$ rpki-client -vvf rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa File: 438B5C5E2CD411EC8884B41FC4F9AE02.roa (raw, json) Hash identifier: O1SYsuH+O9dWW6LgLbXKRQezQd0QTg2T+y3+yaSnx9w= Subject key identifier: 8B:53:91:84:1E:94:DC:04:48:61:DF:75:3B:55:74:4D:B0:27:93:4E Certificate issuer: /CN=A9185344/serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Certificate serial: 3547 Authority key identifier: 89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:22:11 +0000 ROA not before: Mon 06 Oct 2025 15:11:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 198247 IP address blocks: 203.171.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 15:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13639 (0x3547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185344, serialNumber=89FD27C5067B4CF412296FEBA6CE6D831185800B Validity Not Before: Oct 6 15:11:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a467b2-b0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b4:e3:87:4e:cd:22:51:da:3c:c4:fc:56:cd: 82:e8:93:cc:fe:4e:96:4a:e2:84:3f:a7:08:f8:ab: fd:24:9f:a9:7e:ae:86:03:d0:fb:87:bc:30:04:81: 38:45:12:25:1b:61:5a:3e:0b:cb:99:6a:af:67:d9: 7c:a0:c6:f2:d3:0d:ab:0e:a3:91:51:6a:a2:90:15: cf:cd:d7:57:f3:01:fd:e3:7a:85:ca:28:2e:ed:e1: 08:1a:7d:a6:40:b6:5e:c8:c2:63:8d:eb:02:af:c6: 1c:a0:ef:7d:10:cd:b9:68:67:09:c0:5c:52:c1:25: 3f:39:40:36:1f:d0:f3:a9:22:ee:b6:e0:40:3b:d9: 73:3f:fd:27:4f:56:73:60:ac:2a:e7:65:69:d1:e1: 8b:c1:9c:b9:86:cd:8a:ca:82:27:88:64:0f:d0:0c: 9e:70:d7:10:00:3b:50:26:df:00:d3:54:3f:c8:be: 57:9c:83:26:88:85:df:3b:1d:84:f9:09:f1:d8:9c: 76:7a:17:1f:59:73:18:2f:51:c7:2b:0e:79:d8:4f: 9d:5d:da:df:78:73:90:21:6c:f8:4f:29:0a:64:f0: cf:85:83:e8:6e:56:7e:f0:42:e3:1a:ad:ca:26:e8: 71:fb:9f:36:13:db:29:41:f9:10:d8:86:df:ea:e0: d1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:53:91:84:1E:94:DC:04:48:61:DF:75:3B:55:74:4D:B0:27:93:4E X509v3 Authority Key Identifier: keyid:89:FD:27:C5:06:7B:4C:F4:12:29:6F:EB:A6:CE:6D:83:11:85:80:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/if0nxQZ7TPQSKW_rps5tgxGFgAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/if0nxQZ7TPQSKW_rps5tgxGFgAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185344/515CABE01DA111E2B2CD6D9308B02CD2/438B5C5E2CD411EC8884B41FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.171.126.0/24 Signature Algorithm: sha256WithRSAEncryption 43:77:8e:cf:0b:b2:d0:23:6c:fe:36:8e:b7:3b:c8:18:ef:9b: f5:47:15:45:b0:a1:15:e5:64:3b:82:f7:7d:20:ac:6a:74:61: 54:b6:c1:7d:74:fe:1e:53:1e:ba:0f:d0:95:36:aa:4e:d6:d0: 1a:f2:dc:1d:4b:05:26:44:23:03:b2:64:4c:b8:cc:3b:00:99: 2a:5a:52:ad:29:b0:0f:22:48:4b:f5:48:96:b1:ea:df:70:bb: cb:43:67:53:d1:1f:9b:4a:61:91:28:f1:c6:ac:a3:34:7b:4d: ce:7e:f1:cb:09:92:cd:51:ef:92:a5:df:3a:1f:8b:45:79:6b: 88:9f:15:78:c6:55:1f:89:ac:df:d9:76:a6:b1:d3:2d:8d:37: b0:6d:16:c0:cc:bb:37:7a:0a:d3:13:0b:91:52:1b:bf:7f:1f: dd:7c:59:63:b2:17:cd:bc:2e:bd:2a:9e:21:90:35:29:b3:be: 8b:62:fd:b2:b7:5c:98:29:b7:8e:79:07:ca:a4:14:8e:ea:61: ef:3c:cb:eb:95:8b:7f:85:c6:bb:8c:a8:67:21:1b:90:bd:59: c1:e6:66:42:77:e2:2d:e2:2c:f1:d0:ac:69:f7:d7:fd:1e:ef: db:b1:dc:96:f7:9c:91:45:a0:10:86:76:e6:75:0e:37:6a:ce: 9c:4e:dc:b8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzNDQxMTAvBgNVBAUTKDg5RkQyN0M1MDY3QjRDRjQxMjI5NkZFQkE2Q0U2RDgz MTE4NTgwMEIwHhcNMjUxMDA2MTUxMTA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjdiMi1iMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbTjh07NIlHaPMT8Vs2C6JPM/k6WSuKEP6cI+Kv9JJ+pfq6GA9D7h7wwBIE4 RRIlG2FaPgvLmWqvZ9l8oMby0w2rDqORUWqikBXPzddX8wH943qFyigu7eEIGn2m QLZeyMJjjesCr8YcoO99EM25aGcJwFxSwSU/OUA2H9DzqSLutuBAO9lzP/0nT1Zz YKwq52Vp0eGLwZy5hs2KyoIniGQP0AyecNcQADtQJt8A01Q/yL5XnIMmiIXfOx2E +Qnx2Jx2ehcfWXMYL1HHKw552E+dXdrfeHOQIWz4TykKZPDPhYPoblZ+8ELjGq3K Juhx+582E9spQfkQ2Ibf6uDRxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFItTkYQe lNwESGHfdTtVdE2wJ5NOMB8GA1UdIwQYMBaAFIn9J8UGe0z0Eilv66bObYMRhYAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTM0NC81MTVDQUJFMDFE QTExMUUyQjJDRDZEOTMwOEIwMkNEMi9pZjBueFFaN1RQUVNLV19ycHM1dGd4R0Zn QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmMG54UVo3VFBRU0tXX3JwczV0Z3hHRmdBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzNDQvNTE1Q0FCRTAxREExMTFFMkIyQ0Q2RDkzMDhCMDJDRDIvNDM4QjVDNUUy Q0Q0MTFFQzg4ODRCNDFGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy6t+MA0GCSqGSIb3DQEBCwUAA4IBAQBDd47PC7LQI2z+No63O8gY 75v1RxVFsKEV5WQ7gvd9IKxqdGFUtsF9dP4eUx66D9CVNqpO1tAa8twdSwUmRCMD smRMuMw7AJkqWlKtKbAPIkhL9UiWserfcLvLQ2dT0R+bSmGRKPHGrKM0e03OfvHL CZLNUe+Spd86H4tFeWuInxV4xlUfiazf2XamsdMtjTewbRbAzLs3egrTEwuRUhu/ fx/dfFljshfNvC69Kp4hkDUps76LYv2yt1yYKbeOeQfKpBSO6mHvPMvrlYt/hca7 jKhnIRuQvVnB5mZCd+It4izx0Kxp99f9Hu/bsdyW95yRRaAQhnbmdQ43as6cTty4 -----END CERTIFICATE-----Generated at Fri Mar 13 13:20:57 2026 by rpki-client