$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa File: 9BC1C0762BD411EC81C16155C4F9AE02.roa (raw, json) Hash identifier: 7+tRN51YIU3LN9W298oaXJsik4DwphEBzHaPI7fWysA= Subject key identifier: EA:7C:1D:29:7F:8D:9B:68:08:7E:38:9E:68:66:3B:70:B3:56:84:7B Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 054B Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:56:51 +0000 ROA not before: Tue 15 Jul 2025 00:35:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140724 IP address blocks: 203.20.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C, serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Jul 15 00:35:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40d63-2ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5d:49:64:af:d7:b4:c9:18:24:74:4d:13:e6: ed:ca:01:bc:cd:a4:90:43:18:36:a3:59:3e:75:73: 0f:0f:83:3a:95:aa:f0:ca:1b:c2:44:0e:be:2e:d6: 22:88:90:90:9f:13:fe:38:6b:dd:f7:6f:bb:61:b9: ce:1c:fd:78:8b:d3:19:e7:70:d4:fd:e2:44:0a:86: 28:15:12:30:a4:16:a0:c2:b7:62:57:3d:9e:ed:fa: d6:a1:c4:93:fb:6a:52:78:eb:65:6e:cf:25:a5:e1: e7:8c:66:f8:5b:8e:3a:99:42:bc:8f:9f:d2:65:ce: 43:f6:30:20:59:a0:19:f4:8b:34:29:f5:5d:58:5f: e3:56:14:ff:2b:e2:79:60:ee:58:45:45:a8:0b:1a: 4d:cf:0a:ac:d1:c0:e7:a9:09:5c:77:f6:cb:f5:da: a6:92:62:10:8f:c5:44:fe:75:a3:70:28:1e:ea:1f: df:40:a3:23:b8:ed:48:7f:7a:db:f7:1b:8d:36:e5: 45:ce:3b:5e:84:63:ab:3e:66:4a:eb:6a:0f:24:ab: 59:a0:ef:96:71:36:fa:47:d7:79:a2:d9:0c:1e:d6: 54:2d:fd:41:73:c7:3e:96:93:5c:b7:4a:71:f3:ea: 2b:c9:34:79:43:93:c3:47:a7:5c:92:f4:48:6d:c2: 56:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7C:1D:29:7F:8D:9B:68:08:7E:38:9E:68:66:3B:70:B3:56:84:7B X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 58:e9:f0:6b:6f:bc:63:75:b0:17:9d:ab:7f:48:3e:b7:fd:e3: e6:12:ea:ce:bc:08:84:8f:65:57:9a:5e:56:85:eb:ca:b5:f8: 6e:76:0d:e9:69:89:83:1b:e9:5f:91:b1:e7:84:0b:b0:35:2e: f6:ac:31:f5:66:d4:e1:4f:3b:84:fc:d2:c4:40:a2:1c:89:1c: 23:48:c5:0e:9c:9d:b3:0c:71:30:f1:0d:2d:0b:2c:e1:1e:a2: d9:a4:74:57:bd:eb:62:83:48:3a:f1:de:1c:a5:85:93:1e:cb: 8e:b6:49:12:38:d4:d3:04:ab:a8:82:ae:ef:98:29:e1:11:31: 79:1b:2e:82:c9:19:92:55:38:6a:4a:62:3c:d0:80:45:6a:33: a5:be:9a:14:f6:c5:df:f0:7e:66:24:ec:72:44:67:d7:03:ba: 67:2f:88:42:72:a7:a6:7b:49:71:b8:22:ce:0b:fd:f0:e9:ec: 3a:31:d1:0c:62:15:ff:9e:8c:0d:1f:82:7a:ea:d4:a0:b4:91: 2e:39:c6:4c:9b:d2:c1:ce:be:5f:41:42:57:3b:0c:e7:d9:ed: 0c:bd:0a:6b:b8:6d:a7:07:33:b5:3e:72:5b:ea:7d:3e:62:ad: 0c:b9:dd:b9:ed:d3:2e:95:b6:0e:18:f6:bc:2f:ac:2f:d7:5c: b0:ec:64:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjUwNzE1MDAzNTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGQ2My0yYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3l1JZK/XtMkYJHRNE+btygG8zaSQQxg2o1k+dXMPD4M6larwyhvCRA6+LtYi iJCQnxP+OGvd92+7YbnOHP14i9MZ53DU/eJECoYoFRIwpBagwrdiVz2e7frWocST +2pSeOtlbs8lpeHnjGb4W446mUK8j5/SZc5D9jAgWaAZ9Is0KfVdWF/jVhT/K+J5 YO5YRUWoCxpNzwqs0cDnqQlcd/bL9dqmkmIQj8VE/nWjcCge6h/fQKMjuO1If3rb 9xuNNuVFzjtehGOrPmZK62oPJKtZoO+WcTb6R9d5otkMHtZULf1Bc8c+lpNct0px 8+oryTR5Q5PDR6dckvRIbcJWlwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOp8HSl/ jZtoCH44nmhmO3CzVoR7MB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5MUMvQkMyNjNBOEUyQkQxMTFFQ0FEREZBMzExQzRGOUFFMDIvOUJDMUMwNzYy QkQ0MTFFQzgxQzE2MTU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyxQUMA0GCSqGSIb3DQEBCwUAA4IBAQBY6fBrb7xjdbAXnat/SD63 /ePmEurOvAiEj2VXml5WhevKtfhudg3paYmDG+lfkbHnhAuwNS72rDH1ZtThTzuE /NLEQKIciRwjSMUOnJ2zDHEw8Q0tCyzhHqLZpHRXvetig0g68d4cpYWTHsuOtkkS ONTTBKuogq7vmCnhETF5Gy6CyRmSVThqSmI80IBFajOlvpoU9sXf8H5mJOxyRGfX A7pnL4hCcqeme0lxuCLOC/3w6ew6MdEMYhX/nowNH4J66tSgtJEuOcZMm9LBzr5f QUJXOwzn2e0MvQpruG2nBzO1PnJb6n0+Yq0Mud257dMulbYOGPa8L6wv11yw7GS9 -----END CERTIFICATE-----Generated at Mon Mar 2 14:27:16 2026 by rpki-client