$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/2B2C31BE3B8B11EB8D76362DC4F9AE02.roa File: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (raw, json) Hash identifier: JhBlCdse37bUv/gVZipzEykF5bWTjoKirJc9dxySSLI= Subject key identifier: 0C:09:02:F0:2F:75:70:BE:41:85:A7:BB:42:FE:F3:3D:C5:E3:10:12 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 3515 Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/2B2C31BE3B8B11EB8D76362DC4F9AE02.roa Signing time: Wed 28 Jan 2026 15:11:33 +0000 ROA not before: Wed 28 Jan 2026 15:11:33 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 55344 IP address blocks: 124.109.104.0/22 maxlen: 22 124.109.104.0/23 maxlen: 23 124.109.104.0/24 maxlen: 24 124.109.105.0/24 maxlen: 24 124.109.106.0/23 maxlen: 23 124.109.106.0/24 maxlen: 24 124.109.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 15:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13589 (0x3515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: Jan 28 15:11:33 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697a2725-f13e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:31:54:86:83:60:df:2e:83:18:35:b9:f5:e9: c1:f1:3c:36:f5:83:fe:67:c2:bb:a0:9f:b9:94:d6: 1c:b3:d8:a1:64:27:f6:4c:6e:3e:7a:66:12:d8:62: 9f:b8:60:96:8d:bb:6f:7e:8d:9d:1a:b4:91:50:8e: 5c:c3:e2:80:3e:4d:32:a6:e9:d4:d8:58:f8:1b:c4: e5:37:24:74:d4:3f:d6:c1:a3:c1:dc:b1:90:be:31: 36:e0:da:d1:4d:1b:34:33:8b:73:ea:6f:2c:18:b1: c6:82:6b:84:e2:d0:51:54:b7:64:dc:a9:9e:bd:76: 23:98:50:7a:7b:fd:48:40:19:d7:31:f0:97:61:b0: 80:2c:61:e8:e9:f1:02:b0:0a:c2:a9:c8:ca:e4:c9: c7:10:c3:be:83:c0:64:9b:07:b4:7f:40:b3:79:b1: d9:95:50:2d:59:aa:19:be:11:83:15:15:85:de:bc: 60:bd:bc:94:55:12:a6:82:68:05:fd:ba:4b:39:f6: 39:c3:66:75:85:d1:64:7d:1b:d8:07:36:86:65:7c: b5:d6:4c:58:b3:9d:7f:da:8f:19:59:1a:27:4e:cb: f4:03:0e:05:38:57:6d:aa:72:86:f1:85:bc:36:48: 13:35:7c:44:62:92:06:86:ad:02:f6:76:79:ef:39: 09:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:09:02:F0:2F:75:70:BE:41:85:A7:BB:42:FE:F3:3D:C5:E3:10:12 X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/2B2C31BE3B8B11EB8D76362DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.109.104.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:eb:12:9d:a5:13:7c:3f:2b:fe:23:d2:54:29:ed:8c:da:40: f2:5d:e7:92:4b:28:f1:52:81:7f:ed:ee:73:fd:27:d5:24:84: 3b:1a:33:96:0b:e8:ce:09:c3:fc:b8:7c:42:25:b2:82:d0:1c: 9d:bc:d8:23:fd:59:2e:80:21:44:fd:8a:e2:7c:b3:2e:05:ac: e0:20:63:bb:de:25:fe:bd:12:2b:91:94:11:a6:fc:63:1b:a5: 4b:c6:7f:60:a2:2d:c6:ea:dd:2b:58:50:25:43:5c:95:8c:99: 01:2b:17:5f:a9:0e:20:d9:e0:c3:4f:1a:20:14:ee:71:40:e2: 99:99:c1:4d:29:a9:48:e3:ea:89:bf:c0:32:23:24:19:b9:a1: 2b:f7:74:01:36:88:ad:bb:51:b0:ac:a7:21:18:ea:7a:98:19: 90:6c:2e:d5:23:20:c3:e9:0c:5a:39:e0:f9:92:c6:70:d5:eb: 45:f8:be:ef:45:fe:f4:49:4b:22:12:12:ce:2a:fb:5b:01:20: 76:1a:b3:ab:82:23:54:97:a1:ca:c8:eb:b7:9e:d4:b2:e4:00: 5e:46:b1:60:3e:73:ab:b4:56:d8:b1:26:dd:bc:9a:ea:47:61: 0e:3a:d2:08:46:63:6a:23:bd:11:dd:eb:e3:43:80:58:74:1d: c9:d2:00:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjYwMTI4MTUxMTMzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhMjcyNS1mMTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTFUhoNg3y6DGDW59enB8Tw29YP+Z8K7oJ+5lNYcs9ihZCf2TG4+emYS2GKf uGCWjbtvfo2dGrSRUI5cw+KAPk0ypunU2Fj4G8TlNyR01D/WwaPB3LGQvjE24NrR TRs0M4tz6m8sGLHGgmuE4tBRVLdk3KmevXYjmFB6e/1IQBnXMfCXYbCALGHo6fEC sArCqcjK5MnHEMO+g8Bkmwe0f0CzebHZlVAtWaoZvhGDFRWF3rxgvbyUVRKmgmgF /bpLOfY5w2Z1hdFkfRvYBzaGZXy11kxYs51/2o8ZWRonTsv0Aw4FOFdtqnKG8YW8 NkgTNXxEYpIGhq0C9nZ57zkJCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAwJAvAv dXC+QYWnu0L+8z3F4xASMB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdCQTMvNzdFQTdBMjQxREEzMTFFMjkyRTVDQTk4MDhCMDJDRDIvMkIyQzMxQkUz QjhCMTFFQjhENzYzNjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ8bWgwDQYJKoZIhvcNAQELBQADggEBAI3rEp2lE3w/K/4j 0lQp7YzaQPJd55JLKPFSgX/t7nP9J9UkhDsaM5YL6M4Jw/y4fEIlsoLQHJ282CP9 WS6AIUT9iuJ8sy4FrOAgY7veJf69EiuRlBGm/GMbpUvGf2CiLcbq3StYUCVDXJWM mQErF1+pDiDZ4MNPGiAU7nFA4pmZwU0pqUjj6om/wDIjJBm5oSv3dAE2iK27UbCs pyEY6nqYGZBsLtUjIMPpDFo54PmSxnDV60X4vu9F/vRJSyISEs4q+1sBIHYas6uC I1SXocrI67ee1LLkAF5GsWA+c6u0VtixJt28mupHYQ460ghGY2ojvRHd6+NDgFh0 HcnSAB4= -----END CERTIFICATE-----Generated at Thu Feb 19 23:07:27 2026 by rpki-client