$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa File: E89AA63C3A3411EDA5928760C4F9AE02.roa (raw, json) Hash identifier: onsBo5Bz4rkJbVswoyhTU6gtfIuIlfG0ZfPWcTezyxQ= Subject key identifier: 1B:E1:F4:93:24:4A:F7:62:C1:B7:ED:01:25:63:71:00:9D:8B:04:2B Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 3534 Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:05:42 +0000 ROA not before: Tue 06 Jan 2026 10:58:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17820 IP address blocks: 61.16.238.0/24 maxlen: 29 203.196.128.0/21 maxlen: 21 210.7.74.0/24 maxlen: 29 210.7.77.0/24 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13620 (0x3534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Jan 6 10:58:49 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a47ff6-1a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e5:a7:da:79:3e:b5:5a:2f:38:40:6c:1d:57: be:b7:33:92:58:ac:72:51:6c:35:92:55:39:33:bd: 6b:66:27:d0:51:d5:80:e2:2e:23:4e:90:88:7a:82: 55:00:e7:13:8a:b7:9e:e9:b8:96:b4:e3:4c:e1:44: c6:c6:b1:76:0a:62:fb:a7:22:c2:c9:5f:d0:ed:7f: f6:49:88:a7:d5:14:6d:85:d7:46:02:7f:90:f0:25: 30:f9:68:a9:14:e8:a8:c5:52:d5:1c:21:6a:7a:01: 11:a5:48:38:6a:1f:1f:fd:48:de:4b:90:6d:c4:1a: e8:81:ee:eb:12:0f:69:2b:75:35:e7:89:9a:46:e0: 16:ae:12:cc:53:bc:a7:aa:85:c9:92:a5:b1:af:0c: ff:c7:20:35:13:b4:8d:b1:04:9a:56:13:e0:cb:b4: 2f:03:50:6f:35:d0:fe:ec:cc:d6:08:53:fc:82:a7: a7:65:b2:cb:7c:25:8e:6f:79:d9:ab:78:10:09:60: 0d:6a:b0:22:f2:47:c3:52:f5:c1:de:86:95:af:17: 21:ea:46:43:01:d9:fb:46:ae:66:33:85:a9:a8:aa: bb:7b:84:d5:ab:2b:e9:79:87:81:19:86:d0:e3:66: 06:00:e8:df:a6:8c:6b:50:fc:80:85:db:82:8c:08: e4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E1:F4:93:24:4A:F7:62:C1:B7:ED:01:25:63:71:00:9D:8B:04:2B X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/E89AA63C3A3411EDA5928760C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.16.238.0/24 203.196.128.0/21 210.7.74.0/24 210.7.77.0/24 Signature Algorithm: sha256WithRSAEncryption 33:79:ff:f0:cc:d6:07:bc:a3:97:e8:dd:48:fa:d1:ac:33:d0: 6b:b7:3c:7a:cc:80:3a:7e:b7:97:ac:84:da:14:2f:b0:15:7a: 6e:a9:4c:ac:4b:10:d7:24:e8:df:84:c3:90:da:3a:fa:1c:af: 7f:cf:93:de:32:6b:ad:2e:75:9e:08:8a:0b:c5:a8:aa:4c:a1: 7d:be:6f:be:3c:03:2d:a3:79:f7:aa:03:ea:93:85:68:42:f6: ec:b0:c0:5a:c7:48:6e:a0:1e:71:98:6d:de:30:90:40:cb:2f: 77:79:8e:47:22:a5:4e:15:a5:d9:22:40:52:85:0a:ed:af:a2: 96:97:86:b1:84:ae:51:41:65:74:02:27:78:11:ef:8b:ff:dc: c0:e2:69:42:e6:8a:ba:58:d7:46:c2:d4:b0:d0:f3:48:95:82: 1a:74:28:ea:0e:96:0e:3c:50:66:21:ea:b6:56:a6:7a:f7:7a: 51:3a:cd:bc:c1:38:10:3f:eb:30:9a:de:00:5f:69:a8:57:e6: 49:0a:16:9d:1d:b9:5d:b2:7b:87:67:ac:5a:c9:33:aa:d2:e6: 31:1d:59:7b:db:66:74:1e:f9:92:c7:73:5f:7a:6b:3d:ef:b9: 66:35:5d:76:1d:4d:ad:87:2e:03:28:15:be:db:a9:bf:32:77: 7c:63:bd:2d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICNTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjYwMTA2MTA1ODQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2ZmNi0xYTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OWn2nk+tVovOEBsHVe+tzOSWKxyUWw1klU5M71rZifQUdWA4i4jTpCIeoJV AOcTiree6biWtONM4UTGxrF2CmL7pyLCyV/Q7X/2SYin1RRthddGAn+Q8CUw+Wip FOioxVLVHCFqegERpUg4ah8f/UjeS5BtxBroge7rEg9pK3U154maRuAWrhLMU7yn qoXJkqWxrwz/xyA1E7SNsQSaVhPgy7QvA1BvNdD+7MzWCFP8gqenZbLLfCWOb3nZ q3gQCWANarAi8kfDUvXB3oaVrxch6kZDAdn7Rq5mM4WpqKq7e4TVqyvpeYeBGYbQ 42YGAOjfpoxrUPyAhduCjAjkLwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFBvh9JMk SvdiwbftASVjcQCdiwQrMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzVFQzQvOEE5QTgzNjgxRDg5MTFFMjlDRTVFQ0UyMDhCMDJDRDIvRTg5QUE2M0Mz QTM0MTFFREE1OTI4NzYwQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAPRDuAwQDy8SAAwQA0gdKAwQA0gdNMA0GCSqGSIb3DQEBCwUAA4IB AQAzef/wzNYHvKOX6N1I+tGsM9Brtzx6zIA6freXrITaFC+wFXpuqUysSxDXJOjf hMOQ2jr6HK9/z5PeMmutLnWeCIoLxaiqTKF9vm++PAMto3n3qgPqk4VoQvbssMBa x0huoB5xmG3eMJBAyy93eY5HIqVOFaXZIkBShQrtr6KWl4axhK5RQWV0Aid4Ee+L /9zA4mlC5oq6WNdGwtSw0PNIlYIadCjqDpYOPFBmIeq2VqZ693pROs28wTgQP+sw mt4AX2moV+ZJChadHbldsnuHZ6xayTOq0uYxHVl722Z0HvmSx3Nfems977lmNV12 HU2thy4DKBW+26m/Mnd8Y70t -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:37 2026 by rpki-client