$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa File: 057EA0EEC63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: KT7zEvJNVvs97oYvIe5jqgLfgSdT+s+2AedPsqQHGgo= Subject key identifier: 29:F6:1A:10:AB:79:89:8C:11:DB:15:EF:86:FF:16:FA:10:5A:70:9F Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 0931 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:28:20 +0000 ROA not before: Tue 02 Sep 2025 21:12:04 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16815 IP address blocks: 202.173.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 16:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2353 (0x931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:04 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a57454-246b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:70:99:88:e8:25:ca:a5:0c:53:be:70:f4:34: 48:35:4a:a4:ed:ff:cb:5e:d7:a7:00:41:1a:4d:0f: 2f:c6:4a:6a:ac:8d:ce:a8:33:40:55:84:6b:a6:ba: a0:11:30:af:d2:79:e0:fd:c7:20:c7:e3:17:52:f8: d2:82:43:31:13:3c:ff:bf:b9:b7:38:2b:8f:00:ee: f3:c9:5c:8e:b0:e5:e0:d7:39:23:8c:58:52:09:1c: 15:a6:ff:9d:1a:30:6f:1f:94:b4:e4:c8:71:42:31: 7e:41:de:47:fb:d1:6b:a4:c9:58:2c:4a:85:7d:6a: 3c:b1:e4:27:1f:84:5b:df:f9:61:0b:09:5d:22:34: 48:76:e7:99:2a:67:71:11:34:d3:d0:49:f2:a2:89: 77:71:b7:b3:dc:45:d3:de:bd:9d:c3:7d:ca:3f:a0: a2:98:94:92:eb:1c:78:25:69:3b:3f:82:fa:73:86: 77:a0:15:f2:85:d7:d2:f2:cf:1a:29:80:de:c8:9e: 4e:82:2b:41:7b:63:8c:7f:7b:6c:75:45:20:ab:fe: 95:07:4a:7a:ef:69:39:4f:9d:f0:e8:b3:64:79:6f: 22:f5:4b:f7:95:9d:e5:42:cb:11:8b:82:2c:79:b4: 4a:75:94:a5:91:f2:a9:38:86:1b:8a:f6:26:f9:2b: 02:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F6:1A:10:AB:79:89:8C:11:DB:15:EF:86:FF:16:FA:10:5A:70:9F X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/057EA0EEC63A11EAB59CC262C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/21 Signature Algorithm: sha256WithRSAEncryption 49:9a:b4:78:0d:ec:70:1d:74:cc:cc:e9:28:a6:20:dd:3a:60: 44:e4:3c:d0:a6:de:3c:2c:53:df:82:c8:b3:df:84:ac:1b:7a: f5:0b:80:8d:5f:1b:6c:50:27:18:e5:03:87:50:5a:7e:e1:9d: 2f:73:ac:96:1c:0a:93:5b:f0:aa:8d:d5:f9:b7:c4:d0:46:e3: 8e:7e:6d:cf:9c:f0:50:96:ef:54:d4:8d:ea:e5:3a:d1:2e:42: 2d:73:41:9d:be:ca:7b:b2:a2:ea:0a:a9:c2:d3:e9:09:99:07: e3:39:89:6a:99:62:97:2e:de:07:7a:0f:27:80:c3:d4:99:68: 27:8f:c2:20:1e:75:1f:6c:50:99:26:8f:d1:6e:63:ff:0e:0c: 41:44:f5:61:2e:89:56:c0:4b:b1:80:fe:62:db:78:87:e4:01: 75:0f:40:a8:ab:1c:c6:9e:ff:52:04:ca:59:7f:76:e7:97:c4: 8f:f6:34:97:96:64:c5:ed:6b:f8:47:5f:67:96:82:db:78:57: f6:05:1b:37:d1:36:f2:23:88:14:4f:f3:c7:2f:73:43:7c:16: fe:7e:05:05:69:c6:be:7f:42:3d:5d:b6:06:14:9c:22:ee:b6: 97:6e:40:1c:18:54:6d:71:51:20:3b:4f:af:b3:cf:ed:f8:10: 11:17:fe:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjA0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ1NC0yNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnCZiOglyqUMU75w9DRINUqk7f/LXtenAEEaTQ8vxkpqrI3OqDNAVYRrprqg ETCv0nng/ccgx+MXUvjSgkMxEzz/v7m3OCuPAO7zyVyOsOXg1zkjjFhSCRwVpv+d GjBvH5S05MhxQjF+Qd5H+9FrpMlYLEqFfWo8seQnH4Rb3/lhCwldIjRIdueZKmdx ETTT0Enyool3cbez3EXT3r2dw33KP6CimJSS6xx4JWk7P4L6c4Z3oBXyhdfS8s8a KYDeyJ5OgitBe2OMf3tsdUUgq/6VB0p672k5T53w6LNkeW8i9Uv3lZ3lQssRi4Is ebRKdZSlkfKpOIYbivYm+SsCDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCn2GhCr eYmMEdsV74b/FvoQWnCfMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDU3RUEwRUVD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyq0YMA0GCSqGSIb3DQEBCwUAA4IBAQBJmrR4DexwHXTMzOkopiDd OmBE5DzQpt48LFPfgsiz34SsG3r1C4CNXxtsUCcY5QOHUFp+4Z0vc6yWHAqTW/Cq jdX5t8TQRuOOfm3PnPBQlu9U1I3q5TrRLkItc0Gdvsp7sqLqCqnC0+kJmQfjOYlq mWKXLt4Heg8ngMPUmWgnj8IgHnUfbFCZJo/RbmP/DgxBRPVhLolWwEuxgP5i23iH 5AF1D0CoqxzGnv9SBMpZf3bnl8SP9jSXlmTF7Wv4R19nloLbeFf2BRs30TbyI4gU T/PHL3NDfBb+fgUFaca+f0I9XbYGFJwi7raXbkAcGFRtcVEgO0+vs8/t+BARF/4j -----END CERTIFICATE-----Generated at Wed Mar 11 01:12:03 2026 by rpki-client