$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/EA5A9A32BDAA11ED92995562C4F9AE02.roa File: EA5A9A32BDAA11ED92995562C4F9AE02.roa (raw, json) Hash identifier: c33kuST7gT7ebNkTWc7XNN3mabw1ea/YNIBXvt3Yc/g= Subject key identifier: 8D:11:62:8D:17:DD:4B:64:B5:D2:B4:4E:2F:AF:CA:B0:72:ED:66:0F Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0237 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/EA5A9A32BDAA11ED92995562C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:28:09 +0000 ROA not before: Fri 05 Sep 2025 03:09:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45748 IP address blocks: 202.14.70.0/23 maxlen: 24 202.43.118.0/24 maxlen: 24 202.43.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Sep 5 03:09:17 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3ea89-936c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:88:a5:b9:9c:f7:7c:cc:b4:ad:e1:b2:e1: 9a:4a:59:39:ff:21:7e:cd:6d:58:55:f0:68:68:46: 7b:f7:7b:7c:e5:32:2e:e2:69:9f:9d:ae:1a:a9:6c: 14:7f:8c:8d:93:8b:41:cf:92:28:b2:f7:00:7d:23: 3c:24:59:a6:52:49:3e:5c:a1:56:c1:76:2c:85:dd: 7d:51:d6:bb:8c:6e:fa:a2:c5:10:cb:1d:ff:e1:56: a7:d8:f2:d8:4d:47:bd:97:88:de:81:df:5a:eb:a3: 54:0c:c5:3c:c8:ad:aa:7f:89:20:d1:74:67:fc:47: a6:b2:8e:f9:89:f5:20:43:2c:86:13:49:12:4e:0d: e7:e8:f2:3d:b9:8d:9c:8b:df:8a:95:0d:f6:66:dd: 60:a7:6b:ff:16:df:87:74:43:7f:c1:a1:55:c3:b1: 19:61:3f:d3:d7:97:68:4f:03:46:9e:9b:e5:98:30: e7:7d:89:73:83:1f:a1:d2:d6:ba:af:7d:b4:3d:85: 0d:62:f2:a7:fa:5c:4e:b0:89:08:5b:39:d4:d6:d1: 07:fa:65:f1:90:1b:b3:a6:2b:ff:2b:5b:ae:e2:b9: ec:41:69:26:e9:e6:fb:fa:e1:fa:16:80:47:6d:66: 6f:56:f7:d3:90:68:49:7b:c1:41:8c:17:67:23:bd: a3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:11:62:8D:17:DD:4B:64:B5:D2:B4:4E:2F:AF:CA:B0:72:ED:66:0F X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/EA5A9A32BDAA11ED92995562C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.14.70.0/23 202.43.118.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:35:af:7d:53:63:98:8d:57:f7:95:55:41:16:e1:51:7f:a6: 86:5e:3d:2d:94:ff:9d:69:17:10:8a:e2:b2:b4:80:83:ad:e4: 21:49:32:c4:14:98:af:16:89:60:d1:6c:6c:ec:f8:be:79:2c: 5f:5b:3b:3d:2f:01:bf:b1:fe:5e:d9:0c:27:7d:47:ee:b6:ec: b5:c7:a1:38:6f:61:96:15:5a:18:5a:d9:b0:e6:7a:b7:de:ba: cd:10:26:b4:22:13:d1:80:65:0a:8a:2e:0c:10:a9:76:06:13: 7d:10:df:a7:b6:e0:4a:d6:06:c6:c5:31:27:28:06:2f:0c:8d: cf:21:1f:2f:f2:c2:d1:2f:7e:de:41:00:7a:c1:25:56:a9:9b: 48:4a:97:22:9e:81:35:5b:a4:ae:67:b3:4b:f0:89:88:14:88: 96:b0:e4:02:16:cb:cd:b1:07:5b:5c:66:e5:a0:ea:85:4c:52: 91:2c:f1:9f:6b:fb:0f:7b:bf:f7:d3:43:5c:ec:d9:fb:98:0b: e3:58:05:2c:a9:f0:fc:c0:53:b7:30:d9:99:30:96:5a:e3:fe: ae:9c:14:9a:c4:82:f2:e1:f2:3c:27:69:e9:ad:83:7e:f3:f9: 2c:4b:01:aa:c1:b7:6d:60:16:76:b4:19:9b:86:0d:75:7e:81: c8:fb:09:42 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUwOTA1MDMwOTE3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWE4OS05MzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiWIpbmc93zMtK3hsuGaSlk5/yF+zW1YVfBoaEZ793t85TIu4mmfna4aqWwU f4yNk4tBz5IosvcAfSM8JFmmUkk+XKFWwXYshd19Uda7jG76osUQyx3/4Van2PLY TUe9l4jegd9a66NUDMU8yK2qf4kg0XRn/Eemso75ifUgQyyGE0kSTg3n6PI9uY2c i9+KlQ32Zt1gp2v/Ft+HdEN/waFVw7EZYT/T15doTwNGnpvlmDDnfYlzgx+h0ta6 r320PYUNYvKn+lxOsIkIWznU1tEH+mXxkBuzpiv/K1uu4rnsQWkm6eb7+uH6FoBH bWZvVvfTkGhJe8FBjBdnI72j+QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFI0RYo0X 3UtktdK0Ti+vyrBy7WYPMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg2NTAvNzc1OEQyQzJCREE3MTFFREFFQ0Q0QTVEQzRGOUFFMDIvRUE1QTlBMzJC REFBMTFFRDkyOTk1NTYyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQByg5GAwQByit2MA0GCSqGSIb3DQEBCwUAA4IBAQAKNa99U2OYjVf3 lVVBFuFRf6aGXj0tlP+daRcQiuKytICDreQhSTLEFJivFolg0Wxs7Pi+eSxfWzs9 LwG/sf5e2QwnfUfutuy1x6E4b2GWFVoYWtmw5nq33rrNECa0IhPRgGUKii4MEKl2 BhN9EN+ntuBK1gbGxTEnKAYvDI3PIR8v8sLRL37eQQB6wSVWqZtISpcinoE1W6Su Z7NL8ImIFIiWsOQCFsvNsQdbXGbloOqFTFKRLPGfa/sPe7/300Nc7Nn7mAvjWAUs qfD8wFO3MNmZMJZa4/6unBSaxILy4fI8J2nprYN+8/ksSwGqwbdtYBZ2tBmbhg11 foHI+wlC -----END CERTIFICATE-----Generated at Mon Mar 2 13:52:05 2026 by rpki-client