$ rpki-client -vvf rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/74D88B52FF6511EB95D39078C4F9AE02.roa File: 74D88B52FF6511EB95D39078C4F9AE02.roa (raw, json) Hash identifier: ZRKDoTCxO4kWh5K3DlbMTCOMh1AkkFSSGzjDwidD7jA= Subject key identifier: 67:C6:6F:DC:24:39:07:19:1F:97:29:50:36:2D:42:9E:87:9D:69:66 Certificate issuer: /CN=A9150845/serialNumber=F7D33F455EDABE3D4CB63FB92E4CA076119C34A6 Certificate serial: 158D Authority key identifier: F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/74D88B52FF6511EB95D39078C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:25:49 +0000 ROA not before: Tue 02 Sep 2025 17:06:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142437 IP address blocks: 203.159.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.crl rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5517 (0x158d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150845, serialNumber=F7D33F455EDABE3D4CB63FB92E4CA076119C34A6 Validity Not Before: Sep 2 17:06:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4688c-9711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d4:27:ad:d5:ce:f5:58:13:b9:8b:de:49:80: 1a:48:56:65:4d:52:a7:b6:9c:e1:58:2e:10:88:fd: 37:e5:83:34:09:ac:a3:60:ed:25:2a:d8:7e:59:0a: bf:50:ca:7b:98:50:f4:c1:26:09:cb:54:b6:26:a9: 8d:f6:24:f6:06:db:e5:99:42:c6:90:07:be:f1:86: b0:89:d9:36:fd:9a:1b:f7:fe:f2:63:a2:02:a4:b5: 2a:3b:fb:da:35:15:f4:7b:26:3d:1d:13:f5:2a:59: fc:23:bd:6f:3a:ed:71:e0:a0:96:3f:8b:07:20:9c: c6:c9:02:50:6d:49:dc:0f:37:6c:12:74:d5:f7:5f: fd:24:d8:ed:ea:60:72:0e:56:6d:a7:3d:5d:55:b1: 29:39:21:84:89:24:01:6d:8e:ac:1a:ce:78:5e:64: 42:f6:73:67:09:40:2a:e1:08:1e:43:74:42:87:b0: 68:02:24:d8:09:db:34:fb:eb:68:b5:8a:87:ac:71: bc:14:76:f0:17:60:55:c0:83:5b:74:20:cb:f2:a2: 31:f2:71:db:df:a5:36:76:05:09:c2:a5:13:c6:89: f6:ca:b8:80:67:0f:4c:73:7f:76:fa:0c:b5:1a:48: 5d:eb:7a:32:6d:1f:84:b8:98:04:18:04:51:11:d0: f5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C6:6F:DC:24:39:07:19:1F:97:29:50:36:2D:42:9E:87:9D:69:66 X509v3 Authority Key Identifier: keyid:F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/74D88B52FF6511EB95D39078C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.159.64.0/24 Signature Algorithm: sha256WithRSAEncryption 57:fa:41:f5:a1:9d:8f:b2:0a:c1:73:c1:5b:b8:a5:32:70:c8: b2:cc:58:3e:b0:f0:41:93:c8:ec:f5:7d:e0:d1:6b:10:00:dc: ad:a1:a1:50:9e:e6:d7:62:7e:32:9a:b2:3f:5a:c6:a2:60:08: 20:b5:4b:b8:b4:65:5e:07:dd:7d:cf:52:55:5c:0a:92:20:08: 04:42:8c:75:9f:11:29:4c:fe:b5:e0:6a:b8:30:91:08:17:b4: 4f:8a:ad:15:a8:5c:61:0f:c5:28:38:10:a9:be:a9:bc:44:f0: fd:b3:1f:eb:bd:ec:19:1e:13:ae:db:56:b0:c3:69:f3:14:00: 18:0a:da:2c:e0:dd:53:0b:44:af:c8:6f:b9:cd:b6:a0:9a:93: 59:04:91:bb:fe:ad:44:d8:97:2a:61:75:04:2f:1f:ab:a9:2f: 2b:03:b7:eb:d4:4d:51:8d:f4:20:62:1e:2d:a9:6b:2e:b7:e8: 06:81:8f:53:1c:46:74:30:ed:d9:0f:ce:88:0d:2a:b4:5b:21: 9b:f0:7d:64:29:4e:52:aa:c5:7d:9b:a7:82:d8:34:7e:53:b4: 56:72:85:11:f5:e8:59:32:0e:e0:47:a8:e2:93:10:00:79:6f: 97:9c:87:c4:41:e0:d3:13:57:77:47:1f:74:e6:f9:96:35:9f: 55:cc:a1:c9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4NDUxMTAvBgNVBAUTKEY3RDMzRjQ1NUVEQUJFM0Q0Q0I2M0ZCOTJFNENBMDc2 MTE5QzM0QTYwHhcNMjUwOTAyMTcwNjE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njg4Yy05NzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9QnrdXO9VgTuYveSYAaSFZlTVKntpzhWC4QiP035YM0CayjYO0lKth+WQq/ UMp7mFD0wSYJy1S2JqmN9iT2BtvlmULGkAe+8Yawidk2/Zob9/7yY6ICpLUqO/va NRX0eyY9HRP1Kln8I71vOu1x4KCWP4sHIJzGyQJQbUncDzdsEnTV91/9JNjt6mBy DlZtpz1dVbEpOSGEiSQBbY6sGs54XmRC9nNnCUAq4QgeQ3RCh7BoAiTYCds0++to tYqHrHG8FHbwF2BVwINbdCDL8qIx8nHb36U2dgUJwqUTxon2yriAZw9Mc392+gy1 Gkhd63oybR+EuJgEGARREdD1AQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGfGb9wk OQcZH5cpUDYtQp6HnWlmMB8GA1UdIwQYMBaAFPfTP0Ve2r49TLY/uS5MoHYRnDSm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDg0NS9EQzcxMDBFQTVB NTUxMUU4QkUzRTBCNjhDNEY5QUUwMi85OU1fUlY3YXZqMU10ai01TGt5Z2RoR2NO S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5TV9SVjdhdmoxTXRqLTVMa3lnZGhHY05LWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA4NDUvREM3MTAwRUE1QTU1MTFFOEJFM0UwQjY4QzRGOUFFMDIvNzREODhCNTJG RjY1MTFFQjk1RDM5MDc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy59AMA0GCSqGSIb3DQEBCwUAA4IBAQBX+kH1oZ2PsgrBc8FbuKUy cMiyzFg+sPBBk8js9X3g0WsQANytoaFQnubXYn4ymrI/WsaiYAggtUu4tGVeB919 z1JVXAqSIAgEQox1nxEpTP614Gq4MJEIF7RPiq0VqFxhD8UoOBCpvqm8RPD9sx/r vewZHhOu21aww2nzFAAYCtos4N1TC0SvyG+5zbagmpNZBJG7/q1E2JcqYXUELx+r qS8rA7fr1E1RjfQgYh4tqWsut+gGgY9THEZ0MO3ZD86IDSq0WyGb8H1kKU5SqsV9 m6eC2DR+U7RWcoUR9ehZMg7gR6jikxAAeW+XnIfEQeDTE1d3Rx905vmWNZ9VzKHJ -----END CERTIFICATE-----Generated at Mon Mar 2 04:36:55 2026 by rpki-client