$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa File: EE985C561CEA11EA8B382C0BC4F9AE02.roa (raw, json) Hash identifier: diYWHRcynFoZNmpx96scFvi/2rL0ZDdh90uxb6XZ5ZY= Subject key identifier: C3:2A:09:9E:E3:5F:9D:E5:4C:80:5E:97:EB:2D:BC:74:32:4C:0E:5D Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0C5B Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:24:47 +0000 ROA not before: Thu 24 Apr 2025 19:18:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135412 IP address blocks: 203.119.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Apr 24 19:18:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a405df-6e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:39:59:7b:79:bb:41:a2:22:18:23:1c:ed:80: cc:58:99:d2:e3:79:8b:a4:8e:47:56:0a:1d:4d:2e: 75:66:73:a2:1b:84:f4:d3:5e:19:31:60:74:7c:51: a5:90:8b:ff:6a:1c:a2:3c:43:c3:c0:5b:a3:b8:28: ea:2a:94:a4:2b:26:bd:91:36:78:df:f7:ab:57:3a: 23:cf:6d:ff:94:b8:c0:70:6b:ee:f4:d5:b3:cf:b4: 7f:ea:96:f6:4c:f6:e4:af:23:66:96:f5:81:b2:3a: ca:48:fd:1f:01:9a:41:d2:38:41:91:fa:a3:87:fe: 8c:db:3d:ff:6a:6d:c7:fd:6e:89:1c:19:4a:a1:57: 63:fb:3c:82:74:fd:0a:e9:7e:be:c8:b2:bc:20:4e: 1a:e5:0a:bb:a5:94:6e:2c:26:ff:15:59:a6:a5:98: 6d:1c:b2:1b:4f:54:e5:75:2d:ad:d7:7d:30:61:38: 5c:a6:5c:d5:ad:0a:b5:10:45:16:a7:74:2b:84:a0: c0:96:3e:64:97:13:76:88:22:bf:0f:f4:ec:78:2a: 38:44:1d:76:af:29:23:9c:af:63:bf:f6:35:24:50: 58:6a:0e:3d:67:31:c7:36:f7:63:ee:5b:9c:fa:32: b5:41:bc:20:c0:3e:09:45:40:fb:e2:0b:fa:05:d6: 0f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2A:09:9E:E3:5F:9D:E5:4C:80:5E:97:EB:2D:BC:74:32:4C:0E:5D X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/EE985C561CEA11EA8B382C0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.119.78.0/24 Signature Algorithm: sha256WithRSAEncryption 10:04:d3:45:e7:ce:c5:f5:ac:36:ac:35:b8:b1:e3:89:be:90: 09:7d:6b:16:b1:fe:dd:6b:31:a8:af:17:b6:0e:45:c4:7a:a8: e0:f6:a8:bb:12:83:d5:9e:c6:ef:10:bc:e1:fd:99:05:7c:d7: 43:2b:71:d5:b6:8f:17:10:e2:31:a3:4a:fd:bf:28:9c:53:3f: 3b:51:23:3f:2b:3a:98:7f:b7:d4:5b:85:b1:8b:78:e1:23:cc: 2a:03:ae:2c:39:55:fc:ef:5b:8a:db:92:18:2c:6e:92:63:de: fc:93:b3:c7:ea:a3:d2:8f:9e:4a:c6:71:b0:a3:7a:0a:7e:00: f5:4c:03:53:33:97:c8:d8:60:51:81:83:4b:b2:ca:e5:8e:62: 1a:8f:59:96:2e:c8:d5:49:d4:d9:51:cf:77:7e:fb:a0:33:a3: ac:b5:28:a9:e7:9a:24:77:a9:fc:0e:6e:61:a9:80:dc:20:63: 9d:e3:20:2b:91:f8:c6:96:77:be:70:8f:ab:83:fa:6d:c7:b7: c5:92:dc:f5:ad:a6:ea:3e:aa:be:4d:6c:f4:78:e3:b4:0d:e8: 99:1c:b0:84:74:d1:b5:e7:5d:4d:2e:06:9d:fb:be:30:a1:1f: cb:92:e1:9a:c5:fc:78:2d:47:4d:d0:f6:db:05:22:b8:a7:0b: 20:36:6d:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjUwNDI0MTkxODE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDVkZi02ZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDlZe3m7QaIiGCMc7YDMWJnS43mLpI5HVgodTS51ZnOiG4T0014ZMWB0fFGl kIv/ahyiPEPDwFujuCjqKpSkKya9kTZ43/erVzojz23/lLjAcGvu9NWzz7R/6pb2 TPbkryNmlvWBsjrKSP0fAZpB0jhBkfqjh/6M2z3/am3H/W6JHBlKoVdj+zyCdP0K 6X6+yLK8IE4a5Qq7pZRuLCb/FVmmpZhtHLIbT1TldS2t130wYThcplzVrQq1EEUW p3QrhKDAlj5klxN2iCK/D/TseCo4RB12rykjnK9jv/Y1JFBYag49ZzHHNvdj7luc +jK1QbwgwD4JRUD74gv6BdYPowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMMqCZ7j X53lTIBel+stvHQyTA5dMB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThEMjAvM0Y3NzAzQzIxQ0U5MTFFQTk4ODk3NDg3QzRGOUFFMDIvRUU5ODVDNTYx Q0VBMTFFQThCMzgyQzBCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy3dOMA0GCSqGSIb3DQEBCwUAA4IBAQAQBNNF587F9aw2rDW4seOJ vpAJfWsWsf7dazGorxe2DkXEeqjg9qi7EoPVnsbvELzh/ZkFfNdDK3HVto8XEOIx o0r9vyicUz87USM/KzqYf7fUW4Wxi3jhI8wqA64sOVX871uK25IYLG6SY978k7PH 6qPSj55KxnGwo3oKfgD1TANTM5fI2GBRgYNLssrljmIaj1mWLsjVSdTZUc93fvug M6OstSip55okd6n8Dm5hqYDcIGOd4yArkfjGlne+cI+rg/ptx7fFktz1rabqPqq+ TWz0eOO0DeiZHLCEdNG1511NLgad+74woR/LkuGaxfx4LUdN0PbbBSK4pwsgNm3Y -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:58 2026 by rpki-client