$ rpki-client -vvf rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/7D28601A9FD211EEAC56900AC4F9AE02.roa File: 7D28601A9FD211EEAC56900AC4F9AE02.roa (raw, json) Hash identifier: xqa2jysdV84afATRjwbUStpDN/sz26H1yiVkTr6zHrE= Subject key identifier: BE:B6:0E:67:8A:7F:2F:E8:20:12:B2:2A:30:45:EA:6F:28:EF:FC:DB Certificate issuer: /CN=A9128D30/serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Certificate serial: 01A2 Authority key identifier: 0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/7D28601A9FD211EEAC56900AC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:29:30 +0000 ROA not before: Sat 15 Nov 2025 02:19:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152113 IP address blocks: 203.3.88.0/23 maxlen: 23 2001:df3:740::/128 maxlen: 128 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128D30, serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Validity Not Before: Nov 15 02:19:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4150a-b8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:d8:ce:bc:22:99:88:8b:7d:5d:18:57:ab:cc: f7:81:7f:37:17:b0:ba:e7:69:b8:ad:57:2c:37:7e: 40:f4:65:1a:e1:d0:31:27:ef:eb:72:1d:b7:99:8f: c6:69:56:8b:ea:1c:e5:c6:ca:f9:77:34:4c:65:22: 02:e2:ce:a1:be:d6:86:7e:38:d3:c8:f9:99:86:52: c8:03:9b:ba:a8:15:d0:20:79:5b:c7:20:33:75:64: 5a:9e:b9:e0:44:7f:54:e4:84:59:4a:58:27:d3:22: f0:d8:dc:a5:aa:e7:33:7f:c8:6b:8d:db:3a:a0:01: cb:f6:6e:c7:c7:82:1c:1e:1d:ed:a7:9f:f0:89:be: ab:cf:33:73:55:86:7f:5b:37:7a:26:8a:99:c0:08: 23:ef:75:23:2b:3d:53:30:70:ce:8d:e5:ad:83:67: ec:74:04:25:07:ed:7b:3e:e4:15:8b:7b:d5:01:35: 99:c9:cd:66:d8:47:0f:c3:4a:0c:81:34:8b:f0:a4: 44:ef:bd:70:4f:74:ca:c6:c0:ad:9c:4c:07:63:51: 9b:80:59:c8:11:f3:8e:be:31:e4:3f:db:bf:65:45: e3:cf:c7:3b:9e:7b:40:57:3f:07:6f:63:5b:c1:2e: 7f:60:ea:ae:13:ef:9d:1a:2e:7b:c8:09:11:86:40: 33:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B6:0E:67:8A:7F:2F:E8:20:12:B2:2A:30:45:EA:6F:28:EF:FC:DB X509v3 Authority Key Identifier: keyid:0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/7D28601A9FD211EEAC56900AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.3.88.0/23 IPv6: 2001:df3:740::/128 Signature Algorithm: sha256WithRSAEncryption 28:7f:73:69:6b:09:9d:b1:d9:b4:85:16:57:67:14:3a:3b:f7: 97:79:77:81:85:ac:d9:c3:9f:54:f9:c4:2d:bd:40:2b:80:da: fe:30:29:48:79:f4:5e:73:56:b9:9f:5b:04:3e:5b:c5:6f:f7: d0:8d:27:87:0a:4f:ef:bd:e4:7c:20:82:8c:26:c8:0e:94:02: 03:ea:ee:cd:83:df:09:bb:31:3a:72:37:ef:97:1c:17:9f:6e: 29:36:a7:f6:b3:22:e8:f8:96:89:3e:fa:41:cf:8c:c7:66:c1: c0:d1:3c:e0:43:c4:b7:85:83:a7:2d:63:f3:91:70:f0:32:96: 40:86:00:3d:bc:00:0f:4d:42:df:ca:38:67:03:d7:2d:a7:d1: 97:5b:7d:e2:ea:49:4a:e7:d4:59:73:b2:91:6e:81:b7:54:af: e8:c9:07:68:9f:eb:28:8b:c8:d9:0d:1c:e8:cc:47:e5:e0:56: 33:75:14:e7:82:7c:a8:71:fa:87:e7:38:38:bb:9e:ae:2f:69: bc:30:74:c8:be:37:b5:b1:37:36:b3:6f:ee:3c:66:8a:58:2b: a1:72:50:6f:80:02:28:ec:1e:7d:d5:86:c2:9a:36:cf:be:e9: 3e:1a:d0:70:05:93:e9:d4:8c:ae:7a:5b:d4:60:3c:71:71:b2: d9:8a:0a:78 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhEMzAxMTAvBgNVBAUTKDBENjRDNTZFMEU2MTFBNUNDMUQzNTg4Njc2QzU3NERF MjJENTc1MDEwHhcNMjUxMTE1MDIxOTUxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTUwYS1iOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg9jOvCKZiIt9XRhXq8z3gX83F7C652m4rVcsN35A9GUa4dAxJ+/rch23mY/G aVaL6hzlxsr5dzRMZSIC4s6hvtaGfjjTyPmZhlLIA5u6qBXQIHlbxyAzdWRanrng RH9U5IRZSlgn0yLw2Nylquczf8hrjds6oAHL9m7Hx4IcHh3tp5/wib6rzzNzVYZ/ Wzd6JoqZwAgj73UjKz1TMHDOjeWtg2fsdAQlB+17PuQVi3vVATWZyc1m2EcPw0oM gTSL8KRE771wT3TKxsCtnEwHY1GbgFnIEfOOvjHkP9u/ZUXjz8c7nntAVz8Hb2Nb wS5/YOquE++dGi57yAkRhkAzowIDAQABo4ICezCCAncwHQYDVR0OBBYEFL62DmeK fy/oIBKyKjBF6m8o7/zbMB8GA1UdIwQYMBaAFA1kxW4OYRpcwdNYhnbFdN4i1XUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEQzMC9DRDgwQUFFNjlG RDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEdsekIwMWlHZHNWMDNpTFZk UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVEZiZzVoR2x6QjAxaUdkc1YwM2lMVmRRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhEMzAvQ0Q4MEFBRTY5RkQxMTFFRUFENzA0NDA5QzRGOUFFMDIvN0QyODYwMUE5 RkQyMTFFRUFDNTY5MDBBQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAM BAIAATAGAwQBywNYMBkEAgACMBMDEQAgAQ3zB0AAAAAAAAAAAAAAMA0GCSqGSIb3 DQEBCwUAA4IBAQAof3Npawmdsdm0hRZXZxQ6O/eXeXeBhazZw59U+cQtvUArgNr+ MClIefRec1a5n1sEPlvFb/fQjSeHCk/vveR8IIKMJsgOlAID6u7Ng98JuzE6cjfv lxwXn24pNqf2syLo+JaJPvpBz4zHZsHA0TzgQ8S3hYOnLWPzkXDwMpZAhgA9vAAP TULfyjhnA9ctp9GXW33i6klK59RZc7KRboG3VK/oyQdon+soi8jZDRzozEfl4FYz dRTngnyocfqH5zg4u56uL2m8MHTIvje1sTc2s2/uPGaKWCuhclBvgAIo7B591YbC mjbPvuk+GtBwBZPp1IyuelvUYDxxcbLZigp4 -----END CERTIFICATE-----Generated at Mon Mar 2 20:55:58 2026 by rpki-client