$ rpki-client -vvf rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa File: 5A530D08ADE611EDB7013F5DC4F9AE02.roa (raw, json) Hash identifier: dEMI35Leec9GjSx040AZ/9g+KXNISSERqJNWOszVlRY= Subject key identifier: B5:75:1D:49:86:B3:7B:23:11:04:F0:8A:DC:5A:46:31:E5:6A:A5:8D Certificate issuer: /CN=A912879A/serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Certificate serial: 351F Authority key identifier: D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:23:08 +0000 ROA not before: Mon 28 Jul 2025 14:50:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38310 IP address blocks: 122.200.16.0/24 maxlen: 24 122.200.17.0/24 maxlen: 24 122.200.18.0/24 maxlen: 24 122.200.19.0/24 maxlen: 24 122.200.20.0/24 maxlen: 24 122.200.21.0/24 maxlen: 24 122.200.22.0/24 maxlen: 24 122.200.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13599 (0x351f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912879A, serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Validity Not Before: Jul 28 14:50:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4219c-7ea5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:4f:33:83:82:6d:03:15:02:06:49:df:54:d9: 2d:71:47:7f:44:74:e5:56:59:0d:7f:1c:80:ab:70: eb:98:01:36:d3:32:26:65:5a:d8:e3:e9:f4:44:86: 0a:ba:3e:f3:64:bb:f3:1a:d6:8e:e3:ee:62:38:d7: 4a:fe:02:49:85:d1:a2:ae:db:4b:5b:c0:d6:8b:4e: 75:42:4e:cc:e4:bb:a1:6b:25:2c:fa:e0:4e:6d:19: 0e:38:24:fa:82:34:d9:e0:8e:87:b5:fc:80:01:dd: cb:ac:96:dd:9a:53:e8:24:af:5c:44:15:6c:65:c8: 95:bb:cb:e9:27:6e:48:c0:73:5f:20:58:9b:be:04: 17:b2:ba:6b:05:1d:54:bd:ab:72:1d:b0:9b:c7:21: 60:e1:a2:f0:d6:b7:ab:ee:3d:be:02:57:79:64:68: 4a:a3:56:25:c0:3f:0b:61:8b:d8:d9:84:06:bd:95: a1:aa:99:b6:5f:01:18:3e:a3:33:ce:0e:c7:5c:7a: 72:8b:3c:b5:02:2c:dc:5a:81:a9:e1:7e:38:59:91: b0:a1:a3:b3:d8:71:69:18:fd:1c:cd:04:d0:97:00: 56:02:6c:7d:ce:fd:78:d4:f2:ce:8d:e6:89:d2:ff: c9:36:d9:5d:e1:fe:7f:6a:ec:12:ec:e5:84:17:7c: 83:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:75:1D:49:86:B3:7B:23:11:04:F0:8A:DC:5A:46:31:E5:6A:A5:8D X509v3 Authority Key Identifier: keyid:D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.200.16.0/21 Signature Algorithm: sha256WithRSAEncryption 00:51:a8:e7:fc:b1:b2:0a:ec:61:17:0f:bf:cb:52:b1:e9:8a: a7:97:65:af:52:16:64:b7:f9:2d:23:82:22:b9:f9:31:6d:cf: 17:cc:48:32:0b:a3:0a:ab:55:31:f8:ad:67:1a:1b:44:94:87: fa:72:1f:3e:22:3f:a3:d5:b8:bc:38:65:ff:e6:da:73:66:b6: 15:38:9c:a4:d0:de:7b:9e:7e:5f:84:a2:56:fb:18:23:1a:aa: 90:fa:09:e2:ec:d2:66:fd:bf:c0:fe:70:ea:78:ea:be:18:8c: 98:b1:f8:42:df:22:3f:a7:c8:cd:02:fc:38:a3:aa:bf:fd:fb: 8e:0c:f3:0b:72:bc:fb:d0:ef:84:50:5f:20:96:54:e9:82:42: 73:a4:c8:02:ad:26:4c:1d:c0:cc:3b:b6:53:91:4b:44:fa:f1: 15:ec:39:7b:f5:ae:70:87:51:77:51:60:5d:ae:aa:dc:78:a8: 67:9f:9f:36:a0:ff:55:18:45:09:34:7a:4e:91:73:af:9e:71: 92:b5:30:7e:13:41:90:b4:95:c5:e0:97:e0:43:4b:bf:81:d9: 1b:14:56:75:4e:67:22:87:e0:de:f1:c3:8e:69:60:c8:4b:bf: b0:fd:89:b5:59:70:00:38:d3:01:6d:7a:20:9f:25:77:42:7c: fe:07:ae:12 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3OUExMTAvBgNVBAUTKEQ1NTYwNEUxQ0RCMDk1QjFBQzBBRDQzMTdCNjU1NzA2 MjMwNEIxRDAwHhcNMjUwNzI4MTQ1MDQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjE5Yy03ZWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+08zg4JtAxUCBknfVNktcUd/RHTlVlkNfxyAq3DrmAE20zImZVrY4+n0RIYK uj7zZLvzGtaO4+5iONdK/gJJhdGirttLW8DWi051Qk7M5LuhayUs+uBObRkOOCT6 gjTZ4I6HtfyAAd3LrJbdmlPoJK9cRBVsZciVu8vpJ25IwHNfIFibvgQXsrprBR1U vatyHbCbxyFg4aLw1rer7j2+Ald5ZGhKo1YlwD8LYYvY2YQGvZWhqpm2XwEYPqMz zg7HXHpyizy1AizcWoGp4X44WZGwoaOz2HFpGP0czQTQlwBWAmx9zv141PLOjeaJ 0v/JNtld4f5/auwS7OWEF3yDOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLV1HUmG s3sjEQTwitxaRjHlaqWNMB8GA1UdIwQYMBaAFNVWBOHNsJWxrArUMXtlVwYjBLHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODc5QS8wQzUzNjQyNjFE OTIxMUUyODE2NkI1RjQwOEIwMkNEMi8xVllFNGMyd2xiR3NDdFF4ZTJWWEJpTUVz ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFWWUU0YzJ3bGJHc0N0UXhlMlZYQmlNRXNkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3OUEvMEM1MzY0MjYxRDkyMTFFMjgxNjZCNUY0MDhCMDJDRDIvNUE1MzBEMDhB REU2MTFFREI3MDEzRjVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDesgQMA0GCSqGSIb3DQEBCwUAA4IBAQAAUajn/LGyCuxhFw+/y1Kx 6Yqnl2WvUhZkt/ktI4Iiufkxbc8XzEgyC6MKq1Ux+K1nGhtElIf6ch8+Ij+j1bi8 OGX/5tpzZrYVOJyk0N57nn5fhKJW+xgjGqqQ+gni7NJm/b/A/nDqeOq+GIyYsfhC 3yI/p8jNAvw4o6q//fuODPMLcrz70O+EUF8gllTpgkJzpMgCrSZMHcDMO7ZTkUtE +vEV7Dl79a5wh1F3UWBdrqrceKhnn582oP9VGEUJNHpOkXOvnnGStTB+E0GQtJXF 4JfgQ0u/gdkbFFZ1Tmcih+De8cOOaWDIS7+w/Ym1WXAAONMBbXognyV3Qnz+B64S -----END CERTIFICATE-----Generated at Mon Mar 2 05:40:16 2026 by rpki-client