$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa File: 5537463AC91911F0AFA34C6DC4F9AE02.roa (raw, json) Hash identifier: +Aqpgsv63vqmtQkR3ggdxV7iptUt9Fzgpnq420IOOtc= Subject key identifier: 29:FF:8F:21:1C:91:F3:6B:31:0B:DC:7B:D9:E9:DB:A7:39:66:35:6F Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: E5 Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:33 +0000 ROA not before: Tue 09 Dec 2025 03:32:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135566 IP address blocks: 122.155.26.0/24 maxlen: 24 122.155.27.0/24 maxlen: 24 202.139.197.0/24 maxlen: 24 202.139.198.0/24 maxlen: 24 202.139.199.0/24 maxlen: 24 202.139.200.0/24 maxlen: 24 202.139.201.0/24 maxlen: 24 202.139.202.0/24 maxlen: 24 202.139.203.0/24 maxlen: 24 202.139.204.0/24 maxlen: 24 202.139.205.0/24 maxlen: 24 202.139.206.0/24 maxlen: 24 202.139.207.0/24 maxlen: 24 202.139.208.0/24 maxlen: 24 202.139.209.0/24 maxlen: 24 202.139.210.0/24 maxlen: 24 202.139.211.0/24 maxlen: 24 202.139.212.0/24 maxlen: 24 202.139.213.0/24 maxlen: 24 202.139.215.0/24 maxlen: 24 202.139.216.0/24 maxlen: 24 202.139.217.0/24 maxlen: 24 2001:c38:90a0::/44 maxlen: 44 2001:c38:90a9::/48 maxlen: 48 2001:c38:90aa::/48 maxlen: 48 2001:c38:90ab::/48 maxlen: 48 2001:c38:90ae::/48 maxlen: 48 2001:c38:90af::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Dec 9 03:32:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f65-4c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bd:5b:76:7a:84:37:83:e7:80:23:2c:63:0a: 37:15:b1:ad:15:56:2d:9b:82:c5:a7:e9:79:6e:eb: 72:08:a3:11:d1:05:39:10:7c:89:14:87:c8:80:70: 70:8d:88:c2:9d:67:0f:ae:5c:36:65:53:e2:88:b7: ee:b7:75:43:11:df:f6:36:86:39:5c:a4:73:4b:80: 8b:6b:5c:d0:ef:dc:c4:c1:41:41:de:57:cd:c5:1d: fb:d6:bf:7c:a4:7d:fa:ed:4b:eb:ba:e2:42:3e:81: bc:da:30:24:62:99:de:3e:97:1d:b6:2f:dd:9e:da: a7:62:53:02:42:46:d8:15:ef:fc:dc:37:29:64:5e: 75:8e:6d:c4:9e:84:7c:7f:aa:dd:e8:72:6a:d9:5b: 46:7c:9a:4f:aa:be:a0:b0:e5:33:24:62:1c:dd:1b: 3d:2f:14:fd:e0:58:31:54:12:05:c2:42:36:6e:08: 9c:ea:d7:b3:e2:69:aa:42:9a:a8:9f:e7:0c:88:a9: 2f:47:29:bb:c3:49:1e:4c:6c:ec:63:c1:53:c0:38: 0d:95:66:f8:ee:22:49:75:e2:09:79:a6:89:f9:12: 31:ef:aa:c2:ba:fe:5f:28:88:ec:da:15:01:0f:4b: d1:92:08:70:08:81:c3:31:8d:2d:27:b5:9f:c8:f5: 01:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:FF:8F:21:1C:91:F3:6B:31:0B:DC:7B:D9:E9:DB:A7:39:66:35:6F