$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/BE4B3228691411EFB573C120C4F9AE02.roa File: BE4B3228691411EFB573C120C4F9AE02.roa (raw, json) Hash identifier: ovaDzOhz8t6euzDNkjZEtSnXx9uEV3qfaxhhzdo9Nh8= Subject key identifier: 90:86:16:C6:34:02:C1:C5:60:5B:4D:C0:08:04:32:6F:BE:A7:DB:0B Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 0441 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/BE4B3228691411EFB573C120C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:50 +0000 ROA not before: Tue 02 Dec 2025 23:59:05 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150703 IP address blocks: 202.148.176.0/24 maxlen: 24 202.148.185.0/24 maxlen: 24 202.148.186.0/24 maxlen: 24 202.148.188.0/24 maxlen: 24 2400:cd00:1051::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:59:05 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48a4d-79e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9a:32:f8:6e:5a:fe:9c:d2:30:94:00:a8:ac: db:83:93:de:f6:50:12:3f:4b:15:92:f3:1f:9a:a2: e0:f1:88:da:58:b4:57:9f:e7:2c:ee:36:9c:8a:a9: 8e:d4:59:22:eb:ff:df:cd:12:e9:f5:22:96:76:aa: 6a:7a:ae:29:21:81:41:ce:8a:4e:ed:06:24:1f:46: 23:72:39:b7:4a:18:27:32:6d:b0:c7:32:4c:13:33: c6:e8:b8:79:bf:d9:7e:85:ca:ad:0c:ca:50:b6:80: ce:ec:ec:ee:c8:49:db:59:fe:9f:3c:c0:e3:3a:1d: 6a:c5:19:1f:26:a7:3c:7c:5e:84:64:8f:e8:c3:bd: 48:d3:99:05:fa:59:78:0b:6b:7a:b5:0b:96:7a:00: 94:73:e7:21:4e:a3:a0:32:d5:7d:77:a2:cb:e7:40: 60:c7:28:d2:80:44:6b:90:77:ca:cd:c8:71:08:9e: 74:a8:e2:b2:ea:10:c4:66:f6:b7:55:9f:dd:aa:c1: 10:b8:c8:06:c6:e7:10:7b:8a:42:ae:04:98:67:eb: 77:51:a3:f3:d3:d8:23:36:57:db:ce:50:14:26:51: 67:2b:e1:bd:7d:74:c5:dc:c5:08:62:57:cd:1e:43: 7b:12:a8:e6:f2:40:d3:84:50:a6:9e:58:2f:5d:b7: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:86:16:C6:34:02:C1:C5:60:5B:4D:C0:08:04:32:6F:BE:A7:DB:0B X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/BE4B3228691411EFB573C120C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.148.176.0/24 202.148.185.0-202.148.186.255 202.148.188.0/24 IPv6: 2400:cd00:1051::/48 Signature Algorithm: sha256WithRSAEncryption 42:ba:b7:d2:a1:5b:a4:97:d5:a9:d0:90:74:af:7d:c1:b6:aa: bb:29:02:40:aa:2f:59:85:33:62:85:d8:83:fa:79:dc:8b:82: 28:13:d9:23:1f:a7:d0:2c:20:7f:e5:50:ca:5c:1b:4b:be:87: a3:05:63:99:ba:0b:79:47:2f:ac:ea:6d:0c:13:c6:6a:64:a5: bd:6e:a8:78:ab:7e:46:95:43:4c:27:30:5a:fe:7f:e6:94:06: 4e:6a:63:16:c1:43:a5:03:cd:7a:b7:34:87:18:5b:dd:4d:30: 36:65:7e:c9:71:fc:dc:65:6b:ea:80:b2:00:63:ff:18:4d:70: fc:d6:1b:d5:07:2d:4c:20:c7:cd:4e:4e:7a:10:5d:e4:b3:8d: 23:82:06:ea:90:c1:79:b7:13:8b:f0:2c:72:c0:e1:b2:a0:7f: a8:5f:09:35:ec:9d:86:06:f5:03:10:90:18:56:95:00:c8:47: ca:98:49:da:17:a0:91:6c:5f:27:78:41:10:d1:43:f2:d6:7b: 69:42:c6:bc:85:13:9c:e8:8c:fa:d9:6f:69:a2:f8:a9:b8:6e: c1:ff:c8:3a:96:3b:2c:79:5e:87:f9:ac:80:cc:f0:33:b6:0e: a3:49:e4:99:3e:9e:75:de:1c:8f:a6:38:2e:03:a5:e2:f7:d7: 6d:6a:8d:a5 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1OTA1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE0ZC03OWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJoy+G5a/pzSMJQAqKzbg5Pe9lASP0sVkvMfmqLg8YjaWLRXn+cs7jaciqmO 1Fki6//fzRLp9SKWdqpqeq4pIYFBzopO7QYkH0Yjcjm3ShgnMm2wxzJMEzPG6Lh5 v9l+hcqtDMpQtoDO7OzuyEnbWf6fPMDjOh1qxRkfJqc8fF6EZI/ow71I05kF+ll4 C2t6tQuWegCUc+chTqOgMtV9d6LL50BgxyjSgERrkHfKzchxCJ50qOKy6hDEZva3 VZ/dqsEQuMgGxucQe4pCrgSYZ+t3UaPz09gjNlfbzlAUJlFnK+G9fXTF3MUIYlfN HkN7Eqjm8kDThFCmnlgvXbf6EwIDAQABo4IChTCCAoEwHQYDVR0OBBYEFJCGFsY0 AsHFYFtNwAgEMm++p9sLMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQkU0QjMyMjg2 OTE0MTFFRkI1NzNDMTIwQzRGOUFFMDIucm9hMEQGCCsGAQUFBwEHAQH/BDUwMzAg BAIAATAaAwQAypSwMAwDBADKlLkDBADKlLoDBADKlLwwDwQCAAIwCQMHACQAzQAQ UTANBgkqhkiG9w0BAQsFAAOCAQEAQrq30qFbpJfVqdCQdK99wbaquykCQKovWYUz YoXYg/p53IuCKBPZIx+n0Cwgf+VQylwbS76HowVjmboLeUcvrOptDBPGamSlvW6o eKt+RpVDTCcwWv5/5pQGTmpjFsFDpQPNerc0hxhb3U0wNmV+yXH83GVr6oCyAGP/ GE1w/NYb1QctTCDHzU5OehBd5LONI4IG6pDBebcTi/AscsDhsqB/qF8JNeydhgb1 AxCQGFaVAMhHyphJ2hegkWxfJ3hBENFD8tZ7aULGvIUTnOiM+tlvaaL4qbhuwf/I OpY7LHleh/msgMzwM7YOo0nkmT6edd4cj6Y4LgOl4vfXbWqNpQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:18:47 2026 by rpki-client