$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa File: 0827E4147F7911EC86DE4B56C4F9AE02.roa (raw, json) Hash identifier: HpflIZHPJw/jzbgP6VSoBVTn6YCT3C7WFMC80MZUPak= Subject key identifier: FF:6C:18:7B:53:4B:4A:C6:49:0D:30:E5:9A:D3:72:8D:6E:EB:37:B1 Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Certificate serial: 0D42 Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:01:39 +0000 ROA not before: Fri 02 May 2025 18:56:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141731 IP address blocks: 202.83.125.0/24 maxlen: 24 2400:4fc0:3ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3394 (0xd42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F9C, serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Validity Not Before: May 2 18:56:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a470f2-c5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d0:7e:59:bc:0d:89:da:9d:a6:d6:f5:b6:ff: a9:92:1a:32:a4:e0:51:dc:17:38:b2:e7:4c:6a:c6: 0f:d4:fc:7a:10:e2:b5:88:26:d1:48:9d:60:ff:53: 7d:a8:53:09:11:48:8a:9f:7d:5c:76:bc:40:ac:53: 91:4d:d4:ff:d0:f6:1a:06:ff:5b:ef:fb:a2:78:bb: ef:b2:fb:3b:fd:d9:bc:8f:83:3c:61:c1:3d:46:15: 67:93:1a:58:44:40:60:ec:c8:85:79:53:29:6e:3b: e2:64:85:e6:4f:91:65:c1:c1:7c:f3:3d:b6:23:b4: 73:93:65:a6:42:2a:30:9c:9e:c5:5f:95:18:f6:7d: 91:04:f9:1a:f1:69:04:a7:32:d8:14:49:2a:7f:36: ea:7b:1a:33:d2:50:6a:a1:a1:e8:ef:52:85:0c:48: b0:b5:8e:57:5f:cd:ae:60:62:33:98:24:ec:7c:da: 41:69:8f:c8:3e:f8:40:f1:74:3e:40:0e:37:a0:46: ed:c3:79:31:03:c6:6e:0f:d2:1b:cc:11:48:a6:98: 66:a8:c6:60:e3:eb:5e:e6:51:be:d1:e4:ab:b7:3a: d7:72:83:89:4d:e7:5a:35:2e:97:9e:fd:14:9c:73: 5a:60:ce:22:89:87:b3:78:62:4f:60:89:48:e1:28: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6C:18:7B:53:4B:4A:C6:49:0D:30:E5:9A:D3:72:8D:6E:EB:37:B1 X509v3 Authority Key Identifier: keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.83.125.0/24 IPv6: 2400:4fc0:3ff::/48 Signature Algorithm: sha256WithRSAEncryption ae:69:83:c5:c7:ef:d0:cb:cb:fc:85:93:b6:f9:69:ee:52:bd: 5e:41:8d:f6:2d:78:6f:65:cc:f1:e9:1f:a0:c6:84:7a:a9:27: b8:84:66:fe:0b:97:58:ba:10:f6:fb:64:f9:9a:7b:c7:17:e7: cd:30:d0:63:da:52:f7:6f:00:7b:1e:9c:a5:e4:3c:68:68:90: 43:85:41:a2:c7:6c:64:63:18:da:1b:c5:19:fb:ff:ae:4a:5f: 96:40:e6:f6:78:06:e2:85:00:21:68:87:53:47:46:ca:bb:6f: 92:09:ee:c7:fe:ee:3d:9b:eb:3c:16:ad:4c:88:6a:06:97:8e: b7:90:e3:91:9e:b0:c5:ed:af:ca:c9:aa:8d:8d:0c:4b:ad:47: 04:da:78:8a:95:0c:ee:d5:1d:d1:a9:e0:cb:dc:cb:88:ee:e6: 4a:a7:3c:fc:14:a0:71:4e:45:aa:70:4a:19:72:82:38:f1:dc: 23:9a:54:06:58:64:dd:c6:e5:a6:f3:ae:55:e4:48:21:5d:79: f2:02:fa:0b:9b:27:73:00:a1:cd:c3:00:1e:fb:7f:4f:3c:b3: d0:6e:d6:b5:51:cb:69:68:90:c8:a6:ea:be:02:72:41:f8:95: 3d:2b:13:75:70:9e:88:f2:d5:39:56:a9:83:a6:10:fc:38:8e: b2:04:50:39 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC MjFDNERCMDkwHhcNMjUwNTAyMTg1NjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBmMi1jNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9B+WbwNidqdptb1tv+pkhoypOBR3Bc4sudMasYP1Px6EOK1iCbRSJ1g/1N9 qFMJEUiKn31cdrxArFORTdT/0PYaBv9b7/uieLvvsvs7/dm8j4M8YcE9RhVnkxpY REBg7MiFeVMpbjviZIXmT5FlwcF88z22I7Rzk2WmQiownJ7FX5UY9n2RBPka8WkE pzLYFEkqfzbqexoz0lBqoaHo71KFDEiwtY5XX82uYGIzmCTsfNpBaY/IPvhA8XQ+ QA43oEbtw3kxA8ZuD9IbzBFIpphmqMZg4+te5lG+0eSrtzrXcoOJTedaNS6Xnv0U nHNaYM4iiYezeGJPYIlI4SiM0wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP9sGHtT S0rGSQ0w5ZrTco1u6zexMB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvMDgyN0U0MTQ3 Rjc5MTFFQzg2REU0QjU2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAylN9MA8EAgACMAkDBwAkAE/AA/8wDQYJKoZIhvcNAQELBQADggEB AK5pg8XH79DLy/yFk7b5ae5SvV5BjfYteG9lzPHpH6DGhHqpJ7iEZv4Ll1i6EPb7 ZPmae8cX580w0GPaUvdvAHsenKXkPGhokEOFQaLHbGRjGNobxRn7/65KX5ZA5vZ4 BuKFACFoh1NHRsq7b5IJ7sf+7j2b6zwWrUyIagaXjreQ45GesMXtr8rJqo2NDEut RwTaeIqVDO7VHdGp4Mvcy4ju5kqnPPwUoHFORapwShlygjjx3COaVAZYZN3G5abz rlXkSCFdefIC+gubJ3MAoc3DAB77f088s9Bu1rVRy2lokMim6r4CckH4lT0rE3Vw nojy1TlWqYOmEPw4jrIEUDk= -----END CERTIFICATE-----Generated at Fri Mar 13 18:55:58 2026 by rpki-client