$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa File: 57BD12E2CA1411ED9F6F423BC4F9AE02.roa (raw, json) Hash identifier: nh33iXL7qlto9SPY3eGtRzqM7MNK4E7ZZsv8bnTGP0E= Subject key identifier: DF:E3:29:7D:17:23:13:52:20:07:B0:DF:26:1E:73:57:93:98:02:5A Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 35B4 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:24 +0000 ROA not before: Wed 28 Jan 2026 15:10:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132737 IP address blocks: 202.153.188.0/24 maxlen: 24 202.153.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13748 (0x35b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A, serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 28 15:10:30 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a48548-e814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ec:f9:f5:92:73:28:10:42:f3:37:2f:2d:83: d6:c7:7b:0d:ce:1e:a9:22:b7:61:87:4d:44:fe:e8: e0:29:3d:0b:93:38:fb:bf:61:97:76:64:6d:73:f1: 2b:ef:22:7a:2a:fc:51:ae:d8:31:1f:c9:ed:ee:c9: a9:67:22:de:ec:3b:59:64:06:d6:78:0e:9b:3e:cd: fa:a3:b5:af:88:d2:3c:94:a8:5c:52:a4:64:73:1e: e6:94:b2:e9:85:9c:48:20:4b:29:b2:e9:91:99:b5: 00:3a:cf:4b:0d:f1:5f:2b:30:f0:63:84:ae:0b:d0: 88:b8:67:9c:e5:65:8d:31:01:16:b8:84:d6:0c:0f: 27:1d:71:f0:1e:79:1d:da:e5:61:a7:76:22:d3:7b: c6:b7:ff:98:45:04:2d:c8:8d:2c:17:e0:aa:94:b5: 03:73:00:88:87:86:f5:0d:21:4c:09:27:9e:87:80: 1d:18:11:9d:51:ec:69:2a:da:ba:44:c5:8b:ce:8b: 3f:20:c3:d0:2e:b3:7b:9c:35:61:fe:3e:0e:b2:a9: 33:2c:3c:66:d6:4f:68:8d:31:53:3f:a3:fa:45:c2: 79:87:c3:19:2a:35:6d:2d:f7:02:ee:f3:68:b0:70: 95:e9:15:28:9d:f6:15:d6:07:cc:29:aa:61:7d:16: 96:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E3:29:7D:17:23:13:52:20:07:B0:DF:26:1E:73:57:93:98:02:5A X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.153.188.0/24 202.153.190.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:29:2c:c1:23:4f:95:04:0c:87:e5:85:6a:9c:f4:3f:58:62: cc:4c:1d:e0:9d:02:0c:c1:4b:cf:e4:a8:d2:5c:e5:c7:8f:1f: 0c:ac:97:05:8c:f0:d9:df:fd:01:c8:14:3d:02:73:07:3c:c8: 1c:2f:d0:23:2c:b5:fe:0a:46:3e:64:4e:5f:88:35:0a:7a:06: ec:de:a8:04:72:e6:09:29:8e:65:15:17:f0:59:9f:2b:8e:fb: 19:90:83:a0:5a:7a:05:6f:39:60:11:a9:56:a5:e3:de:fa:ee: 39:b9:64:e1:09:35:bf:e1:89:e7:db:cb:a8:ac:d4:a2:cc:12: b6:5f:59:a4:e5:62:5d:8c:0a:a0:08:61:e0:24:ff:96:52:1a: 0d:b7:07:3e:7f:0e:4a:d6:58:85:ec:24:a5:b2:42:b5:f3:02: c6:25:13:32:4b:ab:1c:cc:00:77:2e:f0:49:52:8c:1b:ea:09: 64:db:ed:a5:fc:26:24:96:9a:06:cd:1b:4b:61:89:c5:2d:7c: e0:3d:5b:89:aa:14:bb:fc:04:cf:99:30:cf:b5:80:35:83:12: 18:79:7e:08:5f:bf:93:5b:62:9d:1b:ab:94:18:9d:86:c6:bd: d6:7d:99:58:32:eb:68:d7:39:1f:ba:6e:11:2a:bb:fe:26:f8: 0f:a6:e6:47 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjYwMTI4MTUxMDMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU0OC1lODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyez59ZJzKBBC8zcvLYPWx3sNzh6pIrdhh01E/ujgKT0Lkzj7v2GXdmRtc/Er 7yJ6KvxRrtgxH8nt7smpZyLe7DtZZAbWeA6bPs36o7WviNI8lKhcUqRkcx7mlLLp hZxIIEspsumRmbUAOs9LDfFfKzDwY4SuC9CIuGec5WWNMQEWuITWDA8nHXHwHnkd 2uVhp3Yi03vGt/+YRQQtyI0sF+CqlLUDcwCIh4b1DSFMCSeeh4AdGBGdUexpKtq6 RMWLzos/IMPQLrN7nDVh/j4OsqkzLDxm1k9ojTFTP6P6RcJ5h8MZKjVtLfcC7vNo sHCV6RUonfYV1gfMKaphfRaWgQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFN/jKX0X IxNSIAew3yYec1eTmAJaMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvNTdCRDEyRTJD QTE0MTFFRDlGNkY0MjNCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAypm8AwQAypm+MA0GCSqGSIb3DQEBCwUAA4IBAQAdKSzBI0+VBAyH 5YVqnPQ/WGLMTB3gnQIMwUvP5KjSXOXHjx8MrJcFjPDZ3/0ByBQ9AnMHPMgcL9Aj LLX+CkY+ZE5fiDUKegbs3qgEcuYJKY5lFRfwWZ8rjvsZkIOgWnoFbzlgEalWpePe +u45uWThCTW/4Ynn28uorNSizBK2X1mk5WJdjAqgCGHgJP+WUhoNtwc+fw5K1liF 7CSlskK18wLGJRMyS6sczAB3LvBJUowb6glk2+2l/CYklpoGzRtLYYnFLXzgPVuJ qhS7/ATPmTDPtYA1gxIYeX4IX7+TW2KdG6uUGJ2Gxr3WfZlYMuto1zkfum4RKrv+ JvgPpuZH -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:55 2026 by rpki-client