$ rpki-client -vvf rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa File: 3BD3D78AD17B11EF8626DB84C4F9AE02.roa (raw, json) Hash identifier: xtUD4kX8wiwHjf7rbPAI7RcOfukxUOvAvuX9YW6zjQs= Subject key identifier: DA:5D:A0:2F:2E:02:12:DF:9D:E2:02:F5:79:07:1F:20:DE:C1:0A:E4 Certificate issuer: /CN=A9183798/serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Certificate serial: 10BD Authority key identifier: 3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:37:20 +0000 ROA not before: Thu 24 Apr 2025 17:46:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137875 IP address blocks: 203.159.78.0/24 maxlen: 24 2405:3340:e128::/48 maxlen: 48 2405:3340:e129::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4285 (0x10bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183798, serialNumber=3A02EFF7CC9C8BAA12D7C852B6FFC69FB060989B Validity Not Before: Apr 24 17:46:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a44f1f-235a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7c:93:c6:33:5c:c4:84:a4:1e:4f:12:c9:21: 10:45:a7:a5:55:fb:61:55:71:18:a7:83:99:df:d5: 02:c7:40:b3:5a:65:fe:4b:38:9c:49:74:f0:68:e8: 3b:93:e5:69:fd:d6:0f:fa:fd:90:1d:1d:b1:3e:24: a8:d1:25:62:67:0c:73:f7:0f:15:a1:f6:54:76:5f: 0b:ba:41:3c:11:05:6e:d7:1d:6e:ae:e1:48:39:0f: f7:ee:82:8a:ff:53:b9:39:10:fa:06:32:cb:5f:10: c2:1d:2e:fd:17:f1:0a:de:ef:9f:39:99:85:85:a6: e0:98:75:5b:cf:d1:7d:4c:0a:af:ce:f2:3c:d8:48: b1:a2:50:c3:52:d1:c3:d0:d5:b9:95:2d:3d:28:ee: 3e:d0:d6:51:e3:a5:31:ec:c4:2b:b2:98:2c:70:1d: e2:74:9e:c4:cb:c8:8c:2d:62:ba:ce:c1:4a:05:4c: fa:8d:d2:b0:65:8c:be:d2:7f:c3:fa:a4:98:4e:22: 15:43:84:ea:07:85:f7:d6:0a:50:7c:24:6b:20:5e: c3:fb:df:5c:0e:45:2f:f0:b6:a1:c1:34:e1:7e:6b: 67:c2:98:bf:29:78:ed:77:ff:f4:60:a2:97:5c:1d: 16:16:6b:d8:dc:d2:40:73:6c:31:73:4a:6b:99:48: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5D:A0:2F:2E:02:12:DF:9D:E2:02:F5:79:07:1F:20:DE:C1:0A:E4 X509v3 Authority Key Identifier: keyid:3A:02:EF:F7:CC:9C:8B:AA:12:D7:C8:52:B6:FF:C6:9F:B0:60:98:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/OgLv98yci6oS18hStv_Gn7BgmJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OgLv98yci6oS18hStv_Gn7BgmJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183798/9017B50A4A2711E9ACF17C26C4F9AE02/3BD3D78AD17B11EF8626DB84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.159.78.0/24 IPv6: 2405:3340:e128::/47 Signature Algorithm: sha256WithRSAEncryption 94:5b:c7:48:cb:2c:54:1b:1c:b1:5f:97:ac:18:ee:1c:5e:07: