$ rpki-client -vvf rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/8EAC217CCA5611F089E70D44C4F9AE02.roa File: 8EAC217CCA5611F089E70D44C4F9AE02.roa (raw, json) Hash identifier: XXxBCtuO8EG8rucnL16es476f6BaiYAikV+U/4E8csQ= Subject key identifier: 11:0C:4B:F5:F7:4E:AE:21:1F:EB:70:13:75:EB:F4:CB:06:F7:39:DA Certificate issuer: /CN=A9135D1F/serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Certificate serial: 7F Authority key identifier: 0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/8EAC217CCA5611F089E70D44C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:16:38 +0000 ROA not before: Tue 25 Nov 2025 23:29:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 208185 IP address blocks: 203.28.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135D1F, serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Validity Not Before: Nov 25 23:29:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58db6-22a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:9a:5c:97:d1:a8:46:45:27:a5:18:6b:5e:13: 46:c3:01:7b:33:8b:1c:70:d1:c5:d8:7f:86:ba:77: 80:73:8b:a9:23:0d:dd:3f:b9:79:99:f0:99:9d:25: 0a:a8:0f:99:a1:8e:f6:61:4f:5a:f8:25:1a:3d:b5: 76:80:12:60:5b:cb:0e:34:f2:99:cd:48:84:fd:be: 82:2b:d5:c6:ff:56:32:60:b9:00:3b:7b:ab:1b:95: 4d:98:91:a9:93:4d:a4:2e:74:f0:eb:59:23:7f:04: 55:90:ed:18:cf:7b:53:77:44:a4:0f:8e:14:ba:f1: f2:b3:4d:66:f4:07:1b:56:af:d8:3b:40:22:d5:a6: a8:c4:e5:71:88:e3:af:c5:11:c6:b5:73:c0:c3:97: d7:a6:83:91:7f:80:c6:43:9b:c1:77:09:09:df:06: 98:0d:0e:13:bb:b7:85:53:e6:87:1e:04:59:69:f6: 74:b4:a4:f1:e6:cb:13:82:9c:39:9c:75:ec:d0:cf: 92:f2:41:f4:d0:76:f5:7a:11:1c:87:09:03:92:c2: 36:02:b9:8e:b6:12:36:9f:be:b7:a3:2e:74:08:d9: d5:fc:49:31:f9:65:12:f9:fb:76:60:ad:d9:68:94: 2e:71:2c:ad:b6:99:1c:84:19:ed:84:d8:7a:83:7b: 52:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0C:4B:F5:F7:4E:AE:21:1F:EB:70:13:75:EB:F4:CB:06:F7:39:DA X509v3 Authority Key Identifier: keyid:0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/8EAC217CCA5611F089E70D44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.28.195.0/24 Signature Algorithm: sha256WithRSAEncryption 40:2e:3e:a5:c1:ab:a9:cc:0f:14:e5:51:52:56:6f:56:03:6b: 7c:e5:e4:cc:27:03:58:a2:0c:f8:dc:9c:6c:12:54:d7:c7:27: 5a:cf:2f:1d:94:30:b2:95:5f:af:ab:d5:63:57:0b:47:de:76: 21:0c:a4:f0:77:eb:3f:eb:f4:27:97:27:68:68:db:a0:f9:28: ee:1b:e2:c0:81:43:d7:8d:ed:f1:2b:c6:27:d1:7d:49:2e:f6: 72:19:af:30:52:48:7e:d4:2e:c8:f4:63:9a:d8:18:a6:d8:7a: eb:df:69:aa:5b:c0:a1:8b:ee:fa:2a:2a:45:85:ec:66:44:96: 65:8b:9f:37:60:22:b4:bc:be:8f:84:23:a7:80:c9:94:ce:b0: b5:d7:e0:29:4d:8f:ca:91:6c:65:be:b0:db:f1:91:84:f9:35: b1:2a:67:57:a4:1f:40:46:0f:d8:a1:4d:0e:25:c7:32:42:a7: 64:05:94:41:9b:90:47:21:19:1c:4a:9d:7e:d5:fa:2b:ba:24: 85:07:fd:86:f8:a3:dd:c6:31:5d:51:72:47:15:c6:43:e7:63: 78:fb:54:c4:4d:c2:c7:f2:56:f3:28:fd:67:c3:55:43:4c:48: fc:3d:b8:13:9a:33:68:56:47:5e:ea:44:07:ce:3d:f7:28:7d: 73:f5:bd:aa -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUQxRjExMC8GA1UEBRMoMENBQjY4RTA2OTA4M0E0Mzg4RThGQzY5NzU4RjA0NTk2 MkZEMDFBRjAeFw0yNTExMjUyMzI5MTZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ZGI2LTIyYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCMmlyX0ahGRSelGGteE0bDAXszixxw0cXYf4a6d4Bzi6kjDd0/uXmZ8JmdJQqo D5mhjvZhT1r4JRo9tXaAEmBbyw408pnNSIT9voIr1cb/VjJguQA7e6sblU2YkamT TaQudPDrWSN/BFWQ7RjPe1N3RKQPjhS68fKzTWb0BxtWr9g7QCLVpqjE5XGI46/F Eca1c8DDl9emg5F/gMZDm8F3CQnfBpgNDhO7t4VT5oceBFlp9nS0pPHmyxOCnDmc dezQz5LyQfTQdvV6ERyHCQOSwjYCuY62EjafvrejLnQI2dX8STH5ZRL5+3Zgrdlo lC5xLK22mRyEGe2E2HqDe1KTAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUEQxL9fdO riEf63ATdev0ywb3OdowHwYDVR0jBBgwFoAUDKto4GkIOkOI6PxpdY8EWWL9Aa8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1RDFGL0FEMjAyMUE0OTc3 NDExRjA4MEJGMUU2NEM0RjlBRTAyL0RLdG80R2tJT2tPSTZQeHBkWThFV1dMOUFh OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREt0bzRHa0lPa09JNlB4cGRZOEVXV0w5QWE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUQxRi9BRDIwMjFBNDk3NzQxMUYwODBCRjFFNjRDNEY5QUUwMi84RUFDMjE3Q0NB NTYxMUYwODlFNzBENDRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLHMMwDQYJKoZIhvcNAQELBQADggEBAEAuPqXBq6nMDxTlUVJWb1YD a3zl5MwnA1iiDPjcnGwSVNfHJ1rPLx2UMLKVX6+r1WNXC0fediEMpPB36z/r9CeX J2ho26D5KO4b4sCBQ9eN7fErxifRfUku9nIZrzBSSH7ULsj0Y5rYGKbYeuvfaapb wKGL7voqKkWF7GZElmWLnzdgIrS8vo+EI6eAyZTOsLXX4ClNj8qRbGW+sNvxkYT5 NbEqZ1ekH0BGD9ihTQ4lxzJCp2QFlEGbkEchGRxKnX7V+iu6JIUH/Yb4o93GMV1R ckcVxkPnY3j7VMRNwsfyVvMo/WfDVUNMSPw9uBOaM2hWR17qRAfOPfcofXP1vao= -----END CERTIFICATE-----Generated at Sat Mar 21 12:18:46 2026 by rpki-client