$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa File: 4CF2D3B68C5411EF84ABE03CC4F9AE02.roa (raw, json) Hash identifier: s4JLvZfEEcVWrVTGXPW1vZiV5kDqzl4x/TrNjlyz8lg= Subject key identifier: AB:D0:0D:64:E8:31:E6:28:E0:FB:F7:69:B1:D7:5A:09:A9:00:23:0A Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2618 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:52:43 +0000 ROA not before: Mon 04 Aug 2025 16:24:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135645 IP address blocks: 203.177.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9752 (0x2618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48afb-a8fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:91:3c:14:3b:cd:5d:06:27:1f:42:05:08:be: a2:47:fe:24:79:4d:26:78:7e:68:8d:f1:69:90:4c: 3e:32:04:66:a6:1a:79:0e:35:32:f8:af:b2:74:f7: c6:6f:26:27:6f:93:fe:a0:1d:d0:5a:7a:f5:8d:be: 5e:53:7c:60:96:09:e8:49:5a:b1:cb:3d:30:ca:b2: 65:56:91:40:08:95:7c:dd:94:cb:92:99:0e:53:22: 9f:c5:aa:4d:53:6b:87:17:31:43:59:e2:f7:7f:01: 7c:5d:eb:98:e6:b5:4e:38:6f:6f:ea:2b:68:d1:5f: c7:33:53:99:d6:bd:2a:37:c2:e2:09:cc:9f:a0:1f: e3:d9:49:cb:4c:e8:dd:50:ea:c6:90:1c:c2:e8:f9: c9:f9:23:e4:a7:e8:59:92:1d:87:d4:6e:70:ea:b5: 20:e9:89:3b:df:66:83:2a:33:22:80:79:a4:96:b8: 1a:1f:3e:57:73:47:69:99:e1:40:91:cb:1c:49:20: fb:85:45:2e:29:b0:db:73:de:82:0d:a3:24:86:09: 4b:92:26:6f:4b:7b:51:e5:76:ea:3f:6f:7b:74:eb: 48:fc:51:db:ef:fb:8e:db:57:61:26:b1:f7:a6:c6: 2a:6a:ad:ce:b9:8c:5a:89:d8:6f:39:a0:cb:5c:a3: ab:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D0:0D:64:E8:31:E6:28:E0:FB:F7:69:B1:D7:5A:09:A9:00:23:0A X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.177.125.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ae:6a:58:cc:f0:7d:d3:ff:18:27:88:15:9e:11:80:06:a2: a1:f8:21:6e:f1:2d:df:46:02:d5:4b:06:7a:f1:5a:bd:f8:42: be:23:c6:75:04:76:3a:80:20:de:d3:7d:02:a2:c5:06:b1:09: a7:2e:54:21:c1:96:7b:86:52:b0:99:5c:cc:7e:55:69:79:3b: eb:c5:66:fe:60:72:b2:f3:f9:f8:2b:fd:44:67:b6:fd:09:a5: bc:c4:3e:bd:b3:0e:94:93:d9:55:14:fc:aa:3d:d5:e2:54:a1: 17:72:c7:2e:9b:3b:57:de:59:8d:80:f7:68:ec:82:90:9c:75: 2b:c0:89:da:f7:85:62:bd:62:4e:c8:3c:76:d8:dc:cf:00:c4: 3f:28:42:06:82:18:62:47:81:ac:01:7a:8b:26:32:6a:9e:0c: 93:ae:57:dd:b2:6b:02:1d:4d:2a:35:8f:b0:33:ee:32:c5:03: d7:47:37:d6:7f:03:da:51:31:d9:88:28:b2:48:b3:7b:f7:13: 43:22:6e:7a:0c:ea:5b:87:87:80:8b:be:c4:83:16:e6:bf:dc: 0a:82:94:f9:4b:22:af:40:80:f3:43:f4:be:74:ab:1d:77:a0: 5a:a8:82:c4:39:7b:98:92:4f:08:34:75:be:40:00:72:c0:a6: 01:89:09:e0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICJhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGFmYi1hOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JE8FDvNXQYnH0IFCL6iR/4keU0meH5ojfFpkEw+MgRmphp5DjUy+K+ydPfG byYnb5P+oB3QWnr1jb5eU3xglgnoSVqxyz0wyrJlVpFACJV83ZTLkpkOUyKfxapN U2uHFzFDWeL3fwF8XeuY5rVOOG9v6ito0V/HM1OZ1r0qN8LiCcyfoB/j2UnLTOjd UOrGkBzC6PnJ+SPkp+hZkh2H1G5w6rUg6Yk732aDKjMigHmklrgaHz5Xc0dpmeFA kcscSSD7hUUuKbDbc96CDaMkhglLkiZvS3tR5XbqP297dOtI/FHb7/uO21dhJrH3 psYqaq3OuYxaidhvOaDLXKOrjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKvQDWTo MeYo4Pv3abHXWgmpACMKMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvNENGMkQzQjY4 QzU0MTFFRjg0QUJFMDNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy7F9MA0GCSqGSIb3DQEBCwUAA4IBAQC4rmpYzPB90/8YJ4gVnhGA BqKh+CFu8S3fRgLVSwZ68Vq9+EK+I8Z1BHY6gCDe030CosUGsQmnLlQhwZZ7hlKw mVzMflVpeTvrxWb+YHKy8/n4K/1EZ7b9CaW8xD69sw6Uk9lVFPyqPdXiVKEXcscu mztX3lmNgPdo7IKQnHUrwIna94VivWJOyDx22NzPAMQ/KEIGghhiR4GsAXqLJjJq ngyTrlfdsmsCHU0qNY+wM+4yxQPXRzfWfwPaUTHZiCiySLN79xNDIm56DOpbh4eA i77Egxbmv9wKgpT5SyKvQIDzQ/S+dKsdd6BaqILEOXuYkk8INHW+QABywKYBiQng -----END CERTIFICATE-----Generated at Sun Mar 8 03:33:53 2026 by rpki-client