af:49:df:66:0e:b5:d0:5e:f8:e5:2e:a1:24:07:17:dc:b6:06: 9d:87:44:07:a8:26:92:ac:5e:56:c4:c5:51:af:98:fb:54:78: c8:d9:13:be:b0:6e:cb:3b:3b:fb:a0:88:c7:9e:67:e5:85:4d: 4a:63:7b:57:a6:9c:cc:bd:8d:a0:7b:e0:2d:9c:df:ad:f0:c3: 71:8b:87:2e:c7:64:cd:c3:20:ae:21:a0:1c:60:34:b8:d1:9c: 84:54:4f:d8:9b:8d:fa:27:c2:e6:02:27:71:0c:e0:49:e2:07: 43:6e:dd:5b:a3:38:a0:fb:a6:56:c2:3a:2a:3a:4e:1f:ef:24: 4c:96:09:da:f2:14:29:16:a6:55:e5:3f:e1:61:1f:b7:cc:ab: 88:8c:28:0d:7f:b0:a9:35:e9:07:05:bf:6f:06:af:11:96:69: 70:85:09:26:3f:46:81:4a:c5:86:12:58:01:d3:c9:d3:47:6f: ef:fa:d4:f9:e9:2a:4c:3a:af:44:d2:e7:31:9a:4c:0b:77:9c: e5:50:24:5d:de:dd:8e:38:ea:e2:f4:9c:9f:22:2d:22:fb:95: 50:23:5f:8c:75:37:cf:a4:20:67:50:fb:72:d5:17:f3:6b:d7: db:17:83:5e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICEL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OTgxMTAvBgNVBAUTKDNBMDJFRkY3Q0M5QzhCQUExMkQ3Qzg1MkI2RkZDNjlG QjA2MDk4OUIwHhcNMjUwNDI0MTc0NjEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGYxZi0yMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HyTxjNcxISkHk8SySEQRaelVfthVXEYp4OZ39UCx0CzWmX+SzicSXTwaOg7 k+Vp/dYP+v2QHR2xPiSo0SViZwxz9w8VofZUdl8LukE8EQVu1x1uruFIOQ/37oKK /1O5ORD6BjLLXxDCHS79F/EK3u+fOZmFhabgmHVbz9F9TAqvzvI82EixolDDUtHD 0NW5lS09KO4+0NZR46Ux7MQrspgscB3idJ7Ey8iMLWK6zsFKBUz6jdKwZYy+0n/D +qSYTiIVQ4TqB4X31gpQfCRrIF7D+99cDkUv8LahwTThfmtnwpi/KXjtd//0YKKX XB0WFmvY3NJAc2wxc0prmUiNCwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNpdoC8u AhLfneIC9XkHHyDewQrkMB8GA1UdIwQYMBaAFDoC7/fMnIuqEtfIUrb/xp+wYJib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5OC85MDE3QjUwQTRB MjcxMUU5QUNGMTdDMjZDNEY5QUUwMi9PZ0x2OTh5Y2k2b1MxOGhTdHZfR243Qmdt SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09nTHY5OHljaTZvUzE4aFN0dl9HbjdCZ21Kcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM3OTgvOTAxN0I1MEE0QTI3MTFFOUFDRjE3QzI2QzRGOUFFMDIvM0JEM0Q3OEFE MTdCMTFFRjg2MjZEQjg0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAy59OMA8EAgACMAkDBwEkBTNA4SgwDQYJKoZIhvcNAQELBQADggEB AJRbx0jLLFQbHLFfl6wY7hxeB69J32YOtdBe+OUuoSQHF9y2Bp2HRAeoJpKsXlbE xVGvmPtUeMjZE76wbss7O/ugiMeeZ+WFTUpje1emnMy9jaB74C2c363ww3GLhy7H ZM3DIK4hoBxgNLjRnIRUT9ibjfonwuYCJ3EM4EniB0Nu3VujOKD7plbCOio6Th/v JEyWCdryFCkWplXlP+FhH7fMq4iMKA1/sKk16QcFv28GrxGWaXCFCSY/RoFKxYYS WAHTydNHb+/61PnpKkw6r0TS5zGaTAt3nOVQJF3e3Y446uL0nJ8iLSL7lVAjX4x1 N8+kIGdQ+3LVF/Nr19sXg14= -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:56 2026 by rpki-client