$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa File: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: VddVtwssutcMQwaR1vdtUowyAjGL/e43+cbXwtEQzwE= Subject key identifier: 4F:23:41:AA:62:82:AE:A7:0C:C4:A9:91:2B:E8:7A:FC:B0:3A:AA:01 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 09A9 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:13:31 +0000 ROA not before: Tue 20 May 2025 21:50:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132063 IP address blocks: 203.154.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48fda-2055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:86:56:33:a7:e2:0f:d5:52:5c:eb:da:b9:6d: d8:99:43:36:eb:5b:56:53:80:74:df:1d:13:89:aa: 48:6e:9e:f2:3d:78:f3:ed:87:e1:1c:51:02:08:8a: 59:c7:a4:aa:53:a3:54:c8:19:02:c3:c5:2e:bf:f3: 43:1b:90:1e:3b:38:70:30:1b:07:dc:bd:a8:ed:c8: 30:8e:39:ad:aa:eb:8e:6c:97:ea:f6:44:09:bf:b0: 80:3a:5f:a6:22:17:2b:30:be:97:01:da:49:c2:b2: a3:40:2b:72:2e:ef:20:ff:62:50:ce:3d:71:04:fd: be:2d:a6:8e:76:04:e4:c2:e9:fb:d7:c0:f1:c3:6f: 62:4c:91:61:ac:9a:56:ca:5b:bb:31:bb:44:41:97: 0f:62:82:db:30:8b:34:38:2c:ce:51:6e:56:ba:35: 47:e3:fc:80:94:3b:d2:43:d2:ec:48:b6:5f:28:b3: 7f:ee:74:4d:0e:0e:36:cb:ff:e2:37:8b:8f:9d:28: 8c:57:f5:92:48:ec:53:17:1e:b7:76:c8:0e:35:ea: 01:b7:a8:b1:dd:03:16:1a:4c:e4:63:5b:ae:27:5c: b9:13:03:1f:45:b7:55:58:0b:12:5d:4d:ef:fd:e5: ef:07:af:97:76:0e:b8:1d:c4:2e:0f:12:45:bc:7e: b5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:23:41:AA:62:82:AE:A7:0C:C4:A9:91:2B:E8:7A:FC:B0:3A:AA:01 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.154.137.0/24 Signature Algorithm: sha256WithRSAEncryption b1:aa:1d:1e:e9:19:40:74:2d:d3:00:28:98:f9:fb:d8:67:a7: 56:74:fc:a6:35:4c:0c:ec:0a:7b:83:b7:db:2c:3b:85:9d:a0: db:de:f7:f2:63:76:e7:31:ee:f5:de:f4:bb:79:a9:21:1c:7b: 74:d2:f6:54:96:e4:52:c2:fa:f9:5f:1c:c1:a7:68:9f:cc:3f: 49:1d:09:70:35:fe:f6:91:82:77:79:5f:a5:d8:01:1f:be:75: e1:59:df:3c:2a:59:99:00:ab:2d:9e:60:5a:80:5e:01:ff:44: f7:b3:62:e6:4b:12:37:c8:0d:50:06:85:19:d5:7a:3d:f8:f3: f7:ed:cc:26:cd:10:bc:75:90:76:bd:e0:7d:69:85:b0:6b:c3: 9f:07:f0:24:12:a9:d3:2a:91:04:ad:bc:f7:cf:4e:f2:b3:f2: f0:f4:cb:7e:92:0d:3d:ab:30:be:91:54:aa:ee:1a:b3:e5:2c: ef:02:17:05:17:af:59:9d:80:c1:31:0a:a1:39:3c:a9:69:c0: 14:98:bd:c1:a1:a9:24:4e:d1:ef:64:23:89:b6:71:49:f3:0d: 2e:7c:c4:1a:8e:8c:23:17:f6:a9:b5:24:d7:60:44:b6:a5:cc: ba:e2:38:33:ca:e8:1f:71:8e:3a:f4:5f:39:83:ff:ef:30:35: 15:08:6a:79 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZkYS0yMDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoZWM6fiD9VSXOvauW3YmUM261tWU4B03x0TiapIbp7yPXjz7YfhHFECCIpZ x6SqU6NUyBkCw8Uuv/NDG5AeOzhwMBsH3L2o7cgwjjmtquuObJfq9kQJv7CAOl+m IhcrML6XAdpJwrKjQCtyLu8g/2JQzj1xBP2+LaaOdgTkwun718Dxw29iTJFhrJpW ylu7MbtEQZcPYoLbMIs0OCzOUW5WujVH4/yAlDvSQ9LsSLZfKLN/7nRNDg42y//i N4uPnSiMV/WSSOxTFx63dsgONeoBt6ix3QMWGkzkY1uuJ1y5EwMfRbdVWAsSXU3v /eXvB6+Xdg64HcQuDxJFvH61qwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE8jQapi gq6nDMSpkSvoevywOqoBMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUFEMkRBOUEy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy5qJMA0GCSqGSIb3DQEBCwUAA4IBAQCxqh0e6RlAdC3TACiY+fvY Z6dWdPymNUwM7Ap7g7fbLDuFnaDb3vfyY3bnMe713vS7eakhHHt00vZUluRSwvr5 XxzBp2ifzD9JHQlwNf72kYJ3eV+l2AEfvnXhWd88KlmZAKstnmBagF4B/0T3s2Lm SxI3yA1QBoUZ1Xo9+PP37cwmzRC8dZB2veB9aYWwa8OfB/AkEqnTKpEErbz3z07y s/Lw9Mt+kg09qzC+kVSq7hqz5SzvAhcFF69ZnYDBMQqhOTypacAUmL3BoakkTtHv ZCOJtnFJ8w0ufMQajowjF/aptSTXYES2pcy64jgzyugfcY469F85g//vMDUVCGp5 -----END CERTIFICATE-----Generated at Mon Mar 2 03:49:25 2026 by rpki-client