$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/3824E928764711F0980D9877C4F9AE02.roa File: 3824E928764711F0980D9877C4F9AE02.roa (raw, json) Hash identifier: RNrBzsULWKNLzQ9xO26elmeen/lXKp/Fjr/z7K/9x2Q= Subject key identifier: 79:08:06:55:FA:9E:6B:F8:06:1C:C3:40:2B:2A:9A:C9:A3:FE:9A:67 Certificate issuer: /CN=A912BE25/serialNumber=A760ADE0C9D05EE679EC304122BC3350C8D2A439 Certificate serial: 0389 Authority key identifier: A7:60:AD:E0:C9:D0:5E:E6:79:EC:30:41:22:BC:33:50:C8:D2:A4:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/3824E928764711F0980D9877C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:03:44 +0000 ROA not before: Thu 11 Sep 2025 01:38:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23887 IP address blocks: 119.63.0.0/23 maxlen: 23 202.71.176.0/23 maxlen: 23 202.71.179.0/24 maxlen: 24 202.71.186.0/24 maxlen: 24 2406:2a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.crl rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE25, serialNumber=A760ADE0C9D05EE679EC304122BC3350C8D2A439 Validity Not Before: Sep 11 01:38:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a42b1f-2e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:05:e0:42:47:78:0b:fb:d2:22:a0:8a:a2: 79:8a:e3:d4:90:12:1f:05:13:55:57:ae:d3:1e:d9: 46:51:7d:1f:27:de:5d:eb:d1:2f:7f:e0:54:87:11: 72:b3:b1:cd:5c:bf:8a:90:28:b5:47:19:ac:01:04: 6b:75:03:e9:3a:d1:0d:dc:4e:41:26:2f:bb:c4:9b: e1:69:29:59:0e:04:0c:78:6b:4e:35:a5:3a:d9:c7: 91:56:99:e4:fb:71:73:51:50:1c:73:d7:71:ce:b7: 94:28:c2:9d:15:bc:f7:3c:43:f2:96:34:ad:d0:70: 97:2e:be:ea:44:29:f9:36:37:22:9a:07:f8:47:b6: c5:5c:11:7e:59:7c:82:7c:ee:6d:83:2d:08:f9:9d: 2a:14:e3:c9:60:f0:64:94:0d:ad:38:bb:69:3c:0a: 6a:95:78:69:89:aa:83:0e:a7:5a:c7:b7:ad:90:09: 53:8c:80:17:b5:45:07:52:16:9c:b1:d4:19:2b:fc: fc:1a:61:cb:7d:f5:ec:40:e9:70:f0:0f:41:24:7f: 31:7a:bf:70:ed:e2:fd:01:1a:51:ec:82:f0:9e:e5: 4a:47:3e:46:94:5e:fe:17:7f:3d:e8:23:e0:8f:72: bf:a6:84:b1:a5:b9:9f:7d:91:62:4d:eb:1d:4a:8b: 0a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:08:06:55:FA:9E:6B:F8:06:1C:C3:40:2B:2A:9A:C9:A3:FE:9A:67 X509v3 Authority Key Identifier: keyid:A7:60:AD:E0:C9:D0:5E:E6:79:EC:30:41:22:BC:33:50:C8:D2:A4:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p2Ct4MnQXuZ57DBBIrwzUMjSpDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE25/D90526E4EE1111EC95299982C4F9AE02/3824E928764711F0980D9877C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.63.0.0/23 202.71.176.0/23 202.71.179.0/24 202.71.186.0/24 IPv6: 2406:2a00::/32 