$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/CECE54DE1BC611ECAE421168C4F9AE02.roa File: CECE54DE1BC611ECAE421168C4F9AE02.roa (raw, json) Hash identifier: tIuCeWt8loP5ZmBWFAM7052UGdSqIBcg6mUyDDDPLo0= Subject key identifier: 25:E0:73:CF:05:B8:D0:35:63:E4:06:5A:15:59:26:44:D2:2A:8E:2B Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3150 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/CECE54DE1BC611ECAE421168C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:54:21 +0000 ROA not before: Sat 21 Feb 2026 20:34:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4755 IP address blocks: 180.87.142.0/24 maxlen: 24 2405:2000:d01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12624 (0x3150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Feb 21 20:34:01 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a47d4d-f911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a4:b5:7e:a7:3e:a4:86:21:8c:7f:7d:1e:73: 59:24:43:95:d6:04:26:d7:b2:13:4b:83:0a:70:d1: 8e:1e:22:53:77:f3:03:fa:50:d9:45:1b:37:cb:3d: 39:cc:e1:97:cd:57:56:a0:25:50:ec:05:22:fe:6b: 1c:ff:19:fa:8d:6c:4a:1a:4e:e3:7b:a3:60:17:42: b3:48:11:a9:51:bc:05:ac:d9:ca:9a:14:22:0b:32: 5a:a1:bb:b2:22:25:02:70:9f:e0:f9:76:82:fa:18: 32:0a:01:ad:4f:ce:f4:b1:4a:e4:1c:a8:1a:1e:43: e3:6e:52:8e:d5:b3:de:8c:dc:22:ab:35:34:02:ea: 74:4f:40:19:c1:60:df:3a:e4:58:8a:fe:96:58:aa: 8a:93:5d:66:0b:b4:f1:6d:70:ba:14:d0:7b:bc:92: f2:27:09:4a:8b:a2:98:ab:61:d4:ab:a9:ac:d4:5a: 52:c2:60:e6:f3:08:ce:3e:62:2d:1d:6e:07:4c:b4: cf:11:e1:f7:b3:0d:ae:c7:01:94:fd:78:a9:50:c8: ea:4b:7d:64:1a:19:7d:b7:92:dc:b1:5d:bd:7f:4e: e0:07:90:35:46:c4:0b:e6:f8:90:14:0a:73:43:fb: bf:99:43:98:24:de:3e:7b:1e:38:59:e0:46:73:a7: f9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E0:73:CF:05:B8:D0:35:63:E4:06:5A:15:59:26:44:D2:2A:8E:2B X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/CECE54DE1BC611ECAE421168C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 180.87.142.0/24 IPv6: 2405:2000:d01::/48 Signature Algorithm: sha256WithRSAEncryption 12:7f:63:d1:20:6c:b8:cb:ec:c7:e5:68:a6:69:e3:e3:27:23: 4e:cb:34:3e:20:bd:4e:89:ef:b6:8a:ee:06:d5:6a:55:25:14: d2:9a:5f:78:9f:41:4c:02:90:bc:1b:78:26:2f:11:c8:d4:3f: 21:cb:23:de:66:4f:a5:9e:29:52:b5:18:3b:a3:43:e1:16:48: 8d:6e:ea:45:28:f5:47:b7:8e:56:1e:a4:76:90:d9:70:e0:c7: 21:bf:21:35:6b:9a:2b:43:94:50:97:13:13:a4:e2:30:0e:05: 8b:ec:8d:ef:0d:f5:b0:e3:a1:e7:d3:b7:b7:fb:f3:75:1b:3b: 1d:75:44:83:ea:c7:05:6e:33:0a:cf:31:0b:de:c9:a1:c5:c8: 51:74:6c:1d:0f:98:79:b3:6d:36:5c:de:b7:99:d5:95:5e:d4: 1a:fe:2c:79:d8:15:71:79:9a:cc:3e:fe:6b:88:01:07:d3:99: d7:31:1e:53:02:cc:2b:72:1b:31:07:78:f3:4c:0d:9a:9e:3d: c0:55:72:24:55:c1:27:e7:58:e7:fa:06:25:7b:d0:e5:45:5d: 88:34:db:cb:0b:52:b6:20:89:04:10:5b:e9:3f:4b:56:b4:e5: 68:d6:8f:2f:e8:ed:cf:42:e3:78:83:b3:a5:a1:ee:74:79:21: 4a:50:de:87 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICMVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjYwMjIxMjAzNDAxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Q0ZC1mOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKS1fqc+pIYhjH99HnNZJEOV1gQm17ITS4MKcNGOHiJTd/MD+lDZRRs3yz05 zOGXzVdWoCVQ7AUi/msc/xn6jWxKGk7je6NgF0KzSBGpUbwFrNnKmhQiCzJaobuy IiUCcJ/g+XaC+hgyCgGtT870sUrkHKgaHkPjblKO1bPejNwiqzU0Aup0T0AZwWDf OuRYiv6WWKqKk11mC7TxbXC6FNB7vJLyJwlKi6KYq2HUq6ms1FpSwmDm8wjOPmIt HW4HTLTPEeH3sw2uxwGU/XipUMjqS31kGhl9t5LcsV29f07gB5A1RsQL5viQFApz Q/u/mUOYJN4+ex44WeBGc6f5CwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCXgc88F uNA1Y+QGWhVZJkTSKo4rMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvQ0VDRTU0REUx QkM2MTFFQ0FFNDIxMTY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAtFeOMA8EAgACMAkDBwAkBSAADQEwDQYJKoZIhvcNAQELBQADggEB ABJ/Y9EgbLjL7MflaKZp4+MnI07LND4gvU6J77aK7gbValUlFNKaX3ifQUwCkLwb eCYvEcjUPyHLI95mT6WeKVK1GDujQ+EWSI1u6kUo9Ue3jlYepHaQ2XDgxyG/ITVr mitDlFCXExOk4jAOBYvsje8N9bDjoefTt7f783UbOx11RIPqxwVuMwrPMQveyaHF yFF0bB0PmHmzbTZc3reZ1ZVe1Br+LHnYFXF5msw+/muIAQfTmdcxHlMCzCtyGzEH ePNMDZqePcBVciRVwSfnWOf6BiV70OVFXYg028sLUrYgiQQQW+k/S1a05WjWjy/o 7c9C43iDs6Wh7nR5IUpQ3oc= -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:10 2026 by rpki-client