$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa File: AF27640226FA11F0B0383240C4F9AE02.roa (raw, json) Hash identifier: vpOc+3kPV6Pm6+6TDvDUsWTnZWPzQSBq8LombYK9VIY= Subject key identifier: AB:05:48:07:8C:8E:7A:AB:EB:CC:3A:16:D7:F8:B7:BD:D9:6D:34:C9 Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 0170 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:02:06 +0000 ROA not before: Sat 03 May 2025 05:42:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55914 IP address blocks: 202.129.255.0/24 maxlen: 24 203.12.174.0/24 maxlen: 24 203.12.175.0/24 maxlen: 24 203.191.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: May 3 05:42:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58a4d-85ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:af:f8:02:2d:de:8b:3a:ee:54:ed:26:bd:d0: be:59:e9:78:f7:a7:77:d1:3c:78:97:c8:23:2f:af: 42:58:e1:e3:29:4c:1e:fc:84:44:76:d6:23:79:3b: 77:df:78:fc:d4:a8:76:cb:4a:62:fd:ee:47:eb:f5: 5d:24:49:9a:b3:3b:0d:c8:c2:88:90:7a:0d:e1:b3: 4b:3d:e8:b6:f5:52:cd:f8:6c:53:46:0c:08:e1:ad: 8c:ed:6f:a3:3b:a6:97:71:07:d6:6c:4d:c5:b1:0d: 50:2e:50:84:3b:37:c5:ae:9c:7c:08:99:b3:91:e3: 1a:3c:bb:da:a1:c0:b6:9d:c1:01:60:2a:34:ce:f3: c1:02:c2:0d:a7:15:8e:db:28:23:bc:4b:ec:91:7b: 6f:ca:3d:a1:7d:8e:d4:95:ef:81:a8:8c:2f:f5:11: d3:dc:6d:b3:19:f1:b8:97:54:b2:42:93:ea:89:c7: 6a:c3:ab:ea:0b:5e:fa:d0:49:2a:f6:b1:ae:d9:07: 4f:8c:07:c8:c4:02:24:21:78:9b:43:cf:8e:ce:92: 7b:c8:e7:22:a0:45:7b:44:91:5c:b0:8f:ea:a7:41: 7f:c7:e5:79:3f:a6:2e:e4:c0:97:2c:72:fc:c6:97: 36:82:3f:b4:96:57:45:b4:6d:7e:ec:50:d7:c9:52: 87:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:05:48:07:8C:8E:7A:AB:EB:CC:3A:16:D7:F8:B7:BD:D9:6D:34:C9 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.129.255.0/24 203.12.174.0/23 203.191.6.0/24 Signature Algorithm: sha256WithRSAEncryption 48:2f:a4:f9:a2:53:ce:86:c7:52:69:d7:3b:0a:7f:d5:65:18: 9a:ef:69:c4:20:28:bc:96:cd:ff:1c:6a:65:36:c8:47:09:c9: ec:1d:d8:ef:be:50:2d:8a:69:e4:51:af:a0:07:53:d2:07:e4: be:4a:1b:a1:33:bf:b7:38:7c:5a:91:ce:4a:5f:c3:74:65:2b: ad:08:41:ef:7d:fd:2e:81:e1:31:30:47:87:90:5f:9d:82:2f: 5d:62:86:cf:b9:89:5d:e3:dc:01:e7:28:79:3a:6b:60:55:6f: 2a:b4:37:3b:1f:5d:c3:31:d8:e9:d5:12:eb:91:a7:44:52:ee: 7e:61:4a:4a:c4:80:ab:dc:d9:bc:ae:e2:18:a5:e6:85:e7:32: c9:67:c9:4a:78:90:7c:2f:e8:0b:aa:07:8f:cf:41:43:da:fd: 2d:ce:ac:e0:43:fd:be:91:90:36:e6:ff:23:05:d5:a5:d2:4a: 43:82:d4:f0:e9:ad:0e:92:a9:5a:3e:cf:08:ff:a5:b4:76:6d: 47:aa:c9:33:a1:27:99:fc:75:65:09:06:0b:4f:40:e6:30:b5: 90:70:d1:56:28:b1:97:25:75:e7:22:fb:81:b2:5a:5f:15:99: a2:74:eb:c2:f4:62:ae:6d:d4:18:35:db:06:37:74:9e:45:8c: 8a:58:a9:2e -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUwNTAzMDU0MjExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE0ZC04NWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26/4Ai3eizruVO0mvdC+Wel496d30Tx4l8gjL69CWOHjKUwe/IREdtYjeTt3 33j81Kh2y0pi/e5H6/VdJEmaszsNyMKIkHoN4bNLPei29VLN+GxTRgwI4a2M7W+j O6aXcQfWbE3FsQ1QLlCEOzfFrpx8CJmzkeMaPLvaocC2ncEBYCo0zvPBAsINpxWO 2ygjvEvskXtvyj2hfY7Ule+BqIwv9RHT3G2zGfG4l1SyQpPqicdqw6vqC1760Ekq 9rGu2QdPjAfIxAIkIXibQ8+OzpJ7yOcioEV7RJFcsI/qp0F/x+V5P6Yu5MCXLHL8 xpc2gj+0lldFtG1+7FDXyVKHywIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFKsFSAeM jnqr68w6Ftf4t73ZbTTJMB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlDMDAvMUMzMUVBRjAxQkMwMTFFRkJCNjg4RDVFQzRGOUFFMDIvQUYyNzY0MDIy NkZBMTFGMEIwMzgzMjQwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyoH/AwQBywyuAwQAy78GMA0GCSqGSIb3DQEBCwUAA4IBAQBIL6T5 olPOhsdSadc7Cn/VZRia72nEICi8ls3/HGplNshHCcnsHdjvvlAtimnkUa+gB1PS B+S+ShuhM7+3OHxakc5KX8N0ZSutCEHvff0ugeExMEeHkF+dgi9dYobPuYld49wB 5yh5OmtgVW8qtDc7H13DMdjp1RLrkadEUu5+YUpKxICr3Nm8ruIYpeaF5zLJZ8lK eJB8L+gLqgePz0FD2v0tzqzgQ/2+kZA25v8jBdWl0kpDgtTw6a0OkqlaPs8I/6W0 dm1HqskzoSeZ/HVlCQYLT0DmMLWQcNFWKLGXJXXnIvuBslpfFZmidOvC9GKubdQY NdsGN3SeRYyKWKku -----END CERTIFICATE-----Generated at Mon Mar 2 16:27:53 2026 by rpki-client