$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CB7AF50802CC11E6AA35863CC4F9AE02.roa File: CB7AF50802CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: s40dhU8PVwSIJYyVny3a6mMwcd7oSGfD4g601KJOsFI= Subject key identifier: A8:62:59:27:6A:DB:12:C7:45:28:A0:CD:B4:C3:E9:82:66:27:BD:0D Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2629 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CB7AF50802CC11E6AA35863CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:52:58 +0000 ROA not before: Mon 04 Aug 2025 16:24:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38445 IP address blocks: 120.28.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9769 (0x2629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48b0a-80a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:51:eb:09:bb:a9:97:d2:4f:d7:15:a1:34: 6f:0a:67:ed:03:43:c1:8f:3a:aa:6d:ea:f2:ca:a2: d5:4b:0c:74:2c:4b:34:15:be:e1:fb:5f:b6:59:79: 4b:f4:cc:11:32:c6:9e:2a:bd:55:fb:7a:db:cd:a2: 38:7e:cf:15:bb:0a:8d:9f:a0:ee:ac:ac:52:70:e5: 2f:03:34:1b:16:06:ea:2b:3f:66:f2:f4:a7:2c:39: 0d:8a:2f:30:a5:78:2b:4b:e8:d3:a7:42:65:e1:e6: eb:21:f7:95:7a:d4:a7:ff:9e:59:25:ee:c2:73:68: fc:d3:2e:8e:e8:f1:c6:1a:69:db:c1:d6:5e:94:ae: 1c:c6:1d:4f:73:83:4c:00:9c:0a:89:63:cb:24:57: 76:41:a6:1f:b8:11:6d:96:b6:b4:55:a3:df:8e:50: 9d:cf:40:84:2b:db:85:05:73:15:8c:f0:04:67:e8: 63:d7:ca:b0:93:64:4b:1a:26:7a:4a:26:99:cd:8e: 73:7d:a6:d1:22:86:87:43:3f:52:81:c0:f5:c9:96: 46:12:93:44:6b:b9:12:2e:37:93:e0:b5:b3:37:fd: 5a:f6:2b:43:42:02:36:a0:fd:c0:0c:f9:a4:48:07: 60:c9:74:ad:bc:7c:3b:c8:0b:24:d4:78:df:c2:9e: 2d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:62:59:27:6A:DB:12:C7:45:28:A0:CD:B4:C3:E9:82:66:27:BD:0D X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CB7AF50802CC11E6AA35863CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.28.21.0/24 Signature Algorithm: sha256WithRSAEncryption 75:90:71:80:80:15:25:bc:af:71:26:f4:cf:0b:33:aa:ca:30: d1:b5:22:25:b5:80:ea:4c:8f:d2:ce:d0:43:f6:a4:a0:7b:ab: 92:d2:66:9a:20:cb:4d:19:96:55:17:2a:28:79:99:c2:f2:56: cc:bc:91:a3:3a:81:35:3a:bb:07:96:57:80:74:dc:dd:b9:a4: f8:f1:3d:18:2e:0d:39:ac:86:56:30:70:87:a6:56:b8:36:9a: 80:42:ba:9a:a7:7b:e8:63:e5:f1:c1:7b:66:d6:e8:df:89:6a: cf:67:44:b9:ec:54:0c:c7:ae:ef:ad:39:82:17:29:ed:26:b3: 8a:aa:4f:82:5c:26:e4:a3:da:48:8a:1e:fc:02:16:6c:3b:59: 30:cb:82:29:18:33:bd:61:f8:e2:45:b8:c6:d1:d3:00:b1:89: 7f:93:2e:5f:13:b1:9b:74:48:c7:b2:7e:44:28:65:31:ef:1a: ef:8a:16:cb:c8:6e:88:37:cf:c2:03:c2:d2:2d:4e:15:63:87: c2:6e:e1:f8:b9:03:d9:fd:99:00:07:eb:66:3e:a1:4e:e8:cf: ee:ad:52:36:96:20:12:d5:ea:27:c9:f8:cc:d6:2b:50:a9:5e: e8:70:fb:45:52:9d:3d:c2:4f:e2:88:56:13:73:bc:a3:9c:a4: 5f:18:83:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICJikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGIwYS04MGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsFR6wm7qZfST9cVoTRvCmftA0PBjzqqberyyqLVSwx0LEs0Fb7h+1+2WXlL 9MwRMsaeKr1V+3rbzaI4fs8VuwqNn6DurKxScOUvAzQbFgbqKz9m8vSnLDkNii8w pXgrS+jTp0Jl4ebrIfeVetSn/55ZJe7Cc2j80y6O6PHGGmnbwdZelK4cxh1Pc4NM AJwKiWPLJFd2QaYfuBFtlra0VaPfjlCdz0CEK9uFBXMVjPAEZ+hj18qwk2RLGiZ6 SiaZzY5zfabRIoaHQz9SgcD1yZZGEpNEa7kSLjeT4LWzN/1a9itDQgI2oP3ADPmk SAdgyXStvHw7yAsk1Hjfwp4tFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKhiWSdq 2xLHRSigzbTD6YJmJ70NMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0I3QUY1MDgw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeBwVMA0GCSqGSIb3DQEBCwUAA4IBAQB1kHGAgBUlvK9xJvTPCzOq yjDRtSIltYDqTI/SztBD9qSge6uS0maaIMtNGZZVFyooeZnC8lbMvJGjOoE1OrsH lleAdNzduaT48T0YLg05rIZWMHCHpla4NpqAQrqap3voY+XxwXtm1ujfiWrPZ0S5 7FQMx67vrTmCFyntJrOKqk+CXCbko9pIih78AhZsO1kwy4IpGDO9YfjiRbjG0dMA sYl/ky5fE7GbdEjHsn5EKGUx7xrvihbLyG6IN8/CA8LSLU4VY4fCbuH4uQPZ/ZkA B+tmPqFO6M/urVI2liAS1eonyfjM1itQqV7ocPtFUp09wk/iiFYTc7yjnKRfGIMV -----END CERTIFICATE-----Generated at Sun Mar 8 03:33:58 2026 by rpki-client