$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa File: 495324CA39CB11EBB2F08020C4F9AE02.roa (raw, json) Hash identifier: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY= Subject key identifier: 2E:4E:E8:15:A1:3D:F1:66:B8:03:8C:1B:7F:A9:3A:E1:8B:28:1A:A0 Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B39 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:30:55 +0000 ROA not before: Wed 30 Apr 2025 19:29:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55720 IP address blocks: 203.25.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2873 (0xb39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:29:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a469bf-cd90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:65:72:48:7b:32:5b:bd:3a:a0:78:29:7d:cd: 30:c3:ad:82:32:aa:45:fb:9e:87:16:6b:aa:7a:5d: c0:b1:93:d0:a2:01:90:51:1e:3f:56:62:25:5d:7f: 65:9b:76:ad:1a:f2:f6:e7:18:95:d9:d8:68:35:5f: 53:5d:b6:f2:7b:8f:9b:06:43:a4:d6:00:c8:c6:85: dd:14:93:52:70:ce:8f:c7:41:03:fd:61:0d:be:e9: b0:12:21:31:66:7c:fa:8a:f1:95:0e:66:3f:10:a9: 71:80:37:bd:4c:4e:be:ba:18:24:c5:97:73:4d:89: 10:9e:7d:97:fc:4c:cd:80:92:4f:76:36:dd:45:b0: 86:a6:52:48:94:ee:23:8b:17:ec:ec:4b:75:c0:5d: 4e:47:7d:e2:00:eb:0a:fe:5a:89:68:24:87:09:32: 9d:dd:bd:54:12:86:79:7e:7d:e4:bd:82:e1:61:7b: 2b:ca:5b:70:25:ee:ad:55:fd:66:08:e9:d3:15:7d: 8a:da:9c:bb:84:3c:ac:16:5b:4d:de:de:73:e1:1e: 94:30:7f:b3:ef:e3:e8:cc:ea:34:1f:ee:e0:bc:ea: 2c:25:81:1e:e3:e4:f2:ea:57:48:2e:65:02:07:cc: ee:34:97:fc:4e:9a:00:02:dc:2a:14:36:38:48:d2: 41:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4E:E8:15:A1:3D:F1:66:B8:03:8C:1B:7F:A9:3A:E1:8B:28:1A:A0 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.25.119.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:72:4b:e0:ed:7b:49:7b:11:6b:93:d9:2f:50:dc:bb:10:30: b0:5a:00:ca:f7:09:b9:6b:dd:02:2a:87:af:d7:30:9b:63:b4: 9b:08:b5:a5:27:fe:17:38:65:e2:22:f0:4b:19:c5:ee:ca:b4: 3c:2a:b4:29:4d:f3:00:6f:28:66:bf:1b:c3:44:f6:b9:d5:dc: 34:5a:c6:9d:38:e6:ac:80:b4:ff:5a:28:7d:78:99:cc:11:ba: 2e:4c:1e:e2:4e:57:84:82:32:56:8d:a1:2c:41:d0:64:ef:11: 70:bc:2a:09:a9:c8:c4:11:80:bb:ca:8f:e1:0f:b3:5d:00:1d: f4:79:6c:d9:e4:7b:f1:67:70:b1:48:1a:5d:0f:b2:00:a0:6f: e8:65:78:9a:83:20:9d:98:16:b3:13:5d:8e:a0:3d:82:45:65: d8:b6:63:62:d1:17:ac:ea:cd:9a:ea:6d:49:1c:42:4e:79:68: 68:c0:25:35:7c:87:32:8d:56:77:f9:b9:82:59:79:b4:d7:1b: 23:83:27:1d:cc:2f:20:fc:15:b9:22:ef:cf:90:25:2a:58:72: 13:23:a1:bd:45:3b:30:59:e5:07:81:48:2f:09:c5:8e:cc:4c: dc:36:5d:1e:e6:d2:f7:cc:3a:06:53:17:aa:7e:75:8a:f4:5e: ac:9e:8f:02 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNDMwMTkyOTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjliZi1jZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj2VySHsyW706oHgpfc0ww62CMqpF+56HFmuqel3AsZPQogGQUR4/VmIlXX9l m3atGvL25xiV2dhoNV9TXbbye4+bBkOk1gDIxoXdFJNScM6Px0ED/WENvumwEiEx Znz6ivGVDmY/EKlxgDe9TE6+uhgkxZdzTYkQnn2X/EzNgJJPdjbdRbCGplJIlO4j ixfs7Et1wF1OR33iAOsK/lqJaCSHCTKd3b1UEoZ5fn3kvYLhYXsryltwJe6tVf1m COnTFX2K2py7hDysFltN3t5z4R6UMH+z7+PozOo0H+7gvOosJYEe4+Ty6ldILmUC B8zuNJf8TpoAAtwqFDY4SNJBmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC5O6BWh PfFmuAOMG3+pOuGLKBqgMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvNDk1MzI0Q0Ez OUNCMTFFQkIyRjA4MDIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxl3MA0GCSqGSIb3DQEBCwUAA4IBAQCdckvg7XtJexFrk9kvUNy7 EDCwWgDK9wm5a90CKoev1zCbY7SbCLWlJ/4XOGXiIvBLGcXuyrQ8KrQpTfMAbyhm vxvDRPa51dw0WsadOOasgLT/Wih9eJnMEbouTB7iTleEgjJWjaEsQdBk7xFwvCoJ qcjEEYC7yo/hD7NdAB30eWzZ5HvxZ3CxSBpdD7IAoG/oZXiagyCdmBazE12OoD2C RWXYtmNi0Res6s2a6m1JHEJOeWhowCU1fIcyjVZ3+bmCWXm01xsjgycdzC8g/BW5 Iu/PkCUqWHITI6G9RTswWeUHgUgvCcWOzEzcNl0e5tL3zDoGUxeqfnWK9F6sno8C -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:44 2026 by rpki-client