$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/A2F568A08CDC11EEA05B6E55C4F9AE02.roa File: A2F568A08CDC11EEA05B6E55C4F9AE02.roa (raw, json) Hash identifier: hou+c7BsoKfVisvEwRZh9uWs6LCWRU5zcufZlx3RZD4= Subject key identifier: 05:9E:49:89:02:D6:A6:BA:E7:A1:D1:DD:E7:22:B9:8F:D3:D3:CF:E9 Certificate issuer: /CN=A9127C2D/serialNumber=8B65A5294377D686378C46B3E9DAD7CDB5B66791 Certificate serial: 01B8 Authority key identifier: 8B:65:A5:29:43:77:D6:86:37:8C:46:B3:E9:DA:D7:CD:B5:B6:67:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/A2F568A08CDC11EEA05B6E55C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:05:22 +0000 ROA not before: Thu 29 Jan 2026 03:23:00 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4768 IP address blocks: 202.49.252.0/22 maxlen: 22 202.49.252.0/24 maxlen: 24 202.49.253.0/24 maxlen: 24 202.49.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.crl rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:23:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C2D, serialNumber=8B65A5294377D686378C46B3E9DAD7CDB5B66791 Validity Not Before: Jan 29 03:23:00 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43992-0e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:57:c6:e9:40:7f:ff:41:54:6c:ad:d3:21:43: db:6b:87:31:0f:56:27:d2:47:d5:24:fb:da:b3:28: d6:51:ee:06:d6:70:b6:02:bc:c2:b5:30:7a:0e:c7: 01:69:14:a9:80:c8:cd:02:a4:fe:a4:df:75:f4:1f: 66:bf:53:70:55:d9:06:f5:ac:7d:c5:5c:ff:e9:cb: f6:76:91:6f:84:41:33:7d:fa:14:33:b9:4b:60:48: b2:51:a9:93:a3:ce:86:ee:39:c4:71:83:7e:03:3b: b6:1e:3e:52:28:6f:80:65:e0:60:ab:25:bd:48:5d: fc:c7:b8:f7:63:56:70:3a:d8:94:64:90:c6:b1:e0: 7d:a4:74:17:e0:a3:cd:c1:a7:8e:94:09:ce:7a:39: 0c:0d:56:8d:1c:8e:2b:9c:66:36:0e:d3:1f:22:72: e7:9c:a2:f4:04:c5:4b:fe:4c:ef:e9:fb:a8:fd:09: c6:ac:8c:b7:09:2c:38:6d:86:27:f2:87:52:f0:f5: 03:55:cd:f8:98:24:ec:4f:1e:3b:33:50:f3:88:17: cb:62:72:25:ec:40:58:57:b6:35:74:53:6c:f3:87: ad:1f:4a:12:18:77:5e:b8:cd:ff:0e:57:64:ab:e5: 76:06:ec:8d:f8:3d:e9:43:12:ca:35:e1:c7:0e:65: 9c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9E:49:89:02:D6:A6:BA:E7:A1:D1:DD:E7:22:B9:8F:D3:D3:CF:E9 X509v3 Authority Key Identifier: keyid:8B:65:A5:29:43:77:D6:86:37:8C:46:B3:E9:DA:D7:CD:B5:B6:67:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/i2WlKUN31oY3jEaz6drXzbW2Z5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2WlKUN31oY3jEaz6drXzbW2Z5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C2D/9E39F9368C9E11EE87C8EE78C4F9AE02/A2F568A08CDC11EEA05B6E55C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.49.252.0/22 