$ rpki-client -vvf rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/2D33975A121C11F18B7E85E41C3D8C67.roa File: 2D33975A121C11F18B7E85E41C3D8C67.roa (raw, json) Hash identifier: Xy4HOKWQcqebI9E7GOjCjOx/HyS+h9OkzDcV8+UnWlY= Subject key identifier: CF:DF:24:D7:18:06:15:30:80:B7:35:AC:EB:35:8A:0E:F0:48:E9:A1 Certificate issuer: /CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE Certificate serial: 0BEB Authority key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/2D33975A121C11F18B7E85E41C3D8C67.roa Signing time: Wed 25 Feb 2026 07:32:45 +0000 ROA not before: Wed 25 Feb 2026 07:32:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55154 IP address blocks: 45.115.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.crl rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:10:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178B2B, serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE Validity Not Before: Feb 25 07:32:45 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=699ea59d-21c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:a8:e5:21:fe:b1:94:16:13:47:8d:39:a2: e2:9f:95:34:3e:5c:32:0d:a1:59:e8:af:39:f6:97: 7b:7e:8d:1a:f3:8c:f2:fd:f9:34:51:55:53:e4:9f: ac:2d:97:45:e5:2e:f0:f2:e0:42:76:e2:76:d5:d3: 17:ca:a4:5b:0a:fb:f7:f9:c5:05:49:65:68:db:51: 31:90:2e:6f:32:ca:73:de:6a:9f:79:5a:6d:3b:53: ec:b0:82:ba:c5:2b:3c:42:37:76:6d:1c:15:d1:25: d4:82:13:76:c0:c1:a1:80:40:8f:bf:1d:4e:b7:a4: d3:3c:8e:83:ba:c3:1b:10:ab:e0:8c:62:82:83:76: f1:11:2b:69:18:32:2e:c0:67:4c:92:ae:44:a4:cd: a2:35:90:69:c0:b0:77:b9:f3:89:f1:35:c0:21:be: 58:fd:33:db:03:b3:9f:aa:02:2a:bd:bf:26:06:ab: 4b:ad:74:ed:8d:7e:81:8d:92:60:7b:b7:83:6e:73: 7c:36:d8:9f:74:13:a3:26:fe:fd:15:44:3f:c2:f9: b4:09:3e:f8:1e:e9:99:6c:f4:e0:ba:cc:7d:81:a3: 38:da:7c:8a:81:ac:07:14:26:2c:ec:ac:7a:77:6a: 04:1a:f8:21:df:61:f4:51:f9:66:5f:85:65:9c:69: 59:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DF:24:D7:18:06:15:30:80:B7:35:AC:EB:35:8A:0E:F0:48:E9:A1 X509v3 Authority Key Identifier: keyid:20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/2D33975A121C11F18B7E85E41C3D8C67.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.27.0/24 Signature Algorithm: sha256WithRSAEncryption cc:34:1a:7d:2c:c3:9b:d2:1a:88:cc:82:92:5c:95:ae:1e:53: ad:84:b9:fd:cd:72:a7:ae:5a:e6:73:f7:1c:eb:bb:01:7b:9f: f3:4e:76:a4:7c:68:f1:29:a0:e2:82:be:9c:eb:ca:5c:2d:37: b5:d5:20:c2:64:8d:1b:73:75:67:e2:50:97:18:e9:75:49:94: 5b:48:51:82:f7:0b:3d:0c:f6:1d:a9:32:85:68:51:28:a4:54: c0:25:1a:7c:61:2e:99:ac:84:35:8f:90:14:0d:0e:8f:57:7f: 5e:27:e2:c3:19:6b:ca:04:16:17:30:bb:bc:93:17:fd:6f:a5: 6e:ea:56:9d:71:02:bb:8c:5d:21:30:7e:bf:d2:67:95:88:80: 4e:d8:76:65:6e:42:9e:35:78:4c:b3:2e:4a:cf:43:b7:5f:63: 6c:49:90:7f:e4:e6:2f:56:fc:4c:bc:a7:70:87:20:5b:8f:06: 45:78:39:59:5f:61:28:1e:37:3d:1d:61:05:12:ca:7e:01:ce: 06:e5:94:b4:55:28:93:a1:be:eb:27:75:d4:cd:77:b8:30:d2: 50:36:55:74:94:26:2b:ef:3f:19:d1:8f:96:78:1c:87:52:80: 0d:82:23:6f:6e:f9:64:52:3b:cc:37:d8:e7:c4:bf:f9:40:61: cf:9d:4f:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhCMkIxMTAvBgNVBAUTKDIwMjA3OUQ2QzlGRTA3QkYxODYyMjFEMUE5OTgyN0NC RjZCMTIyQUUwHhcNMjYwMjI1MDczMjQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTllYTU5ZC0yMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNGo5SH+sZQWE0eNOaLin5U0PlwyDaFZ6K859pd7fo0a84zy/fk0UVVT5J+s LZdF5S7w8uBCduJ21dMXyqRbCvv3+cUFSWVo21ExkC5vMspz3mqfeVptO1PssIK6 xSs8Qjd2bRwV0SXUghN2wMGhgECPvx1Ot6TTPI6DusMbEKvgjGKCg3bxEStpGDIu wGdMkq5EpM2iNZBpwLB3ufOJ8TXAIb5Y/TPbA7OfqgIqvb8mBqtLrXTtjX6BjZJg e7eDbnN8NtifdBOjJv79FUQ/wvm0CT74HumZbPTgusx9gaM42nyKgawHFCYs7Kx6 d2oEGvgh32H0UflmX4VlnGlZ9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFM/fJNcY BhUwgLc1rOs1ig7wSOmhMB8GA1UdIwQYMBaAFCAgedbJ/ge/GGIh0amYJ8v2sSKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEIyQi9CRkREMjIyRTND NDQxMUVBQUVFNkY3MEFDNEY5QUUwMi9JQ0I1MXNuLUI3OFlZaUhScVpnbnlfYXhJ cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lDQjUxc24tQjc4WVlpSFJxWmdueV9heElxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhCMkIvQkZERDIyMkUzQzQ0MTFFQUFFRTZGNzBBQzRGOUFFMDIvMkQzMzk3NUEx MjFDMTFGMThCN0U4NUU0MUMzRDhDNjcucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcxswDQYJKoZIhvcNAQELBQADggEBAMw0Gn0sw5vSGojM gpJcla4eU62Euf3NcqeuWuZz9xzruwF7n/NOdqR8aPEpoOKCvpzrylwtN7XVIMJk jRtzdWfiUJcY6XVJlFtIUYL3Cz0M9h2pMoVoUSikVMAlGnxhLpmshDWPkBQNDo9X f14n4sMZa8oEFhcwu7yTF/1vpW7qVp1xAruMXSEwfr/SZ5WIgE7YdmVuQp41eEyz LkrPQ7dfY2xJkH/k5i9W/Ey8p3CHIFuPBkV4OVlfYSgeNz0dYQUSyn4BzgbllLRV KJOhvusnddTNd7gw0lA2VXSUJivvPxnRj5Z4HIdSgA2CI29u+WRSO8w32OfEv/lA Yc+dTzA= -----END CERTIFICATE-----Generated at Mon Mar 2 01:45:35 2026 by rpki-client