X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/5537463AC91911F0AFA34C6DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.155.26.0/23 202.139.197.0-202.139.213.255 202.139.215.0-202.139.217.255 IPv6: 2001:c38:90a0::/44 Signature Algorithm: sha256WithRSAEncryption 16:ae:97:73:77:68:84:06:16:2e:73:66:b2:eb:fc:1d:35:18: 98:be:a3:48:55:ef:2a:9f:6e:5a:ad:12:f0:27:f7:9f:2f:74: ae:21:ef:79:06:e6:8b:de:30:c3:6d:a1:3b:50:cc:29:68:b7: 58:c8:84:9d:7a:18:b5:8f:a8:3c:71:23:55:fb:bb:7e:49:91: 55:21:08:d0:2c:b8:28:08:55:41:b3:f3:ab:bf:47:fd:cd:4c: d1:62:82:71:5c:73:9d:6f:c8:be:72:9b:f4:81:6d:1d:27:c4: 02:3f:60:ff:05:a3:99:d1:cd:89:79:0c:85:1f:2f:52:57:63: 9b:fa:86:3c:34:5a:1a:59:26:0a:1d:c4:01:41:a9:a6:a4:72: 24:9f:ea:d5:d5:4e:a9:0e:a5:10:2c:eb:dd:29:83:92:3d:a7: 7c:27:6c:71:12:a0:4f:d4:5b:89:99:78:62:ba:69:66:8e:ad: 20:42:18:c9:f7:0f:38:f7:84:4d:2e:9f:de:cf:6c:d6:c7:d3: 50:cf:4a:83:df:b7:7f:d5:46:b9:d5:17:22:51:db:44:62:da: 89:b9:20:9c:f4:df:0f:13:3c:12:92:4a:e1:1f:cb:5c:a9:76: 98:69:cd:74:60:86:45:a0:8f:42:cc:3f:1e:92:4d:d0:ab:ce: cb:4e:69:99 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjUxMjA5MDMzMjQ0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY2NS00YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA671bdnqEN4PngCMsYwo3FbGtFVYtm4LFp+l5butyCKMR0QU5EHyJFIfIgHBw jYjCnWcPrlw2ZVPiiLfut3VDEd/2NoY5XKRzS4CLa1zQ79zEwUFB3lfNxR371r98 pH367UvruuJCPoG82jAkYpnePpcdti/dntqnYlMCQkbYFe/83DcpZF51jm3EnoR8 f6rd6HJq2VtGfJpPqr6gsOUzJGIc3Rs9LxT94FgxVBIFwkI2bgic6tez4mmqQpqo n+cMiKkvRym7w0keTGzsY8FTwDgNlWb47iJJdeIJeaaJ+RIx76rCuv5fKIjs2hUB D0vRkghwCIHDMY0tJ7WfyPUBdwIDAQABo4ICjTCCAokwHQYDVR0OBBYEFCn/jyEc kfNrMQvce9np26c5ZjVvMB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvNTUzNzQ2M0FD OTE5MTFGMEFGQTM0QzZEQzRGOUFFMDIucm9hMEwGCCsGAQUFBwEHAQH/BD0wOzAo BAIAATAiAwQBepsaMAwDBADKi8UDBAHKi9QwDAMEAMqL1wMEAcqL2DAPBAIAAjAJ AwcEIAEMOJCgMA0GCSqGSIb3DQEBCwUAA4IBAQAWrpdzd2iEBhYuc2ay6/wdNRiY vqNIVe8qn25arRLwJ/efL3SuIe95BuaL3jDDbaE7UMwpaLdYyISdehi1j6g8cSNV +7t+SZFVIQjQLLgoCFVBs/Orv0f9zUzRYoJxXHOdb8i+cpv0gW0dJ8QCP2D/BaOZ 0c2JeQyFHy9SV2Ob+oY8NFoaWSYKHcQBQammpHIkn+rV1U6pDqUQLOvdKYOSPad8 J2xxEqBP1FuJmXhiumlmjq0gQhjJ9w8494RNLp/ez2zWx9NQz0qD37d/1Ua51Rci UdtEYtqJuSCc9N8PEzwSkkrhH8tcqXaYac10YIZFoI9CzD8ekk3Qq87LTmmZ -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:09 2026 by rpki-client