$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa File: 5A87E8B01A7E11EAB32DB717C4F9AE02.roa (raw, json) Hash identifier: +jrxliFD2F3/NuGnRrvWmXHnhdDO/wDeL9EWKeJSvxI= Subject key identifier: 25:ED:1F:38:F1:16:DD:BE:72:CE:33:8A:0E:49:2D:F1:E5:A1:E8:DF Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A5C Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:22:20 +0000 ROA not before: Fri 16 Jan 2026 16:13:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24206 IP address blocks: 110.44.168.0/22 maxlen: 22 110.44.168.0/23 maxlen: 23 110.44.168.0/24 maxlen: 24 110.44.169.0/24 maxlen: 24 110.44.170.0/23 maxlen: 23 110.44.170.0/24 maxlen: 24 110.44.171.0/24 maxlen: 24 110.44.173.0/24 maxlen: 24 110.44.174.0/24 maxlen: 24 203.84.136.0/21 maxlen: 21 203.84.136.0/22 maxlen: 22 203.84.136.0/23 maxlen: 23 203.84.136.0/24 maxlen: 24 203.84.137.0/24 maxlen: 24 203.84.138.0/23 maxlen: 23 203.84.138.0/24 maxlen: 24 203.84.139.0/24 maxlen: 24 203.84.140.0/22 maxlen: 22 203.84.140.0/23 maxlen: 23 203.84.140.0/24 maxlen: 24 203.84.141.0/24 maxlen: 24 203.84.142.0/23 maxlen: 23 203.84.142.0/24 maxlen: 24 203.84.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14940 (0x3a5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:13:26 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4ae0b-3001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ce:14:dc:3e:ed:56:4a:42:3c:36:ea:76:54: 5b:aa:92:02:cc:13:e2:2c:f3:0b:87:39:8c:f6:b4: bb:5d:7d:3a:28:67:f4:d6:c1:f6:59:0b:b5:08:d6: c0:4e:16:21:b8:76:1a:cd:93:b7:6c:63:b4:d3:c2: 25:02:4e:fa:00:2b:c5:22:ab:9c:9e:c1:e7:6c:43: db:6c:da:b7:f1:72:74:cc:f6:d7:5a:bd:7d:fc:f5: 43:d5:33:eb:f3:5d:45:2a:d7:d0:72:4a:52:56:4a: ce:92:1f:d5:d6:fb:6e:82:c7:ee:3c:30:be:cf:dc: 10:60:8b:b9:c5:be:e1:aa:e0:06:e9:be:5f:02:07: 4c:bc:ca:43:a5:c2:01:5e:ba:a2:95:0c:0e:7c:a7: c0:88:1e:ec:3a:73:a7:1b:88:fb:b4:1a:7d:4e:9b: 4e:98:00:de:66:d5:df:1c:f6:a2:c3:21:61:42:0c: 3d:13:18:d2:a0:83:0d:0b:0f:b9:73:a9:f5:bb:d9: 81:ae:c3:f8:1f:9d:cf:0a:b7:fb:06:a1:23:2d:a7: ad:51:95:46:5f:96:0a:38:1a:65:18:59:2e:b5:d2: d9:d3:36:f2:fa:49:3f:4e:25:2d:4f:d7:28:0a:eb: c5:80:be:4a:c8:da:25:af:1b:80:52:32:19:23:c6: 06:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:ED:1F:38:F1:16:DD:BE:72:CE:33:8A:0E:49:2D:F1:E5:A1:E8:DF X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5A87E8B01A7E11EAB32DB717C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.44.168.0/22 110.44.173.0-110.44.174.255 203.84.136.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:20:88:7f:32:4c:89:f4:65:a2:85:28:24:95:1a:01:83:62: 55:f8:e7:59:09:76:f3:ba:e5:d4:78:5d:c4:79:d9:f0:65:a5: 41:3e:7f:78:5a:b9:ea:90:3f:f7:af:1f:00:3a:dd:4d:c0:8b: 04:c6:c8:f9:06:ce:b0:50:bc:86:89:b4:63:7d:73:1b:db:2a: 8c:ec:1a:87:f8:46:ea:f9:f7:89:c2:18:b6:c6:e0:10:53:f6: c4:70:7c:e8:df:13:22:fb:22:e5:ee:92:b9:89:3a:35:f5:65: 59:76:94:a6:82:77:a1:9f:3b:79:bb:da:d1:b3:bf:b2:76:64: e7:2d:05:b4:85:ae:81:3d:71:4f:c6:d5:35:f1:bb:ab:43:18: 10:b7:75:ab:3d:36:52:61:00:b1:af:fb:41:98:24:c8:05:0a: 24:22:ed:c7:59:7b:61:3e:62:00:f2:f3:50:f2:b3:40:08:8d: 94:ad:01:96:be:c6:8f:72:82:8b:3c:f8:cf:98:0a:57:34:b1: 11:5d:52:9b:96:83:76:a6:b2:c5:ea:c3:d3:d5:6c:23:04:48: ca:72:b7:09:0b:61:71:8a:4c:5a:c1:2f:8a:f6:61:8e:52:f3: 1d:81:a0:d0:e9:df:db:b8:0d:1f:a6:19:43:2e:3e:bc:97:19: bc:ba:3a:76 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICOlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMzI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWUwYi0zMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5s4U3D7tVkpCPDbqdlRbqpICzBPiLPMLhzmM9rS7XX06KGf01sH2WQu1CNbA ThYhuHYazZO3bGO008IlAk76ACvFIqucnsHnbEPbbNq38XJ0zPbXWr19/PVD1TPr 811FKtfQckpSVkrOkh/V1vtugsfuPDC+z9wQYIu5xb7hquAG6b5fAgdMvMpDpcIB XrqilQwOfKfAiB7sOnOnG4j7tBp9TptOmADeZtXfHPaiwyFhQgw9ExjSoIMNCw+5 c6n1u9mBrsP4H53PCrf7BqEjLaetUZVGX5YKOBplGFkutdLZ0zby+kk/TiUtT9co CuvFgL5KyNolrxuAUjIZI8YGfQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFCXtHzjx Ft2+cs4zig5JLfHloejfMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNUE4N0U4QjAx QTdFMTFFQUIzMkRCNzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCbiyoMAwDBABuLK0DBABuLK4DBAPLVIgwDQYJKoZIhvcNAQELBQAD ggEBAHogiH8yTIn0ZaKFKCSVGgGDYlX451kJdvO65dR4XcR52fBlpUE+f3haueqQ P/evHwA63U3AiwTGyPkGzrBQvIaJtGN9cxvbKozsGof4Rur594nCGLbG4BBT9sRw fOjfEyL7IuXukrmJOjX1ZVl2lKaCd6GfO3m72tGzv7J2ZOctBbSFroE9cU/G1TXx u6tDGBC3das9NlJhALGv+0GYJMgFCiQi7cdZe2E+YgDy81Dys0AIjZStAZa+xo9y gos8+M+YClc0sRFdUpuWg3amssXqw9PVbCMESMpytwkLYXGKTFrBL4r2YY5S8x2B oNDp39u4DR+mGUMuPryXGby6OnY= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:07 2026 by rpki-client