$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa File: 8068BF600E9711EB9A6C2B3CC4F9AE02.roa (raw, json) Hash identifier: Wgi3qaUP4AwlQyzcQOtu4ueX0G7wEtCAO856OXKIg5k= Subject key identifier: AA:E7:BB:88:1C:B7:EF:56:B5:88:D8:0E:17:ED:F5:8A:DE:05:AC:A8 Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 0883 Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa Signing time: Thu 02 Apr 2026 21:27:28 +0000 ROA not before: Thu 02 Apr 2026 21:27:28 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 131245 IP address blocks: 202.92.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2179 (0x883) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718, serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Apr 2 21:27:28 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=69cedf40-13ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c1:22:b6:7d:f3:06:a0:50:94:8c:42:d0:2d: b8:aa:e7:93:1b:31:a2:2d:a2:32:c6:a7:37:ba:c0: 10:b7:58:ba:f9:dc:5f:70:0c:e2:07:a9:bc:60:3c: a3:41:07:d7:be:0f:ad:37:66:05:b0:15:e4:30:e6: 2a:44:db:92:42:7e:32:61:22:4b:b2:79:ab:d1:7c: f1:cb:54:5d:3a:d2:95:65:54:ba:df:5a:b8:94:40: c6:22:97:60:0a:86:01:21:cf:69:6b:9f:2d:b6:19: 80:e6:be:f3:77:a7:e6:21:eb:73:0c:99:6c:68:7c: b9:90:1c:77:9c:03:51:c5:d9:9b:9d:60:34:ad:6d: 36:5c:cd:81:44:e7:8a:ed:81:0e:8d:93:c8:74:72: cf:00:a3:c1:bf:95:cd:da:06:be:8d:3f:1a:dc:cc: 9d:f8:33:c2:bd:98:65:f7:f4:bd:5c:e4:10:1e:43: 6c:ff:b9:d8:a8:c5:4d:a3:0b:4d:87:76:d4:55:f2: 2d:fe:ec:f4:9b:cb:e7:d8:be:d3:e5:b4:69:42:60: 77:77:13:f8:4b:9a:c8:f6:39:47:54:23:9c:0f:09: 50:ca:3e:2c:bf:d2:c5:8a:bd:6b:43:85:23:31:0b: 6e:b2:40:d0:92:df:e9:03:96:b5:fb:af:75:d6:0c: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E7:BB:88:1C:B7:EF:56:B5:88:D8:0E:17:ED:F5:8A:DE:05:AC:A8 X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.92.133.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b5:02:98:06:f6:09:c5:70:b1:95:13:ce:87:27:a7:1c:1b: 1e:75:16:97:e8:ab:1d:c7:d5:35:ea:19:a7:47:a2:85:c2:49: d1:3d:33:58:65:9d:80:ba:71:81:03:9d:b5:b5:44:89:d3:36: 92:f2:3c:ad:1e:ea:a4:9c:2d:12:51:86:8d:15:9f:cd:1f:e0: 7e:00:2a:45:c3:9d:e5:65:ed:e0:42:e1:53:7f:ec:da:2f:d8: 1e:99:1e:15:28:f9:15:ad:c8:5c:57:1e:e8:8a:c9:41:a8:b8: ba:80:51:0a:57:a1:28:09:31:b0:c8:ee:12:f5:5b:d0:93:10: 2c:7e:ea:2c:d2:22:94:ce:61:93:24:9e:e0:0e:e9:f2:0d:37: a3:de:4e:0a:bd:93:a1:a4:13:54:1f:ac:cb:c4:dd:e1:f9:60: 2a:8e:62:e8:a5:bb:f0:29:3b:88:94:1e:30:d5:d7:c0:82:b4: bb:8d:63:16:01:92:f9:e7:dd:b0:18:64:7f:a6:d0:d2:36:7b: d8:1f:09:e8:df:ad:9a:0b:66:c1:1d:23:d4:5c:5e:65:a9:32: c9:52:14:3e:81:11:f3:0a:18:08:e5:08:e0:5e:ef:43:91:ea: 72:55:8e:af:c4:da:e4:49:fe:43:10:a1:12:03:6a:82:66:8d: e3:65:f2:31 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjYwNDAyMjEyNzI4WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZGY0MC0xM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjMEitn3zBqBQlIxC0C24queTGzGiLaIyxqc3usAQt1i6+dxfcAziB6m8YDyj QQfXvg+tN2YFsBXkMOYqRNuSQn4yYSJLsnmr0Xzxy1RdOtKVZVS631q4lEDGIpdg CoYBIc9pa58tthmA5r7zd6fmIetzDJlsaHy5kBx3nANRxdmbnWA0rW02XM2BROeK 7YEOjZPIdHLPAKPBv5XN2ga+jT8a3Myd+DPCvZhl9/S9XOQQHkNs/7nYqMVNowtN h3bUVfIt/uz0m8vn2L7T5bRpQmB3dxP4S5rI9jlHVCOcDwlQyj4sv9LFir1rQ4Uj MQtuskDQkt/pA5a1+6911gzaYQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKrnu4gc t+9WtYjYDhft9YreBayoMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvODA2OEJGNjAw RTk3MTFFQjlBNkMyQjNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAylyFMA0GCSqGSIb3DQEBCwUAA4IBAQCjtQKYBvYJxXCxlRPOhyen HBsedRaX6Ksdx9U16hmnR6KFwknRPTNYZZ2AunGBA521tUSJ0zaS8jytHuqknC0S UYaNFZ/NH+B+ACpFw53lZe3gQuFTf+zaL9gemR4VKPkVrchcVx7oislBqLi6gFEK V6EoCTGwyO4S9VvQkxAsfuos0iKUzmGTJJ7gDunyDTej3k4KvZOhpBNUH6zLxN3h +WAqjmLopbvwKTuIlB4w1dfAgrS7jWMWAZL5592wGGR/ptDSNnvYHwno362aC2bB HSPUXF5lqTLJUhQ+gRHzChgI5QjgXu9DkepyVY6vxNrkSf5DEKESA2qCZo3jZfIx -----END CERTIFICATE-----Generated at Mon Apr 6 10:28:02 2026 by rpki-client