$ rpki-client -vvf rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/ABF8D808CA6D11F084F59728C4F9AE02.roa File: ABF8D808CA6D11F084F59728C4F9AE02.roa (raw, json) Hash identifier: CpehDruHAKWYlilkVXEQKfS5FGCQ1Hj+67P+aQNX0UE= Subject key identifier: 8D:0E:A7:F7:C6:94:12:FF:2F:92:04:16:22:5D:08:7A:E7:60:ED:85 Certificate issuer: /CN=A9135D1F/serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Certificate serial: 80 Authority key identifier: 0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/ABF8D808CA6D11F084F59728C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:16:39 +0000 ROA not before: Wed 26 Nov 2025 02:14:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154329 IP address blocks: 203.21.65.0/24 maxlen: 24 203.28.195.0/24 maxlen: 24 203.32.55.0/24 maxlen: 24 203.34.190.0/24 maxlen: 24 2001:df2:d440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135D1F, serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Validity Not Before: Nov 26 02:14:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58db7-9f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:e0:00:f8:16:67:70:45:d5:93:69:95:b3: e7:5f:c9:b6:8e:42:60:2e:b9:ff:f5:3f:dc:05:6d: 74:6d:2b:26:63:d0:82:94:18:c4:cb:19:32:9b:9f: 82:d5:c1:87:61:7f:8a:0a:e0:6b:e7:94:f9:36:7d: 84:e9:b0:f9:7f:a4:ed:78:9b:fc:dc:16:73:5e:21: 33:86:f9:90:d8:15:77:3e:08:f0:e5:d6:29:f9:b0: 40:dc:13:e2:f1:c4:dc:4e:38:ca:35:54:82:76:64: fa:35:aa:ad:cd:cf:e6:66:c0:d1:b7:9e:52:75:1f: 18:d1:c8:70:19:59:37:83:8c:2a:8e:03:77:07:fe: 34:78:1a:e6:28:8b:43:46:13:c5:8e:b7:e2:15:59: 34:a0:18:ce:43:9b:48:d5:0d:85:cd:63:72:f8:ef: bd:c2:c8:53:d5:a4:25:3a:49:bc:de:43:49:35:f2: 14:99:b7:30:f5:bb:e0:bf:8f:81:03:a3:75:7f:e1: 91:c4:52:7a:86:cf:46:13:1c:df:69:a3:8f:8a:64: 6d:39:6f:59:93:0c:2b:9d:0e:d3:7b:38:22:df:82: cf:0f:4c:f2:cd:84:79:cc:27:6d:98:35:5c:82:f1: f5:b3:33:a1:e2:73:e4:f8:ba:fd:8d:f7:b3:ca:34: 49:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0E:A7:F7:C6:94:12:FF:2F:92:04:16:22:5D:08:7A:E7:60:ED:85 X509v3 Authority Key Identifier: keyid:0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/ABF8D808CA6D11F084F59728C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.21.65.0/24 203.28.195.0/24 203.32.55.0/24 203.34.190.0/24 IPv6: 2001:df2:d440::/48 Signature Algorithm: sha256WithRSAEncryption 58:4c:29:2f:b5:3c:c5:31:fc:67:49:4a:a5:47:33:29:27:b2: a3:6d:34:51:24:c6:57:ca:48:4a:c3:85:96:3b:ba:97:e7:8f: 