$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/2C7A8F5C8CE511EF96182462C4F9AE02.roa File: 2C7A8F5C8CE511EF96182462C4F9AE02.roa (raw, json) Hash identifier: ffADQ+5ui6w4n4RcbadyaudmXQztZuedQdD+yR2TrYg= Subject key identifier: 54:E0:83:0C:BC:A5:ED:94:2C:12:2C:7A:CA:C9:2A:A1:01:91:2A:E0 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C29 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/2C7A8F5C8CE511EF96182462C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:26:40 +0000 ROA not before: Tue 09 Sep 2025 00:14:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4766 IP address blocks: 61.251.188.0/24 maxlen: 24 182.237.41.0/24 maxlen: 24 203.210.25.0/24 maxlen: 24 203.210.28.0/24 maxlen: 24 203.210.29.0/24 maxlen: 24 203.210.30.0/24 maxlen: 24 210.87.192.0/24 maxlen: 24 210.87.194.0/24 maxlen: 24 210.87.203.0/24 maxlen: 24 210.87.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15401 (0x3c29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Sep 9 00:14:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af10-75ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:87:c7:c8:9e:33:51:47:47:6b:ed:72:1a:03: 5b:cd:2b:6d:bd:57:ec:a4:94:d9:81:89:a9:91:f4: d5:98:61:79:73:62:ae:db:bc:01:8b:3d:b9:4b:93: 48:31:ed:73:d8:6c:d2:94:80:5c:c3:b5:36:89:0e: 9d:63:48:01:dd:e8:2e:09:e2:22:5f:84:e2:50:21: 56:d8:91:83:9d:3e:d4:b9:91:08:35:f3:f8:a2:2b: 01:49:47:d0:2e:6d:45:70:57:ed:83:97:d2:d9:78: 46:fe:d5:b4:08:33:bb:c7:1d:f8:99:29:46:44:c9: 2b:05:fb:a1:61:04:23:fa:79:11:57:c8:9f:49:52: 3e:e8:15:0e:e4:43:30:c7:a3:0b:9d:e0:12:ff:c5: 8a:77:7d:47:51:29:a0:4a:59:6a:e9:fd:bb:04:55: f7:4e:9f:dc:d8:b5:2c:64:cf:2a:0e:23:b3:f6:86: 99:19:71:b8:2c:71:76:03:b9:37:fe:f8:7a:c2:5b: 41:65:d5:1c:df:62:88:8b:0a:f8:c5:a3:a0:39:2c: 8c:4d:a9:bb:8e:e5:56:09:08:e1:c8:11:20:e9:7c: 89:f7:fa:53:55:0b:87:3d:28:76:be:48:08:74:36: 92:58:db:7d:bc:66:2a:96:49:a8:b4:5d:04:2c:c6: 25:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E0:83:0C:BC:A5:ED:94:2C:12:2C:7A:CA:C9:2A:A1:01:91:2A:E0 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/2C7A8F5C8CE511EF96182462C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 61.251.188.0/24 182.237.41.0/24 203.210.25.0/24 203.210.28.0-203.210.30.255 210.87.192.0/24 210.87.194.0/24 210.87.203.0/24 210.87.223.0/24 Signature Algorithm: sha256WithRSAEncryption 95:20:f4:be:35:e4:0b:78:4f:f9:cb:d4:d9:31:96:b0:40:18: 85:98:9a:ad:da:09:9b:4b:c9:e3:78:9e:55:b8:b3:e1:fe:69: 82:60:d9:29:0b:90:d2:cb:85:f5:af:44:ce:29:32:45:57:14: 26:01:32:10:c0:3b:05:f1:24:5b:9c:a8:ae:5f:a5:51:0e:46: 00:d1:04:5a:21:6f:80:ab:53:12:cf:30:82:34:7c:e3:9c:54: 84:0d:9f:5c:47:43:0f:a2:76:12:42:e5:c7:42:d7:dd:e2:53: cf:3f:5c:ce:bb:cf:ca:1d:f2:6c:b2:61:55:50:18:ef:c8:ee: 5a:b5:50:f7:4f:d7:ed:da:8b:54:a3:aa:6f:58:97:61:2a:f6: bb:7d:da:6a:c8:cc:b1:33:92:ca:3a:a9:a2:7f:96:dd:e8:b2: e5:c3:89:68:fc:0b:32:40:50:af:ee:c6:92:29:e8:5b:03:27: 7d:a2:96:ef:43:54:96:d3:71:48:e5:73:50:ef:c6:7d:f6:6c: 25:3a:a8:98:18:ce:42:cf:3f:99:c6:31:95:49:9c:e8:e0:e5: af:30:53:d2:8a:73:bb:f7:db:61:49:87:3a:95:66:25:fc:63: 93:bf:1a:78:ec:73:bf:0f:aa:44:be:4e:d2:9b:64:83:66:fa: 86:3b:1b:b2 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICPCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwOTA5MDAxNDU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYxMC03NWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmofHyJ4zUUdHa+1yGgNbzSttvVfspJTZgYmpkfTVmGF5c2Ku27wBiz25S5NI Me1z2GzSlIBcw7U2iQ6dY0gB3eguCeIiX4TiUCFW2JGDnT7UuZEINfP4oisBSUfQ Lm1FcFftg5fS2XhG/tW0CDO7xx34mSlGRMkrBfuhYQQj+nkRV8ifSVI+6BUO5EMw x6MLneAS/8WKd31HUSmgSllq6f27BFX3Tp/c2LUsZM8qDiOz9oaZGXG4LHF2A7k3 /vh6wltBZdUc32KIiwr4xaOgOSyMTam7juVWCQjhyBEg6XyJ9/pTVQuHPSh2vkgI dDaSWNt9vGYqlkmotF0ELMYlzwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFFTggwy8 pe2ULBIsesrJKqEBkSrgMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvMkM3QThGNUM4 Q0U1MTFFRjk2MTgyNDYyQzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAPfu8AwQAtu0pAwQAy9IZMAwDBALL0hwDBADL0h4DBADSV8ADBADS V8IDBADSV8sDBADSV98wDQYJKoZIhvcNAQELBQADggEBAJUg9L415At4T/nL1Nkx lrBAGIWYmq3aCZtLyeN4nlW4s+H+aYJg2SkLkNLLhfWvRM4pMkVXFCYBMhDAOwXx JFucqK5fpVEORgDRBFohb4CrUxLPMII0fOOcVIQNn1xHQw+idhJC5cdC193iU88/ XM67z8od8myyYVVQGO/I7lq1UPdP1+3ai1Sjqm9Yl2Eq9rt92mrIzLEzkso6qaJ/ lt3osuXDiWj8CzJAUK/uxpIp6FsDJ32ilu9DVJbTcUjlc1Dvxn32bCU6qJgYzkLP P5nGMZVJnOjg5a8wU9KKc7v322FJhzqVZiX8Y5O/Gnjsc78PqkS+TtKbZINm+oY7 G7I= -----END CERTIFICATE-----Generated at Mon Mar 2 07:23:14 2026 by rpki-client