$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/7817D2327A5C11EDA0156D76C4F9AE02.roa File: 7817D2327A5C11EDA0156D76C4F9AE02.roa (raw, json) Hash identifier: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU= Subject key identifier: 30:69:68:B4:CF:2F:8C:2F:39:9A:2B:80:76:05:74:21:20:59:12:FE Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 027B Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/7817D2327A5C11EDA0156D76C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:11:24 +0000 ROA not before: Tue 03 Feb 2026 02:21:31 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9555 IP address blocks: 202.125.8.0/24 maxlen: 24 202.125.9.0/24 maxlen: 24 203.2.208.0/24 maxlen: 24 203.23.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Feb 3 02:21:31 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4652c-8669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:06:71:a6:ed:00:d9:c1:9e:d9:de:ca:81: 93:32:e5:ec:62:99:23:b9:ed:9b:3d:ba:7e:44:f1: 69:b3:59:a9:8f:77:96:de:8d:ea:c8:c1:46:52:74: 71:4e:06:b1:93:a4:ad:6a:dd:1f:2b:45:51:0c:94: bf:31:c8:0b:ce:20:93:90:b1:29:2c:2a:14:28:ad: a4:a5:b4:f7:fc:b6:1b:72:17:cd:1f:bc:d8:c1:fa: 24:0c:32:ca:f0:55:e1:6d:2b:bd:2d:5c:2b:70:e8: 42:85:d6:af:e5:6a:bf:b2:ff:62:df:dc:66:7b:9b: 31:b7:8d:97:5f:f8:ec:9b:e2:fb:b4:64:dc:21:d6: ba:a8:d9:51:96:20:b8:e2:e5:7f:0e:15:ee:a1:88: 0d:95:f3:52:12:96:95:21:c1:36:4f:a0:e6:dd:d4: f3:7a:81:06:f4:a4:4b:3b:d0:69:03:6d:bc:2c:fd: 27:e7:f0:df:f5:ef:33:3d:46:10:b5:5a:cb:b7:e4: d9:6c:5f:e1:ca:27:92:43:02:30:6b:05:78:ab:7c: 9e:ee:e8:b6:92:4d:07:68:f9:e7:76:38:c4:73:bc: 28:5d:b7:0c:e3:1f:74:c5:24:54:65:b5:78:7c:d4: e9:fa:e4:32:66:8b:41:2f:eb:68:c9:60:88:1b:9f: e1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:69:68:B4:CF:2F:8C:2F:39:9A:2B:80:76:05:74:21:20:59:12:FE X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/7817D2327A5C11EDA0156D76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.125.8.0/23 203.2.208.0/24 203.23.18.0/24 Signature Algorithm: sha256WithRSAEncryption d0:2a:84:ca:3f:be:cf:ec:01:50:15:5e:bc:0f:53:f2:76:3c: 41:ad:d3:2c:a6:93:ea:5a:84:b5:2c:f7:87:cc:f0:6c:6d:3e: c5:11:2a:df:ac:a2:96:02:1d:96:f2:d6:24:2d:55:cf:bb:29: a4:fb:ff:52:49:39:91:bd:3a:45:c1:ed:c7:10:4a:d7:8d:a0: b4:ee:2e:03:13:26:77:6a:f4:f3:2f:a5:d8:f9:45:9f:db:c4: 4e:9c:77:83:05:29:f6:16:ca:4d:17:00:f6:26:96:9a:0c:78: 81:84:c6:8d:fa:97:2a:61:94:72:23:a3:a1:e2:30:44:e3:dd: b5:71:9d:86:e9:be:28:a3:3f:6e:c1:3d:fe:de:44:be:fe:e5: 07:4c:68:a3:b0:8e:10:32:a7:b8:29:bd:8e:c0:2c:ae:17:8d: be:29:60:8c:dc:a3:0d:d0:c3:0d:e7:a0:01:43:d4:35:d3:86: 1b:a9:1f:1f:12:16:30:3d:19:b8:cd:a8:7e:f5:43:b9:04:25: a4:b5:99:98:7b:5e:39:d7:3d:72:f6:24:30:8c:e5:25:33:0d: 86:e3:8c:43:e8:55:cb:0e:6a:80:f6:cd:e6:66:ce:c6:2f:7b: 29:ad:0d:f0:96:b2:a9:ef:c1:09:6d:cc:7b:3b:7c:ac:e8:de: 01:a4:70:86 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwMjAzMDIyMTMxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjUyYy04NjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNgGcabtANnBntneyoGTMuXsYpkjue2bPbp+RPFps1mpj3eW3o3qyMFGUnRx Tgaxk6Stat0fK0VRDJS/McgLziCTkLEpLCoUKK2kpbT3/LYbchfNH7zYwfokDDLK 8FXhbSu9LVwrcOhChdav5Wq/sv9i39xme5sxt42XX/jsm+L7tGTcIda6qNlRliC4 4uV/DhXuoYgNlfNSEpaVIcE2T6Dm3dTzeoEG9KRLO9BpA228LP0n5/Df9e8zPUYQ tVrLt+TZbF/hyieSQwIwawV4q3ye7ui2kk0HaPnndjjEc7woXbcM4x90xSRUZbV4 fNTp+uQyZotBL+toyWCIG5/hvwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFDBpaLTP L4wvOZorgHYFdCEgWRL+MB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwQUEvMzY1QkNDRUM3QTNDMTFFRDg2MUIyOTMzQzRGOUFFMDIvNzgxN0QyMzI3 QTVDMTFFREEwMTU2RDc2QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQByn0IAwQAywLQAwQAyxcSMA0GCSqGSIb3DQEBCwUAA4IBAQDQKoTK P77P7AFQFV68D1PydjxBrdMsppPqWoS1LPeHzPBsbT7FESrfrKKWAh2W8tYkLVXP uymk+/9SSTmRvTpFwe3HEErXjaC07i4DEyZ3avTzL6XY+UWf28ROnHeDBSn2FspN FwD2JpaaDHiBhMaN+pcqYZRyI6Oh4jBE4921cZ2G6b4ooz9uwT3+3kS+/uUHTGij sI4QMqe4Kb2OwCyuF42+KWCM3KMN0MMN56ABQ9Q104YbqR8fEhYwPRm4zah+9UO5 BCWktZmYe1451z1y9iQwjOUlMw2G44xD6FXLDmqA9s3mZs7GL3sprQ3wlrKp78EJ bcx7O3ys6N4BpHCG -----END CERTIFICATE-----Generated at Mon Mar 2 05:58:48 2026 by rpki-client