$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa File: EDB1F68E3C8811EC889B9D78C4F9AE02.roa (raw, json) Hash identifier: xuy2xxrPKKELiUZzk6on+yC0bYqXIyTY5K7DAlmU2Es= Subject key identifier: 6A:0F:29:8F:0F:81:32:FD:83:53:31:89:89:91:20:45:4C:57:26:93 Certificate issuer: /CN=A9120AC1/serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Certificate serial: 0540 Authority key identifier: 8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa Signing time: Thu 05 Feb 2026 09:23:29 +0000 ROA not before: Thu 05 Feb 2026 09:23:29 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45753 IP address blocks: 43.225.196.0/22 maxlen: 22 43.225.196.0/24 maxlen: 24 43.225.197.0/24 maxlen: 24 43.225.198.0/24 maxlen: 24 43.225.199.0/24 maxlen: 24 103.44.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 22:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Validity Not Before: Feb 5 09:23:29 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69846191-e318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:81:88:db:8e:3a:38:32:01:c5:96:c2:f1:fd: a2:dd:3a:d8:5e:e5:8b:c1:5e:3e:8d:2b:5c:d8:92: b5:d3:aa:34:11:6b:7d:85:12:41:c0:9f:e3:cf:d6: 10:72:00:11:0b:0c:b9:7f:3d:67:5a:7a:59:c1:ae: c2:20:3b:d0:e4:43:6a:66:2b:01:62:94:45:fc:7b: fa:31:4d:3c:5a:05:00:a7:28:8e:08:1b:46:2f:2a: b4:72:f0:b6:59:b6:4c:57:0b:c3:48:fd:1a:5d:d1: 43:8a:ae:e6:02:d8:32:fe:b0:c6:57:14:59:38:f5: 5e:ec:81:53:6d:a6:f1:3f:ed:53:57:12:47:a6:24: db:e0:fd:fa:0c:3c:8c:d7:14:d2:81:06:02:09:3d: 7c:d6:1d:13:f3:c6:f6:1c:5c:46:fc:ac:92:01:cd: 00:39:3b:05:25:d7:51:c9:d9:7f:15:a6:f4:b6:ed: 1b:9f:52:b4:e0:79:bc:77:35:2d:ac:be:a1:6e:56: 1e:04:8f:05:0d:e9:6e:6f:d9:15:47:8c:9f:76:55: bb:2b:16:60:71:ed:7e:5f:a9:89:c0:29:86:17:b7: 8d:90:ab:f7:62:e1:3a:b3:5f:0a:1c:89:6c:1c:73: 13:58:6b:fe:7d:7c:1b:ab:4a:90:eb:e3:a0:fc:6c: 4c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0F:29:8F:0F:81:32:FD:83:53:31:89:89:91:20:45:4C:57:26:93 X509v3 Authority Key Identifier: keyid:8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/EDB1F68E3C8811EC889B9D78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.196.0/22 103.44.160.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:3d:47:92:81:2d:a2:ad:91:b6:6b:fa:c6:4e:37:7b:64:05: 77:58:b1:80:de:4c:bc:e3:97:09:b5:9a:86:ea:59:3c:4f:e1: f9:49:69:c0:78:a5:6c:10:61:a7:45:21:53:c1:c1:0a:1e:54: 80:6e:6e:07:08:57:7b:7b:3a:0e:85:93:bf:6c:1c:09:4a:4a: 6f:ad:c5:75:a9:f0:3e:bd:19:41:ad:29:7c:8c:7c:79:a3:c7: 00:6d:fa:d5:bb:b8:3d:a6:0d:bf:6b:34:a1:43:b7:51:06:94: b2:63:94:bf:29:2d:d1:1e:55:78:ed:62:15:bf:f1:b6:cb:df: e3:2c:af:8c:42:37:f7:cd:50:1f:1e:51:ce:96:6a:ba:da:88: 84:bf:ce:de:73:d8:ea:6a:e3:f4:d7:15:e6:f0:c8:76:0d:dc: c0:e2:d4:01:1a:33:31:1f:91:6b:9b:ee:e8:4b:86:e4:75:77: 63:9f:f5:ed:c8:dc:c1:e7:30:a4:0e:9f:56:49:c8:cc:c2:18: 90:c6:cb:70:25:1d:86:ec:47:15:9a:26:2e:b5:94:2a:a0:c0: f2:9f:f4:f9:55:59:c7:66:8d:58:dc:da:c0:a1:d5:68:db:75: 8b:a0:95:3f:18:c6:56:77:20:fe:bf:a0:a8:eb:36:b8:24:a5: 7e:09:f6:c5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MjBBQzExMTAvBgNVBAUTKDhGMkJENEMxMjYzNkYwMDU5QjQwOEQwNzE2QUYzMkM4 RjU0MDY5QTUwHhcNMjYwMjA1MDkyMzI5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTg0NjE5MS1lMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjoGI2446ODIBxZbC8f2i3TrYXuWLwV4+jStc2JK106o0EWt9hRJBwJ/jz9YQ cgARCwy5fz1nWnpZwa7CIDvQ5ENqZisBYpRF/Hv6MU08WgUApyiOCBtGLyq0cvC2 WbZMVwvDSP0aXdFDiq7mAtgy/rDGVxRZOPVe7IFTbabxP+1TVxJHpiTb4P36DDyM 1xTSgQYCCT181h0T88b2HFxG/KySAc0AOTsFJddRydl/Fab0tu0bn1K04Hm8dzUt rL6hblYeBI8FDelub9kVR4yfdlW7KxZgce1+X6mJwCmGF7eNkKv3YuE6s18KHIls HHMTWGv+fXwbq0qQ6+Og/GxMQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGoPKY8P gTL9g1MxiYmRIEVMVyaTMB8GA1UdIwQYMBaAFI8r1MEmNvAFm0CNBxavMsj1QGml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS80ODAxN0QzODMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhBV2JRSTBIRnE4eXlQVkFh YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dlV3U1kyOEFXYlFJMEhGcTh5eVBWQWFhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvNDgwMTdEMzgzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvRURCMUY2OEUz Qzg4MTFFQzg4OUI5RDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4cQDBAJnLKAwDQYJKoZIhvcNAQELBQADggEBAG09R5KB LaKtkbZr+sZON3tkBXdYsYDeTLzjlwm1mobqWTxP4flJacB4pWwQYadFIVPBwQoe VIBubgcIV3t7Og6Fk79sHAlKSm+txXWp8D69GUGtKXyMfHmjxwBt+tW7uD2mDb9r NKFDt1EGlLJjlL8pLdEeVXjtYhW/8bbL3+Msr4xCN/fNUB8eUc6WarraiIS/zt5z 2Opq4/TXFebwyHYN3MDi1AEaMzEfkWub7uhLhuR1d2Of9e3I3MHnMKQOn1ZJyMzC GJDGy3AlHYbsRxWaJi61lCqgwPKf9PlVWcdmjVjc2sCh1WjbdYuglT8YxlZ3IP6/ oKjrNrgkpX4J9sU= -----END CERTIFICATE-----Generated at Thu Feb 19 22:41:46 2026 by rpki-client