$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa File: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (raw, json) Hash identifier: FVSbWN+txOfkWkBvMLmDBeYriGUMAw+teOvv0Ix7L2U= Subject key identifier: F6:2C:80:29:8D:DD:80:E1:BE:09:41:9F:54:71:0A:80:46:FB:60:14 Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 3546 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:11:28 +0000 ROA not before: Thu 30 Oct 2025 14:30:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 7545 IP address blocks: 14.202.192.0/24 maxlen: 24 60.241.61.0/24 maxlen: 24 110.175.127.0/24 maxlen: 24 203.219.48.0/22 maxlen: 22 220.240.122.0/24 maxlen: 24 220.245.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13638 (0x3546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Oct 30 14:30:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a51c00-382a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:96:5d:c7:ad:ac:25:8f:75:b0:16:f8:18:22: 28:e9:68:ce:96:8c:f2:93:ac:1e:06:53:64:ea:69: 61:ec:59:3a:0c:93:e2:d9:d0:43:9e:ff:56:75:8d: b7:36:43:ca:7c:bd:d6:f2:45:af:67:3d:db:34:8d: 45:23:34:28:2d:a4:7b:f6:bf:60:8b:86:ab:6a:b8: b2:d3:fd:54:f6:ea:a3:be:3e:0c:48:7f:f0:b8:81: 45:63:b8:88:f4:a2:78:25:3b:71:f3:ca:cb:98:6c: b5:5b:de:df:fb:6c:63:15:c6:e6:95:d4:0f:18:4e: 0c:fb:52:02:af:e9:b9:b4:78:e4:3d:a1:58:af:ec: 4a:4c:c2:a9:9e:c5:5d:b3:8c:0c:77:c1:0a:a4:01: 7b:45:5a:62:61:74:8b:3b:6c:37:41:a7:7f:95:21: 13:0d:61:dc:13:92:14:61:13:13:f1:a5:68:6f:e0: 9b:72:cd:61:fa:81:fd:81:6e:63:e2:d4:30:2a:1f: a4:72:98:9f:21:14:a8:72:05:25:c4:6e:82:8e:fa: 73:05:57:96:f6:f6:28:dd:32:d4:37:af:5e:92:69: be:a1:de:12:72:e3:7a:4e:0e:20:3c:42:e5:4e:e2: 1a:c7:8f:f2:58:4d:d0:28:bf:06:db:c2:6d:75:de: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2C:80:29:8D:DD:80:E1:BE:09:41:9F:54:71:0A:80:46:FB:60:14 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/2FA57B9A97B611EDAE9D4381C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.202.192.0/24 60.241.61.0/24 110.175.127.0/24 203.219.48.0/22 220.240.122.0/24 220.245.124.0/22 Signature Algorithm: sha256WithRSAEncryption 81:e8:38:39:62:cc:7d:e5:c2:5b:09:c1:55:36:62:d1:24:58: 05:b9:08:e7:c9:c3:9f:0e:9e:47:5c:59:9b:1d:c1:6c:e6:17: 47:77:ef:83:47:1d:7c:40:4b:f3:88:d4:bc:57:38:9a:d0:bc: 51:3e:c8:d0:c0:a5:87:51:dd:97:c6:b5:19:ac:f9:23:8c:4c: 87:f0:1c:6f:43:a6:d6:1e:60:ca:dd:3a:8b:e6:52:0b:06:b5: 9b:19:97:1d:ae:08:9d:ad:1a:b5:31:5f:2a:a2:f5:13:d0:88: b7:a9:25:06:e2:56:03:ac:8e:22:59:9d:37:ea:eb:42:1e:f2: 56:a8:1f:cd:79:7a:54:c1:2f:49:27:fd:07:d1:f7:dc:50:82: 0a:92:05:2d:4f:f3:0e:01:03:e0:5e:88:7d:dd:11:74:59:ac: 92:49:68:e7:12:d1:4f:3a:b4:fb:cd:01:77:68:5b:0b:0e:b8: 69:72:08:08:ef:da:46:40:2e:de:1a:07:5a:90:c3:d1:83:ec: 55:8d:d0:a6:9e:08:a2:41:00:89:30:09:79:ec:87:21:3a:c6: 89:b2:a1:ef:5e:9c:89:d7:e0:aa:5c:4c:11:64:23:d4:48:44: 01:23:d1:99:62:95:e4:c5:e8:8c:df:cc:ea:ea:e1:5e:c5:e5: 09:ee:8e:8a -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICNUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjUxMDMwMTQzMDIzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWMwMC0zODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi5Zdx62sJY91sBb4GCIo6WjOlozyk6weBlNk6mlh7Fk6DJPi2dBDnv9WdY23 NkPKfL3W8kWvZz3bNI1FIzQoLaR79r9gi4arariy0/1U9uqjvj4MSH/wuIFFY7iI 9KJ4JTtx88rLmGy1W97f+2xjFcbmldQPGE4M+1ICr+m5tHjkPaFYr+xKTMKpnsVd s4wMd8EKpAF7RVpiYXSLO2w3Qad/lSETDWHcE5IUYRMT8aVob+Cbcs1h+oH9gW5j 4tQwKh+kcpifIRSocgUlxG6CjvpzBVeW9vYo3TLUN69ekmm+od4ScuN6Tg4gPELl TuIax4/yWE3QKL8G28Jtdd79EwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFPYsgCmN 3YDhvglBn1RxCoBG+2AUMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdFNEQvRUExQjFENkExRDg1MTFFMjk3OUZFN0RDMDhCMDJDRDIvMkZBNTdCOUE5 N0I2MTFFREFFOUQ0MzgxQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQADsrAAwQAPPE9AwQAbq9/AwQCy9swAwQA3PB6AwQC3PV8MA0GCSqG SIb3DQEBCwUAA4IBAQCB6Dg5Ysx95cJbCcFVNmLRJFgFuQjnycOfDp5HXFmbHcFs 5hdHd++DRx18QEvziNS8Vzia0LxRPsjQwKWHUd2XxrUZrPkjjEyH8BxvQ6bWHmDK 3TqL5lILBrWbGZcdrgidrRq1MV8qovUT0Ii3qSUG4lYDrI4iWZ036utCHvJWqB/N eXpUwS9JJ/0H0ffcUIIKkgUtT/MOAQPgXoh93RF0WaySSWjnEtFPOrT7zQF3aFsL DrhpcggI79pGQC7eGgdakMPRg+xVjdCmngiiQQCJMAl57IchOsaJsqHvXpyJ1+Cq XEwRZCPUSEQBI9GZYpXkxeiM38zq6uFexeUJ7o6K -----END CERTIFICATE-----Generated at Sat Mar 7 17:28:24 2026 by rpki-client