Signature Algorithm: sha256WithRSAEncryption 71:59:5a:c5:34:04:da:41:60:9f:9e:fe:f1:16:59:3d:b9:b0: ae:1a:91:ca:df:de:8c:44:e5:7e:d0:03:9f:58:c7:95:27:99: 07:aa:8a:45:b0:99:27:24:1e:34:a1:b2:f5:67:25:23:49:b3: df:b2:00:0c:e7:d8:fe:5d:38:76:0e:7e:e7:16:97:22:a6:12: 28:69:17:89:39:9d:f0:07:d4:61:f7:d5:4d:6b:c3:6c:70:77: 15:48:62:f4:c4:85:56:28:00:ba:92:89:77:ec:5f:a6:f5:31: f1:1e:1e:cc:3a:91:75:ad:00:81:af:60:6a:85:bc:47:1b:2a: 96:08:28:cd:3e:69:dd:3b:aa:c2:25:bb:c5:47:f2:e5:be:a2: 1c:4d:3a:63:9b:e2:f8:6d:0e:da:12:95:ef:55:a9:e3:f6:dc: cf:3e:f6:68:62:57:a4:92:07:a9:46:bf:bd:53:b0:ae:2c:61: b2:5c:48:10:45:d1:47:50:31:28:84:cd:b0:49:18:bb:1f:fa: 8c:ff:0f:e0:c0:5d:92:12:af:ef:12:9f:1a:0a:5d:7e:f0:f9: b4:56:e9:e3:12:72:31:14:6b:2a:c0:d1:18:b4:08:9e:38:ef: b0:f0:8e:03:69:e3:72:99:d9:2b:e1:d7:c0:55:0c:54:5f:56: e8:a2:25:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDMkQxMTAvBgNVBAUTKDhCNjVBNTI5NDM3N0Q2ODYzNzhDNDZCM0U5REFEN0NE QjVCNjY3OTEwHhcNMjYwMTI5MDMyMzAwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzk5Mi0wZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFfG6UB//0FUbK3TIUPba4cxD1Yn0kfVJPvasyjWUe4G1nC2ArzCtTB6DscB aRSpgMjNAqT+pN919B9mv1NwVdkG9ax9xVz/6cv2dpFvhEEzffoUM7lLYEiyUamT o86G7jnEcYN+Azu2Hj5SKG+AZeBgqyW9SF38x7j3Y1ZwOtiUZJDGseB9pHQX4KPN waeOlAnOejkMDVaNHI4rnGY2DtMfInLnnKL0BMVL/kzv6fuo/QnGrIy3CSw4bYYn 8odS8PUDVc34mCTsTx47M1DziBfLYnIl7EBYV7Y1dFNs84etH0oSGHdeuM3/Dldk q+V2BuyN+D3pQxLKNeHHDmWckwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAWeSYkC 1qa656HR3eciuY/T08/pMB8GA1UdIwQYMBaAFItlpSlDd9aGN4xGs+na1821tmeR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0MyRC85RTM5RjkzNjhD OUUxMUVFODdDOEVFNzhDNEY5QUUwMi9pMldsS1VOMzFvWTNqRWF6NmRyWHpiVzJa NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyV2xLVU4zMW9ZM2pFYXo2ZHJYemJXMlo1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdDMkQvOUUzOUY5MzY4QzlFMTFFRTg3QzhFRTc4QzRGOUFFMDIvQTJGNTY4QTA4 Q0RDMTFFRUEwNUI2RTU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyjH8MA0GCSqGSIb3DQEBCwUAA4IBAQBxWVrFNATaQWCfnv7xFlk9 ubCuGpHK396MROV+0AOfWMeVJ5kHqopFsJknJB40obL1ZyUjSbPfsgAM59j+XTh2 Dn7nFpciphIoaReJOZ3wB9Rh99VNa8NscHcVSGL0xIVWKAC6kol37F+m9THxHh7M OpF1rQCBr2BqhbxHGyqWCCjNPmndO6rCJbvFR/LlvqIcTTpjm+L4bQ7aEpXvVanj 9tzPPvZoYlekkgepRr+9U7CuLGGyXEgQRdFHUDEohM2wSRi7H/qM/w/gwF2SEq/v Ep8aCl1+8Pm0VunjEnIxFGsqwNEYtAieOO+w8I4DaeNymdkr4dfAVQxUX1booiXL -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:41 2026 by rpki-client