$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa File: F3643AD6089C11F09BB44535C4F9AE02.roa (raw, json) Hash identifier: h+M8yWQJoBkACzAfTIpQdErBAlAmwZgxPQ+K7UT/ZJ8= Subject key identifier: 83:E7:AE:33:66:63:6C:38:81:20:BA:AF:EA:D0:21:0F:3F:5E:1F:BC Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 093A Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:02:06 +0000 ROA not before: Tue 04 Nov 2025 21:40:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 18115 IP address blocks: 126.209.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2362 (0x93a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Nov 4 21:40:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48d2e-22cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:d9:ca:ce:88:47:ae:a3:f6:07:bd:2d:b2: cb:32:73:0e:cc:a9:dc:e6:bc:f7:e5:6b:12:ae:e7: cd:82:4f:9f:95:77:96:b1:0c:da:07:57:4f:4d:4f: 34:00:ae:c5:34:90:9c:d3:6c:97:5e:f5:58:e9:72: da:c5:71:31:ce:23:f7:6b:20:45:ec:da:86:ee:08: 1d:04:93:ed:54:ef:27:a5:2f:d3:af:9a:92:83:4f: 71:b3:e3:18:79:04:cd:94:cc:8a:36:01:f2:c7:32: 62:0b:61:13:b7:41:97:88:a0:ee:c6:71:99:61:c7: 84:2f:eb:00:45:5d:1d:4d:bf:46:5c:36:f1:7e:b5: 26:e1:a5:2c:14:91:ce:46:73:e0:f6:6d:c4:68:2c: 28:23:be:80:d7:f4:19:53:ec:f4:b8:e3:0c:e9:a4: 60:70:9f:dd:54:30:05:65:d7:06:0f:39:dc:30:b4: ef:a6:9c:4c:fb:34:98:d6:c4:11:22:07:55:6a:c1: 8d:ac:86:49:b2:84:b1:f2:e0:4d:6c:5b:ce:d4:d0: 5e:a0:2d:3f:1f:db:8b:e2:e8:9c:cb:cf:71:fc:be: 70:25:91:8b:a0:98:fe:4c:92:51:87:4f:07:1a:0b: 38:47:55:40:be:54:77:e6:71:88:c1:35:fe:1c:21: ff:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E7:AE:33:66:63:6C:38:81:20:BA:AF:EA:D0:21:0F:3F:5E:1F:BC X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 126.209.42.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:2b:30:2e:55:d3:85:ce:1f:75:5c:2c:01:eb:16:fb:0c:f6: 0f:8a:3d:d4:81:2d:42:6b:ce:2b:58:d7:aa:24:5e:c7:f3:1b: 6c:c2:de:8e:e6:3e:14:ed:e4:e0:ec:c4:1c:c3:85:27:cf:80: 6d:cb:6c:6d:82:a7:45:98:98:47:49:34:93:c6:5f:02:bc:92: f9:8c:c9:e4:4b:13:f2:09:55:7b:ea:ae:da:a1:28:bc:13:42: 2c:5c:8b:ac:2b:0b:5a:9c:fa:4a:d1:50:ad:ac:1a:e0:58:70: f0:92:82:85:eb:7f:9b:b2:5e:d6:5d:b8:eb:f9:7b:2c:d4:f6: 19:3c:88:64:4f:86:41:eb:6c:a1:f5:b4:55:4c:1b:eb:41:cf: 2e:77:41:53:f2:cf:14:1e:7f:d0:61:b0:17:07:0e:6c:cb:67: 18:8d:7e:82:1c:3f:aa:94:66:9b:3d:56:c8:31:91:24:aa:8a: b8:b2:a9:d5:cd:9b:25:a4:ec:93:af:ac:c4:d2:71:e0:39:8f: a8:57:13:98:22:a5:7c:73:0f:4d:fb:b5:24:ce:d1:dc:32:9e: 68:90:b0:00:e6:0a:42:42:1c:7c:97:28:41:e4:34:bd:7d:e1: a5:4c:81:14:a1:72:b7:15:93:f0:64:ef:eb:ae:73:76:b4:9c: 36:b4:a4:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUxMTA0MjE0MDMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQyZS0yMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5vZys6IR66j9ge9LbLLMnMOzKnc5rz35WsSrufNgk+flXeWsQzaB1dPTU80 AK7FNJCc02yXXvVY6XLaxXExziP3ayBF7NqG7ggdBJPtVO8npS/Tr5qSg09xs+MY eQTNlMyKNgHyxzJiC2ETt0GXiKDuxnGZYceEL+sARV0dTb9GXDbxfrUm4aUsFJHO RnPg9m3EaCwoI76A1/QZU+z0uOMM6aRgcJ/dVDAFZdcGDzncMLTvppxM+zSY1sQR IgdVasGNrIZJsoSx8uBNbFvO1NBeoC0/H9uL4uicy89x/L5wJZGLoJj+TJJRh08H Ggs4R1VAvlR35nGIwTX+HCH/qQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIPnrjNm Y2w4gSC6r+rQIQ8/Xh+8MB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvRjM2NDNBRDYw ODlDMTFGMDlCQjQ0NTM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBftEqMA0GCSqGSIb3DQEBCwUAA4IBAQAcKzAuVdOFzh91XCwB6xb7 DPYPij3UgS1Ca84rWNeqJF7H8xtswt6O5j4U7eTg7MQcw4Unz4Bty2xtgqdFmJhH STSTxl8CvJL5jMnkSxPyCVV76q7aoSi8E0IsXIusKwtanPpK0VCtrBrgWHDwkoKF 63+bsl7WXbjr+Xss1PYZPIhkT4ZB62yh9bRVTBvrQc8ud0FT8s8UHn/QYbAXBw5s y2cYjX6CHD+qlGabPVbIMZEkqoq4sqnVzZslpOyTr6zE0nHgOY+oVxOYIqV8cw9N +7UkztHcMp5okLAA5gpCQhx8lyhB5DS9feGlTIEUoXK3FZPwZO/rrnN2tJw2tKSv -----END CERTIFICATE-----Generated at Mon Mar 2 06:00:12 2026 by rpki-client