$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa File: DB020E9C010D11EAA82AD83CC4F9AE02.roa (raw, json) Hash identifier: p5o94r8Nqv4rwWcziwn3zPkQlH3UimrqCCaNbjZ91JA= Subject key identifier: D0:98:D7:F6:7B:E4:3B:CF:80:68:78:A0:65:D5:0D:46:FD:76:93:D4 Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0CE2 Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa Signing time: Wed 28 Jan 2026 18:15:17 +0000 ROA not before: Wed 28 Jan 2026 18:15:17 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136039 IP address blocks: 43.229.124.0/22 maxlen: 24 103.80.108.0/22 maxlen: 24 2400:50c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 17:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27, serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: Jan 28 18:15:17 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=697a5235-3e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b1:9c:bd:df:a2:2b:85:45:58:91:20:4e:d8: 61:b4:85:fc:d6:d9:28:49:73:03:a4:81:d1:06:c9: b7:60:bb:78:3c:75:e6:c1:9a:c8:c2:24:7f:6f:29: 39:e4:f1:ad:5a:e3:8b:f3:4a:2e:66:48:0f:0e:ca: f8:14:e5:90:da:c3:41:c7:fc:9b:0d:7e:d9:23:9c: b7:f6:ad:84:c5:40:bf:11:8a:5a:41:59:57:7f:af: 26:db:bf:50:f4:65:cf:6e:c8:1b:53:91:5a:f7:c8: b2:6e:8b:45:92:42:14:e9:cb:e6:44:a5:dd:6e:57: 5e:f5:e4:6b:34:b3:bf:cb:f6:99:10:04:24:ab:39: 3a:16:54:09:7f:a5:5d:b5:a2:ea:89:c7:64:bb:ba: f0:bb:62:5f:fc:b9:fe:06:f5:3d:75:b9:a1:2b:d3: 66:b3:bf:fe:40:f2:4e:9c:ab:28:96:6f:36:69:17: 42:62:47:76:72:b4:03:c2:7c:f5:f5:5e:5c:30:8c: fd:d4:a3:f6:13:85:47:fd:ba:9f:ac:3b:83:7c:f8: 36:94:35:8b:8d:ad:e1:41:22:b1:b6:d6:20:89:94: af:a7:a6:44:f5:be:6d:66:47:19:64:dc:f9:2d:9b: 28:fc:71:e3:31:54:33:86:54:99:3f:2c:94:9f:e7: d1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:98:D7:F6:7B:E4:3B:CF:80:68:78:A0:65:D5:0D:46:FD:76:93:D4 X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.124.0/22 103.80.108.0/22 IPv6: 2400:50c0::/32 Signature Algorithm: sha256WithRSAEncryption dd:7e:ff:fb:a6:c4:50:e7:78:da:45:dc:66:28:69:a2:67:57: a1:54:27:60:57:9d:5d:37:7c:9b:e6:8b:cf:89:fe:ad:11:24: b4:5d:11:47:19:0d:85:c8:8d:e8:a2:a4:c3:c5:03:c2:aa:6a: e1:0f:51:34:5c:28:1f:e2:31:d9:7c:5c:22:5f:00:7d:28:c5: d5:8c:10:1d:21:a7:bf:03:db:b0:eb:00:47:8d:af:a4:81:9e: e6:43:81:53:89:67:7a:f3:8a:6a:f5:65:0b:73:50:0a:0c:ff: 9a:07:37:db:f4:74:e6:e0:a3:ca:cf:bd:7a:9f:5d:a4:6e:04: 39:1a:6f:b9:e7:5f:1b:f4:af:37:ca:bf:3d:45:d7:ea:d2:3d: 3c:0a:7d:13:83:cf:3a:8a:01:3a:f6:0a:20:9d:87:bf:da:b2: 13:35:1c:83:9d:2f:e6:2a:00:06:48:c6:4b:cf:5e:55:a5:c6: fd:2b:f3:2e:e0:69:19:01:4f:c3:29:e8:b2:6c:b9:c7:62:78: 2c:9f:6d:47:92:18:b5:3c:fa:c0:cc:71:20:67:5c:e6:39:20: 16:09:0c:40:c3:27:a0:c6:1e:52:3a:87:72:fb:de:c3:1c:e7: 65:e1:0e:0b:b7:ba:70:50:5b:96:94:eb:4b:16:3a:9e:de:9e: d6:c8:90:2e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjYwMTI4MTgxNTE3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhNTIzNS0zZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7Gcvd+iK4VFWJEgTthhtIX81tkoSXMDpIHRBsm3YLt4PHXmwZrIwiR/byk5 5PGtWuOL80ouZkgPDsr4FOWQ2sNBx/ybDX7ZI5y39q2ExUC/EYpaQVlXf68m279Q 9GXPbsgbU5Fa98iybotFkkIU6cvmRKXdblde9eRrNLO/y/aZEAQkqzk6FlQJf6Vd taLqicdku7rwu2Jf/Ln+BvU9dbmhK9Nms7/+QPJOnKsolm82aRdCYkd2crQDwnz1 9V5cMIz91KP2E4VH/bqfrDuDfPg2lDWLja3hQSKxttYgiZSvp6ZE9b5tZkcZZNz5 LZso/HHjMVQzhlSZPyyUn+fREwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNCY1/Z7 5DvPgGh4oGXVDUb9dpPUMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDMjcvNjVCQjQ4OUMwMDRBMTFFQTk4MEYyQTdDQzRGOUFFMDIvREIwMjBFOUMw MTBEMTFFQUE4MkFEODNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr5XwDBAJnUGwwDQQCAAIwBwMFACQAUMAwDQYJKoZIhvcN AQELBQADggEBAN1+//umxFDneNpF3GYoaaJnV6FUJ2BXnV03fJvmi8+J/q0RJLRd EUcZDYXIjeiipMPFA8KqauEPUTRcKB/iMdl8XCJfAH0oxdWMEB0hp78D27DrAEeN r6SBnuZDgVOJZ3rzimr1ZQtzUAoM/5oHN9v0dObgo8rPvXqfXaRuBDkab7nnXxv0 rzfKvz1F1+rSPTwKfRODzzqKATr2CiCdh7/ashM1HIOdL+YqAAZIxkvPXlWlxv0r 8y7gaRkBT8Mp6LJsucdieCyfbUeSGLU8+sDMcSBnXOY5IBYJDEDDJ6DGHlI6h3L7 3sMc52XhDgu3unBQW5aU60sWOp7entbIkC4= -----END CERTIFICATE-----Generated at Thu Feb 19 18:18:04 2026 by rpki-client