$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa File: CD70D3940A7811EEA489D07BC4F9AE02.roa (raw, json) Hash identifier: hrBe2Pa2BarjYurRPqX3BOavVRlDYYYGwxyR3VQWUl4= Subject key identifier: 4D:1A:41:82:49:41:39:BC:67:47:E4:0E:1A:F2:A4:39:02:30:ED:C4 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2628 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:52:57 +0000 ROA not before: Mon 04 Aug 2025 16:24:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 26344 IP address blocks: 120.28.20.0/24 maxlen: 24 222.127.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 15:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9768 (0x2628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48b09-50dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:73:cd:a9:cd:9e:ce:22:06:b2:69:b6:5f:6b: b5:19:89:0f:6a:cc:62:8b:63:b1:de:86:31:e1:d0: 54:c8:74:90:81:87:7e:a8:b9:a7:89:bd:7f:94:42: 2c:4a:10:82:5d:04:9e:f6:ed:8b:6a:26:67:e5:54: 11:ad:5f:4b:0e:11:a8:cc:be:c4:fe:b8:bf:91:f6: 99:06:db:1c:a4:c9:ce:69:d0:fd:23:3a:a0:93:3c: 2a:72:78:bd:72:80:61:c6:93:13:15:75:9d:94:f3: e1:c1:ca:7c:98:58:48:2c:cd:f2:d9:19:9f:7e:24: 61:dd:e3:b7:c2:b9:c9:30:a2:b3:f3:b4:65:1e:b7: a4:88:48:2b:ad:13:3e:33:3b:9e:53:cf:56:44:7d: b0:11:d4:b7:de:a4:ce:7d:7c:92:97:fc:77:f7:7e: 62:ee:da:a4:18:6e:0d:5c:4f:a3:70:3c:bf:d9:dd: cf:6b:12:a0:03:6c:5e:dd:e1:18:e3:69:14:2b:5b: f7:78:bb:f6:0c:db:05:16:fa:23:b2:0b:ed:59:59: ef:7a:23:17:6b:e6:44:b9:6d:72:cb:2a:87:89:ba: bd:43:5d:54:bb:c4:e6:93:76:cf:42:39:22:19:d6: 38:d0:49:59:6a:f0:ac:32:d4:2c:e3:ee:95:1c:3e: 8f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1A:41:82:49:41:39:BC:67:47:E4:0E:1A:F2:A4:39:02:30:ED:C4 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 120.28.20.0/24 222.127.19.0/24 Signature Algorithm: sha256WithRSAEncryption 35:3a:ab:0d:26:29:8c:f9:c7:b9:c6:88:4f:71:1c:cc:39:9f: 1e:d1:de:f8:07:8e:4f:56:58:a7:8a:12:df:b9:56:22:16:80: 7d:87:ee:be:5f:65:99:7f:f8:b8:67:fd:09:c2:b4:83:df:ce: ed:b2:21:a6:df:5f:b3:b5:c8:03:99:92:15:ed:7f:0a:fd:e5: fc:34:a6:b6:82:86:37:58:83:7c:70:7a:42:dc:cb:66:9e:7d: e2:f8:5d:78:b6:33:c3:7f:19:b5:47:f0:81:e6:49:49:a9:86: cb:e0:c2:d6:2d:c1:66:f3:00:a7:5c:b2:70:35:29:41:83:1c: 2e:9f:08:da:22:17:b9:36:0a:1d:9d:cd:56:ed:9f:71:a6:d5: 49:c2:0a:22:e4:ac:2e:6d:af:5e:9d:53:d9:c1:67:0e:02:20: 9e:9f:aa:3f:9c:d4:b5:f7:f9:4a:1d:44:78:f2:fe:f2:a4:2b: 61:19:12:e9:19:07:32:5b:f1:43:36:2f:a6:23:b1:ef:63:e3: 45:b9:0c:ab:32:54:59:2c:b7:51:87:09:6c:ca:6c:59:3e:ef: f4:7e:a5:e5:68:db:81:10:22:bb:95:79:d0:33:c9:4b:f8:c0: 8a:74:5b:a8:cd:8e:75:6b:be:de:77:0a:6d:29:7d:cd:41:a3: 31:32:ec:d4 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICJigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGIwOS01MGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nPNqc2eziIGsmm2X2u1GYkPasxii2Ox3oYx4dBUyHSQgYd+qLmnib1/lEIs ShCCXQSe9u2LaiZn5VQRrV9LDhGozL7E/ri/kfaZBtscpMnOadD9Izqgkzwqcni9 coBhxpMTFXWdlPPhwcp8mFhILM3y2RmffiRh3eO3wrnJMKKz87RlHrekiEgrrRM+ MzueU89WRH2wEdS33qTOfXySl/x3935i7tqkGG4NXE+jcDy/2d3PaxKgA2xe3eEY 42kUK1v3eLv2DNsFFvojsgvtWVnveiMXa+ZEuW1yyyqHibq9Q11Uu8Tmk3bPQjki GdY40ElZavCsMtQs4+6VHD6PNQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFE0aQYJJ QTm8Z0fkDhrypDkCMO3EMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0Q3MEQzOTQw QTc4MTFFRUE0ODlEMDdCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAeBwUAwQA3n8TMA0GCSqGSIb3DQEBCwUAA4IBAQA1OqsNJimM+ce5 xohPcRzMOZ8e0d74B45PVlinihLfuVYiFoB9h+6+X2WZf/i4Z/0JwrSD387tsiGm 31+ztcgDmZIV7X8K/eX8NKa2goY3WIN8cHpC3Mtmnn3i+F14tjPDfxm1R/CB5klJ qYbL4MLWLcFm8wCnXLJwNSlBgxwunwjaIhe5Ngodnc1W7Z9xptVJwgoi5Kwuba9e nVPZwWcOAiCen6o/nNS19/lKHUR48v7ypCthGRLpGQcyW/FDNi+mI7HvY+NFuQyr MlRZLLdRhwlsymxZPu/0fqXlaNuBECK7lXnQM8lL+MCKdFuozY51a77edwptKX3N QaMxMuzU -----END CERTIFICATE-----Generated at Fri Mar 6 02:47:39 2026 by rpki-client