43:73:2b:12:e7:e0:90:b3:ea:b9:9a:78:c8:43:3c:53:bc:98: fc:3e:1c:5b:88:df:9d:b1:db:1e:cc:b9:6f:cd:e1:43:ae:45: 91:b5:cf:b3:11:43:e6:df:f4:46:03:c7:59:92:f6:ce:bf:6e: 97:09:ba:a6:35:4d:34:e4:ff:49:fe:40:8f:1a:5f:f1:ba:a1: 07:df:9d:7c:0a:4b:bc:be:f6:8c:05:a1:ae:30:a7:0f:a6:4d: 73:89:ce:d8:41:78:56:65:aa:35:33:c2:c5:4a:8b:36:42:03: 78:74:1c:2e:de:77:8c:07:63:75:22:a2:65:9b:ec:6a:b2:12: a8:3b:21:4b:0e:28:22:7f:c1:fa:c5:44:81:45:e6:2b:5f:c4: e4:dc:9a:58:af:fd:d4:fd:0a:fb:d8:14:09:d5:41:de:89:7c: 0e:e7:92:48:47:9d:6d:08:64:d9:ce:d5:77:b8:9d:3a:ca:ee: 5b:9d:92:af:06:6e:8e:10:20:3f:0c:25:f4:74:b3:fb:94:a7: 18:83:59:9f:2c:5c:1a:82:7e:51:cd:c1:d3:1c:9d:3c:9a:64: 0a:21:08:c4 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVEMUYxMTAvBgNVBAUTKDBDQUI2OEUwNjkwODNBNDM4OEU4RkM2OTc1OEYwNDU5 NjJGRDAxQUYwHhcNMjUxMTI2MDIxNDQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGRiNy05ZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznfgAPgWZ3BF1ZNplbPnX8m2jkJgLrn/9T/cBW10bSsmY9CClBjEyxkym5+C 1cGHYX+KCuBr55T5Nn2E6bD5f6TteJv83BZzXiEzhvmQ2BV3Pgjw5dYp+bBA3BPi 8cTcTjjKNVSCdmT6Naqtzc/mZsDRt55SdR8Y0chwGVk3g4wqjgN3B/40eBrmKItD RhPFjrfiFVk0oBjOQ5tI1Q2FzWNy+O+9wshT1aQlOkm83kNJNfIUmbcw9bvgv4+B A6N1f+GRxFJ6hs9GExzfaaOPimRtOW9ZkwwrnQ7Tezgi34LPD0zyzYR5zCdtmDVc gvH1szOh4nPk+Lr9jfezyjRJ4QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFI0Op/fG lBL/L5IEFiJdCHrnYO2FMB8GA1UdIwQYMBaAFAyraOBpCDpDiOj8aXWPBFli/QGv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUQxRi9BRDIwMjFBNDk3 NzQxMUYwODBCRjFFNjRDNEY5QUUwMi9ES3RvNEdrSU9rT0k2UHhwZFk4RVdXTDlB YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLdG80R2tJT2tPSTZQeHBkWThFV1dMOUFhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzVEMUYvQUQyMDIxQTQ5Nzc0MTFGMDgwQkYxRTY0QzRGOUFFMDIvQUJGOEQ4MDhD QTZEMTFGMDg0RjU5NzI4QzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAe BAIAATAYAwQAyxVBAwQAyxzDAwQAyyA3AwQAyyK+MA8EAgACMAkDBwAgAQ3y1EAw DQYJKoZIhvcNAQELBQADggEBAFhMKS+1PMUx/GdJSqVHMyknsqNtNFEkxlfKSErD hZY7upfnj0NzKxLn4JCz6rmaeMhDPFO8mPw+HFuI352x2x7MuW/N4UOuRZG1z7MR Q+bf9EYDx1mS9s6/bpcJuqY1TTTk/0n+QI8aX/G6oQffnXwKS7y+9owFoa4wpw+m TXOJzthBeFZlqjUzwsVKizZCA3h0HC7ed4wHY3UiomWb7GqyEqg7IUsOKCJ/wfrF RIFF5itfxOTcmliv/dT9CvvYFAnVQd6JfA7nkkhHnW0IZNnO1Xe4nTrK7ludkq8G bo4QID8MJfR0s/uUpxiDWZ8sXBqCflHNwdMcnTyaZAohCMQ= -----END CERTIFICATE-----Generated at Sat Mar 21 15:02:59 2026 by rpki-client