$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa File: EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa (raw, json) Hash identifier: JEcn/9B8Awu/7FN0JbgiVmV0IQuJy4AWOfY9DwppJBc= Subject key identifier: 53:32:3B:4A:C6:C9:FA:15:34:D5:08:A2:93:11:DB:89:E9:57:1C:27 Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 1AA2 Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:03 +0000 ROA not before: Sat 12 Apr 2025 16:24:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17808 IP address blocks: 121.73.16.0/22 maxlen: 22 121.73.28.0/22 maxlen: 22 218.101.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6818 (0x1aa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:24:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48443-cf4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:83:a3:15:32:a5:10:3b:fb:21:e3:57:c9:ab: b6:46:30:83:a7:40:c2:f4:36:a4:f3:c1:0d:9c:a9: 03:e4:14:77:5b:e2:0b:47:5a:69:0e:6f:3e:6a:c6: 7d:11:c5:a3:20:10:3b:e7:83:6a:5e:9c:d8:b9:76: 90:0a:ed:40:49:89:b7:93:6c:d3:87:f7:88:38:4b: 55:c4:c0:ec:bc:4f:e0:bb:53:63:4e:0c:95:28:9b: cd:a4:4f:99:1e:9f:b1:75:8f:60:55:cf:46:98:b8: 37:c9:f8:6c:90:5f:a0:3a:0a:ee:09:49:b4:d1:78: 77:64:cc:ed:5c:fb:63:a0:c1:40:50:a5:ed:6c:03: 65:98:ef:47:52:c7:f9:76:30:56:85:7e:43:4b:03: 29:c6:b3:ae:7b:59:58:6e:7e:ba:51:fb:f3:2a:a8: d1:36:05:ba:68:da:18:39:82:a8:e8:17:08:02:c8: 9e:89:d1:f0:63:e8:ee:5d:e7:2a:6a:f6:64:19:52: 4d:89:ab:c3:66:b1:86:7b:9f:4d:2e:a3:20:95:46: 9c:f4:c1:c1:2f:34:01:85:a5:7a:f3:75:f1:f2:ad: 9c:74:ac:c3:f6:82:0b:54:10:3a:ed:25:fa:ec:b4: a3:71:49:38:21:ba:c8:56:c4:e9:54:9e:72:21:4d: 5d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:32:3B:4A:C6:C9:FA:15:34:D5:08:A2:93:11:DB:89:E9:57:1C:27 X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/EB61BF32FDCD11EEB0EABC0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.73.16.0/22 121.73.28.0/22 218.101.16.0/20 Signature Algorithm: sha256WithRSAEncryption 36:dc:43:c7:df:7c:2e:2c:ab:e2:48:92:81:7a:9b:fc:93:c2: 5f:1e:7b:62:9e:53:2f:fb:4f:3a:0c:9a:f6:e9:38:76:27:a9: 48:74:fb:07:a1:6d:31:e1:ab:45:bf:85:a2:5c:2b:60:0f:29: 8a:7a:48:32:03:55:95:fb:4a:61:89:28:a7:91:c0:b9:62:50: e9:da:65:2b:83:8a:b3:68:58:08:4f:62:d3:18:4f:54:e3:a1: f6:12:85:0f:24:3e:83:1c:15:4f:d9:ad:23:42:c5:e9:7a:ee: c5:43:59:36:e3:e4:63:b0:aa:b4:0e:64:ff:57:a9:75:a2:53: dd:60:a7:f5:e2:bb:1e:87:fc:40:da:dd:a7:27:29:97:f1:0e: 19:88:b2:f6:60:0f:8d:dc:27:47:81:5a:a5:0b:47:a4:fb:77: 6e:75:69:fd:75:02:c9:d7:53:1d:8f:f0:1c:5a:08:78:99:b6: b4:73:e3:6b:08:bd:c8:cc:bc:b8:59:17:2f:6d:c9:69:cf:17: 18:47:46:30:2d:f7:39:04:af:14:39:32:04:70:d9:83:30:17: ba:b7:ba:e7:d4:27:4b:3e:45:82:08:25:03:b7:dc:a3:d8:70: 4b:53:c3:41:00:86:45:0a:82:a4:a0:96:4f:09:de:cf:d5:ac: 04:38:8d:d7 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNDU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ0My1jZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYOjFTKlEDv7IeNXyau2RjCDp0DC9Dak88ENnKkD5BR3W+ILR1ppDm8+asZ9 EcWjIBA754NqXpzYuXaQCu1ASYm3k2zTh/eIOEtVxMDsvE/gu1NjTgyVKJvNpE+Z Hp+xdY9gVc9GmLg3yfhskF+gOgruCUm00Xh3ZMztXPtjoMFAUKXtbANlmO9HUsf5 djBWhX5DSwMpxrOue1lYbn66UfvzKqjRNgW6aNoYOYKo6BcIAsieidHwY+juXecq avZkGVJNiavDZrGGe59NLqMglUac9MHBLzQBhaV683Xx8q2cdKzD9oILVBA67SX6 7LSjcUk4IbrIVsTpVJ5yIU1d7QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFMyO0rG yfoVNNUIopMR24npVxwnMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvRUI2MUJGMzJG RENEMTFFRUIwRUFCQzBDQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCeUkQAwQCeUkcAwQE2mUQMA0GCSqGSIb3DQEBCwUAA4IBAQA23EPH 33wuLKviSJKBepv8k8JfHntinlMv+086DJr26Th2J6lIdPsHoW0x4atFv4WiXCtg DymKekgyA1WV+0phiSinkcC5YlDp2mUrg4qzaFgIT2LTGE9U46H2EoUPJD6DHBVP 2a0jQsXpeu7FQ1k24+RjsKq0DmT/V6l1olPdYKf14rseh/xA2t2nJymX8Q4ZiLL2 YA+N3CdHgVqlC0ek+3dudWn9dQLJ11Mdj/AcWgh4mba0c+NrCL3IzLy4WRcvbclp zxcYR0YwLfc5BK8UOTIEcNmDMBe6t7rn1CdLPkWCCCUDt9yj2HBLU8NBAIZFCoKk oJZPCd7P1awEOI3X -----END CERTIFICATE-----Generated at Mon Mar 2 06:15:54 2026 by rpki-client