$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/97DE828061E211F0A89DA027C4F9AE02.roa File: 97DE828061E211F0A89DA027C4F9AE02.roa (raw, json) Hash identifier: Ev7F8IpzDsMKJsIHSr1VMTTFgtjlsJhmCptsmV9eyO4= Subject key identifier: B3:5C:4C:11:66:9E:27:A4:97:F9:BD:BA:33:21:56:FB:0D:6F:67:03 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C27 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/97DE828061E211F0A89DA027C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:26:38 +0000 ROA not before: Mon 28 Jul 2025 05:41:15 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151349 IP address blocks: 45.250.221.0/24 maxlen: 24 45.250.222.0/24 maxlen: 24 45.250.223.0/24 maxlen: 24 61.251.181.0/24 maxlen: 24 61.251.183.0/24 maxlen: 24 203.173.97.0/24 maxlen: 24 203.173.98.0/24 maxlen: 24 203.173.99.0/24 maxlen: 24 203.173.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15399 (0x3c27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 28 05:41:15 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af0e-6074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ee:e2:b6:3c:d5:5d:43:cd:fa:89:04:33:81: ef:0b:af:c6:a4:22:2f:3e:71:92:65:b8:97:dd:c0: 11:4e:56:b2:e4:2a:a7:50:50:b1:a5:9a:c0:52:4a: f1:b1:b0:96:94:5a:a4:be:a8:10:b4:74:6e:69:5c: 8c:9f:0a:2e:6c:73:26:bb:8a:8f:ad:d4:de:aa:f1: 33:2e:bc:d4:5d:39:fe:d4:50:b2:50:2f:c5:18:9a: 9c:df:93:7d:d6:3e:25:29:14:1b:27:f7:b2:f0:9e: 9b:18:8e:67:88:f1:c3:93:98:b3:63:ee:9d:33:95: cf:b0:e6:e8:ee:7e:fb:38:9d:38:de:d9:d1:b7:1f: db:f2:5f:84:df:e8:47:ec:96:f0:19:1b:c3:99:44: f8:9a:5c:78:68:83:48:82:b6:74:c2:c2:7f:22:a1: 14:bd:28:b9:b2:0a:8f:18:bb:e3:e9:ca:56:9a:74: 66:e7:29:41:61:94:95:05:fc:33:36:39:cb:59:30: 54:57:01:35:bf:e9:70:78:63:ef:6e:d1:fa:7f:e0: a4:bb:d7:84:19:1a:ef:a4:72:25:42:98:b8:84:b5: 04:f7:83:0c:ce:52:49:ad:87:07:28:bc:08:c3:be: e1:da:8e:cf:2b:56:42:7e:c4:b2:23:5f:88:09:77: 08:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5C:4C:11:66:9E:27:A4:97:F9:BD:BA:33:21:56:FB:0D:6F:67:03 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/97DE828061E211F0A89DA027C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.250.221.0-45.250.223.255 61.251.181.0/24 61.251.183.0/24 203.173.97.0-203.173.100.255 Signature Algorithm: sha256WithRSAEncryption 2f:be:10:cc:e3:36:ce:8c:70:9e:38:6b:11:00:85:fb:48:d8: fd:55:ae:4a:f3:0e:ba:0a:04:f8:ab:f2:d0:16:fc:d3:0d:db: 36:fe:aa:08:69:89:fe:e6:e7:af:27:81:da:ca:d4:99:ae:3e: 01:69:c4:76:7d:07:9b:e0:eb:c4:2c:18:31:4d:54:cf:ce:1d: 77:40:bc:c8:0c:a4:58:0e:a5:3d:a3:61:2e:c3:00:a9:c9:66: 6d:59:9e:97:62:4d:82:e5:6d:c9:4c:6b:bc:b7:e3:d6:b4:ea: 19:31:02:e8:d7:84:c8:1f:f2:95:96:0e:ca:f3:b5:be:14:f5: d2:94:4f:c9:a3:cb:de:d4:7c:b0:82:32:d4:9a:b2:dd:0b:42: 51:64:ef:18:23:8e:23:4f:18:5f:c8:5f:af:55:6d:53:56:e3: 68:b9:50:fd:f2:8d:0c:3d:0d:f4:a1:00:ce:ff:ac:6e:6a:88: 3c:9d:9c:db:f9:39:c8:63:ce:6f:8e:88:7c:c7:6e:08:cb:2a: d2:4c:46:33:77:c7:7a:0e:76:fb:35:6b:c0:15:01:a5:48:78: 4c:2b:55:1c:da:7b:8c:4a:f2:19:c3:c4:04:5a:93:a7:30:b6: e6:3b:e9:ff:e6:b4:7a:46:49:b4:88:20:19:e9:cf:c6:bf:54: 1d:4e:7a:04 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICPCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzI4MDU0MTE1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYwZS02MDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAme7itjzVXUPN+okEM4HvC6/GpCIvPnGSZbiX3cARTlay5CqnUFCxpZrAUkrx sbCWlFqkvqgQtHRuaVyMnwoubHMmu4qPrdTeqvEzLrzUXTn+1FCyUC/FGJqc35N9 1j4lKRQbJ/ey8J6bGI5niPHDk5izY+6dM5XPsObo7n77OJ043tnRtx/b8l+E3+hH 7JbwGRvDmUT4mlx4aINIgrZ0wsJ/IqEUvSi5sgqPGLvj6cpWmnRm5ylBYZSVBfwz NjnLWTBUVwE1v+lweGPvbtH6f+Cku9eEGRrvpHIlQpi4hLUE94MMzlJJrYcHKLwI w77h2o7PK1ZCfsSyI1+ICXcIiQIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFLNcTBFm niekl/m9ujMhVvsNb2cDMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvOTdERTgyODA2 MUUyMTFGMEE4OURBMDI3QzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAATAoMAwDBAAt+t0DBAUt+sADBAA9+7UDBAA9+7cwDAMEAMutYQMEAMutZDAN BgkqhkiG9w0BAQsFAAOCAQEAL74QzOM2zoxwnjhrEQCF+0jY/VWuSvMOugoE+Kvy 0Bb80w3bNv6qCGmJ/ubnryeB2srUma4+AWnEdn0Hm+DrxCwYMU1Uz84dd0C8yAyk WA6lPaNhLsMAqclmbVmel2JNguVtyUxrvLfj1rTqGTEC6NeEyB/ylZYOyvO1vhT1 0pRPyaPL3tR8sIIy1Jqy3QtCUWTvGCOOI08YX8hfr1VtU1bjaLlQ/fKNDD0N9KEA zv+sbmqIPJ2c2/k5yGPOb46IfMduCMsq0kxGM3fHeg52+zVrwBUBpUh4TCtVHNp7 jEryGcPEBFqTpzC25jvp/+a0ekZJtIggGenPxr9UHU56BA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:50:52 2026 by rpki-client