$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa File: 69A02F92B69011F0AFB90732C4F9AE02.roa (raw, json) Hash identifier: 2GDXW34y0UeqYApW2yftSPb+tT2ESSz3aUeD8fKFqqs= Subject key identifier: A2:5F:27:91:88:EB:BF:DA:BB:1E:A5:23:34:D7:C2:D3:12:F6:D7:9F Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 055B Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:05 +0000 ROA not before: Mon 03 Nov 2025 00:44:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 22773 IP address blocks: 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Nov 3 00:44:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48a20-bb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:0a:c3:e9:ba:35:92:e3:81:b7:b2:87:3e:4f: 54:21:98:20:67:14:ef:f3:be:10:3a:d9:0b:8a:90: 14:83:34:b3:6c:20:57:39:de:d6:95:e5:06:9a:94: a8:62:ad:59:dd:96:ff:2c:43:72:37:e3:50:13:7a: c2:40:f1:f0:e8:6b:45:65:17:f3:c2:58:2d:13:70: fd:88:90:54:be:79:ae:da:98:35:11:d6:07:4d:85: 63:9b:f2:86:98:93:b8:b6:dc:6c:88:1e:e5:81:4f: 90:46:1c:98:3c:ca:91:40:72:94:65:f8:f3:98:1a: 45:88:c9:43:97:98:4e:af:5b:90:11:22:2b:05:a5: a3:83:99:f0:84:6c:1a:9e:4e:04:54:6d:f1:ea:ce: a5:43:f3:bb:0e:a7:c0:7f:c8:55:58:5c:e8:2e:6f: 8b:c6:04:12:be:16:95:2b:93:8d:0f:59:28:ad:72: 59:0e:0f:e0:4e:41:3d:8a:6d:ad:ce:c8:8c:6b:b3: f1:35:07:04:e8:58:8e:17:4c:8b:cf:93:22:7a:c2: e7:45:35:06:d2:f7:c3:01:61:ec:51:91:7c:1c:e9: 4d:bf:72:fa:0a:fd:7e:ac:9f:80:87:80:13:11:57: 57:74:b6:e7:47:57:25:ce:16:fc:bb:a8:c6:4c:53: c2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:5F:27:91:88:EB:BF:DA:BB:1E:A5:23:34:D7:C2:D3:12:F6:D7:9F X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.20.48.0/21 223.29.128.0/22 223.29.136.0-223.29.159.255 Signature Algorithm: sha256WithRSAEncryption 4a:19:a3:47:04:23:75:dc:e7:8e:a7:9a:92:06:b9:5c:97:39: 24:05:3d:a0:73:1d:ce:fc:65:d2:13:b5:20:4d:0b:7b:0a:13: f0:83:94:a1:d7:ee:0e:06:fe:a7:29:3b:93:74:02:a2:af:e5: 33:4f:af:ba:69:57:d3:37:8a:59:45:ac:56:b9:3f:36:1f:e6: fe:4e:ef:97:00:2a:98:e9:b4:9b:6f:00:0d:30:82:2c:97:d9: 8d:bd:6a:6b:6c:d8:a6:3c:93:32:3d:32:26:d9:30:ac:64:c2: b4:a8:a2:5a:fe:4c:4d:03:00:06:82:a0:11:a1:cc:7c:a8:d3: 8c:f6:13:d4:0b:60:7f:78:13:8b:9c:ea:0d:ba:b4:1a:fe:52: c0:02:48:4e:f5:54:82:46:5d:ae:c2:f5:18:5b:4b:12:e5:5b: ea:a0:18:07:d3:89:5c:e8:ab:91:61:91:11:ed:f2:80:f8:19: c5:7d:96:a7:4c:ab:29:6d:82:f4:07:df:3b:e0:71:51:e9:7d: f1:7b:81:0b:59:89:f7:1e:dc:2a:f2:1d:8d:f8:00:81:ed:6c: b0:34:b3:ed:46:44:b1:43:00:44:34:1c:77:15:a8:39:20:da: 74:7d:37:b0:fa:8f:21:69:94:cc:86:09:12:69:ab:b6:95:9a: 83:c3:b9:f1 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICBVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUxMTAzMDA0NDUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGEyMC1iYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkQrD6bo1kuOBt7KHPk9UIZggZxTv874QOtkLipAUgzSzbCBXOd7WleUGmpSo Yq1Z3Zb/LENyN+NQE3rCQPHw6GtFZRfzwlgtE3D9iJBUvnmu2pg1EdYHTYVjm/KG mJO4ttxsiB7lgU+QRhyYPMqRQHKUZfjzmBpFiMlDl5hOr1uQESIrBaWjg5nwhGwa nk4EVG3x6s6lQ/O7DqfAf8hVWFzoLm+LxgQSvhaVK5OND1korXJZDg/gTkE9im2t zsiMa7PxNQcE6FiOF0yLz5MiesLnRTUG0vfDAWHsUZF8HOlNv3L6Cv1+rJ+Ah4AT EVdXdLbnR1clzhb8u6jGTFPCqQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFKJfJ5GI 67/aux6lIzTXwtMS9tefMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNjlBMDJGOTJC NjkwMTFGMEFGQjkwNzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQDcRQwAwQC3x2AMAwDBAPfHYgDBAXfHYAwDQYJKoZIhvcNAQELBQAD ggEBAEoZo0cEI3Xc546nmpIGuVyXOSQFPaBzHc78ZdITtSBNC3sKE/CDlKHX7g4G /qcpO5N0AqKv5TNPr7ppV9M3illFrFa5PzYf5v5O75cAKpjptJtvAA0wgiyX2Y29 amts2KY8kzI9MibZMKxkwrSoolr+TE0DAAaCoBGhzHyo04z2E9QLYH94E4uc6g26 tBr+UsACSE71VIJGXa7C9RhbSxLlW+qgGAfTiVzoq5FhkRHt8oD4GcV9lqdMqylt gvQH3zvgcVHpffF7gQtZifce3CryHY34AIHtbLA0s+1GRLFDAEQ0HHcVqDkg2nR9 N7D6jyFplMyGCRJpq7aVmoPDufE= -----END CERTIFICATE-----Generated at Tue Mar 24 17:05:46 2026 by rpki-client