$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/9DA31C0EC91A11F0AEDEC673C4F9AE02.roa File: 9DA31C0EC91A11F0AEDEC673C4F9AE02.roa (raw, json) Hash identifier: DHpdbRF2Zso6P1hxGHzUsRdlrbKQ33Y/CNHuuhJjb5g= Subject key identifier: 60:85:35:50:BE:AE:9E:00:B9:A6:D0:B0:74:AF:93:26:3A:7E:DD:BD Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: D2 Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/9DA31C0EC91A11F0AEDEC673C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:16 +0000 ROA not before: Mon 24 Nov 2025 09:47:40 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135635 IP address blocks: 61.19.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Nov 24 09:47:40 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f54-6bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c5:40:4e:61:33:95:41:9a:16:47:f8:36:aa: db:c2:e0:d3:57:c7:6f:67:6f:8f:2d:1a:10:3e:e6: 1c:49:7b:0c:28:1d:ad:03:cb:5f:35:35:6b:81:1f: d7:30:31:0d:1b:2f:04:0c:0e:6a:99:65:69:c0:dd: a4:3f:a7:a5:2e:86:69:5b:2d:99:5b:03:81:97:c9: 80:b2:22:50:8a:bc:80:fc:84:c1:8b:8c:4d:c6:03: d2:50:63:1d:02:07:b9:3a:f3:8e:c5:ac:17:a9:f0: ad:f5:f3:bd:7a:b4:81:f4:60:81:41:3a:a6:fc:9c: de:69:e6:0d:96:4e:4d:82:89:af:42:51:78:fd:b7: b8:ff:ea:50:ee:61:35:00:5f:1e:29:7d:25:5a:d8: cb:b3:32:d4:32:eb:86:df:9a:27:e0:c8:ed:2b:0c: 39:4e:c3:60:bd:c0:ad:9f:a6:9e:96:19:af:4e:05: 87:54:fd:63:37:d6:e1:bc:81:17:86:35:2c:34:91: 19:04:43:58:da:33:fd:78:04:e7:f8:ec:e2:0d:05: 82:66:f3:74:32:c6:08:bd:25:2c:ba:33:05:5f:98: a4:2c:e9:a9:c3:e9:0e:ef:03:8c:74:db:f5:ab:fe: af:80:1e:fb:d1:d3:af:79:27:30:19:a3:62:1e:3e: 20:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:85:35:50:BE:AE:9E:00:B9:A6:D0:B0:74:AF:93:26:3A:7E:DD:BD X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/9DA31C0EC91A11F0AEDEC673C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.19.204.0/24 Signature Algorithm: sha256WithRSAEncryption 20:96:51:45:7e:f3:2a:e1:30:28:b7:4a:6d:3a:d9:7d:af:fd: 13:3c:f4:2d:2d:3f:14:50:31:43:7c:72:06:65:6d:4c:88:f2: 72:5a:1c:42:f0:a2:5c:bf:cf:3e:be:4e:28:02:4b:28:86:36: 0f:b0:27:ed:67:01:72:26:34:85:f0:66:2e:29:03:13:95:e9: ba:35:ce:e2:8b:90:35:f4:7d:d9:2a:0b:db:cf:5b:47:a4:41: 64:d3:b2:9c:1f:53:50:ef:8f:47:ce:55:c1:f2:e5:32:d7:d0: 69:66:66:3a:ac:e5:8a:5e:58:92:81:6f:d4:91:f7:78:06:df: 8d:5e:73:01:02:7f:c1:6a:f9:a6:b4:51:b4:77:f2:5c:8f:14: 03:89:0c:1b:08:c9:26:78:8b:ca:20:0e:e6:39:18:2f:3a:9b: d0:93:bd:b2:fb:bd:45:a2:da:a7:5f:f4:4d:99:37:2a:f5:9c: 55:ee:b4:7b:bc:50:f1:fd:12:93:9d:d5:45:c7:7d:de:72:c8: ae:ed:8c:a1:30:01:88:35:fc:6a:dd:9d:1e:69:66:40:64:1a: 8f:09:8a:d1:fc:5c:60:b8:f1:4a:24:eb:23:e6:50:aa:88:c4: 69:b1:f3:89:2b:b9:2c:12:41:76:6d:de:a7:90:7f:fc:62:28: e9:a2:d4:53 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjUxMTI0MDk0NzQwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY1NC02YmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcVATmEzlUGaFkf4NqrbwuDTV8dvZ2+PLRoQPuYcSXsMKB2tA8tfNTVrgR/X MDENGy8EDA5qmWVpwN2kP6elLoZpWy2ZWwOBl8mAsiJQiryA/ITBi4xNxgPSUGMd Age5OvOOxawXqfCt9fO9erSB9GCBQTqm/JzeaeYNlk5NgomvQlF4/be4/+pQ7mE1 AF8eKX0lWtjLszLUMuuG35on4MjtKww5TsNgvcCtn6aelhmvTgWHVP1jN9bhvIEX hjUsNJEZBENY2jP9eATn+OziDQWCZvN0MsYIvSUsujMFX5ikLOmpw+kO7wOMdNv1 q/6vgB770dOveScwGaNiHj4gwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGCFNVC+ rp4AuabQsHSvkyY6ft29MB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvOURBMzFDMEVD OTFBMTFGMEFFREVDNjczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAPRPMMA0GCSqGSIb3DQEBCwUAA4IBAQAgllFFfvMq4TAot0ptOtl9 r/0TPPQtLT8UUDFDfHIGZW1MiPJyWhxC8KJcv88+vk4oAksohjYPsCftZwFyJjSF 8GYuKQMTlem6Nc7ii5A19H3ZKgvbz1tHpEFk07KcH1NQ749HzlXB8uUy19BpZmY6 rOWKXliSgW/Ukfd4Bt+NXnMBAn/BavmmtFG0d/JcjxQDiQwbCMkmeIvKIA7mORgv OpvQk72y+71FotqnX/RNmTcq9ZxV7rR7vFDx/RKTndVFx33ecsiu7YyhMAGINfxq 3Z0eaWZAZBqPCYrR/FxguPFKJOsj5lCqiMRpsfOJK7ksEkF2bd6nkH/8YijpotRT -----END CERTIFICATE-----Generated at Mon Mar 2 09:39:43 2026 by rpki-client