$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa File: 3F2B28B4D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: AjKTaHNvjAK33caJVMs+rttbTjqbE8cLR2B3C3QO31Q= Subject key identifier: 09:A8:54:22:DF:2A:AD:34:64:96:67:9C:D9:10:EC:F7:26:C0:54:99 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2970 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:25:13 +0000 ROA not before: Tue 02 Sep 2025 16:03:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 24241 IP address blocks: 202.57.108.0/24 maxlen: 24 202.57.117.0/24 maxlen: 24 202.57.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10608 (0x2970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a49299-af04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:56:45:83:38:24:72:22:3f:04:6f:f9:2a:1c: 52:a0:cb:3f:97:25:c9:d1:16:cc:ff:f5:c7:bc:7c: 2f:59:c4:41:27:31:b8:76:17:7f:f8:9c:fe:22:b5: 0b:4b:f7:73:3a:59:ad:93:92:cc:66:94:23:a5:90: b2:df:6e:47:45:10:29:6f:1c:45:61:46:de:67:50: cd:0a:37:52:24:b5:85:31:f2:8b:1e:94:ba:84:ef: 98:65:fe:aa:4b:3e:32:02:8b:88:6a:64:62:c2:1e: 2d:86:19:a4:05:99:99:12:81:a2:10:8a:57:1a:07: 33:e5:ec:e6:c9:ad:72:3f:66:c7:fc:79:e6:7e:2a: 66:b7:37:f5:f7:8e:6d:11:83:7e:31:4a:ce:71:a4: d2:a5:1a:2b:9a:ea:2f:99:df:8b:45:17:1a:63:01: c4:d5:fc:34:0a:aa:ed:84:a9:3e:14:3a:84:12:1f: b6:9e:c3:73:f9:6a:ca:f2:07:b2:94:12:a0:70:d9: 62:3c:91:64:36:7b:a6:40:e2:07:c3:4f:92:7b:3e: 52:04:4a:47:00:59:4a:b5:19:cf:02:32:1b:1d:ca: c4:be:9a:90:1e:be:1e:fc:7a:5d:60:67:ff:49:5a: 45:f4:4f:49:0f:cf:34:17:e1:c0:d4:0e:6f:ae:78: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A8:54:22:DF:2A:AD:34:64:96:67:9C:D9:10:EC:F7:26:C0:54:99 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3F2B28B4D94411E98E28CD85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.57.108.0/24 202.57.117.0-202.57.118.255 Signature Algorithm: sha256WithRSAEncryption a5:16:cf:a7:01:c0:87:6f:7b:b1:7a:ee:e5:44:e4:61:92:ce: 74:ab:f5:64:cf:77:cf:1c:a8:71:ee:27:2f:b1:1b:7d:f8:ce: e7:83:82:7c:24:f2:19:23:be:5d:c5:69:4e:69:53:a8:13:ad: cf:9f:d1:63:6b:c0:98:af:5e:74:6e:d0:57:59:61:ef:fa:53: be:b0:c2:7f:04:90:8e:7d:04:b6:8a:ff:af:9d:d0:f8:cd:b1: b7:a0:90:e5:fc:b6:cd:dc:09:69:cd:0a:38:87:04:45:5c:b6: 36:01:26:38:b2:7e:e7:20:d8:3e:28:7e:f8:db:9c:aa:77:5d: cd:b2:d2:86:52:b5:67:fa:07:03:e2:83:05:88:36:cf:9a:a8: 25:c2:db:8d:3e:cd:eb:7a:73:9d:51:36:db:1d:79:e0:28:df: 22:ed:47:39:ad:b2:cb:0e:35:84:53:0f:90:a4:dd:36:87:6f: eb:f4:a5:12:e6:4f:10:86:b7:a3:7f:37:49:07:7a:85:ca:10: c3:90:14:ae:b8:0d:15:e8:2d:c8:11:50:00:f5:c2:68:12:9a: 7e:b6:43:96:9d:63:6d:bc:17:11:90:99:41:8d:72:82:02:e3: 59:00:5d:99:6d:e3:c0:40:33:3f:34:13:a8:8c:4c:1e:b8:7a: 05:d2:92:3b -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICKXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTI5OS1hZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplZFgzgkciI/BG/5KhxSoMs/lyXJ0RbM//XHvHwvWcRBJzG4dhd/+Jz+IrUL S/dzOlmtk5LMZpQjpZCy325HRRApbxxFYUbeZ1DNCjdSJLWFMfKLHpS6hO+YZf6q Sz4yAouIamRiwh4thhmkBZmZEoGiEIpXGgcz5ezmya1yP2bH/Hnmfipmtzf1945t EYN+MUrOcaTSpRormuovmd+LRRcaYwHE1fw0CqrthKk+FDqEEh+2nsNz+WrK8gey lBKgcNliPJFkNnumQOIHw0+Sez5SBEpHAFlKtRnPAjIbHcrEvpqQHr4e/HpdYGf/ SVpF9E9JD880F+HA1A5vrni29wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFAmoVCLf Kq00ZJZnnNkQ7PcmwFSZMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0YyQjI4QjRE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAyjlsMAwDBADKOXUDBADKOXYwDQYJKoZIhvcNAQELBQADggEBAKUW z6cBwIdve7F67uVE5GGSznSr9WTPd88cqHHuJy+xG334zueDgnwk8hkjvl3FaU5p U6gTrc+f0WNrwJivXnRu0FdZYe/6U76wwn8EkI59BLaK/6+d0PjNsbegkOX8ts3c CWnNCjiHBEVctjYBJjiyfucg2D4ofvjbnKp3Xc2y0oZStWf6BwPigwWINs+aqCXC 240+zet6c51RNtsdeeAo3yLtRzmtsssONYRTD5Ck3TaHb+v0pRLmTxCGt6N/N0kH eoXKEMOQFK64DRXoLcgRUAD1wmgSmn62Q5adY228FxGQmUGNcoIC41kAXZlt48BA Mz80E6iMTB64egXSkjs= -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:36 2026 by rpki-client