$ rpki-client -vvf rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa File: 09DF69582A3411EB9E69467DC4F9AE02.roa (raw, json) Hash identifier: ri73lgcCQzm6JhMsh4Vh2H8XDHz5sHVwf2RnyIfJyeU= Subject key identifier: 4C:1D:7B:49:37:65:45:56:49:81:1D:B7:FF:DB:53:2B:15:0F:23:59 Certificate issuer: /CN=A9148827/serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Certificate serial: 0B95 Authority key identifier: 48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:45:38 +0000 ROA not before: Wed 26 Mar 2025 19:29:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58689 IP address blocks: 116.204.228.0/22 maxlen: 23 116.204.228.0/24 maxlen: 24 116.204.229.0/24 maxlen: 24 116.204.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148827, serialNumber=484AE8C0D15799B5FF081FE40C3E1E00E4E89478 Validity Not Before: Mar 26 19:29:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a426e2-ae9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:36:ea:a6:30:cc:9f:8c:a7:80:9a:ef:68: 10:cb:99:62:f4:b9:02:11:7c:01:5b:27:9a:82:04: 34:f8:4f:09:db:2f:a8:c6:b3:40:c8:c6:55:59:1c: a1:b4:92:9a:bc:2f:e3:77:dd:d7:1c:53:68:ce:d1: b0:e1:15:70:5d:82:95:1c:da:ff:d4:30:f4:fe:9f: 4e:62:de:3f:cb:4a:d3:d6:5e:b7:7c:e6:47:8f:ad: 2c:48:c0:12:04:2a:ff:9f:71:31:d0:81:b4:86:82: fe:5b:3c:c7:d3:84:f4:ec:f4:4d:a8:c3:98:d9:94: a0:67:bc:f7:dd:a6:f8:a9:8c:d5:51:dc:a4:c2:bf: 6e:22:49:0e:92:0e:7c:a1:83:35:63:6a:07:b9:d3: 1b:6a:40:c5:28:77:6c:b8:ea:a4:ee:b9:40:db:9c: 3d:cb:78:ca:67:a8:32:6a:4c:fc:54:8b:b4:f0:02: b2:2e:e3:e4:64:a4:c7:72:ec:99:14:f9:79:d0:e1: 9b:cf:91:a6:a3:0f:98:a0:e5:a3:31:c4:07:73:f4: 32:b7:99:b4:8a:83:e1:d2:49:55:dd:20:d3:5e:79: 1a:21:34:95:4b:eb:c7:fa:d6:53:a9:0a:53:05:b6: b5:78:6a:d4:50:f8:35:13:10:51:df:0a:67:e0:dc: 11:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1D:7B:49:37:65:45:56:49:81:1D:B7:FF:DB:53:2B:15:0F:23:59 X509v3 Authority Key Identifier: keyid:48:4A:E8:C0:D1:57:99:B5:FF:08:1F:E4:0C:3E:1E:00:E4:E8:94:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/SErowNFXmbX_CB_kDD4eAOTolHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SErowNFXmbX_CB_kDD4eAOTolHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148827/88871936492511EAA944976FC4F9AE02/09DF69582A3411EB9E69467DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.228.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:80:b0:7a:aa:68:4c:66:50:7c:9e:0c:5b:a0:b8:b4:a0:91: 18:33:94:2e:18:f2:a2:8b:59:c0:8e:58:7a:b8:c4:0c:e1:33: 83:e1:20:5e:ab:22:3e:f2:f2:6f:2f:ce:9f:86:5d:57:2c:39: 80:71:f1:bc:10:7a:d4:a9:b0:b2:68:17:0f:32:43:fd:d1:90: b6:17:8d:ae:c5:81:47:67:a3:26:ee:d1:77:f7:32:ae:b2:d0: 73:cb:8a:aa:aa:c5:50:74:b2:84:f5:72:84:18:09:92:93:28: 15:0c:57:2d:3f:33:47:f9:05:64:a5:e5:db:f1:9c:b1:eb:d4: 57:6c:37:51:a5:0a:55:4d:ed:ec:88:7d:fc:dc:c8:12:48:59: 70:27:1d:84:6f:eb:65:93:73:ba:1a:22:eb:a1:07:86:cf:ac: 2b:ae:b7:86:f5:44:a9:1a:f1:54:f4:e0:3d:e8:2f:e9:16:10: 98:af:9a:98:83:6d:7d:20:61:e7:db:cd:e8:f3:cd:b2:76:67: b1:73:54:d4:96:9e:45:08:eb:49:93:49:49:28:08:57:b0:5a: 9c:4e:a8:5a:7e:f3:99:ea:70:30:17:c7:1c:b7:24:34:45:8e: 7d:9d:b4:82:e4:b4:05:36:86:45:39:1a:5e:e7:93:3f:76:da: 74:d2:e1:5d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg4MjcxMTAvBgNVBAUTKDQ4NEFFOEMwRDE1Nzk5QjVGRjA4MUZFNDBDM0UxRTAw RTRFODk0NzgwHhcNMjUwMzI2MTkyOTQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjZlMi1hZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNY26qYwzJ+Mp4Ca72gQy5li9LkCEXwBWyeaggQ0+E8J2y+oxrNAyMZVWRyh tJKavC/jd93XHFNoztGw4RVwXYKVHNr/1DD0/p9OYt4/y0rT1l63fOZHj60sSMAS BCr/n3Ex0IG0hoL+WzzH04T07PRNqMOY2ZSgZ7z33ab4qYzVUdykwr9uIkkOkg58 oYM1Y2oHudMbakDFKHdsuOqk7rlA25w9y3jKZ6gyakz8VIu08AKyLuPkZKTHcuyZ FPl50OGbz5Gmow+YoOWjMcQHc/Qyt5m0ioPh0klV3SDTXnkaITSVS+vH+tZTqQpT Bba1eGrUUPg1ExBR3wpn4NwR/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEwde0k3 ZUVWSYEdt//bUysVDyNZMB8GA1UdIwQYMBaAFEhK6MDRV5m1/wgf5Aw+HgDk6JR4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODgyNy84ODg3MTkzNjQ5 MjUxMUVBQTk0NDk3NkZDNEY5QUUwMi9TRXJvd05GWG1iWF9DQl9rREQ0ZUFPVG9s SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFcm93TkZYbWJYX0NCX2tERDRlQU9Ub2xIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg4MjcvODg4NzE5MzY0OTI1MTFFQUE5NDQ5NzZGQzRGOUFFMDIvMDlERjY5NTgy QTM0MTFFQjlFNjk0NjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMzkMA0GCSqGSIb3DQEBCwUAA4IBAQBbgLB6qmhMZlB8ngxboLi0 oJEYM5QuGPKii1nAjlh6uMQM4TOD4SBeqyI+8vJvL86fhl1XLDmAcfG8EHrUqbCy aBcPMkP90ZC2F42uxYFHZ6Mm7tF39zKustBzy4qqqsVQdLKE9XKEGAmSkygVDFct PzNH+QVkpeXb8Zyx69RXbDdRpQpVTe3siH383MgSSFlwJx2Eb+tlk3O6GiLroQeG z6wrrreG9USpGvFU9OA96C/pFhCYr5qYg219IGHn283o882ydmexc1TUlp5FCOtJ k0lJKAhXsFqcTqhafvOZ6nAwF8cctyQ0RY59nbSC5LQFNoZFORpe55M/dtp00uFd -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:43 2026 by rpki-client