$ rpki-client -vvf rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa File: 14EC8116B10B11E58EB48F13C4F9AE02.roa (raw, json) Hash identifier: VmiDWWZcXS/8NwiQU0Cj011GwuJY7i5hDmIVSX2ZEao= Subject key identifier: D0:F7:00:CA:E6:55:DF:6B:CB:67:DB:00:F8:D3:B6:04:6A:9C:76:D7 Certificate issuer: /CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Certificate serial: 2865 Authority key identifier: CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:23:12 +0000 ROA not before: Mon 02 Feb 2026 16:12:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132124 IP address blocks: 43.224.124.0/22 maxlen: 22 103.11.32.0/22 maxlen: 22 2402:cb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10341 (0x2865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175529, serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Validity Not Before: Feb 2 16:12:55 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a467f0-1b80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a7:ac:c7:73:25:40:2a:e7:00:b3:46:f7:1b: 20:a5:16:d3:f5:1d:06:0a:96:69:6e:31:24:40:28: bb:26:de:f0:df:6e:8d:f8:35:d1:ca:7c:b0:df:82: cf:db:44:d5:f4:19:05:24:9a:f9:7f:04:6b:3a:b0: e7:60:4a:05:55:fc:e1:78:aa:ce:44:83:75:fd:0c: e7:ff:32:1b:5f:6e:95:86:cf:1d:4f:33:f3:d1:85: ef:a8:24:d7:5e:bf:c8:91:6e:8c:3d:13:41:95:17: 9b:90:ba:85:c6:33:c7:d5:83:00:1f:e0:89:8c:f4: 83:ac:a3:5c:e4:2b:e3:57:ea:e4:6e:8c:05:85:32: 92:04:2e:17:26:5a:dc:b1:40:14:90:8f:73:e0:6b: 8a:4f:0d:31:56:1e:89:9b:9e:91:8c:35:4f:b1:a5: 7d:4f:7c:19:9b:d4:7e:30:da:9f:3d:6f:f0:92:4d: 74:02:a3:2c:18:55:f5:71:81:02:19:12:83:f3:f6: ad:03:21:9d:cf:9f:dd:d2:45:15:ff:93:2e:24:9f: de:10:4d:7b:96:d5:4d:61:4f:24:a4:bf:11:5e:da: f8:52:88:6a:83:d6:ab:4c:2d:c0:62:02:5f:32:32: 79:ce:76:07:8e:38:05:eb:ee:9e:7f:0c:a0:1a:31: b9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F7:00:CA:E6:55:DF:6B:CB:67:DB:00:F8:D3:B6:04:6A:9C:76:D7 X509v3 Authority Key Identifier: keyid:CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.124.0/22 103.11.32.0/22 IPv6: 2402:cb00::/32 Signature Algorithm: sha256WithRSAEncryption 83:cd:df:f6:b0:44:c1:1f:8c:e8:14:da:96:d8:b0:8b:48:9f: 73:10:fa:ba:0e:50:56:ce:ba:3c:92:39:f7:9c:00:5c:0d:f3: 4e:a5:ee:a8:a5:c0:41:bc:04:05:c4:60:c8:28:1d:d8:fc:ac: f1:d6:a7:b8:23:f7:07:08:3a:a7:82:29:34:77:8f:8d:ef:ef: c3:98:5b:6e:ff:d9:47:fa:e7:bb:66:cf:48:b0:04:10:d5:bd: da:50:05:27:ee:03:f6:82:8b:a1:3a:a1:29:52:a4:e0:28:f2: a2:08:2d:09:0f:55:f8:4f:25:12:68:64:f5:c3:6b:27:b5:f6: 18:e8:41:8f:9c:67:ae:a1:e8:95:a8:59:d8:45:06:fd:f8:7c: b4:2c:87:0f:7e:d7:0f:7b:63:43:d7:ed:ff:fe:24:3f:4c:42: da:33:43:08:58:1c:9c:cb:a4:1b:f1:91:8f:a4:45:67:e4:b6: f9:0c:e2:26:2d:e7:2d:81:73:47:5d:67:55:8b:c3:b2:c5:97: 70:95:e4:c4:5e:f9:56:b5:60:2a:79:8d:69:b9:8a:72:b5:a2: 19:a7:e3:68:ac:f9:44:45:c7:bb:12:c6:a5:3a:40:de:c1:c1: 9c:cf:85:7d:cd:b7:e8:b7:9c:c7:1f:0a:67:5b:49:81:d9:9d: 65:36:dd:b3 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICKGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1MjkxMTAvBgNVBAUTKENFRTY5MzBGNDhENzc0RDY0M0Q1NUNGRkU5OEIxRTYz QTRENjM1MzQwHhcNMjYwMjAyMTYxMjU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjdmMC0xYjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKesx3MlQCrnALNG9xsgpRbT9R0GCpZpbjEkQCi7Jt7w326N+DXRynyw34LP 20TV9BkFJJr5fwRrOrDnYEoFVfzheKrORIN1/Qzn/zIbX26Vhs8dTzPz0YXvqCTX Xr/IkW6MPRNBlRebkLqFxjPH1YMAH+CJjPSDrKNc5CvjV+rkbowFhTKSBC4XJlrc sUAUkI9z4GuKTw0xVh6Jm56RjDVPsaV9T3wZm9R+MNqfPW/wkk10AqMsGFX1cYEC GRKD8/atAyGdz5/d0kUV/5MuJJ/eEE17ltVNYU8kpL8RXtr4Uohqg9arTC3AYgJf MjJ5znYHjjgF6+6efwygGjG5RwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFND3AMrm Vd9ry2fbAPjTtgRqnHbXMB8GA1UdIwQYMBaAFM7mkw9I13TWQ9Vc/+mLHmOk1jU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTUyOS8wQjY2MDA0MEEy MDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGROWkQxVnpfNllzZVk2VFdO VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1YVREMGpYZE5aRDFWel82WXNlWTZUV05UUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1MjkvMEI2NjAwNDBBMjA3MTFFNEJEOUVDMTQ0QzRGOUFFMDIvMTRFQzgxMTZC MTBCMTFFNThFQjQ4RjEzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK+B8AwQCZwsgMA0EAgACMAcDBQAkAssAMA0GCSqGSIb3DQEBCwUA A4IBAQCDzd/2sETBH4zoFNqW2LCLSJ9zEPq6DlBWzro8kjn3nABcDfNOpe6opcBB vAQFxGDIKB3Y/Kzx1qe4I/cHCDqngik0d4+N7+/DmFtu/9lH+ue7Zs9IsAQQ1b3a UAUn7gP2gouhOqEpUqTgKPKiCC0JD1X4TyUSaGT1w2sntfYY6EGPnGeuoeiVqFnY RQb9+Hy0LIcPftcPe2ND1+3//iQ/TELaM0MIWBycy6Qb8ZGPpEVn5Lb5DOImLect gXNHXWdVi8OyxZdwleTEXvlWtWAqeY1puYpytaIZp+NorPlERce7EsalOkDewcGc z4V9zbfot5zHHwpnW0mB2Z1lNt2z -----END CERTIFICATE-----Generated at Tue Mar 3 04:25:32 2026 by rpki-client