$ rpki-client -vvf rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/4C67EC06C68E11E983395515C4F9AE02.roa File: 4C67EC06C68E11E983395515C4F9AE02.roa (raw, json) Hash identifier: O9SFY6mcwxzxPd5Lw8GpZMWUtvVj4velHO/wpusDdSM= Subject key identifier: 7B:D9:9C:33:20:8B:BB:2F:DE:55:9A:B4:1C:62:28:3A:64:0C:5E:F2 Certificate issuer: /CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Certificate serial: 0E35 Authority key identifier: FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/4C67EC06C68E11E983395515C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:34:00 +0000 ROA not before: Tue 18 Nov 2025 17:37:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38902 IP address blocks: 202.174.92.0/23 maxlen: 23 202.174.92.0/24 maxlen: 24 202.174.93.0/24 maxlen: 24 202.174.94.0/23 maxlen: 23 202.174.94.0/24 maxlen: 24 202.174.95.0/24 maxlen: 24 2402:f100::/36 maxlen: 36 2402:f100::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3637 (0xe35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124BD3, serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Validity Not Before: Nov 18 17:37:01 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45c68-cdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:68:c0:2d:fa:56:35:36:c4:be:14:59:97:e8: c0:71:b4:73:d1:63:44:67:d9:12:57:71:8d:33:59: e1:7e:97:bd:ff:ba:ce:d6:61:a2:f5:a8:8e:99:9d: a6:78:21:59:ec:ba:43:fa:aa:2a:88:d5:4e:a5:88: be:4b:9b:51:85:f7:79:6a:f2:7e:b3:41:15:ca:b1: d1:ad:dd:53:7c:8c:44:ad:f9:c6:4a:6a:eb:11:5b: ac:4c:91:9f:b0:55:18:a2:66:bb:db:2f:2f:d1:dc: 20:e4:7e:f7:7c:a5:c5:8e:d7:3e:25:e4:31:e8:de: 95:bd:5a:51:3b:50:d5:0a:f2:ec:f0:fd:72:e7:41: 6e:e3:c5:77:79:b5:83:11:b8:78:a2:e8:7d:0a:34: fb:13:2e:aa:39:e1:8a:3d:a5:bd:d2:8c:ec:be:f7: 81:b5:2f:74:00:0b:b8:70:49:28:0c:c3:89:01:44: a4:05:8f:fc:84:ea:8f:1a:6a:35:48:91:f7:fc:3f: 1c:3c:a2:9a:1f:e3:52:d0:96:67:43:82:9f:6e:20: 9c:4b:c6:8d:d9:d9:af:7b:53:7c:6c:68:e1:f3:70: b1:59:f4:1e:58:78:29:ea:7c:37:19:6a:34:2d:32: bf:ab:6e:41:34:20:c8:e8:ba:80:5d:b6:ba:25:01: 13:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D9:9C:33:20:8B:BB:2F:DE:55:9A:B4:1C:62:28:3A:64:0C:5E:F2 X509v3 Authority Key Identifier: keyid:FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/4C67EC06C68E11E983395515C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.174.92.0/22 IPv6: 2402:f100::/36 Signature Algorithm: sha256WithRSAEncryption 1b:c6:ed:32:0c:f7:20:92:ac:9a:14:29:ed:28:ef:24:7f:23: 27:75:24:c1:a5:1d:f8:dc:06:93:ab:35:56:3a:f7:fd:85:86: b2:f8:9c:4e:f5:3a:cf:d3:9c:ab:7a:44:47:4c:52:f0:0b:58: 16:8f:9c:c0:c1:f3:d3:0b:d8:0e:c5:5c:77:b6:a0:97:f3:66: ca:5a:3c:fe:bc:20:71:f8:aa:d9:76:39:b8:0f:25:1f:c7:c3: bd:cf:5d:85:a6:fa:18:38:7f:c8:93:ef:84:c4:9a:6b:37:be: f3:34:7e:a7:f5:71:bc:a2:03:c3:00:ec:ef:64:6c:c8:db:a0: 1a:c4:21:fc:ab:b0:be:3c:b4:db:5d:69:0b:08:82:4b:1b:51: cd:95:e6:5b:19:de:89:fa:63:f9:a4:77:16:ba:07:47:60:ac: f2:e2:34:ff:2a:49:49:16:57:6c:58:5f:83:e7:5f:65:aa:e6: 7f:36:d6:9e:b8:5d:f1:59:4e:b9:e0:80:2e:73:fe:9f:f5:8d: d3:d7:fa:c9:62:6b:e4:74:31:89:4a:d8:ce:05:36:db:ec:7a: 97:35:d8:30:ed:82:d2:9a:4d:40:08:e9:1b:8a:54:84:8d:9b: f9:f8:d3:4b:ee:d4:c0:5b:a1:ac:ce:fd:17:da:53:e6:99:9b: 2e:73:94:fe -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICDjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCRDMxMTAvBgNVBAUTKEZCRTZDMEYzMkIyRjJGQzQ1NzYwQTAzNDJFNDNCQkY1 NTJCNERFODUwHhcNMjUxMTE4MTczNzAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWM2OC1jZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02jALfpWNTbEvhRZl+jAcbRz0WNEZ9kSV3GNM1nhfpe9/7rO1mGi9aiOmZ2m eCFZ7LpD+qoqiNVOpYi+S5tRhfd5avJ+s0EVyrHRrd1TfIxErfnGSmrrEVusTJGf sFUYoma72y8v0dwg5H73fKXFjtc+JeQx6N6VvVpRO1DVCvLs8P1y50Fu48V3ebWD Ebh4ouh9CjT7Ey6qOeGKPaW90ozsvveBtS90AAu4cEkoDMOJAUSkBY/8hOqPGmo1 SJH3/D8cPKKaH+NS0JZnQ4KfbiCcS8aN2dmve1N8bGjh83CxWfQeWHgp6nw3GWo0 LTK/q25BNCDI6LqAXba6JQETNwIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFHvZnDMg i7sv3lWatBxiKDpkDF7yMB8GA1UdIwQYMBaAFPvmwPMrLy/EV2CgNC5Du/VStN6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEJEMy8wRTREODY3QUM2 OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4UlhZS0EwTGtPNzlWSzAz b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0tYkE4eXN2TDhSWFlLQTBMa083OVZLMDNvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjRCRDMvMEU0RDg2N0FDNjhEMTFFOTlCNDUyRDEzQzRGOUFFMDIvNEM2N0VDMDZD NjhFMTFFOTgzMzk1NTE1QzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQCyq5cMA4EAgACMAgDBgQkAvEAADANBgkqhkiG9w0BAQsFAAOCAQEA G8btMgz3IJKsmhQp7SjvJH8jJ3UkwaUd+NwGk6s1Vjr3/YWGsvicTvU6z9Ocq3pE R0xS8AtYFo+cwMHz0wvYDsVcd7agl/Nmylo8/rwgcfiq2XY5uA8lH8fDvc9dhab6 GDh/yJPvhMSaaze+8zR+p/VxvKIDwwDs72RsyNugGsQh/Kuwvjy0211pCwiCSxtR zZXmWxneifpj+aR3FroHR2Cs8uI0/ypJSRZXbFhfg+dfZarmfzbWnrhd8VlOueCA LnP+n/WN09f6yWJr5HQxiUrYzgU22+x6lzXYMO2C0ppNQAjpG4pUhI2b+fjTS+7U wFuhrM79F9pT5pmbLnOU/g== -----END CERTIFICATE-----Generated at Mon Mar 2 13:32:30 2026 by rpki-client