$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa File: 23CDAE44F89B11EFA0888D74C4F9AE02.roa (raw, json) Hash identifier: tazQVZXkAFkDAuLygNbIRhAUk4EIl5TN/X+HKanbw0o= Subject key identifier: 2D:E2:F6:48:6D:94:48:4C:CE:EF:8F:8F:1B:1C:5B:90:78:82:48:D3 Certificate issuer: /CN=A9178EB0/serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Certificate serial: 08DB Authority key identifier: AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:24 +0000 ROA not before: Tue 18 Nov 2025 20:11:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 963 IP address blocks: 112.121.184.0/22 maxlen: 24 180.178.32.0/20 maxlen: 24 180.178.48.0/21 maxlen: 24 180.178.56.0/22 maxlen: 24 180.178.60.0/22 maxlen: 24 182.16.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2267 (0x8db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0, serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Validity Not Before: Nov 18 20:11:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46a54-de14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ea:64:49:a2:8a:9e:d5:54:98:ad:fd:75:2f: 14:94:ce:1b:e6:55:78:ab:20:4f:7d:18:71:14:91: ec:80:87:8e:67:ef:fe:ec:d9:05:71:f2:70:d9:8c: c6:9f:e1:30:82:5e:54:e5:21:9e:ad:c8:7d:b0:10: 19:0b:48:02:9e:5a:18:68:a1:37:2f:17:fa:b7:67: 9c:ef:62:1f:7c:12:df:62:c5:e4:ff:dd:8b:5f:44: ac:ac:4d:44:8a:6b:38:2f:a6:75:d5:a8:bd:0a:76: 4c:90:1d:8f:0e:95:41:c1:d9:d5:f5:7c:2a:19:3c: cf:a9:35:0d:7d:6a:30:02:cc:28:bc:67:00:96:68: 91:f8:1e:68:cf:2c:ac:72:21:8e:29:3e:d1:04:00: 36:ab:9b:97:b9:12:19:9a:cc:2e:f4:7b:8d:f7:f7: d8:6b:15:68:80:70:98:d2:a2:75:0b:24:a5:ae:c8: 4d:41:78:e6:5d:1b:4b:77:a5:10:d8:e2:75:8e:dd: 35:38:37:ed:24:f1:00:e8:c7:a9:58:9d:17:36:17: f6:3d:e5:d6:6e:58:47:67:9c:26:fb:02:bc:21:42: c9:d4:f0:1b:28:2d:42:f9:a6:4f:7c:a3:94:b3:8c: 88:cd:b7:0b:94:fe:a3:5e:06:b6:8b:32:3a:1d:13: 4e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E2:F6:48:6D:94:48:4C:CE:EF:8F:8F:1B:1C:5B:90:78:82:48:D3 X509v3 Authority Key Identifier: keyid:AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/23CDAE44F89B11EFA0888D74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 112.121.184.0/22 180.178.32.0/19 182.16.0.0/17 Signature Algorithm: sha256WithRSAEncryption 17:6b:d3:02:17:23:c7:22:10:35:37:3f:1f:03:7b:7a:f8:a5: de:7b:d8:d0:46:b5:43:77:c4:23:8e:57:19:11:e1:bb:60:e8: c7:ed:a0:42:06:b9:1c:72:1f:2a:94:37:da:05:a5:59:e8:85: 5d:95:53:04:b6:e9:e2:7b:09:8d:90:12:0c:2f:c4:91:ab:d2: 5b:2c:c6:cc:4d:2d:80:83:6c:c0:f8:52:f4:43:f5:28:23:08: 6e:6b:21:93:3d:79:d9:a5:aa:09:b2:c7:72:c6:aa:7c:7e:69: 34:04:e7:41:52:a8:cf:00:78:b7:76:f1:4e:25:86:85:3a:d3: 64:75:e5:c5:21:bd:a2:4c:40:68:5f:a2:3a:33:93:9e:d7:4d: 31:aa:7c:48:a5:96:f4:65:c7:f5:ef:24:5f:1c:cf:a8:97:b7: 59:c4:45:c9:a6:25:92:30:0f:f2:71:e9:4c:55:21:32:03:af: 34:40:18:2a:c7:7a:80:1e:ef:b8:44:77:a8:b3:ec:67:48:ed: d4:e2:69:b9:3d:d4:19:69:12:96:ef:4e:7e:7d:8a:83:80:a2: 1e:f4:83:a3:81:91:82:5d:47:29:31:c2:b7:75:19:7f:fe:d2: e7:ce:c7:a3:dd:c6:a1:7d:3c:25:c2:f5:1c:2e:6c:70:25:37: b7:d0:da:ea -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEFBQTYyREI0N0YwMTJCMjZERDg2OThFMkNDMzVERThG Mjk0Mzc3NjEwHhcNMjUxMTE4MjAxMTE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE1NC1kZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkOpkSaKKntVUmK39dS8UlM4b5lV4qyBPfRhxFJHsgIeOZ+/+7NkFcfJw2YzG n+Ewgl5U5SGerch9sBAZC0gCnloYaKE3Lxf6t2ec72IffBLfYsXk/92LX0SsrE1E ims4L6Z11ai9CnZMkB2PDpVBwdnV9XwqGTzPqTUNfWowAswovGcAlmiR+B5ozyys ciGOKT7RBAA2q5uXuRIZmswu9HuN9/fYaxVogHCY0qJ1CySlrshNQXjmXRtLd6UQ 2OJ1jt01ODftJPEA6MepWJ0XNhf2PeXWblhHZ5wm+wK8IULJ1PAbKC1C+aZPfKOU s4yIzbcLlP6jXga2izI6HRNOTwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFC3i9kht lEhMzu+PjxscW5B4gkjTMB8GA1UdIwQYMBaAFKqmLbR/ASsm3YaY4sw13o8pQ3dh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC82NUQxREIyQ0RB RUExMUVBOTU4RUIzNUJDNEY5QUUwMi9xcVl0dEg4Qkt5YmRocGppekRYZWp5bERk MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxWXR0SDhCS3liZGhwaml6RFhlanlsRGQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQjAvNjVEMURCMkNEQUVBMTFFQTk1OEVCMzVCQzRGOUFFMDIvMjNDREFFNDRG ODlCMTFFRkEwODg4RDc0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCcHm4AwQFtLIgAwQHthAAMA0GCSqGSIb3DQEBCwUAA4IBAQAXa9MC FyPHIhA1Nz8fA3t6+KXee9jQRrVDd8QjjlcZEeG7YOjH7aBCBrkcch8qlDfaBaVZ 6IVdlVMEtuniewmNkBIML8SRq9JbLMbMTS2Ag2zA+FL0Q/UoIwhuayGTPXnZpaoJ ssdyxqp8fmk0BOdBUqjPAHi3dvFOJYaFOtNkdeXFIb2iTEBoX6I6M5Oe100xqnxI pZb0Zcf17yRfHM+ol7dZxEXJpiWSMA/ycelMVSEyA680QBgqx3qAHu+4RHeos+xn SO3U4mm5PdQZaRKW705+fYqDgKIe9IOjgZGCXUcpMcK3dRl//tLnzsej3cahfTwl wvUcLmxwJTe30Nrq -----END CERTIFICATE-----Generated at Mon Mar 2 07:24:50 2026 by rpki-client