$ rpki-client -vvf rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/9E48E9821FB011EAAD480012C4F9AE02.roa File: 9E48E9821FB011EAAD480012C4F9AE02.roa (raw, json) Hash identifier: 8VC3Iar+Y3S8HPOKyWalo2kgaJJ+RCJUC6oDDTxpM3A= Subject key identifier: 12:6F:E7:E6:6B:EB:23:4D:2E:DC:C8:C7:25:BC:09:4D:13:D2:7A:77 Certificate issuer: /CN=A914BBEF/serialNumber=33A3B2A5303B5117B32E7E4586ACA94408918742 Certificate serial: 0C55 Authority key identifier: 33:A3:B2:A5:30:3B:51:17:B3:2E:7E:45:86:AC:A9:44:08:91:87:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6OypTA7URezLn5FhqypRAiRh0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/9E48E9821FB011EAAD480012C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:42:49 +0000 ROA not before: Tue 02 Sep 2025 19:09:05 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45938 IP address blocks: 180.222.128.0/21 maxlen: 21 180.222.128.0/24 maxlen: 24 180.222.129.0/24 maxlen: 24 180.222.130.0/24 maxlen: 24 180.222.131.0/24 maxlen: 24 180.222.132.0/24 maxlen: 24 180.222.133.0/24 maxlen: 24 180.222.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/M6OypTA7URezLn5FhqypRAiRh0I.crl rsync://rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/M6OypTA7URezLn5FhqypRAiRh0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6OypTA7URezLn5FhqypRAiRh0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BBEF, serialNumber=33A3B2A5303B5117B32E7E4586ACA94408918742 Validity Not Before: Sep 2 19:09:05 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a42639-e343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:84:d4:e6:8a:b7:a4:78:27:ab:ba:46:f9:76: 0d:6f:8b:17:9a:df:a9:ac:b7:d0:f1:07:5b:63:60: 98:07:d6:3c:17:9a:a1:5c:68:62:5a:79:61:3d:f9: 9f:a8:db:fe:2f:8c:ba:ff:8a:43:1c:11:73:e1:c6: 2c:e8:a1:8a:ce:18:56:91:e0:c6:db:8b:06:91:05: 5e:d1:4b:23:fb:4c:e2:c5:ce:56:52:52:ff:9b:eb: 2c:6e:e2:4b:9e:c9:03:bb:4e:d1:a1:c5:89:3c:e1: 1c:60:d3:a3:ab:80:74:b2:ee:2f:da:fa:f4:f1:40: 7a:85:29:5f:96:b5:0e:ab:b0:99:75:30:bf:93:62: 88:9c:45:45:72:4a:62:b8:7b:af:4d:0c:3d:85:18: 48:57:63:00:b0:07:35:a5:7d:65:01:7f:cc:55:bf: 26:ed:d3:7b:00:5c:2b:ac:72:fd:b9:66:1d:61:c8: 75:ba:57:45:73:2c:bd:b8:e2:7c:92:85:14:c3:1c: 8f:42:d5:63:9a:d5:f7:f8:8c:40:6e:a3:95:70:0e: 57:6f:61:d4:1d:c7:1a:3a:fc:cb:fc:07:59:ee:cd: d2:88:b4:f4:66:a8:d6:d1:2b:31:8f:e7:d7:70:eb: b7:48:e7:0f:19:f5:cb:71:ac:37:b4:b3:ed:b0:2e: 5a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:6F:E7:E6:6B:EB:23:4D:2E:DC:C8:C7:25:BC:09:4D:13:D2:7A:77 X509v3 Authority Key Identifier: