$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa File: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (raw, json) Hash identifier: Z9psePfPHTD1JWqFIEMEnQFvkSAfBuwnGTYYVZWeEbI= Subject key identifier: 80:0A:52:38:D3:49:CC:D2:AA:E2:1E:00:AB:94:6E:45:FD:55:B5:2B Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 0146 Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:32:36 +0000 ROA not before: Fri 21 Nov 2025 03:21:18 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9466 IP address blocks: 202.1.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 04:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Nov 21 03:21:18 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58364-bf63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:bd:36:f5:c2:aa:28:45:32:b9:72:ed:d2: 6f:27:db:77:9c:7a:d9:af:24:4e:ba:d0:9f:41:8e: 76:38:4f:88:e1:b0:69:0f:86:a3:67:15:08:69:bc: bd:e9:cc:fd:b5:e8:f4:40:94:0a:c6:dc:76:cd:77: 30:bb:51:1d:6a:f9:4e:b1:ed:f6:63:ee:2b:62:24: 16:92:bc:57:bc:71:ba:4f:e1:70:c0:30:d9:e6:b5: 89:cd:cd:95:57:91:46:22:eb:20:d4:1e:05:96:0c: 96:9d:e5:7a:ca:3b:57:2d:4c:c7:ad:ee:9e:c3:67: 5d:40:d1:56:b9:44:32:b1:9e:be:eb:26:89:bc:04: df:79:ae:35:51:28:97:94:e4:b5:ff:b4:b2:44:c8: b0:d4:b6:f6:85:a1:af:ba:41:72:d9:a0:79:43:46: 1d:ed:2f:e8:06:7a:23:20:eb:2c:7f:37:2e:d6:14: fa:01:e0:3e:b6:26:0f:f7:a0:0f:ad:6f:0b:ed:05: ab:1d:e9:69:5e:63:ba:71:2e:60:8b:13:51:93:12: e8:04:37:a1:28:e8:0c:2d:28:d6:30:06:b2:e1:de: 85:95:e5:76:87:c5:24:9c:bc:42:3a:96:ea:2f:e9: ec:6a:90:90:3b:2f:fd:1e:ea:30:36:0d:e0:4d:fb: ed:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0A:52:38:D3:49:CC:D2:AA:E2:1E:00:AB:94:6E:45:FD:55:B5:2B X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.1.128.0/19 Signature Algorithm: sha256WithRSAEncryption 2f:5c:f2:e8:be:66:2f:2c:e6:28:98:b0:5a:10:a6:5f:9b:70: 63:f0:bc:81:77:f7:4d:48:49:b0:6c:5b:f9:d3:26:d1:26:b6: be:a0:e7:e5:b7:bf:03:19:3b:26:6b:f8:5d:f6:7f:41:28:2b: ae:e9:4b:7d:f5:7c:00:eb:4b:db:6e:e7:bd:2a:71:ae:50:1f: aa:be:00:a8:2e:27:19:a7:64:8f:c5:7b:a2:33:9d:5a:5f:3b: 92:99:6d:a5:e4:a4:f7:9b:b2:c8:9a:9c:cc:4c:e7:6a:4c:f0: d6:09:df:12:b0:1d:bf:0b:ab:70:f9:2f:bf:e6:59:fa:d7:5f: fe:f0:9a:cc:5e:26:cc:16:ca:e7:bd:69:e8:08:be:5e:1b:1c: af:2e:0c:1e:d9:02:d5:e8:31:79:c9:30:3e:12:7e:0d:95:3e: 3d:39:94:38:59:22:26:a7:f2:1c:8a:5d:65:aa:4d:67:9a:56: c5:a2:eb:64:8f:95:ac:84:51:7c:e6:61:f5:39:5b:30:7f:a3: 83:8a:1e:ef:86:c1:c2:e3:79:84:56:17:55:d2:a7:21:f1:5e: fd:db:9b:d8:1b:47:54:84:3f:67:81:2a:54:07:52:4d:9d:c3: 8c:4a:0b:46:55:71:c4:20:61:51:34:27:d6:69:1e:c5:75:af: 2a:c6:67:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUxMTIxMDMyMTE4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODM2NC1iZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXy9NvXCqihFMrly7dJvJ9t3nHrZryROutCfQY52OE+I4bBpD4ajZxUIaby9 6cz9tej0QJQKxtx2zXcwu1EdavlOse32Y+4rYiQWkrxXvHG6T+FwwDDZ5rWJzc2V V5FGIusg1B4FlgyWneV6yjtXLUzHre6ew2ddQNFWuUQysZ6+6yaJvATfea41USiX lOS1/7SyRMiw1Lb2haGvukFy2aB5Q0Yd7S/oBnojIOssfzcu1hT6AeA+tiYP96AP rW8L7QWrHelpXmO6cS5gixNRkxLoBDehKOgMLSjWMAay4d6FleV2h8UknLxCOpbq L+nsapCQOy/9HuowNg3gTfvtQwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIAKUjjT SczSquIeAKuUbkX9VbUrMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQTcvQjFCM0UyRDYzODYyMTFFRjlFMTdFODZGQzRGOUFFMDIvMUREODVEQTIz ODYzMTFFRkIxMEE2QTFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFygGAMA0GCSqGSIb3DQEBCwUAA4IBAQAvXPLovmYvLOYomLBaEKZf m3Bj8LyBd/dNSEmwbFv50ybRJra+oOflt78DGTsma/hd9n9BKCuu6Ut99XwA60vb bue9KnGuUB+qvgCoLicZp2SPxXuiM51aXzuSmW2l5KT3m7LImpzMTOdqTPDWCd8S sB2/C6tw+S+/5ln611/+8JrMXibMFsrnvWnoCL5eGxyvLgwe2QLV6DF5yTA+En4N lT49OZQ4WSImp/Icil1lqk1nmlbFoutkj5WshFF85mH1OVswf6ODih7vhsHC43mE VhdV0qch8V7925vYG0dUhD9ngSpUB1JNncOMSgtGVXHEIGFRNCfWaR7Fda8qxmd8 -----END CERTIFICATE-----Generated at Thu Mar 19 20:46:09 2026 by rpki-client