$ rpki-client -vvf rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa File: B8370F3A5E6011EDB5361D3BC4F9AE02.roa (raw, json) Hash identifier: tKFaHITtLZAQ61mcV49Br1vxEy6JkCTzuDJ4xLJ+YOA= Subject key identifier: 64:10:EF:58:E8:01:84:A3:B8:53:4A:B7:03:6F:BF:E6:75:BD:B3:D6 Certificate issuer: /CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Certificate serial: 0274 Authority key identifier: C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:57:10 +0000 ROA not before: Thu 19 Jun 2025 02:39:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45353 IP address blocks: 202.45.144.0/22 maxlen: 22 202.45.144.0/24 maxlen: 24 202.45.145.0/24 maxlen: 24 202.45.146.0/24 maxlen: 24 202.45.147.0/24 maxlen: 24 2001:df0:8b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:09:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155675, serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Validity Not Before: Jun 19 02:39:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a41b86-6c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:a8:65:8e:4c:21:bd:87:25:04:db:41:7b: 7a:9f:26:2f:56:d3:51:a6:19:1e:f4:65:b7:b2:17: d0:17:c5:0d:a7:59:1f:89:ea:f2:03:bb:58:95:6c: 64:14:fd:67:22:ad:12:7f:f9:03:9d:1b:bf:21:49: af:60:d4:0b:68:91:3d:79:50:b3:9c:69:98:24:9b: 53:45:32:4b:23:60:01:00:59:c4:e5:bf:ce:e4:53: dd:d2:43:70:a3:cb:77:d2:15:46:78:f6:eb:54:1e: 5c:22:3a:cf:96:3d:b8:a6:6f:ed:5a:3a:59:a0:65: 85:0c:53:14:8b:33:23:aa:e4:6e:88:85:31:e7:88: 27:95:af:fb:72:6e:bd:4f:e1:ff:d8:79:20:78:24: 47:6e:cd:57:15:0f:7a:b0:ec:8c:c0:04:d3:35:2c: 31:d1:70:48:0a:e1:1f:d5:09:f7:31:8e:13:4f:ea: f9:41:3d:9e:f7:f6:2f:30:5a:90:ca:f0:a9:28:a5: f0:9e:fc:9a:35:ab:8d:f7:cc:05:4b:2b:44:32:e5: b6:55:e4:1d:c8:9a:2a:c4:59:7c:67:b8:eb:e4:32: 25:3f:32:87:51:c4:20:43:b8:e5:56:92:18:13:b4: fc:51:fb:3c:29:78:e3:41:3f:13:a0:57:dc:79:d5: a9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:10:EF:58:E8:01:84:A3:B8:53:4A:B7:03:6F:BF:E6:75:BD:B3:D6 X509v3 Authority Key Identifier: keyid:C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.45.144.0/22 IPv6: 2001:df0:8b::/48 Signature Algorithm: sha256WithRSAEncryption 04:d6:1a:8e:0c:61:c0:e2:c9:03:f8:3f:e8:30:78:70:7c:c8: 6c:b7:59:dd:63:74:ed:cf:70:e8:47:fe:81:fa:c1:f8:8c:f3: 7f:c8:0f:85:7f:a2:27:ff:03:de:7c:66:f1:06:be:b1:6a:25: 84:bc:f8:79:3e:bd:a5:67:9d:cd:14:17:3b:5a:d6:15:86:11: 09:19:72:6c:71:15:57:b0:90:37:f7:4d:28:c3:ba:a7:7b:15: 07:20:2b:0e:55:23:b8:a1:dc:f7:3b:21:b6:57:fa:5f:e6:64: 78:1f:7c:e2:38:0e:9d:3a:57:1f:eb:3e:9a:0b:d2:a4:2f:73: 29:ac:91:18:16:34:4f:ab:36:f6:81:50:63:51:64:f0:d7:ff: cc:57:b1:64:f0:2c:5f:eb:38:0b:04:a6:a5:1a:3a:af:bd:ef: b5:68:8f:dc:c2:93:51:2d:6c:3e:69:d3:87:cb:52:8e:68:82: 00:ff:9b:fa:26:3f:66:85:b7:96:4b:f2:6b:7b:9f:63:8e:1b: e8:d0:f8:61:16:30:1e:38:43:42:90:42:32:ef:96:5a:c8:3b: a4:3a:90:a9:5c:46:70:c0:86:f1:39:76:e0:6f:45:73:d3:5f: 31:6f:da:43:dc:2e:da:2c:59:2f:37:56:00:c0:8d:a2:02:32: ee:f9:d6:fb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NzUxMTAvBgNVBAUTKEM3QjEzMDlEMDA4NzJEMDY2NjM5NkI0QzIzRDhFRjVD MzEyQzZCRUIwHhcNMjUwNjE5MDIzOTA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI4Ni02YzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC6oZY5MIb2HJQTbQXt6nyYvVtNRphke9GW3shfQF8UNp1kfieryA7tYlWxk FP1nIq0Sf/kDnRu/IUmvYNQLaJE9eVCznGmYJJtTRTJLI2ABAFnE5b/O5FPd0kNw o8t30hVGePbrVB5cIjrPlj24pm/tWjpZoGWFDFMUizMjquRuiIUx54gnla/7cm69 T+H/2HkgeCRHbs1XFQ96sOyMwATTNSwx0XBICuEf1Qn3MY4TT+r5QT2e9/YvMFqQ yvCpKKXwnvyaNauN98wFSytEMuW2VeQdyJoqxFl8Z7jr5DIlPzKHUcQgQ7jlVpIY E7T8Ufs8KXjjQT8ToFfcedWpQQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGQQ71jo AYSjuFNKtwNvv+Z1vbPWMB8GA1UdIwQYMBaAFMexMJ0Ahy0GZjlrTCPY71wxLGvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY3NS82RDExRjU3ODVF NUMxMUVEOUREREQyMURDNEY5QUUwMi94N0V3blFDSExRWm1PV3RNSTlqdlhERXNh LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3RXduUUNITFFabU9XdE1JOWp2WERFc2Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NzUvNkQxMUY1Nzg1RTVDMTFFRDlEREREMjFEQzRGOUFFMDIvQjgzNzBGM0E1 RTYwMTFFREI1MzYxRDNCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCyi2QMA8EAgACMAkDBwAgAQ3wAIswDQYJKoZIhvcNAQELBQADggEB AATWGo4MYcDiyQP4P+gweHB8yGy3Wd1jdO3PcOhH/oH6wfiM83/ID4V/oif/A958 ZvEGvrFqJYS8+Hk+vaVnnc0UFzta1hWGEQkZcmxxFVewkDf3TSjDuqd7FQcgKw5V I7ih3Pc7IbZX+l/mZHgffOI4Dp06Vx/rPpoL0qQvcymskRgWNE+rNvaBUGNRZPDX /8xXsWTwLF/rOAsEpqUaOq+977Voj9zCk1EtbD5p04fLUo5oggD/m/omP2aFt5ZL 8mt7n2OOG+jQ+GEWMB44Q0KQQjLvllrIO6Q6kKlcRnDAhvE5duBvRXPTXzFv2kPc LtosWS83VgDAjaICMu751vs= -----END CERTIFICATE-----Generated at Mon Mar 2 20:01:54 2026 by rpki-client