$ rpki-client -vvf rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa File: 3B9F9ED8FE9811EC9965A444C4F9AE02.roa (raw, json) Hash identifier: +eYiwDWRbbU4bw6MddTXjWk9kLXBeg2QkW9wNFIIrOA= Subject key identifier: 3C:BB:5E:47:3C:10:7D:49:4C:13:75:ED:34:8D:5D:24:AD:45:B8:56 Certificate issuer: /CN=A9175251/serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Certificate serial: 0776 Authority key identifier: 6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:40:52 +0000 ROA not before: Fri 02 May 2025 22:32:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24393 IP address blocks: 202.122.40.0/24 maxlen: 24 202.122.41.0/24 maxlen: 24 202.122.42.0/24 maxlen: 24 202.122.43.0/24 maxlen: 24 202.122.44.0/24 maxlen: 24 202.122.45.0/24 maxlen: 24 202.122.46.0/24 maxlen: 24 202.122.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175251, serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Validity Not Before: May 2 22:32:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fb94-1031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ae:68:6e:df:9d:48:68:04:2b:d4:d5:13:c5: d0:6b:7c:aa:d1:47:c9:c0:35:e8:75:8d:b9:2f:03: 22:6d:30:da:46:f7:6d:ec:88:d1:fb:c3:2e:f6:3d: 55:e6:66:16:4e:61:bc:35:d1:e2:01:e4:ca:05:d6: de:8b:0f:54:ea:1a:c4:4c:0c:56:fe:ff:20:4b:b3: 13:1e:81:3d:66:59:e9:55:3d:91:02:56:23:50:11: 7d:95:09:d6:9b:d2:11:5f:6b:a4:25:ac:ab:41:9b: 89:c9:26:75:76:e1:0a:de:47:7d:57:9d:55:ee:a8: bb:9e:9f:93:35:8e:ca:43:f0:8a:28:4c:f8:96:ba: c6:2f:45:ac:41:93:9c:e4:6f:0c:67:15:da:3d:5f: f9:80:3e:13:f6:bf:25:67:44:15:62:f8:6f:51:cf: 69:5d:ff:79:72:cd:a7:76:81:1d:5c:ea:e7:07:78: f7:4b:40:79:70:5e:0a:d5:4f:41:d9:8e:89:e2:3d: 7e:88:d2:6e:a1:90:1a:b0:2f:0e:0f:f0:ea:ef:d9: 89:5f:67:05:9a:d2:6f:89:2b:ed:dc:e6:46:ce:3b: 96:2a:c5:ab:b9:29:12:19:f3:82:f8:12:73:a0:d8: 54:35:a9:e1:bf:6e:c6:17:e2:c2:30:ce:26:65:c8: 8d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BB:5E:47:3C:10:7D:49:4C:13:75:ED:34:8D:5D:24:AD:45:B8:56 X509v3 Authority Key Identifier: keyid:6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.122.40.0/21 Signature Algorithm: sha256WithRSAEncryption 05:7e:19:c9:56:f6:a4:34:bc:5e:2e:33:fb:42:0a:00:b0:cb: 19:af:55:7f:fe:d1:3b:69:40:e1:8b:7c:77:40:a5:9c:ed:e8: 7f:3d:a4:10:54:89:e0:59:b8:15:ba:8d:36:02:f7:5b:de:52: df:43:98:90:b4:fb:20:08:e4:36:3d:cf:7d:29:d3:d3:36:46: 76:96:68:77:73:80:07:03:e8:64:6d:a3:88:c2:bf:d9:60:87: 5e:71:04:62:9a:40:82:95:6e:f2:85:8f:aa:25:7a:9c:c1:2c: cb:ff:cf:96:7c:ef:5f:5f:14:13:5f:8c:db:7a:a4:65:4f:d1: 8b:04:53:67:02:53:93:5c:0a:f2:b3:08:a9:bd:90:bd:55:7d: e6:d5:a4:02:cc:e1:2c:e4:5d:57:05:47:af:d4:f3:a2:c4:a1: d8:0b:dc:d8:8f:3e:47:e4:6c:7c:50:da:0e:dc:0b:74:e9:f0: be:d8:7d:9b:2a:9e:17:0e:84:a2:f6:c6:68:40:f6:07:f8:7d: eb:91:52:85:36:a7:ae:58:a5:e6:90:92:ba:7e:c0:0a:b7:3d: db:11:67:bd:99:45:94:56:ae:a1:91:93:43:da:75:eb:38:49: 8b:a0:a7:8f:77:c3:cf:1f:2e:26:e8:9e:9a:0b:0d:d3:df:39: 5c:88:ce:cf -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyNTExMTAvBgNVBAUTKDZFNUIyNDgxMTM4NkFBNEE4MkQ4MUY3MkM1REQyNDk5 Mjg2RkJGRDQwHhcNMjUwNTAyMjIzMjUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmI5NC0xMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAma5obt+dSGgEK9TVE8XQa3yq0UfJwDXodY25LwMibTDaRvdt7IjR+8Mu9j1V 5mYWTmG8NdHiAeTKBdbeiw9U6hrETAxW/v8gS7MTHoE9ZlnpVT2RAlYjUBF9lQnW m9IRX2ukJayrQZuJySZ1duEK3kd9V51V7qi7np+TNY7KQ/CKKEz4lrrGL0WsQZOc 5G8MZxXaPV/5gD4T9r8lZ0QVYvhvUc9pXf95cs2ndoEdXOrnB3j3S0B5cF4K1U9B 2Y6J4j1+iNJuoZAasC8OD/Dq79mJX2cFmtJviSvt3OZGzjuWKsWruSkSGfOC+BJz oNhUNanhv27GF+LCMM4mZciNNQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDy7Xkc8 EH1JTBN17TSNXSStRbhWMB8GA1UdIwQYMBaAFG5bJIEThqpKgtgfcsXdJJkob7/U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI1MS84MUJGQTMyMjUz RUYxMUVCOTdEMzhDMTZDNEY5QUUwMi9ibHNrZ1JPR3FrcUMyQjl5eGQwa21TaHZ2 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jsc2tnUk9HcWtxQzJCOXl4ZDBrbVNodnY5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyNTEvODFCRkEzMjI1M0VGMTFFQjk3RDM4QzE2QzRGOUFFMDIvM0I5RjlFRDhG RTk4MTFFQzk5NjVBNDQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDynooMA0GCSqGSIb3DQEBCwUAA4IBAQAFfhnJVvakNLxeLjP7QgoA sMsZr1V//tE7aUDhi3x3QKWc7eh/PaQQVIngWbgVuo02Avdb3lLfQ5iQtPsgCOQ2 Pc99KdPTNkZ2lmh3c4AHA+hkbaOIwr/ZYIdecQRimkCClW7yhY+qJXqcwSzL/8+W fO9fXxQTX4zbeqRlT9GLBFNnAlOTXAryswipvZC9VX3m1aQCzOEs5F1XBUev1POi xKHYC9zYjz5H5Gx8UNoO3At06fC+2H2bKp4XDoSi9sZoQPYH+H3rkVKFNqeuWKXm kJK6fsAKtz3bEWe9mUWUVq6hkZND2nXrOEmLoKePd8PPHy4m6J6aCw3T3zlciM7P -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:52 2026 by rpki-client