$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa File: C8E115CEA6A711EA8A48CD2BC4F9AE02.roa (raw, json) Hash identifier: rPUnL7lHYdjtoOgbW/NTPA75gMTNRBPXaMY8wYcuEDk= Subject key identifier: 1D:35:D5:E9:23:FD:75:CB:32:DD:F1:B3:B3:8A:FB:20:5A:8C:BA:23 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 35B5 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:25 +0000 ROA not before: Wed 28 Jan 2026 15:10:31 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132738 IP address blocks: 202.3.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13749 (0x35b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A, serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 28 15:10:31 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a48549-9599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a6:87:c2:df:2e:c5:c6:55:60:b2:1c:d2:80: e4:54:9a:cd:ff:ca:d2:37:ac:2e:03:af:3d:19:0a: c3:bb:10:44:4c:00:2c:d8:73:a9:cb:af:cf:84:dc: fc:fa:df:fa:ab:95:d0:68:c0:fc:e7:55:f1:46:de: bf:58:7c:b0:31:c1:bb:77:45:23:6b:25:23:a6:39: e0:da:aa:12:85:f6:d8:38:8c:85:dd:93:c6:cf:4a: 24:8b:ee:c7:ae:54:2d:3f:cb:ef:7c:cb:28:ff:4a: b4:51:94:b7:d9:95:d9:23:b9:66:22:8d:a6:d2:74: 70:10:63:d7:b1:a7:00:fd:a5:0e:06:5f:9b:b2:a7: 31:74:16:32:f5:bd:c1:97:ed:31:6e:50:ba:fb:90: 18:ca:81:dd:7c:e5:7c:14:23:38:be:1b:ef:d3:8d: 35:24:11:04:05:b4:f8:ca:74:a5:09:84:b8:86:3f: 2a:cf:a7:65:ff:74:64:f9:1b:53:cc:5e:2b:8e:14: c0:e3:2c:89:0e:49:0e:77:d7:b9:3d:9a:ed:82:43: 7d:5f:b7:9f:09:9d:93:ba:39:f2:c4:44:d3:75:a8: 70:f4:d4:6b:12:27:71:64:54:cb:df:58:d8:0f:c6: b4:f8:44:64:a3:86:c8:35:b7:f6:f3:bf:ca:19:8a: b5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:35:D5:E9:23:FD:75:CB:32:DD:F1:B3:B3:8A:FB:20:5A:8C:BA:23 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/C8E115CEA6A711EA8A48CD2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.171.0/24 Signature Algorithm: sha256WithRSAEncryption 18:e1:8b:9d:74:b5:e2:1c:4c:6a:0e:3d:98:fb:30:a4:b3:a9: b0:db:7f:43:eb:d3:4c:a1:3d:3a:e0:5b:6e:fb:56:f9:0f:bb: 65:b4:6a:86:67:5f:37:04:9f:3a:fc:b2:4f:b0:0e:a9:d3:69: 4a:51:cc:fc:f7:97:2d:0f:24:c6:f5:67:ba:00:27:41:b4:1f: 75:38:41:42:08:d6:83:f6:e2:50:d9:b2:bd:58:fc:cf:7b:30: 70:a8:0f:f0:ca:38:2c:f0:c0:c0:c4:7a:a8:bd:0d:0f:7f:0d: 72:4c:6f:93:9c:4c:51:4c:0f:af:08:e5:19:db:11:6a:8e:99: 57:c9:60:b3:65:0f:92:8b:ce:8b:89:7a:a4:ec:62:e9:5e:82: 28:06:7d:dc:43:5f:4b:ff:9b:71:e6:78:4f:c2:18:a3:16:39: 31:bf:6d:b8:67:fa:d8:9d:12:3a:1d:4b:73:da:aa:38:60:05: f6:ca:c9:ba:1e:2b:6a:cf:96:36:62:64:1b:1d:9f:11:3a:e0: da:c5:e4:35:26:93:9b:95:85:4e:b8:ca:4b:54:4d:88:1b:6d: 96:59:9d:62:a7:a4:c4:77:c0:2d:c4:20:3a:4c:98:8d:4d:d1: 4e:89:ab:9c:16:0f:bd:2f:f6:7f:7c:ac:5f:f6:86:52:a8:6d: 9f:15:b5:19 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjYwMTI4MTUxMDMxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU0OS05NTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qaHwt8uxcZVYLIc0oDkVJrN/8rSN6wuA689GQrDuxBETAAs2HOpy6/PhNz8 +t/6q5XQaMD851XxRt6/WHywMcG7d0UjayUjpjng2qoShfbYOIyF3ZPGz0oki+7H rlQtP8vvfMso/0q0UZS32ZXZI7lmIo2m0nRwEGPXsacA/aUOBl+bsqcxdBYy9b3B l+0xblC6+5AYyoHdfOV8FCM4vhvv0401JBEEBbT4ynSlCYS4hj8qz6dl/3Rk+RtT zF4rjhTA4yyJDkkOd9e5PZrtgkN9X7efCZ2TujnyxETTdahw9NRrEidxZFTL31jY D8a0+ERko4bINbf287/KGYq14QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB011ekj /XXLMt3xs7OK+yBajLojMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvQzhFMTE1Q0VB NkE3MTFFQThBNDhDRDJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAygOrMA0GCSqGSIb3DQEBCwUAA4IBAQAY4YuddLXiHExqDj2Y+zCk s6mw239D69NMoT064Ftu+1b5D7tltGqGZ183BJ86/LJPsA6p02lKUcz895ctDyTG 9We6ACdBtB91OEFCCNaD9uJQ2bK9WPzPezBwqA/wyjgs8MDAxHqovQ0Pfw1yTG+T nExRTA+vCOUZ2xFqjplXyWCzZQ+Si86LiXqk7GLpXoIoBn3cQ19L/5tx5nhPwhij Fjkxv224Z/rYnRI6HUtz2qo4YAX2ysm6Hitqz5Y2YmQbHZ8ROuDaxeQ1JpOblYVO uMpLVE2IG22WWZ1ip6TEd8AtxCA6TJiNTdFOiaucFg+9L/Z/fKxf9oZSqG2fFbUZ -----END CERTIFICATE-----Generated at Mon Mar 2 12:36:37 2026 by rpki-client