$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa File: 7125C7DE611411ECBF66B385C4F9AE02.roa (raw, json) Hash identifier: sj+k2CBEk9o8Kiy3NDbS/AgiJ7I778UPHLaqip2rU0g= Subject key identifier: A8:C5:E8:DF:5D:83:34:B1:69:44:9F:0C:2A:7F:AB:E9:8F:BF:28:89 Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 04D9 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:08:57 +0000 ROA not before: Tue 01 Jul 2025 01:05:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17792 IP address blocks: 202.21.130.0/24 maxlen: 24 202.50.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1241 (0x4d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4, serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Validity Not Before: Jul 1 01:05:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46499-b9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:44:e0:65:e3:00:9d:27:2d:0c:af:ab:a5:98: de:e4:47:8d:59:b3:e8:b3:89:0a:75:74:e2:01:2e: af:33:8b:55:e0:9b:a3:a2:14:3d:f7:f1:5b:eb:46: aa:29:7b:76:d0:4b:a4:b1:9a:6f:f0:66:c3:91:6f: a4:3f:c4:62:b0:b4:35:a5:b0:aa:35:2e:65:0c:90: 53:0d:f0:ac:79:0e:a2:95:54:89:c4:d3:ca:5e:82: 62:ec:48:7c:5b:0d:f6:36:40:9b:fb:c2:d4:c9:67: e6:64:b2:20:a1:12:e7:12:36:f4:79:21:1e:64:b2: 5a:ac:97:b1:41:2d:05:6b:13:54:a6:24:1f:c6:32: 48:c4:19:90:fa:3e:00:ca:81:3f:cb:b7:c3:60:72: d0:be:d4:03:37:21:93:25:6a:c3:58:65:c2:ad:c0: 65:b5:b7:a2:d3:2e:cd:ca:45:8b:55:c5:87:00:f0: ef:b2:18:3d:b8:dd:0f:b9:c4:b2:16:c9:4f:e5:77: e8:47:f3:58:65:62:09:a1:0c:7d:05:d1:17:47:90: c8:86:bc:09:ef:a1:f5:55:c5:8a:f1:a5:15:73:30: 7a:e0:04:c0:da:d0:bc:fa:bd:8d:ba:82:39:87:a1: 77:dc:d4:9a:2c:18:e4:38:7f:47:b3:d0:0d:fb:a6: 7a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C5:E8:DF:5D:83:34:B1:69:44:9F:0C:2A:7F:AB:E9:8F:BF:28:89 X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.21.130.0/24 202.50.192.0/22 Signature Algorithm: sha256WithRSAEncryption 33:71:96:2b:63:d1:8e:60:dc:29:ed:97:1a:6a:65:45:a1:20: 7a:4c:e6:ec:a4:86:eb:d8:3d:a7:7c:05:f7:d7:51:f2:80:e9: ca:87:30:7b:84:61:e1:b0:32:49:2b:63:ea:fd:49:c6:08:5d: de:f5:bb:46:7a:16:98:57:8a:bb:ef:e1:eb:d4:1d:80:93:08: d3:62:5c:fa:ff:47:f3:ca:07:05:dd:fd:be:15:9c:1e:ab:4b: e2:9f:77:a3:11:1c:d8:b6:4d:84:22:76:6d:21:b6:a9:71:1f: fb:de:18:e2:cc:62:1a:aa:7e:dd:4e:9c:06:b5:17:d3:f6:41: cf:0f:69:42:72:c1:12:26:a5:57:3d:9e:68:38:76:5c:32:c0: a5:f5:bd:a5:78:20:03:ff:70:3b:b0:c6:f6:db:98:8b:59:56: db:bd:7c:53:e1:c1:d7:92:9c:1d:b1:a8:31:41:df:dd:84:55: 9d:89:92:a5:07:ab:cb:f2:b5:7a:78:8d:03:63:85:be:c1:b1: e8:1a:8e:f2:4f:52:09:12:8c:1d:d9:77:76:e2:f3:76:20:6d: b5:39:b2:66:d4:74:3a:d3:0f:47:56:89:00:a5:d7:bd:49:31: 4e:6b:7f:5e:0d:de:5f:3c:c6:a5:3c:43:92:06:a0:1b:7d:25: e0:f8:73:15 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjUwNzAxMDEwNTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ5OS1iOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00TgZeMAnSctDK+rpZje5EeNWbPos4kKdXTiAS6vM4tV4JujohQ99/Fb60aq KXt20EuksZpv8GbDkW+kP8RisLQ1pbCqNS5lDJBTDfCseQ6ilVSJxNPKXoJi7Eh8 Ww32NkCb+8LUyWfmZLIgoRLnEjb0eSEeZLJarJexQS0FaxNUpiQfxjJIxBmQ+j4A yoE/y7fDYHLQvtQDNyGTJWrDWGXCrcBltbei0y7NykWLVcWHAPDvshg9uN0PucSy FslP5XfoR/NYZWIJoQx9BdEXR5DIhrwJ76H1VcWK8aUVczB64ATA2tC8+r2NuoI5 h6F33NSaLBjkOH9Hs9AN+6Z67wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKjF6N9d gzSxaUSfDCp/q+mPvyiJMB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvNzEyNUM3REU2 MTE0MTFFQ0JGNjZCMzg1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAyhWCAwQCyjLAMA0GCSqGSIb3DQEBCwUAA4IBAQAzcZYrY9GOYNwp 7ZcaamVFoSB6TObspIbr2D2nfAX311HygOnKhzB7hGHhsDJJK2Pq/UnGCF3e9btG ehaYV4q77+Hr1B2AkwjTYlz6/0fzygcF3f2+FZweq0vin3ejERzYtk2EInZtIbap cR/73hjizGIaqn7dTpwGtRfT9kHPD2lCcsESJqVXPZ5oOHZcMsCl9b2leCAD/3A7 sMb225iLWVbbvXxT4cHXkpwdsagxQd/dhFWdiZKlB6vL8rV6eI0DY4W+wbHoGo7y T1IJEowd2Xd24vN2IG21ObJm1HQ60w9HVokApde9STFOa39eDd5fPMalPEOSBqAb fSXg+HMV -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:03 2026 by rpki-client