$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa File: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (raw, json) Hash identifier: giuz6kt+a3mAfYzChvmg3ZhJktWSl07hrTJcl5VYuw4= Subject key identifier: 9B:42:94:37:BC:D3:7F:87:E2:A8:70:9E:EC:35:AF:B3:32:1C:69:2C Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 353E Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:34:31 +0000 ROA not before: Sat 28 Jun 2025 02:53:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139759 IP address blocks: 119.252.112.0/21 maxlen: 21 119.252.112.0/24 maxlen: 24 119.252.116.0/22 maxlen: 22 119.252.122.0/24 maxlen: 24 124.109.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13630 (0x353e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Jun 28 02:53:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a44067-d01f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:31:ae:cd:cb:d3:70:45:ee:73:73:20:1f: 24:6a:71:43:82:a1:f5:55:b1:e5:01:31:25:9e:e4: 21:86:cf:ca:82:0e:de:2f:76:94:6f:88:be:f9:3d: 39:02:57:37:85:6f:e7:82:d5:de:6e:b7:2a:14:82: cd:e9:33:4f:37:2f:3b:07:01:dc:12:d6:63:87:c7: 8f:55:83:48:9c:d1:9e:9e:86:7a:2e:bc:44:40:74: 87:50:a1:8e:db:0c:bb:99:73:c1:02:6c:a1:a3:e1: 47:97:99:ca:7e:5f:37:8e:78:f8:f6:b4:21:38:0e: 6d:50:28:57:f6:d0:2e:0a:63:82:0e:f3:17:fe:5a: b4:bc:31:90:fe:fc:20:e4:8b:6a:5c:2d:b6:06:26: 60:7f:f0:66:a3:26:04:c1:65:09:cd:23:e1:9b:38: 13:fd:c0:b2:ab:cc:a0:ad:af:38:98:f0:f1:06:64: a8:cd:d1:47:17:fc:a7:b9:41:05:b8:ce:25:58:00: 1b:7f:e3:db:b0:63:ce:bd:66:7e:c2:a7:dd:88:34: 9a:94:12:66:b6:a8:8f:7f:7d:0e:09:a9:33:5a:1d: 02:ac:e1:ce:14:1f:f8:1e:a6:1d:7f:3d:54:31:71: d9:b5:a0:a9:b0:09:ff:6a:11:02:ae:f8:b9:fb:d3: 34:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:42:94:37:BC:D3:7F:87:E2:A8:70:9E:EC:35:AF:B3:32:1C:69:2C X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.252.112.0/21 119.252.122.0/24 124.109.8.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:10:69:06:7b:51:a8:01:24:94:5d:52:5c:55:d4:fe:cf:f3: 4d:2c:88:12:d8:fb:1d:26:88:fc:5c:e1:09:f1:9b:a6:67:88: 6c:fe:06:88:37:60:2e:7d:58:30:cb:b4:ad:fa:eb:26:89:91: f6:8f:17:6c:1e:68:6d:b8:81:27:53:65:ed:5d:40:42:ce:12: 60:05:42:5b:d8:5e:e2:be:97:5f:bf:a7:e4:d1:fc:fd:c6:3a: 27:2e:3f:aa:52:51:6e:4c:9b:6e:31:d8:50:9e:57:33:68:26: f6:6a:3b:ac:52:4d:a5:30:fd:a2:7f:6c:98:76:95:d3:3e:89: 1a:74:b3:47:98:1f:b7:d0:3b:93:52:7b:45:6c:36:6a:3a:e2: 90:ed:55:90:8e:b5:eb:84:1c:e6:8a:a6:43:2a:b8:18:b1:df: 1d:6d:db:b6:86:0e:8e:cf:eb:fc:5d:4b:ef:10:a2:af:7a:c5: 99:c6:80:e7:48:1b:65:c7:1f:86:30:69:fd:bc:6b:59:73:a5: 22:8b:ed:96:2d:9c:c0:56:3a:82:1b:f7:cf:5d:d4:65:e4:56: 2b:19:fb:5b:ff:9d:4e:c7:10:51:33:0e:35:ad:4f:af:df:b6: e9:0e:63:7a:09:a6:9e:ba:5c:ad:83:5f:86:34:4f:d7:9f:c6: fb:6a:f7:94 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICNT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUwNjI4MDI1MzU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDA2Ny1kMDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMcxrs3L03BF7nNzIB8kanFDgqH1VbHlATElnuQhhs/Kgg7eL3aUb4i++T05 Alc3hW/ngtXebrcqFILN6TNPNy87BwHcEtZjh8ePVYNInNGenoZ6LrxEQHSHUKGO 2wy7mXPBAmyho+FHl5nKfl83jnj49rQhOA5tUChX9tAuCmOCDvMX/lq0vDGQ/vwg 5ItqXC22BiZgf/BmoyYEwWUJzSPhmzgT/cCyq8ygra84mPDxBmSozdFHF/ynuUEF uM4lWAAbf+PbsGPOvWZ+wqfdiDSalBJmtqiPf30OCakzWh0CrOHOFB/4HqYdfz1U MXHZtaCpsAn/ahECrvi5+9M0dQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFJtClDe8 03+H4qhwnuw1r7MyHGksMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQTAvM0EwRDkzMTAxRDhDMTFFMjhFRkY1N0U3MDhCMDJDRDIvRTRCQTNDRThE RkNFMTFFRkJDNENENjMxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQDd/xwAwQAd/x6AwQCfG0IMA0GCSqGSIb3DQEBCwUAA4IBAQCdEGkG e1GoASSUXVJcVdT+z/NNLIgS2PsdJoj8XOEJ8ZumZ4hs/gaIN2AufVgwy7St+usm iZH2jxdsHmhtuIEnU2XtXUBCzhJgBUJb2F7ivpdfv6fk0fz9xjonLj+qUlFuTJtu MdhQnlczaCb2ajusUk2lMP2if2yYdpXTPokadLNHmB+30DuTUntFbDZqOuKQ7VWQ jrXrhBzmiqZDKrgYsd8dbdu2hg6Oz+v8XUvvEKKvesWZxoDnSBtlxx+GMGn9vGtZ c6Uii+2WLZzAVjqCG/fPXdRl5FYrGftb/51OxxBRMw41rU+v37bpDmN6Caaeulyt g1+GNE/Xn8b7aveU -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:15 2026 by rpki-client