$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa File: 111E53B6152811ECB2C0B70BC4F9AE02.roa (raw, json) Hash identifier: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo= Subject key identifier: CD:07:BB:6A:2D:1E:A1:7A:E8:B9:C1:08:BC:17:EC:60:0E:1C:12:C8 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0874 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:22:50 +0000 ROA not before: Mon 14 Jul 2025 21:30:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7473 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.218.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jul 14 21:30:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42f9a-6bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:05:05:f9:36:f1:6d:6c:9e:70:d8:0f:9a: b4:b8:d3:82:24:e2:e3:d7:0e:46:24:55:73:f6:75: 65:06:3e:0c:37:a4:d8:67:4a:5a:f4:d0:dd:96:c7: 46:68:c9:82:a6:92:ad:2b:af:c3:69:7b:52:d8:03: ce:e6:63:8a:c2:cb:05:98:37:65:69:40:e5:59:25: 70:b8:3b:f5:8f:be:35:d2:79:84:26:c3:89:35:e2: 79:70:7d:90:c2:9d:ff:3f:dc:33:04:18:25:42:1c: 9c:06:d2:d5:41:d6:fd:a0:48:92:0d:bc:be:52:5b: 27:46:0e:5a:b6:6b:33:e7:9d:ae:c4:9c:5c:cb:fc: aa:2b:0e:29:aa:94:e9:68:0f:5a:92:29:e3:c6:2d: 4c:57:d2:95:19:f1:4c:be:7f:c4:88:05:94:44:5f: bf:3c:cc:ff:96:44:cc:85:fc:1d:fb:42:fb:d0:79: 7f:50:6e:4b:db:e0:4d:44:d2:99:3a:53:9e:68:2b: 93:30:cb:dd:e9:fa:ca:f2:b5:b7:72:5f:e6:2a:04: 8b:a5:4c:c5:1b:4a:2b:6e:85:55:2a:4d:f0:33:9b: 61:60:2b:c3:b0:3f:5a:90:dd:21:e3:cf:de:cf:22: c0:b5:aa:4f:c2:5c:76:cf:71:57:c4:5e:69:78:2a: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:07:BB:6A:2D:1E:A1:7A:E8:B9:C1:08:BC:17:EC:60:0E:1C:12:C8 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 7e:80:e8:f2:a3:d6:6a:7f:da:07:e6:74:fb:f4:5b:1d:74:7a: e6:20:50:b1:72:34:b0:22:03:ae:93:0f:06:27:1d:9c:56:02: 44:a7:db:ba:73:54:c5:d7:98:c9:ee:6c:66:78:dc:d5:e0:1b: 05:03:02:16:31:7f:56:32:3f:61:5d:14:9d:41:f9:59:51:8a: 2a:1c:1f:8c:5b:d0:0f:00:79:89:4f:63:e9:8d:71:08:3e:c6: de:41:d3:7e:f6:ed:e7:e8:26:d4:8a:1e:69:5a:56:4e:84:cf: 6b:d5:99:ba:fd:ad:a1:81:3f:3d:96:c6:5f:46:ba:6c:5a:56: 91:b4:86:01:17:c0:43:04:0e:a1:48:cc:22:c0:34:9d:7a:c4: 76:fd:fd:09:b7:4d:40:71:51:a4:3f:5f:55:8c:d4:c5:63:f6: 0f:5a:34:7b:82:ea:7a:98:d9:10:ba:fe:b6:cd:75:c0:89:d7: a4:0b:0d:d6:ed:52:de:89:5a:19:a5:14:9d:45:67:ed:49:af: 98:a7:37:40:e9:d8:1c:36:7b:a6:a2:20:26:e6:57:f1:cd:61: f4:86:82:50:ae:81:b3:25:d2:30:73:94:1d:15:86:f0:8b:37: 48:3b:89:85:22:7d:8b:82:3b:ba:09:db:cc:93:ec:f2:8b:7b: 6d:ce:b5:b9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNzE0MjEzMDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY5YS02YmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs40FBfk28W1snnDYD5q0uNOCJOLj1w5GJFVz9nVlBj4MN6TYZ0pa9NDdlsdG aMmCppKtK6/DaXtS2APO5mOKwssFmDdlaUDlWSVwuDv1j7410nmEJsOJNeJ5cH2Q wp3/P9wzBBglQhycBtLVQdb9oEiSDby+UlsnRg5atmsz552uxJxcy/yqKw4pqpTp aA9akinjxi1MV9KVGfFMvn/EiAWURF+/PMz/lkTMhfwd+0L70Hl/UG5L2+BNRNKZ OlOeaCuTMMvd6frK8rW3cl/mKgSLpUzFG0orboVVKk3wM5thYCvDsD9akN0h48/e zyLAtapPwlx2z3FXxF5peCqafQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFM0Hu2ot HqF66LnBCLwX7GAOHBLIMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvMTExRTUzQjYx NTI4MTFFQ0IyQzBCNzBCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFylPAMA0EAgACMAcDBQAkAPAAMA0GCSqGSIb3DQEBCwUAA4IBAQB+ gOjyo9Zqf9oH5nT79FsddHrmIFCxcjSwIgOukw8GJx2cVgJEp9u6c1TF15jJ7mxm eNzV4BsFAwIWMX9WMj9hXRSdQflZUYoqHB+MW9APAHmJT2PpjXEIPsbeQdN+9u3n 6CbUih5pWlZOhM9r1Zm6/a2hgT89lsZfRrpsWlaRtIYBF8BDBA6hSMwiwDSdesR2 /f0Jt01AcVGkP19VjNTFY/YPWjR7gup6mNkQuv62zXXAidekCw3W7VLeiVoZpRSd RWftSa+YpzdA6dgcNnumoiAm5lfxzWH0hoJQroGzJdIwc5QdFYbwizdIO4mFIn2L gju6CdvMk+zyi3ttzrW5 -----END CERTIFICATE-----Generated at Mon Mar 2 03:49:56 2026 by rpki-client