$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa File: 0B0485A250B811EBA8A3C670C4F9AE02.roa (raw, json) Hash identifier: Ly8SSkcgskhGQRoPTJo3pO2wtWF8MHFHJUjxu+Q5Vgk= Subject key identifier: 73:9C:F6:40:BF:3F:29:50:DC:25:7E:4A:38:C3:93:90:33:41:01:9F Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 0B3C Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:40:51 +0000 ROA not before: Fri 02 May 2025 20:30:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 43.251.21.0/24 maxlen: 24 43.251.22.0/23 maxlen: 23 202.155.221.0/24 maxlen: 24 218.253.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E, serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 2 20:30:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a47a23-7625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:82:16:3a:f6:99:94:4d:17:33:b3:fd:c0: a7:91:c1:d3:65:4d:6b:a6:75:8f:d8:9b:1b:3b:c0: e7:f5:ff:e9:10:10:ff:af:4f:0f:f2:f3:2e:e4:ff: 26:0b:11:29:b5:6f:f2:49:e0:23:ba:2e:c1:04:82: 6d:3a:e4:f2:11:0a:d4:c1:03:d9:80:73:b8:21:d0: 7f:e6:6a:26:48:06:2d:ac:51:97:b6:83:a6:28:35: d8:e9:00:6c:1d:57:fa:de:7b:1b:99:c4:84:45:a0: a9:53:e1:0a:84:84:b0:a5:0f:22:ba:00:f6:8b:03: 5b:3f:29:5c:4a:a5:23:0b:3a:06:44:57:ab:7f:53: 32:e8:29:7e:63:14:d5:db:05:96:d3:01:21:84:eb: b6:1a:cf:c8:1d:de:1e:21:9f:97:f8:0f:80:43:9d: db:59:a8:ba:9f:b2:24:0d:f8:e7:66:ab:55:95:11: 29:0f:25:d7:23:78:d7:28:b7:1f:5e:a9:13:bb:3c: 8b:a3:d0:aa:bd:f1:9c:2c:99:f7:bf:e8:ce:d2:e7: 19:6e:8d:ea:c6:a9:92:c5:1d:86:54:3e:6c:2d:e7: 62:5d:d1:4f:61:6d:7e:2e:20:b3:b4:41:05:fa:30: 74:99:9b:ef:70:0f:05:ba:f2:61:69:2c:0f:b8:b6: f9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9C:F6:40:BF:3F:29:50:DC:25:7E:4A:38:C3:93:90:33:41:01:9F X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.251.21.0-43.251.23.255 202.155.221.0/24 218.253.207.0/24 Signature Algorithm: sha256WithRSAEncryption 26:55:57:2c:f5:6a:56:e9:91:03:35:a3:5c:37:fb:81:64:2b: a2:7d:17:e1:c9:40:17:26:49:4a:be:42:b0:60:ad:e4:2b:ae: f4:94:e6:40:65:5d:30:b4:71:fb:7f:ae:37:c0:63:08:e2:9e: 3a:35:6c:ab:d0:f4:e5:22:62:44:23:11:a0:90:bf:91:cc:65: 45:59:99:f1:9c:d2:14:57:b3:a2:33:dd:d2:41:ef:44:3a:dc: b7:87:1b:78:77:f7:99:d7:25:32:61:c5:16:08:1a:54:8d:d5: 04:73:4e:d8:60:78:de:00:4f:94:d3:db:58:03:58:5a:73:f1: d4:2d:4e:61:4c:71:7b:41:e0:94:9f:4b:1d:a6:c4:29:71:7a: 0c:7e:e5:17:cf:57:05:07:e7:9c:fa:73:2f:9b:ee:59:07:a7: 66:dd:1c:0a:bd:c7:8b:36:51:65:9e:33:e5:1a:0d:42:e4:07: 83:58:cf:49:bc:f2:87:da:c9:aa:6f:bc:3b:e5:bf:10:a4:fd: 08:67:ba:48:29:d9:9c:fe:a2:ad:2d:fd:55:87:39:73:da:08: 47:9f:4d:82:54:91:d0:ac:6b:e8:5b:41:82:22:67:39:1a:e2: b7:74:8d:c6:d6:ab:84:67:b0:1e:36:cf:20:5d:db:6f:ae:5f: 43:0b:3b:7e -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjUwNTAyMjAzMDQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2EyMy03NjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwuCFjr2mZRNFzOz/cCnkcHTZU1rpnWP2JsbO8Dn9f/pEBD/r08P8vMu5P8m CxEptW/ySeAjui7BBIJtOuTyEQrUwQPZgHO4IdB/5momSAYtrFGXtoOmKDXY6QBs HVf63nsbmcSERaCpU+EKhISwpQ8iugD2iwNbPylcSqUjCzoGRFerf1My6Cl+YxTV 2wWW0wEhhOu2Gs/IHd4eIZ+X+A+AQ53bWai6n7IkDfjnZqtVlREpDyXXI3jXKLcf XqkTuzyLo9CqvfGcLJn3v+jO0ucZbo3qxqmSxR2GVD5sLediXdFPYW1+LiCztEEF +jB0mZvvcA8FuvJhaSwPuLb5iwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFHOc9kC/ PylQ3CV+SjjDk5AzQQGfMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvMEIwNDg1QTI1 MEI4MTFFQkE4QTNDNjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAAr+xUDBAMr+xADBADKm90DBADa/c8wDQYJKoZIhvcNAQELBQAD ggEBACZVVyz1albpkQM1o1w3+4FkK6J9F+HJQBcmSUq+QrBgreQrrvSU5kBlXTC0 cft/rjfAYwjinjo1bKvQ9OUiYkQjEaCQv5HMZUVZmfGc0hRXs6Iz3dJB70Q63LeH G3h395nXJTJhxRYIGlSN1QRzTthgeN4AT5TT21gDWFpz8dQtTmFMcXtB4JSfSx2m xClxegx+5RfPVwUH55z6cy+b7lkHp2bdHAq9x4s2UWWeM+UaDULkB4NYz0m88ofa yapvvDvlvxCk/Qhnukgp2Zz+oq0t/VWHOXPaCEefTYJUkdCsa+hbQYIiZzka4rd0 jcbWq4RnsB42zyBd22+uX0MLO34= -----END CERTIFICATE-----Generated at Mon Mar 2 15:55:58 2026 by rpki-client