$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/1C2DE6A6D4A311F08D323E54C4F9AE02.roa File: 1C2DE6A6D4A311F08D323E54C4F9AE02.roa (raw, json) Hash identifier: tfqU0yp7k06G8a+YLVOyxW/4efWaKePEWJ7Jmic77aU= Subject key identifier: 47:C6:19:C9:50:70:9B:44:92:D7:96:47:EA:EC:1E:CC:39:42:30:B2 Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: E3 Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/1C2DE6A6D4A311F08D323E54C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:31 +0000 ROA not before: Tue 09 Dec 2025 02:02:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 131089 IP address blocks: 110.78.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Dec 9 02:02:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f63-3fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:32:0e:dc:dc:e2:7a:eb:8e:60:d0:d2:18: d4:d2:72:8b:8a:b8:ce:d3:35:e9:22:03:12:96:27: fe:1d:c9:05:c0:ad:b5:fd:1e:16:7e:a1:dc:87:9d: 7f:c4:8b:dd:f5:88:a3:11:b6:3d:f7:b5:35:5b:f1: cc:b5:a8:1f:ef:62:bf:1b:ba:8b:37:7b:2b:d1:16: 24:88:c6:ac:04:b8:43:17:81:05:ec:6d:c2:bf:ef: 1d:7f:dd:5a:44:79:7d:42:1f:5d:ac:a9:d9:a6:8d: 18:e9:0f:5b:5d:c2:79:31:37:3a:65:8e:8e:35:dc: 11:10:d4:34:db:01:13:a2:57:eb:66:ec:96:5b:05: f1:e5:63:13:9b:e2:1d:76:79:c3:54:96:50:13:7d: 36:03:8e:ee:55:19:73:f3:26:a8:d4:a3:21:70:b4: 7c:57:94:76:bb:8f:6d:6a:5a:99:55:96:31:aa:9b: e9:87:ca:1b:d2:cb:4a:6b:87:d4:6f:57:07:32:49: 12:ce:ba:df:1a:65:19:b4:34:6e:dc:0e:2e:ac:4b: 31:49:19:d5:f2:9a:bd:8e:58:93:fa:b6:99:47:bd: 95:50:5d:6f:9b:b1:b7:c3:26:ef:1a:64:95:a8:1d: df:70:1e:e7:ab:b7:78:f9:81:00:7d:16:1e:cb:29: 67:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C6:19:C9:50:70:9B:44:92:D7:96:47:EA:EC:1E:CC:39:42:30:B2 X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/1C2DE6A6D4A311F08D323E54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.78.25.0/24 Signature Algorithm: sha256WithRSAEncryption 53:97:6d:b7:e0:90:27:2e:55:31:5e:0b:54:8b:75:82:16:99: 9e:5f:9a:02:cb:cd:a8:22:cc:1b:0a:a4:06:65:fb:7e:1e:ab: 85:46:69:73:9a:60:af:f1:80:4d:eb:76:df:c6:ad:f6:f8:65: a0:cf:1f:04:88:96:c3:84:b0:bb:4a:61:d4:49:c4:da:69:ec: d7:16:24:c9:a2:45:11:b9:d3:a7:14:02:35:e2:1f:14:2b:03: 1a:e6:e8:86:54:de:5d:32:f3:ed:b6:13:07:5a:23:ff:88:c7: ed:c9:61:b9:bd:d3:e3:0c:00:3e:f1:1f:a8:3e:5c:79:f4:ac: 4d:eb:7e:9c:8b:31:74:d7:a1:6c:e9:04:f1:8f:74:b1:07:ec: ba:62:85:64:7f:ac:38:b5:42:e0:37:e6:fa:cb:df:66:0a:63: 81:f1:46:2e:05:14:ff:74:48:eb:76:98:6f:97:34:ed:4b:66: 58:6d:d2:55:20:92:b1:c1:c9:6d:1e:c3:50:46:86:7f:ab:fe: ff:06:68:ce:96:7d:97:90:2e:9e:be:da:58:1a:0b:22:0a:7c: 5a:4d:b0:b9:d1:56:f1:22:c9:ce:97:e5:35:81:53:d7:28:be: 67:55:76:dc:87:e7:f9:7f:4c:7c:bb:ca:31:83:1c:9a:b6:57: ac:ce:c9:69 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjUxMjA5MDIwMjI4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY2My0zZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFIyDtzc4nrrjmDQ0hjU0nKLirjO0zXpIgMSlif+HckFwK21/R4WfqHch51/ xIvd9YijEbY997U1W/HMtagf72K/G7qLN3sr0RYkiMasBLhDF4EF7G3Cv+8df91a RHl9Qh9drKnZpo0Y6Q9bXcJ5MTc6ZY6ONdwRENQ02wETolfrZuyWWwXx5WMTm+Id dnnDVJZQE302A47uVRlz8yao1KMhcLR8V5R2u49talqZVZYxqpvph8ob0stKa4fU b1cHMkkSzrrfGmUZtDRu3A4urEsxSRnV8pq9jliT+raZR72VUF1vm7G3wybvGmSV qB3fcB7nq7d4+YEAfRYeyylnxwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEfGGclQ cJtEkteWR+rsHsw5QjCyMB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvMUMyREU2QTZE NEEzMTFGMDhEMzIzRTU0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAbk4ZMA0GCSqGSIb3DQEBCwUAA4IBAQBTl2234JAnLlUxXgtUi3WC FpmeX5oCy82oIswbCqQGZft+HquFRmlzmmCv8YBN63bfxq32+GWgzx8EiJbDhLC7 SmHUScTaaezXFiTJokURudOnFAI14h8UKwMa5uiGVN5dMvPtthMHWiP/iMftyWG5 vdPjDAA+8R+oPlx59KxN636cizF016Fs6QTxj3SxB+y6YoVkf6w4tULgN+b6y99m CmOB8UYuBRT/dEjrdphvlzTtS2ZYbdJVIJKxwcltHsNQRoZ/q/7/BmjOln2XkC6e vtpYGgsiCnxaTbC50VbxIsnOl+U1gVPXKL5nVXbch+f5f0x8u8oxgxyatleszslp -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:13 2026 by rpki-client