$ rpki-client -vvf rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa File: 97285ACA5BB111EEB6671243C4F9AE02.roa (raw, json) Hash identifier: 4j5M6NM+0EQ09gVo9RPINMVVcQMdTQSqDBKYQatyukk= Subject key identifier: F4:A7:E2:E3:C5:1C:64:B2:FD:EE:CB:B2:0E:13:46:FD:CC:B6:F6:1E Certificate issuer: /CN=A913383A/serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Certificate serial: 0C00 Authority key identifier: 9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:43:29 +0000 ROA not before: Tue 22 Jul 2025 19:29:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4787 IP address blocks: 123.253.128.0/24 maxlen: 24 123.253.129.0/24 maxlen: 24 123.253.130.0/24 maxlen: 24 123.253.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3072 (0xc00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913383A, serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Validity Not Before: Jul 22 19:29:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42661-b42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9c:3c:83:be:e0:63:89:18:62:43:a5:3e:c9: 76:c5:9a:46:65:b5:fb:91:2d:bd:75:b1:a2:b3:bd: 38:0e:23:95:e6:f3:24:15:7a:64:93:ba:b0:99:46: 56:f7:7a:d8:ff:8d:c5:99:ed:0f:16:ed:cd:0d:f2: 54:4d:2b:74:c5:35:0e:c7:fe:5f:56:f5:fa:42:a9: f6:e0:8d:ca:80:09:ba:9d:6c:83:cb:8a:0a:c5:61: 8a:2b:2e:c5:b2:1e:dd:ff:50:ba:d4:c4:9f:fd:1a: 8e:9a:e8:c0:6f:39:60:25:b2:5b:98:7c:2d:d7:c2: b2:76:4e:72:30:57:0d:35:77:c3:18:87:94:ce:c7: 81:31:2d:e8:ec:00:2c:59:a1:ab:48:17:70:ed:27: 36:44:ca:ea:11:8d:e5:54:4c:ef:37:cb:87:8a:19: f5:c1:40:7a:3e:e2:f0:13:9d:28:3d:af:1f:b0:dc: 83:03:6d:9f:3a:63:7a:a7:a2:5d:4a:3a:0a:8b:01: 6b:5f:24:ab:fb:3a:c2:48:ff:fe:0a:59:49:af:fb: d8:3f:a3:3e:e1:c6:7d:6c:5f:cc:8b:1e:f6:b3:01: 0b:f4:56:89:12:4e:ea:8f:e8:5f:6d:3f:87:ab:f9: 39:83:0a:25:15:0c:4b:94:2a:a8:2c:68:b1:38:ce: d7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A7:E2:E3:C5:1C:64:B2:FD:EE:CB:B2:0E:13:46:FD:CC:B6:F6:1E X509v3 Authority Key Identifier: keyid:9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.128.0/22 Signature Algorithm: sha256WithRSAEncryption 25:2a:c4:f4:40:dc:82:f0:0c:01:81:7c:b5:b4:57:ee:f1:87: 45:18:98:b7:f0:1d:82:fb:7a:63:de:cc:cf:67:2f:30:35:7e: c6:10:ad:47:3f:34:fc:80:0a:df:b0:96:30:48:f5:e2:89:ba: e3:ff:72:2c:4a:6a:38:0a:21:56:8a:c8:a0:b5:ed:65:be:6f: f9:ec:56:50:50:61:85:09:ef:cc:ea:30:ee:3a:e2:42:37:d2: 4d:b5:fd:ae:e4:a2:cc:04:ed:fe:ec:02:02:f7:97:7f:28:e6: 8e:b3:0c:a9:c0:6c:5b:45:5b:7b:33:ef:85:d1:1d:dd:40:89: 0a:98:c7:ea:5e:64:44:25:ac:4e:9b:34:1e:77:fa:26:13:2a: ba:c2:fb:57:60:f8:1c:ea:8f:3c:15:b9:21:5a:47:6e:be:42: a1:c7:61:df:0b:db:59:ad:eb:52:2b:20:6d:16:7e:3f:c9:83: 13:99:25:88:f1:18:81:1b:af:a6:5c:8e:bd:0a:41:82:77:fa: fc:38:25:a7:c5:cb:9e:69:4a:a0:e0:58:96:45:4a:eb:f5:47: 94:36:ea:70:4d:6f:54:d8:bd:80:e1:90:fe:09:ad:1d:16:3b: 35:9a:80:ec:90:92:75:e0:f7:0b:8e:a7:3d:88:ac:22:78:11: d0:77:bf:37 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4M0ExMTAvBgNVBAUTKDlFRDdCQUY2M0Y1NTRGMUZFQTU3MEUxOUJBRjY5RURF RDBEOUU0QkUwHhcNMjUwNzIyMTkyOTEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY2MS1iNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pw8g77gY4kYYkOlPsl2xZpGZbX7kS29dbGis704DiOV5vMkFXpkk7qwmUZW 93rY/43Fme0PFu3NDfJUTSt0xTUOx/5fVvX6Qqn24I3KgAm6nWyDy4oKxWGKKy7F sh7d/1C61MSf/RqOmujAbzlgJbJbmHwt18Kydk5yMFcNNXfDGIeUzseBMS3o7AAs WaGrSBdw7Sc2RMrqEY3lVEzvN8uHihn1wUB6PuLwE50oPa8fsNyDA22fOmN6p6Jd SjoKiwFrXySr+zrCSP/+CllJr/vYP6M+4cZ9bF/Mix72swEL9FaJEk7qj+hfbT+H q/k5gwolFQxLlCqoLGixOM7XCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPSn4uPF HGSy/e7Lsg4TRv3MtvYeMB8GA1UdIwQYMBaAFJ7XuvY/VU8f6lcOGbr2nt7Q2eS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzgzQS8xRkZCN0Q4MDMw NkIxMUVBODQ4QkUwMzFDNEY5QUUwMi9udGU2OWo5VlR4X3FWdzRadXZhZTN0RFo1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250ZTY5ajlWVHhfcVZ3NFp1dmFlM3REWjVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4M0EvMUZGQjdEODAzMDZCMTFFQTg0OEJFMDMxQzRGOUFFMDIvOTcyODVBQ0E1 QkIxMTFFRUI2NjcxMjQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCe/2AMA0GCSqGSIb3DQEBCwUAA4IBAQAlKsT0QNyC8AwBgXy1tFfu 8YdFGJi38B2C+3pj3szPZy8wNX7GEK1HPzT8gArfsJYwSPXiibrj/3IsSmo4CiFW isigte1lvm/57FZQUGGFCe/M6jDuOuJCN9JNtf2u5KLMBO3+7AIC95d/KOaOswyp wGxbRVt7M++F0R3dQIkKmMfqXmREJaxOmzQed/omEyq6wvtXYPgc6o88FbkhWkdu vkKhx2HfC9tZretSKyBtFn4/yYMTmSWI8RiBG6+mXI69CkGCd/r8OCWnxcueaUqg 4FiWRUrr9UeUNupwTW9U2L2A4ZD+Ca0dFjs1moDskJJ14PcLjqc9iKwieBHQd783 -----END CERTIFICATE-----Generated at Mon Mar 2 09:51:55 2026 by rpki-client