$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa File: 1321A11C9DF311E99A8DE961C4F9AE02.roa (raw, json) Hash identifier: w5KK0dpPJkSroJtQqR7K+fP2tpqQLY4TbQ+zuXDn5l4= Subject key identifier: 34:6C:C9:32:85:3E:AB:67:C0:4F:39:74:BD:02:5B:63:5D:CA:D1:C7 Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 1AA8 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:08 +0000 ROA not before: Sat 12 Apr 2025 16:25:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9896 IP address blocks: 202.37.60.0/22 maxlen: 24 2001:4403:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6824 (0x1aa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:25:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48448-09a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fa:ee:50:ae:ec:7f:14:73:34:50:a5:a9:5c: 14:26:bf:84:33:3e:7b:78:87:c8:e4:cc:12:be:f2: f2:dc:16:6a:e5:9c:33:bf:1f:eb:c0:2d:d9:b7:eb: 53:e3:ac:e1:a2:3d:3a:4c:b7:38:7d:42:2a:58:d1: e6:f6:ec:f4:d6:cc:73:35:22:46:91:fa:12:29:2f: e3:6d:e8:76:ff:7e:62:1c:4e:1a:2f:27:fd:8f:42: 76:81:66:3d:25:2a:6e:ab:27:e8:b3:a4:c2:e2:7f: 0e:cc:8d:20:1b:7b:af:3c:7d:88:af:ff:6a:94:45: ea:f2:56:47:2c:35:c4:ce:f8:88:67:b9:4a:64:71: 1a:f9:64:7e:e3:25:7b:8b:a0:3e:d4:23:e3:3c:c0: bd:e5:a3:5a:e2:3b:b5:69:9f:21:45:49:e4:9f:5b: b0:6a:c8:d5:61:2a:9d:77:36:fd:83:84:63:48:be: 5a:d5:d1:cc:19:77:3b:cc:5f:0d:44:04:b0:82:7f: c7:bf:5d:07:b0:c2:e5:84:fd:d4:02:a6:fe:b7:f9: 06:33:e5:7b:a6:d1:82:f1:40:40:aa:60:b1:83:b1: fb:65:75:31:e6:b5:b7:1d:c0:1f:43:35:54:1b:8e: d4:57:77:37:be:57:9d:80:fa:3f:b7:83:a0:a2:ad: 88:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6C:C9:32:85:3E:AB:67:C0:4F:39:74:BD:02:5B:63:5D:CA:D1:C7 X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/1321A11C9DF311E99A8DE961C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.60.0/22 IPv6: 2001:4403:dead::/48 Signature Algorithm: sha256WithRSAEncryption 87:e0:a2:ef:0e:5a:68:fe:d6:65:5f:94:f3:42:e9:30:44:a8: c9:0a:67:b6:13:78:34:78:e6:16:8b:49:aa:e5:8c:ef:bc:01: 8d:95:ff:0f:36:bf:62:fe:84:b2:95:7a:92:cc:35:ec:4f:b3: e4:96:30:0e:3b:eb:97:07:4d:29:20:24:63:59:5c:65:b1:ac: a3:91:cf:2c:1e:01:72:6c:68:f1:ea:fa:af:3c:ac:bb:83:fe: 7c:9f:b6:47:11:d8:49:29:d4:55:17:be:6f:1a:71:87:3e:37: 31:43:84:4d:58:b4:ba:69:3b:43:5a:71:d6:c2:c1:ba:a4:98: bb:08:53:dc:7b:71:a3:35:a7:9c:1d:05:01:fc:08:c2:d9:9f: 58:ef:3f:ee:4a:5b:e0:c1:fc:ba:b7:e3:4b:36:06:9c:5d:d2: 95:23:82:e2:89:c3:82:31:e3:12:70:5a:a7:52:58:fd:36:e4: da:5d:70:df:d8:9c:6a:ea:25:d8:09:db:ae:f3:16:ca:0b:02: 49:3e:55:8d:85:b8:05:f4:97:2d:73:8f:9c:98:96:97:e7:86: 83:2f:6e:b1:8b:92:71:ec:48:7b:3b:a8:9b:49:5f:0b:33:fd: 68:97:b9:47:2b:0e:50:05:3a:46:c2:8c:ec:20:f7:0c:55:0d: 62:07:37:d1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICGqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNTA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ0OC0wOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/ruUK7sfxRzNFClqVwUJr+EMz57eIfI5MwSvvLy3BZq5Zwzvx/rwC3Zt+tT 46zhoj06TLc4fUIqWNHm9uz01sxzNSJGkfoSKS/jbeh2/35iHE4aLyf9j0J2gWY9 JSpuqyfos6TC4n8OzI0gG3uvPH2Ir/9qlEXq8lZHLDXEzviIZ7lKZHEa+WR+4yV7 i6A+1CPjPMC95aNa4ju1aZ8hRUnkn1uwasjVYSqddzb9g4RjSL5a1dHMGXc7zF8N RASwgn/Hv10HsMLlhP3UAqb+t/kGM+V7ptGC8UBAqmCxg7H7ZXUx5rW3HcAfQzVU G47UV3c3vledgPo/t4Ogoq2ImwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDRsyTKF PqtnwE85dL0CW2NdytHHMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvMTMyMUExMUM5 REYzMTFFOTlBOERFOTYxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCyiU8MA8EAgACMAkDBwAgAUQD3q0wDQYJKoZIhvcNAQELBQADggEB AIfgou8OWmj+1mVflPNC6TBEqMkKZ7YTeDR45haLSarljO+8AY2V/w82v2L+hLKV epLMNexPs+SWMA4765cHTSkgJGNZXGWxrKORzyweAXJsaPHq+q88rLuD/nyftkcR 2Ekp1FUXvm8acYc+NzFDhE1YtLppO0NacdbCwbqkmLsIU9x7caM1p5wdBQH8CMLZ n1jvP+5KW+DB/Lq340s2Bpxd0pUjguKJw4Ix4xJwWqdSWP025NpdcN/YnGrqJdgJ 267zFsoLAkk+VY2FuAX0ly1zj5yYlpfnhoMvbrGLknHsSHs7qJtJXwsz/WiXuUcr DlAFOkbCjOwg9wxVDWIHN9E= -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:11 2026 by rpki-client