Signature Algorithm: sha256WithRSAEncryption 21:3a:95:77:62:73:4d:1f:d2:1b:0e:04:29:23:2b:c6:c5:70: 89:51:33:f5:16:39:b0:5f:11:59:0e:88:a6:39:34:bb:a0:2b: 65:f8:dd:4f:41:ed:d8:f4:f5:fc:ba:60:d1:36:91:b0:a6:b5: 57:38:b8:f9:1e:e5:a3:d3:29:f5:74:68:70:46:55:05:07:7d: e4:d5:00:73:b0:a2:21:c1:fa:eb:6e:7d:59:f5:b4:30:e1:1d: ed:08:11:a6:cf:74:31:cb:77:fc:72:ab:2b:53:69:ad:4e:4b: c7:22:d7:bd:9d:d4:ef:9c:7c:60:45:80:52:2f:1d:6c:83:54: f9:d0:e0:14:cc:39:5c:e2:3f:0c:ee:f9:e0:57:8c:67:77:49: d1:44:cd:e3:5c:37:85:7f:4c:3e:f5:13:2b:de:78:64:dd:90: bf:41:b4:c2:62:42:39:6e:12:61:d8:f6:f4:c2:1f:01:4a:6c: ac:ed:d4:66:35:2a:ba:0b:a2:e0:00:e9:2a:56:22:45:24:ba: 6a:0c:25:fa:07:5a:95:71:e7:d5:09:ea:dd:20:c2:9f:ee:6b: 50:62:66:27:47:0e:ff:57:c3:b0:9a:5a:63:3f:e4:0b:18:c1: 62:10:9d:b9:44:55:e0:9d:e4:af:19:8b:5e:b4:3e:41:24:b4: 9c:6c:d3:ac -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFMjUxMTAvBgNVBAUTKEE3NjBBREUwQzlEMDVFRTY3OUVDMzA0MTIyQkMzMzUw QzhEMkE0MzkwHhcNMjUwOTExMDEzODQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmIxZi0yZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtccF4EJHeAv70iKgiqJ5iuPUkBIfBRNVV67THtlGUX0fJ95d69Evf+BUhxFy s7HNXL+KkCi1RxmsAQRrdQPpOtEN3E5BJi+7xJvhaSlZDgQMeGtONaU62ceRVpnk +3FzUVAcc9dxzreUKMKdFbz3PEPyljSt0HCXLr7qRCn5Njcimgf4R7bFXBF+WXyC fO5tgy0I+Z0qFOPJYPBklA2tOLtpPApqlXhpiaqDDqdax7etkAlTjIAXtUUHUhac sdQZK/z8GmHLffXsQOlw8A9BJH8xer9w7eL9ARpR7ILwnuVKRz5GlF7+F3896CPg j3K/poSxpbmffZFiTesdSosKswIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFHkIBlX6 nmv4BhzDQCsqmsmj/ppnMB8GA1UdIwQYMBaAFKdgreDJ0F7meewwQSK8M1DI0qQ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkUyNS9EOTA1MjZFNEVF MTExMUVDOTUyOTk5ODJDNEY5QUUwMi9wMkN0NE1uUVh1WjU3REJCSXJ3elVNalNw RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AyQ3Q0TW5RWHVaNTdEQkJJcnd6VU1qU3BEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFMjUvRDkwNTI2RTRFRTExMTFFQzk1Mjk5OTgyQzRGOUFFMDIvMzgyNEU5Mjg3 NjQ3MTFGMDk4MEQ5ODc3QzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQBdz8AAwQBykewAwQAykezAwQAyke6MA0EAgACMAcDBQAkBioAMA0G CSqGSIb3DQEBCwUAA4IBAQAhOpV3YnNNH9IbDgQpIyvGxXCJUTP1FjmwXxFZDoim OTS7oCtl+N1PQe3Y9PX8umDRNpGwprVXOLj5HuWj0yn1dGhwRlUFB33k1QBzsKIh wfrrbn1Z9bQw4R3tCBGmz3Qxy3f8cqsrU2mtTkvHIte9ndTvnHxgRYBSLx1sg1T5 0OAUzDlc4j8M7vngV4xnd0nRRM3jXDeFf0w+9RMr3nhk3ZC/QbTCYkI5bhJh2Pb0 wh8BSmys7dRmNSq6C6LgAOkqViJFJLpqDCX6B1qVcefVCerdIMKf7mtQYmYnRw7/ V8OwmlpjP+QLGMFiEJ25RFXgneSvGYtetD5BJLScbNOs -----END CERTIFICATE-----Generated at Mon Mar 2 06:19:08 2026 by rpki-client