWy+ldA3GvJ/qv45QIyJ3zFKw25qtM5subaVVpwIgcFAvCoDUR1WTeBR d9CSldXvb6UZmfX8nbVEuoGVj/iFU85pOFcjelJCLFiofIapXzbYnMS7DpRko0ho l85u/JlyX5C52daY+7iWGZaoV0nYKlc8fIFoYSejp5WMhae/Fj1xSUiYlxbbmolH Q2l34f50Z4LS1vsyZjG2KBvNcO3hiMQpPME2LmSa4ktsgNmZVtZI5+JqayBYXGu+ 7SSBH3NwUfFL8UHdRzxfBaQcaxu8L0P6WqpcL3RHzt9/GLnc0aeHxrum/+H/nlhq ThPCCT38tIcgq2bAMrBQ0WXEmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD+awMtg 6wd/RVH/3NpCU0NxgD/aMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvQUY0RTVCMDg0 ODM5MTFFRUI4NDZFQTM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe/1gMA0GCSqGSIb3DQEBCwUAA4IBAQA9BDuPULfqm6lWBmdS8gar 9OzR18jAlp9j7UXlqRPW4IwNpTUgpr9yOUGJ0z4k+j8K0h50/J6/0BeOyBiCOyRp U0GTsVD3MgMhVwERzoriRYjqSCSRdEv5cAPX75JdB9NxcDFdYR3lN46q2E0u6Zrg F34Ul+B8laLoL54SReWASt6eaJcb8Ix90TUhmRgRQvE/0ctxx6DYNLC0FadvrPwv akVl1lFBmoXehQqtuwn/Kv+lU9CoRMlSjkl85l/9CvsOsg9vRy2uvth00qdZvXeC kLfBWv/8lT9Jchav8ymHkEqVx+GtvUDz1hzGunMND9FSJKk5bMdHqrpoqqAfmU3B -----END CERTIFICATE-----Generated at Mon Mar 2 02:13:25 2026 by rpki-client