$ rpki-client -vvf rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa File: AE2B714A72E911EEA3EFD34AC4F9AE02.roa (raw, json) Hash identifier: wmsK2Lecc9Keo0HYXGV1+xMm34n8Wt34+xyKgFv4k4o= Subject key identifier: 60:DC:B8:AC:04:C0:14:C3:7C:F6:07:F5:41:A1:A3:C7:F2:C0:AF:98 Certificate issuer: /CN=A9197227/serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Certificate serial: 0733 Authority key identifier: 26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:43:28 +0000 ROA not before: Fri 06 Jun 2025 22:32:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17635 IP address blocks: 203.14.105.0/24 maxlen: 24 203.57.128.0/20 maxlen: 24 2406:9680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197227, serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Validity Not Before: Jun 6 22:32:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40a40-d418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:7d:89:27:5b:63:43:ff:36:46:af:43:ab: dd:39:4a:98:fa:c4:e7:04:59:bf:f3:05:cf:45:8a: 70:d8:7f:da:e5:d9:c4:e2:40:8e:04:c6:fc:90:96: b4:dc:9f:ce:49:66:0a:18:86:37:c2:d6:cd:08:0d: 93:d0:fe:76:a6:0c:63:81:68:00:fc:f2:7a:cf:b8: 1d:4d:4a:0e:31:38:83:32:37:79:11:21:5f:1f:20: 51:5d:91:01:43:e1:46:5f:d1:18:24:73:b8:d4:72: d7:5b:f4:cc:1a:27:2b:85:12:61:8a:48:24:e2:c8: de:60:52:61:5a:b5:5a:63:34:03:ff:06:9a:63:bd: 73:62:12:0d:3c:de:7b:6d:ba:d5:c2:94:2f:4f:cb: 63:8d:d1:1a:39:c0:09:89:5f:65:d0:76:6e:b1:ff: e2:86:54:5b:7d:9e:f1:ab:c1:57:79:4b:a4:37:79: 9c:08:12:21:31:d3:c1:be:10:ba:3f:1e:0a:c0:b0: 1a:f1:36:03:66:0f:7d:7d:f3:0d:f4:3c:a2:b9:20: c5:8e:df:f2:63:25:bd:d6:ac:89:74:87:b0:c9:61: 67:ac:b9:01:ec:73:0e:75:83:a8:02:fb:8c:e0:77: eb:34:4c:b2:45:68:40:d2:13:30:17:98:df:07:9a: 57:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:DC:B8:AC:04:C0:14:C3:7C:F6:07:F5:41:A1:A3:C7:F2:C0:AF:98 X509v3 Authority Key Identifier: keyid:26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.14.105.0/24 203.57.128.0/20 IPv6: 2406:9680::/32 Signature Algorithm: sha256WithRSAEncryption 39:44:cb:1a:71:3e:77:15:f1:0d:d1:03:97:3b:df:6c:64:a5: 4f:2f:03:a9:69:5b:7a:22:8c:ff:fa:8d:aa:8b:1d:45:e2:9b: d0:92:c2:4b:b0:17:af:ac:87:94:d4:92:b0:c3:88:5f:46:cb: 7f:eb:9e:8f:b6:e1:a4:69:6c:07:97:52:8b:f0:d5:92:62:3e: 26:33:ce:65:7b:88:b8:b9:c8:80:45:69:95:25:bf:8f:28:c0: f9:a1:b4:ab:02:a6:8c:29:66:86:67:8c:3f:b6:43:8d:84:c7: 1d:22:64:75:2f:9a:d6:2c:4a:41:3a:33:31:ce:2f:6b:fb:9c: de:28:dc:31:fb:18:80:c7:1d:92:4c:c1:95:f4:03:16:26:6a: 3e:d0:2e:2e:35:ae:6f:89:f7:a8:85:fb:04:45:cf:c9:92:57: 03:d8:11:01:ca:1a:a7:a5:fc:5d:e5:13:7b:c4:dd:52:b7:88: 2e:67:d7:b5:4a:c0:6f:7a:68:7c:a9:0d:7f:f4:6b:bd:de:62: 43:40:11:25:04:fb:7a:03:38:f4:07:30:ac:89:7d:2d:2b:b5: 13:2c:71:40:e0:b6:e4:83:37:07:b3:65:1c:74:bd:6f:96:6a: 3e:91:e2:8f:09:90:05:98:4b:cf:01:5e:ed:46:9b:8a:09:4f: 96:13:b1:76 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMjcxMTAvBgNVBAUTKDI2NTlDRUQxNTI3RDJDQUJEOEIyQzUzMDc1RUNDRDk0 RUQ3MUZFOTgwHhcNMjUwNjA2MjIzMjM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGE0MC1kNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfB9iSdbY0P/NkavQ6vdOUqY+sTnBFm/8wXPRYpw2H/a5dnE4kCOBMb8kJa0 3J/OSWYKGIY3wtbNCA2T0P52pgxjgWgA/PJ6z7gdTUoOMTiDMjd5ESFfHyBRXZEB Q+FGX9EYJHO41HLXW/TMGicrhRJhikgk4sjeYFJhWrVaYzQD/waaY71zYhINPN57 bbrVwpQvT8tjjdEaOcAJiV9l0HZusf/ihlRbfZ7xq8FXeUukN3mcCBIhMdPBvhC6 Px4KwLAa8TYDZg99ffMN9DyiuSDFjt/yYyW91qyJdIewyWFnrLkB7HMOdYOoAvuM 4HfrNEyyRWhA0hMwF5jfB5pX9QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGDcuKwE wBTDfPYH9UGho8fywK+YMB8GA1UdIwQYMBaAFCZZztFSfSyr2LLFMHXszZTtcf6Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIyNy80RkNGNTY4RTdC MDcxMUVCOUFGODQzODRDNEY5QUUwMi9KbG5PMFZKOUxLdllzc1V3ZGV6TmxPMXhf cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0psbk8wVko5TEt2WXNzVXdkZXpObE8xeF9wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyMjcvNEZDRjU2OEU3QjA3MTFFQjlBRjg0Mzg0QzRGOUFFMDIvQUUyQjcxNEE3 MkU5MTFFRUEzRUZEMzRBQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAyw5pAwQEyzmAMA0EAgACMAcDBQAkBpaAMA0GCSqGSIb3DQEBCwUA A4IBAQA5RMsacT53FfEN0QOXO99sZKVPLwOpaVt6Ioz/+o2qix1F4pvQksJLsBev rIeU1JKww4hfRst/656PtuGkaWwHl1KL8NWSYj4mM85le4i4uciARWmVJb+PKMD5 obSrAqaMKWaGZ4w/tkONhMcdImR1L5rWLEpBOjMxzi9r+5zeKNwx+xiAxx2STMGV 9AMWJmo+0C4uNa5vifeohfsERc/JklcD2BEByhqnpfxd5RN7xN1St4guZ9e1SsBv emh8qQ1/9Gu93mJDQBElBPt6Azj0BzCsiX0tK7UTLHFA4LbkgzcHs2UcdL1vlmo+ keKPCZAFmEvPAV7tRpuKCU+WE7F2 -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:30 2026 by rpki-client