keyid:33:A3:B2:A5:30:3B:51:17:B3:2E:7E:45:86:AC:A9:44:08:91:87:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/M6OypTA7URezLn5FhqypRAiRh0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6OypTA7URezLn5FhqypRAiRh0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BBEF/F90302601FAE11EA9360FF0EC4F9AE02/9E48E9821FB011EAAD480012C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.222.128.0/21 Signature Algorithm: sha256WithRSAEncryption 81:67:33:34:f3:21:63:f8:41:20:eb:2f:61:df:6c:15:f1:13: 0b:0f:e4:60:b4:5e:66:c5:df:28:a6:61:8c:a3:26:2c:88:27: 2b:b2:cb:19:a5:79:c7:ca:34:2a:e9:46:ff:f8:61:44:81:9e: 90:3a:bd:35:70:bb:9a:d4:39:a8:a1:88:15:6a:a7:18:18:d9: 41:9c:ce:fd:4d:88:1d:5b:e5:8d:ae:0c:f1:ee:af:b6:f2:5a: b0:5d:4a:db:3a:e4:1d:a2:d1:45:c9:c6:63:ad:b4:42:73:21: 1b:34:ff:d3:50:60:08:b7:99:2f:04:4f:26:64:20:b5:22:96: 4c:46:29:a5:79:61:33:bd:48:ad:d2:fc:46:16:83:fe:3b:7e: 37:e3:4d:24:ff:8f:4d:97:5d:f7:3f:5f:57:fa:2b:45:a4:8f: b6:c8:30:19:3a:7d:a8:a1:31:a1:0e:18:8b:7b:bd:be:0c:56: 73:2d:00:fd:52:8e:1d:e4:e1:8b:53:ca:9e:bf:04:57:a5:a0: f0:62:a2:de:47:c5:5a:62:c9:f7:42:65:65:94:d5:2f:24:5e: bd:fa:8a:1e:d2:ec:c4:ee:8e:0b:0e:31:02:f7:f2:c7:0a:1d: f5:e8:28:96:33:81:43:6f:a8:89:85:e9:3d:d4:71:77:95:aa: a3:2c:ae:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJCRUYxMTAvBgNVBAUTKDMzQTNCMkE1MzAzQjUxMTdCMzJFN0U0NTg2QUNBOTQ0 MDg5MTg3NDIwHhcNMjUwOTAyMTkwOTA1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjYzOS1lMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ITU5oq3pHgnq7pG+XYNb4sXmt+prLfQ8QdbY2CYB9Y8F5qhXGhiWnlhPfmf qNv+L4y6/4pDHBFz4cYs6KGKzhhWkeDG24sGkQVe0Usj+0zixc5WUlL/m+ssbuJL nskDu07RocWJPOEcYNOjq4B0su4v2vr08UB6hSlflrUOq7CZdTC/k2KInEVFckpi uHuvTQw9hRhIV2MAsAc1pX1lAX/MVb8m7dN7AFwrrHL9uWYdYch1uldFcyy9uOJ8 koUUwxyPQtVjmtX3+IxAbqOVcA5Xb2HUHccaOvzL/AdZ7s3SiLT0ZqjW0Ssxj+fX cOu3SOcPGfXLcaw3tLPtsC5aJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBJv5+Zr 6yNNLtzIxyW8CU0T0np3MB8GA1UdIwQYMBaAFDOjsqUwO1EXsy5+RYasqUQIkYdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkJFRi9GOTAzMDI2MDFG QUUxMUVBOTM2MEZGMEVDNEY5QUUwMi9NNk95cFRBN1VSZXpMbjVGaHF5cFJBaVJo MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL002T3lwVEE3VVJlekxuNUZocXlwUkFpUmgwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJCRUYvRjkwMzAyNjAxRkFFMTFFQTkzNjBGRjBFQzRGOUFFMDIvOUU0OEU5ODIx RkIwMTFFQUFENDgwMDEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDtN6AMA0GCSqGSIb3DQEBCwUAA4IBAQCBZzM08yFj+EEg6y9h32wV 8RMLD+RgtF5mxd8opmGMoyYsiCcrsssZpXnHyjQq6Ub/+GFEgZ6QOr01cLua1Dmo oYgVaqcYGNlBnM79TYgdW+WNrgzx7q+28lqwXUrbOuQdotFFycZjrbRCcyEbNP/T UGAIt5kvBE8mZCC1IpZMRimleWEzvUit0vxGFoP+O343400k/49Nl133P19X+itF pI+2yDAZOn2ooTGhDhiLe72+DFZzLQD9Uo4d5OGLU8qevwRXpaDwYqLeR8VaYsn3 QmVllNUvJF69+ooe0uzE7o4LDjEC9/LHCh316CiWM4FDb6iJhek91HF3laqjLK70 -----END CERTIFICATE-----Generated at Mon Mar 2 17:09:39 2026 by rpki-client