$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa File: E35939C2261711EC9990A750C4F9AE02.roa (raw, json) Hash identifier: tTZXDpG6s0I7epPtJd00/Iy7JGi1h8+PbbN85OVIZMI= Subject key identifier: 48:1A:36:AF:8B:57:A9:91:99:13:B2:E8:BB:E8:2C:CD:74:73:CC:5A Certificate issuer: /CN=A9115C2E/serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Certificate serial: 0A6B Authority key identifier: 39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa Signing time: Wed 04 Mar 2026 19:26:13 +0000 ROA not before: Wed 04 Mar 2026 19:26:13 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 45267 IP address blocks: 43.247.172.0/22 maxlen: 24 45.117.36.0/22 maxlen: 24 103.254.132.0/22 maxlen: 24 114.134.0.0/20 maxlen: 24 116.90.76.0/22 maxlen: 24 124.248.128.0/20 maxlen: 21 124.248.141.0/24 maxlen: 24 163.47.240.0/22 maxlen: 24 202.36.75.0/24 maxlen: 24 202.37.168.0/24 maxlen: 24 202.49.36.0/24 maxlen: 24 2400:bd00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 19:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2667 (0xa6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=392FC227EECC5A621572FADAAC651A3CEBB2163C Validity Not Before: Mar 4 19:26:13 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a88754-5e09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8e:34:df:a6:0b:c3:36:a2:c1:c5:20:7b:3a: 52:1a:64:78:fd:1a:56:36:6d:6f:c1:6d:a3:ad:5d: 33:9b:b1:a5:4b:cb:92:56:ad:5c:ee:fb:c2:c5:e7: 45:2e:cd:dc:c9:c9:72:0a:6e:78:ab:e6:b7:f3:6b: 18:df:5c:7c:aa:e8:d3:a3:71:43:e5:7a:8f:f3:e0: 09:c5:2e:6b:a4:27:b3:5c:a8:1c:2a:84:27:db:f3: 21:8a:4b:35:c3:8a:75:dc:e8:de:7b:1a:57:17:28: 67:1a:ec:e8:08:a4:b8:51:42:5a:6d:bb:9b:d7:ca: 39:24:2f:a2:1b:06:f3:93:6e:f3:ff:b8:10:46:f8: 70:f0:cf:59:42:f7:18:01:10:dc:b1:cf:d5:17:ff: a1:16:b2:89:c6:ac:0e:d2:d7:8a:b2:5b:d8:ff:1a: f2:9f:4d:d4:3b:ea:87:f0:3b:d5:86:a1:1a:33:2c: 74:42:2f:9e:16:1d:95:27:dc:78:9b:d1:ac:ae:2e: 81:21:54:11:0f:fe:57:ac:23:06:44:d8:15:79:8e: db:c1:80:20:89:8b:d9:57:5e:09:da:6d:62:2b:2b: ea:e6:1f:47:e5:99:26:b5:f9:a8:10:98:54:24:7e: b2:1b:b7:a9:ed:75:7b:70:19:f3:8e:f2:11:b5:5f: 72:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1A:36:AF:8B:57:A9:91:99:13:B2:E8:BB:E8:2C:CD:74:73:CC:5A X509v3 Authority Key Identifier: keyid:39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/E35939C2261711EC9990A750C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.172.0/22 45.117.36.0/22 103.254.132.0/22 114.134.0.0/20 116.90.76.0/22 124.248.128.0/20 163.47.240.0/22 202.36.75.0/24 202.37.168.0/24 202.49.36.0/24 IPv6: 2400:bd00::/32 Signature Algorithm: