$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa File: DB4932CEC2B611EB9BF18A81C4F9AE02.roa (raw, json) Hash identifier: Hj2gvQPptbIyBsk+GZQr8HEa82gNIwoOpKASxetT7F4= Subject key identifier: F5:65:55:63:6E:77:F1:5C:50:FD:A8:5E:31:F2:2C:86:92:F4:5F:AF Certificate issuer: /CN=A9133E16/serialNumber=31C4F9064F89E56B194EB88492E9021C152DEB3E Certificate serial: 0996 Authority key identifier: 31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:01:43 +0000 ROA not before: Wed 28 Jan 2026 20:17:03 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 19905 IP address blocks: 42.200.3.0/24 maxlen: 24 42.200.23.0/24 maxlen: 24 42.200.54.0/24 maxlen: 24 202.82.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2454 (0x996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16, serialNumber=31C4F9064F89E56B194EB88492E9021C152DEB3E Validity Not Before: Jan 28 20:17:03 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a462e7-d78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:e5:86:d4:80:7b:c7:33:37:e6:46:7f:5f: b1:3c:80:1f:aa:01:3d:6a:c7:d5:5d:a7:4d:6a:df: cd:e7:9a:61:d2:08:59:d7:a2:96:3b:48:cc:03:25: 66:68:9f:91:83:13:09:7b:84:b4:9e:52:c7:8f:09: d4:56:bc:aa:b3:e2:29:a7:e0:3a:23:bd:dc:da:28: d2:9d:29:cf:0e:6c:31:d6:3a:22:f3:5a:db:bd:c2: 07:c0:d1:9d:85:39:fb:d4:20:fb:99:86:35:af:b9: cc:fc:b6:12:05:4c:b3:ec:ce:0e:38:2b:2c:e2:69: 11:07:58:42:c8:82:69:c5:ec:c3:2c:21:ba:9a:75: 08:df:0e:90:aa:98:ee:50:00:7f:99:40:e0:bd:a6: 6c:e3:6c:6c:3b:85:30:26:1c:05:8a:88:8e:15:b7: ea:6d:e1:11:35:50:2c:85:ef:f3:47:f3:33:3b:6b: 15:4d:21:79:35:ea:e7:b0:87:0e:fe:d8:0f:49:31: 5c:77:5d:53:e6:a9:5e:c6:a7:9e:1d:b2:a4:a0:67: c3:25:7a:95:7f:32:73:aa:68:40:e1:b5:b9:d4:20: 83:38:54:a4:4b:79:8d:84:5d:b8:51:bc:a2:77:7f: 97:42:21:84:30:75:10:ad:59:73:8c:c7:25:04:69: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:65:55:63:6E:77:F1:5C:50:FD:A8:5E:31:F2:2C:86:92:F4:5F:AF X509v3 Authority Key Identifier: keyid:31:C4:F9:06:4F:89:E5:6B:19:4E:B8:84:92:E9:02:1C:15:2D:EB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/McT5Bk-J5WsZTriEkukCHBUt6z4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/McT5Bk-J5WsZTriEkukCHBUt6z4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/DC54D9A6AC7411EA86EA9F48C4F9AE02/DB4932CEC2B611EB9BF18A81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 42.200.3.0/24 42.200.23.0/24 42.200.54.0/24 202.82.250.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:15:bb:1c:0f:ac:86:af:1b:7d:7a:32:ef:28:2b:c6:71:01: fe:49:e1:33:1a:5e:67:0a:87:bb:c7:96:b2:e5:8a:67:38:cb: e9:ad:b2:68:61:1f:28:66:0b:fa:bc:6e:b3:3c:ed:d7:68:42: e8:b4:38:b5:26:4d:69:9b:34:37:93:16:c3:07:ee:8d:f6:59: 7e:26:8b:c2:74:ba:dc:ab:59:ac:7e:11:af:b0:15:1d:97:08: ae:4e:da:8e:aa:3e:86:54:62:3e:37:bc:3b:cd:b7:d5:ad:01: 6e:45:ba:c5:84:b9:99:14:39:94:a9:09:82:aa:34:f9:31:3c: 14:56:c4:c4:24:5e:b6:28:c7:2e:a0:7d:f8:74:7f:ff:8e:2c: 07:04:fe:8e:a5:c9:0a:02:c9:d0:99:66:c2:15:0d:dd:62:e0: 12:2b:8b:35:b8:d7:4b:3a:fc:96:53:19:c1:b5:4d:39:a6:ab: 11:26:01:4c:47:86:26:8b:e3:a1:9d:94:a6:6f:62:d0:f3:1d: cf:eb:c8:31:01:96:44:b2:90:27:3d:af:ec:8f:c0:9e:ea:77: 17:4b:99:69:fb:b3:1d:cb:10:70:86:83:32:7b:60:23:5b:fb: 05:8b:21:7a:b8:79:fc:19:aa:04:1b:8c:cd:1c:cc:ac:db:84: d6:62:ba:9b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKDMxQzRGOTA2NEY4OUU1NkIxOTRFQjg4NDkyRTkwMjFD MTUyREVCM0UwHhcNMjYwMTI4MjAxNzAzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjJlNy1kNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsirlhtSAe8czN+ZGf1+xPIAfqgE9asfVXadNat/N55ph0ghZ16KWO0jMAyVm aJ+RgxMJe4S0nlLHjwnUVryqs+Ipp+A6I73c2ijSnSnPDmwx1joi81rbvcIHwNGd hTn71CD7mYY1r7nM/LYSBUyz7M4OOCss4mkRB1hCyIJpxezDLCG6mnUI3w6Qqpju UAB/mUDgvaZs42xsO4UwJhwFioiOFbfqbeERNVAshe/zR/MzO2sVTSF5NernsIcO /tgPSTFcd11T5qlexqeeHbKkoGfDJXqVfzJzqmhA4bW51CCDOFSkS3mNhF24Ubyi d3+XQiGEMHUQrVlzjMclBGkuPwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFPVlVWNu d/FcUP2oXjHyLIaS9F+vMB8GA1UdIwQYMBaAFDHE+QZPieVrGU64hJLpAhwVLes+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9EQzU0RDlBNkFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi9NY1Q1QmstSjVXc1pUcmlFa3VrQ0hCVXQ2 ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01jVDVCay1KNVdzWlRyaUVrdWtDSEJVdDZ6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzNFMTYvREM1NEQ5QTZBQzc0MTFFQTg2RUE5RjQ4QzRGOUFFMDIvREI0OTMyQ0VD MkI2MTFFQjlCRjE4QTgxQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAKsgDAwQAKsgXAwQAKsg2AwQAylL6MA0GCSqGSIb3DQEBCwUAA4IB AQBtFbscD6yGrxt9ejLvKCvGcQH+SeEzGl5nCoe7x5ay5YpnOMvprbJoYR8oZgv6 vG6zPO3XaELotDi1Jk1pmzQ3kxbDB+6N9ll+JovCdLrcq1msfhGvsBUdlwiuTtqO qj6GVGI+N7w7zbfVrQFuRbrFhLmZFDmUqQmCqjT5MTwUVsTEJF62KMcuoH34dH// jiwHBP6OpckKAsnQmWbCFQ3dYuASK4s1uNdLOvyWUxnBtU05pqsRJgFMR4Ymi+Oh nZSmb2LQ8x3P68gxAZZEspAnPa/sj8Ce6ncXS5lp+7MdyxBwhoMye2AjW/sFiyF6 uHn8GaoEG4zNHMys24TWYrqb -----END CERTIFICATE-----Generated at Mon Mar 2 05:51:21 2026 by rpki-client