$ rpki-client -vvf rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/B40A9A4EC92411F09FAB8126C4F9AE02.roa File: B40A9A4EC92411F09FAB8126C4F9AE02.roa (raw, json) Hash identifier: 3N14qaLKIE8BN0vWJd2KtmivGDsUthfcKYgKyJWVe3U= Subject key identifier: F7:6B:E7:17:CF:35:80:1E:98:06:C1:71:D1:AD:3A:92:DA:1A:1C:D0 Certificate issuer: /CN=A912598D/serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Certificate serial: DF Authority key identifier: 9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/B40A9A4EC92411F09FAB8126C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:11:28 +0000 ROA not before: Mon 24 Nov 2025 10:59:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38265 IP address blocks: 122.154.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912598D, serialNumber=9A3A67EDDCD0977533A9A0B8C49F4C0100C85391 Validity Not Before: Nov 24 10:59:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48f60-4005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:60:5e:4b:5b:eb:60:3e:1f:38:d2:c6:55: 7c:cd:7b:b1:61:3d:d6:37:fe:71:6a:3b:6b:30:0e: 21:1d:66:5e:41:36:29:bc:0d:9e:16:9c:92:cc:ce: 63:39:4d:85:89:79:bb:25:b4:8c:d7:48:10:8e:3b: 6d:6e:63:5b:02:33:0f:32:7c:6e:8b:b4:c4:4d:a3: da:e7:ca:b7:6f:e2:4c:a8:f7:76:51:1d:d3:56:57: 12:34:88:ad:b8:72:94:67:e7:98:fe:d3:fb:3e:58: 9e:60:7c:88:e7:36:ea:1e:29:34:aa:12:78:89:16: 99:0c:19:88:78:df:10:37:45:38:9e:d3:73:cc:78: 47:90:02:07:12:21:09:b7:fd:fc:58:48:67:3c:12: 5d:20:d6:6d:16:c4:bf:a1:c8:72:0d:8e:74:c2:1f: 35:c8:71:5c:f0:a9:43:36:8f:f3:f6:52:03:39:ac: 7e:77:84:34:fb:94:ef:9c:10:f3:f7:3d:5f:b2:18: 8c:03:9b:9d:a6:40:42:4f:67:6b:21:66:94:c3:d7: fc:09:9b:10:9e:ee:bb:f2:5c:cc:0b:43:f3:6b:46: af:96:23:0f:71:51:bd:5d:a7:2e:21:5c:cd:10:06: 95:f4:e8:60:5d:b9:95:bc:1d:f6:9d:c0:22:4b:ca: ff:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6B:E7:17:CF:35:80:1E:98:06:C1:71:D1:AD:3A:92:DA:1A:1C:D0 X509v3 Authority Key Identifier: keyid:9A:3A:67:ED:DC:D0:97:75:33:A9:A0:B8:C4:9F:4C:01:00:C8:53:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mjpn7dzQl3UzqaC4xJ9MAQDIU5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912598D/B88531CAC8EC11F0A344AB45C4F9AE02/B40A9A4EC92411F09FAB8126C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.154.153.0/24 Signature Algorithm: sha256WithRSAEncryption 93:fc:8c:20:84:ec:0a:98:63:6a:80:0c:ef:fa:95:c8:25:a7: a7:00:db:ea:db:0c:64:56:2a:e3:b8:14:c3:a8:13:bc:31:4d: 73:5f:f9:d2:be:4d:5d:9b:2b:a2:55:07:aa:59:1d:77:48:fc: 69:9e:41:52:98:7b:36:4a:32:bb:5d:92:97:84:1e:66:cc:92: 0e:3d:73:23:fb:4a:96:fa:e0:88:08:e5:90:02:82:37:08:93: 6c:74:46:25:b0:ba:55:50:14:0c:15:84:de:01:c5:52:b5:92: d0:6b:8d:7c:00:d9:6f:8d:6d:0d:f4:0e:bb:17:5e:6a:2d:9f: ea:20:42:d6:04:23:4f:d4:31:de:4f:5c:18:47:97:9c:dd:8e: 9b:a8:26:89:f9:40:63:e3:37:e5:49:ee:54:32:6e:07:ab:3d: 7d:57:a4:24:85:75:28:aa:9e:b0:9d:2f:f9:af:79:f2:af:17: 6f:d2:3f:37:dd:ea:10:83:ea:fd:0f:7a:4a:a5:ac:b1:bb:df: 29:5c:ed:06:7f:3e:8c:dd:81:ad:6a:cb:a0:82:00:52:83:87: 36:db:2c:45:5b:cb:2a:3b:92:30:43:e7:8e:08:b6:a5:fc:ac: 61:52:7e:6a:5b:f7:8f:88:b7:46:c0:03:c8:9a:03:d2:16:89: 8c:61:b9:b3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5OEQxMTAvBgNVBAUTKDlBM0E2N0VERENEMDk3NzUzM0E5QTBCOEM0OUY0QzAx MDBDODUzOTEwHhcNMjUxMTI0MTA1OTUzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGY2MC00MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFRgXktb62A+HzjSxlV8zXuxYT3WN/5xajtrMA4hHWZeQTYpvA2eFpySzM5j OU2FiXm7JbSM10gQjjttbmNbAjMPMnxui7TETaPa58q3b+JMqPd2UR3TVlcSNIit uHKUZ+eY/tP7PlieYHyI5zbqHik0qhJ4iRaZDBmIeN8QN0U4ntNzzHhHkAIHEiEJ t/38WEhnPBJdINZtFsS/ochyDY50wh81yHFc8KlDNo/z9lIDOax+d4Q0+5TvnBDz 9z1fshiMA5udpkBCT2drIWaUw9f8CZsQnu678lzMC0Pza0avliMPcVG9XacuIVzN EAaV9OhgXbmVvB32ncAiS8r/0wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPdr5xfP NYAemAbBcdGtOpLaGhzQMB8GA1UdIwQYMBaAFJo6Z+3c0Jd1M6mguMSfTAEAyFOR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTk4RC9CODg1MzFDQUM4 RUMxMUYwQTM0NEFCNDVDNEY5QUUwMi9tanBuN2R6UWwzVXpxYUM0eEo5TUFRRElV NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qcG43ZHpRbDNVenFhQzR4SjlNQVFESVU1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU5OEQvQjg4NTMxQ0FDOEVDMTFGMEEzNDRBQjQ1QzRGOUFFMDIvQjQwQTlBNEVD OTI0MTFGMDlGQUI4MTI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAepqZMA0GCSqGSIb3DQEBCwUAA4IBAQCT/IwghOwKmGNqgAzv+pXI JaenANvq2wxkVirjuBTDqBO8MU1zX/nSvk1dmyuiVQeqWR13SPxpnkFSmHs2SjK7 XZKXhB5mzJIOPXMj+0qW+uCICOWQAoI3CJNsdEYlsLpVUBQMFYTeAcVStZLQa418 ANlvjW0N9A67F15qLZ/qIELWBCNP1DHeT1wYR5ec3Y6bqCaJ+UBj4zflSe5UMm4H qz19V6QkhXUoqp6wnS/5r3nyrxdv0j833eoQg+r9D3pKpayxu98pXO0Gfz6M3YGt asugggBSg4c22yxFW8sqO5IwQ+eOCLal/KxhUn5qW/ePiLdGwAPImgPSFomMYbmz -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:21 2026 by rpki-client