sha256WithRSAEncryption 2c:f1:89:2a:65:89:ee:45:be:9c:c9:73:04:00:0c:86:36:47: db:5a:d5:4f:74:be:b2:f4:59:e1:14:eb:70:d6:34:b3:7e:50: ff:08:5b:10:96:7a:b2:6c:a6:82:cf:df:70:5e:00:fb:3d:c3: 44:2c:cc:f5:e1:59:69:93:6f:39:06:75:94:63:68:a6:e8:00: a9:26:2b:a2:4c:88:0c:af:2c:bc:59:0a:94:f7:ad:d4:e5:c2: a6:56:38:6a:3b:73:85:4d:83:2e:19:60:ea:50:7b:f6:b4:ab: bc:f6:7f:cf:5d:4c:3c:37:3e:41:57:89:9d:77:f1:30:03:ce: 85:c7:04:4b:e0:53:c7:e9:b1:00:c0:86:7c:fb:79:64:39:ea: 13:9e:91:0f:dd:bb:c3:5e:15:20:ab:4b:d1:01:6a:1d:47:c8: f3:3b:7e:c3:48:d6:a3:01:e8:3b:56:cf:a3:5c:cb:93:1c:17: 8a:70:5f:2d:6e:4c:3b:f9:ad:ec:b0:bc:a1:c6:1e:7d:87:af: 30:11:7f:de:92:ad:25:5f:95:d9:ae:40:1b:6a:36:f4:1e:0d: ab:aa:37:76:d3:07:32:59:c6:35:84:ea:af:7d:d5:bb:a6:1b: f6:1e:cb:8d:98:2d:f4:59:c0:22:93:9a:c8:59:51:53:f9:65: 50:53:35:0b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICCmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKDM5MkZDMjI3RUVDQzVBNjIxNTcyRkFEQUFDNjUxQTND RUJCMjE2M0MwHhcNMjYwMzA0MTkyNjEzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4ODc1NC01ZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Y4036YLwzaiwcUgezpSGmR4/RpWNm1vwW2jrV0zm7GlS8uSVq1c7vvCxedF Ls3cyclyCm54q+a382sY31x8qujTo3FD5XqP8+AJxS5rpCezXKgcKoQn2/Mhiks1 w4p13OjeexpXFyhnGuzoCKS4UUJabbub18o5JC+iGwbzk27z/7gQRvhw8M9ZQvcY ARDcsc/VF/+hFrKJxqwO0teKslvY/xryn03UO+qH8DvVhqEaMyx0Qi+eFh2VJ9x4 m9Gsri6BIVQRD/5XrCMGRNgVeY7bwYAgiYvZV14J2m1iKyvq5h9H5ZkmtfmoEJhU JH6yG7ep7XV7cBnzjvIRtV9yHwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEgaNq+L V6mRmROy6LvoLM10c8xaMB8GA1UdIwQYMBaAFDkvwifuzFpiFXL62qxlGjzrshY8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS8zOEQxNDAxQzgz NDgxMUVBQTdDNDc1NzZDNEY5QUUwMi9PU19DSi03TVdtSVZjdnJhckdVYVBPdXlG ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TX0NKLTdNV21JVmN2cmFyR1VhUE91eUZqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVDMkUvMzhEMTQwMUM4MzQ4MTFFQUE3QzQ3NTc2QzRGOUFFMDIvRTM1OTM5QzIy NjE3MTFFQzk5OTBBNzUwQzRGOUFFMDIucm9hMGQGCCsGAQUFBwEHAQH/BFUwUzBC BAIAATA8AwQCK/esAwQCLXUkAwQCZ/6EAwQEcoYAAwQCdFpMAwQEfPiAAwQCoy/w AwQAyiRLAwQAyiWoAwQAyjEkMA0EAgACMAcDBQAkAL0AMA0GCSqGSIb3DQEBCwUA A4IBAQAs8YkqZYnuRb6cyXMEAAyGNkfbWtVPdL6y9FnhFOtw1jSzflD/CFsQlnqy bKaCz99wXgD7PcNELMz14Vlpk285BnWUY2im6ACpJiuiTIgMryy8WQqU963U5cKm VjhqO3OFTYMuGWDqUHv2tKu89n/PXUw8Nz5BV4mdd/EwA86FxwRL4FPH6bEAwIZ8 +3lkOeoTnpEP3bvDXhUgq0vRAWodR8jzO37DSNajAeg7Vs+jXMuTHBeKcF8tbkw7 +a3ssLyhxh59h68wEX/ekq0lX5XZrkAbajb0Hg2rqjd20wcyWcY1hOqvfdW7phv2 HsuNmC30WcAik5rIWVFT+WVQUzUL -----END CERTIFICATE-----Generated at Fri Mar 13 11:00:45 2026 by rpki-client