$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa File: 5E2DEF009C5C11E99CCA9656C4F9AE02.roa (raw, json) Hash identifier: 5ZpkIo1n4Gv5uwa7NImU9M0kb+w/Ii5LkQHA44vK79I= Subject key identifier: BE:CF:00:67:C9:51:28:69:7D:C8:1D:64:1E:FA:63:B0:E6:08:C7:D3 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 35B3 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:23 +0000 ROA not before: Wed 28 Jan 2026 15:10:29 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 131627 IP address blocks: 202.153.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13747 (0x35b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A, serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 28 15:10:29 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a48547-bfde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c4:2c:eb:c8:e3:cc:e8:ad:f9:00:84:91:26: 88:e0:1e:14:ea:46:4d:96:d4:a7:5d:3c:48:7e:dd: 1c:93:40:a8:b7:22:d1:95:2f:9b:87:b7:92:71:ab: 27:dd:7b:02:4e:3c:1c:e5:8f:a0:54:b8:77:eb:fb: 36:ed:25:b5:60:0a:e1:f0:c2:7e:46:be:9a:c3:fc: e8:e4:4d:de:69:78:a7:be:6a:a6:9c:07:ce:8b:28: 90:85:12:5f:3f:f6:8c:05:86:78:da:50:82:74:2d: ad:95:ca:a2:8c:af:d7:08:72:3f:df:82:73:75:ce: 1a:b2:ec:96:94:4f:0d:1e:8f:fe:02:ea:22:ac:d7: 7e:bb:6a:a9:d1:29:4c:b7:da:6b:05:25:14:55:56: 88:08:a6:dc:53:51:36:e5:9e:78:f8:d3:32:f6:eb: 80:72:41:d4:5f:fd:b3:e2:18:f9:7f:b8:74:f0:4b: c0:ff:a1:84:66:9c:c6:7b:eb:c5:31:28:68:9f:d1: d5:59:f8:51:32:b3:a9:39:4a:d8:1d:90:bd:0d:a4: f0:e3:23:a0:90:3f:68:61:e1:75:da:bb:e8:26:26: b0:8a:13:32:c7:b4:23:81:65:e2:9a:b0:d3:99:f5: bc:d9:df:e2:f8:02:60:1e:0b:83:73:e8:41:23:5a: 87:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CF:00:67:C9:51:28:69:7D:C8:1D:64:1E:FA:63:B0:E6:08:C7:D3 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/5E2DEF009C5C11E99CCA9656C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.153.171.0/24 Signature Algorithm: sha256WithRSAEncryption 73:58:7d:97:1b:bd:22:70:0d:6c:3b:4f:22:3b:b6:eb:53:dc: 38:ba:8f:70:13:f3:b4:56:b7:ea:78:87:a2:b0:14:a7:d5:8b: 5a:ff:83:d0:60:1c:4a:fe:0c:71:75:50:b7:4d:79:8b:93:d6: 7b:c7:c9:1b:79:7d:6c:f5:07:f1:63:a2:17:00:ef:00:2c:db: c4:23:83:53:25:e6:68:9f:d6:33:5d:56:00:57:09:30:d6:ed: 3e:ea:c7:ae:18:1c:b2:0f:cf:c4:85:e1:17:da:cc:e0:e1:6c: 69:e1:0d:2c:e9:9a:91:34:a5:8d:89:23:8d:61:c6:0d:75:07: 4a:11:99:5e:03:a6:ac:77:96:ed:50:03:d5:75:07:02:4c:de: 64:fc:5f:99:15:4f:26:7e:ef:4f:6e:c8:55:18:6f:4f:1b:4d: 74:83:b3:e5:ba:94:1a:4a:2c:50:29:d3:c0:00:2d:84:5a:55: 91:97:d9:b4:ee:96:06:14:33:41:68:a7:43:14:d9:7b:8b:e6: 8d:33:56:1d:76:f5:2a:ea:2e:df:62:1c:a9:5f:30:61:d5:b8: 2a:c7:e6:74:ea:dc:bb:d2:81:6e:45:c4:16:dc:0d:e0:dc:83: ae:60:7b:0b:5a:e5:ea:ed:4c:b7:36:a8:f8:f5:5a:f2:b7:dc: 4c:26:18:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjYwMTI4MTUxMDI5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU0Ny1iZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sQs68jjzOit+QCEkSaI4B4U6kZNltSnXTxIft0ck0CotyLRlS+bh7eScasn 3XsCTjwc5Y+gVLh36/s27SW1YArh8MJ+Rr6aw/zo5E3eaXinvmqmnAfOiyiQhRJf P/aMBYZ42lCCdC2tlcqijK/XCHI/34Jzdc4asuyWlE8NHo/+AuoirNd+u2qp0SlM t9prBSUUVVaICKbcU1E25Z54+NMy9uuAckHUX/2z4hj5f7h08EvA/6GEZpzGe+vF MShon9HVWfhRMrOpOUrYHZC9DaTw4yOgkD9oYeF12rvoJiawihMyx7QjgWXimrDT mfW82d/i+AJgHguDc+hBI1qHrQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL7PAGfJ UShpfcgdZB76Y7DmCMfTMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvNUUyREVGMDA5 QzVDMTFFOTlDQ0E5NjU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAypmrMA0GCSqGSIb3DQEBCwUAA4IBAQBzWH2XG70icA1sO08iO7br U9w4uo9wE/O0VrfqeIeisBSn1Yta/4PQYBxK/gxxdVC3TXmLk9Z7x8kbeX1s9Qfx Y6IXAO8ALNvEI4NTJeZon9YzXVYAVwkw1u0+6seuGByyD8/EheEX2szg4Wxp4Q0s 6ZqRNKWNiSONYcYNdQdKEZleA6asd5btUAPVdQcCTN5k/F+ZFU8mfu9PbshVGG9P G010g7PlupQaSixQKdPAAC2EWlWRl9m07pYGFDNBaKdDFNl7i+aNM1YddvUq6i7f YhypXzBh1bgqx+Z06ty70oFuRcQW3A3g3IOuYHsLWuXq7Uy3Nqj49Vryt9xMJhjY -----END CERTIFICATE-----Generated at Mon Mar 2 16:07:54 2026 by rpki-client