$ rpki-client -vvf rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa File: D7E41D6A788411EA9186C910C4F9AE02.roa (raw, json) Hash identifier: vay/YGVV/WsH1QnstajT3hVBCLiNp9w6Bpg2Y+e345U= Subject key identifier: 4B:01:D7:48:D2:3C:2F:B0:82:40:9A:76:E0:C5:36:DE:25:FE:FC:D9 Certificate issuer: /CN=A9144E38/serialNumber=D95595C6095B4DFAE2CB9B45B9089CC2623D94A3 Certificate serial: 0F2A Authority key identifier: D9:55:95:C6:09:5B:4D:FA:E2:CB:9B:45:B9:08:9C:C2:62:3D:94:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:36:00 +0000 ROA not before: Tue 22 Jul 2025 17:56:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38235 IP address blocks: 111.90.176.0/20 maxlen: 24 2405:fa00::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.crl rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3882 (0xf2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144E38, serialNumber=D95595C6095B4DFAE2CB9B45B9089CC2623D94A3 Validity Not Before: Jul 22 17:56:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a424a0-5a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:16:f6:be:43:ae:19:7f:12:e2:e1:d8:24:0a: 88:f7:3a:c3:ba:ca:fd:5b:27:de:26:72:fd:a4:bb: 56:c9:dd:c1:f9:2f:ae:93:93:33:d2:0a:66:4d:23: 39:09:ba:36:0b:f2:b0:70:97:4a:1b:62:db:86:40: bb:ee:c8:97:c6:f1:32:47:ad:8d:83:b5:de:c6:55: 96:e5:6a:64:91:7e:8e:c8:bc:82:37:d7:fd:56:9c: 5a:26:31:f8:19:cf:f6:04:e9:67:8d:81:a4:c1:86: ea:f4:4e:04:5a:74:27:a8:61:d8:ee:4a:fc:db:9b: 13:a8:d6:f8:4c:c7:d7:f0:2e:37:18:66:35:5b:a8: ee:b0:6e:3d:67:f2:3b:82:0f:75:02:36:52:3d:b6: 3e:28:f5:9f:e7:34:3f:b8:9a:8e:8a:23:26:a1:3e: 83:c5:76:a3:47:87:fa:28:ca:ca:89:f9:d3:87:34: 6b:36:3e:0b:25:33:35:e7:5e:9f:35:a1:d0:15:4d: a1:1d:4a:72:64:a9:53:d3:db:90:df:ba:a4:76:c2: 4e:47:65:79:8a:99:21:7d:71:36:f8:8b:8e:5d:ce: 44:74:3c:90:c5:6b:4a:80:b3:b2:19:ae:0c:c8:92: 9d:46:52:94:55:3f:45:de:d0:04:8e:34:7f:a1:3c: 1e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:01:D7:48:D2:3C:2F:B0:82:40:9A:76:E0:C5:36:DE:25:FE:FC:D9 X509v3 Authority Key Identifier: keyid:D9:55:95:C6:09:5B:4D:FA:E2:CB:9B:45:B9:08:9C:C2:62:3D:94:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 111.90.176.0/20 IPv6: 2405:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 6c:90:ea:74:e6:a7:ea:0e:53:eb:20:1b:7b:f6:36:8f:1c:77: f4:71:88:76:9d:1e:da:ad:b2:ce:45:de:55:5c:07:15:4d:ff: 84:1b:64:44:db:e1:dc:b1:b6:c0:f3:89:c9:b6:90:af:d0:6c: 20:f9:23:ab:8a:5d:1c:54:ee:10:cc:6b:4f:7b:49:af:fb:ea: 9c:4e:0b:2b:75:b7:ad:a6:55:0d:23:e4:ec:53:66:1c:02:8a: 3d:56:e1:cb:76:ca:cf:2c:c3:8a:73:38:9e:9f:f9:96:da:8c: 6c:3c:9a:a0:46:58:60:aa:0e:ad:a0:f4:38:ee:77:ff:14:36: b1:1c:17:2f:0a:f4:1c:3f:71:2a:9a:1b:98:75:f5:09:6b:d2: be:52:a1:94:0c:06:68:31:ec:53:88:6b:e2:b4:f3:4f:e4:0e: ac:ae:5f:4d:3f:0f:60:27:13:53:d2:dd:39:ae:b8:5d:16:a5: 07:a0:ca:3b:33:51:be:76:26:ac:bd:5d:64:12:53:56:5c:5f: 36:5b:fe:fc:76:23:7e:77:75:71:95:b2:da:d0:71:22:ec:78: f5:70:cd:88:53:9b:f6:0f:99:73:8d:9b:af:5c:99:b4:87:fd: f6:ab:3e:c1:fc:3c:3f:99:d7:ff:b1:52:28:55:a5:e0:11:b1: 67:bc:fc:47 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFMzgxMTAvBgNVBAUTKEQ5NTU5NUM2MDk1QjRERkFFMkNCOUI0NUI5MDg5Q0My NjIzRDk0QTMwHhcNMjUwNzIyMTc1NjU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRhMC01YTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Rb2vkOuGX8S4uHYJAqI9zrDusr9WyfeJnL9pLtWyd3B+S+uk5Mz0gpmTSM5 Cbo2C/KwcJdKG2LbhkC77siXxvEyR62Ng7XexlWW5WpkkX6OyLyCN9f9VpxaJjH4 Gc/2BOlnjYGkwYbq9E4EWnQnqGHY7kr825sTqNb4TMfX8C43GGY1W6jusG49Z/I7 gg91AjZSPbY+KPWf5zQ/uJqOiiMmoT6DxXajR4f6KMrKifnThzRrNj4LJTM1516f NaHQFU2hHUpyZKlT09uQ37qkdsJOR2V5ipkhfXE2+IuOXc5EdDyQxWtKgLOyGa4M yJKdRlKUVT9F3tAEjjR/oTwe2QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEsB10jS PC+wgkCaduDFNt4l/vzZMB8GA1UdIwQYMBaAFNlVlcYJW0364subRbkInMJiPZSj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEUzOC83MzMzMUI1RTkx RDExMUU5QjZBOTMyNUJDNEY5QUUwMi8yVldWeGdsYlRmcml5NXRGdVFpY3dtSTls S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWV1Z4Z2xiVGZyaXk1dEZ1UWljd21JOWxLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRFMzgvNzMzMzFCNUU5MUQxMTFFOUI2QTkzMjVCQzRGOUFFMDIvRDdFNDFENkE3 ODg0MTFFQTkxODZDOTEwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQEb1qwMA0EAgACMAcDBQAkBfoAMA0GCSqGSIb3DQEBCwUAA4IBAQBs kOp05qfqDlPrIBt79jaPHHf0cYh2nR7arbLORd5VXAcVTf+EG2RE2+HcsbbA84nJ tpCv0Gwg+SOril0cVO4QzGtPe0mv++qcTgsrdbetplUNI+TsU2YcAoo9VuHLdsrP LMOKczien/mW2oxsPJqgRlhgqg6toPQ47nf/FDaxHBcvCvQcP3EqmhuYdfUJa9K+ UqGUDAZoMexTiGvitPNP5A6srl9NPw9gJxNT0t05rrhdFqUHoMo7M1G+diasvV1k ElNWXF82W/78diN+d3VxlbLa0HEi7Hj1cM2IU5v2D5lzjZuvXJm0h/32qz7B/Dw/ mdf/sVIoVaXgEbFnvPxH -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:50 2026 by rpki-client