$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa File: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (raw, json) Hash identifier: KFI2tWHfw3kppvCKmuDyoJI/TXZwNEgYE/dBKADg924= Subject key identifier: 74:24:3D:14:8B:98:72:37:93:08:37:0B:CE:DF:20:47:01:94:83:A0 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 37EE Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:18:02 +0000 ROA not before: Tue 30 Dec 2025 15:10:41 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 209242 IP address blocks: 125.22.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 14:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14318 (0x37ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Dec 30 15:10:41 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490ea-94b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f0:94:02:33:66:e8:d5:66:d8:0f:24:68:23: bb:32:94:55:fd:c0:f6:b3:e2:ce:65:67:e6:84:8a: b0:55:0e:ce:82:44:ee:12:67:82:18:ee:54:91:ff: 9a:af:1f:79:03:92:2a:4a:ab:d7:cb:e5:8b:5d:c9: 3a:95:96:fb:92:bd:ad:34:1c:6a:01:c9:51:4f:4b: 15:53:4a:39:94:98:35:aa:6d:ac:07:35:3c:56:d1: 7e:2c:9b:a5:a3:d9:13:ac:f8:87:00:7f:66:68:d0: a6:b9:59:13:b0:2a:50:87:0c:f9:a8:1a:93:c2:95: 1f:25:a2:83:d0:a4:f0:cd:2e:54:67:54:91:56:03: 51:cf:40:d1:12:31:22:f7:ae:c5:6d:f5:e4:39:7d: 5d:6f:4b:fb:2d:0e:94:a1:17:8b:19:d4:2a:75:51: b7:97:f0:52:1c:97:c2:bc:fe:44:e3:1d:14:93:12: df:07:6d:9f:f4:12:92:8d:d0:17:36:b0:b2:a4:57: f9:be:a1:66:20:f7:fe:d0:89:39:17:78:44:65:f9: 15:f3:ed:39:1a:84:bf:5b:26:0f:11:87:90:94:7b: 34:75:9d:90:24:a4:62:5a:10:4d:96:35:c2:0c:3e: f3:e4:b7:2c:9d:bb:78:19:48:ac:ee:4d:eb:57:d5: f8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:24:3D:14:8B:98:72:37:93:08:37:0B:CE:DF:20:47:01:94:83:A0 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/71D60BC2F6BA11EB865C4246C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.22.120.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c6:d8:3a:63:d1:d5:30:14:57:40:0b:e6:4e:2d:1c:9d:29: f8:b1:74:6f:50:fa:b6:43:36:56:0a:93:99:c1:e2:73:06:0f: d7:7f:3c:5a:2c:65:cb:03:c8:c7:35:6b:9c:a8:11:a5:c8:f4: a2:c2:81:d9:d8:7e:b0:c6:a3:c4:8a:19:ad:60:cc:0d:af:c0: 48:cd:49:92:41:18:5f:63:ed:ea:62:03:1d:a8:ba:91:37:16: fc:30:68:e5:26:92:49:dd:64:c1:8f:9f:4a:c5:d7:41:bc:79: 3c:b6:2f:ce:02:9e:16:66:5f:b4:36:94:4a:98:92:1f:fc:8c: 72:51:b4:7b:f5:ce:2a:63:35:8d:89:b6:f5:79:18:77:6e:ff: 63:0e:5c:fc:f5:d8:07:51:e1:7e:e2:10:df:f8:b6:a6:41:96: 4d:b6:26:74:9e:53:8d:4e:79:e9:49:81:8b:61:da:db:fb:fb: 8a:55:a3:70:b0:a7:1f:3e:7c:65:81:ee:f9:75:2a:79:6e:0e: f1:3f:ef:f1:08:7a:f6:19:51:d9:f4:b5:17:aa:9b:92:c6:ef: 75:c6:b1:fb:c5:19:bc:13:ee:bf:51:e4:32:ce:2e:08:f2:52: 92:60:5e:bc:ad:e5:15:e7:0b:d7:cd:09:b8:66:37:0d:68:6e: 6d:ae:63:47 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICN+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUxMjMwMTUxMDQxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBlYS05NGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPCUAjNm6NVm2A8kaCO7MpRV/cD2s+LOZWfmhIqwVQ7OgkTuEmeCGO5Ukf+a rx95A5IqSqvXy+WLXck6lZb7kr2tNBxqAclRT0sVU0o5lJg1qm2sBzU8VtF+LJul o9kTrPiHAH9maNCmuVkTsCpQhwz5qBqTwpUfJaKD0KTwzS5UZ1SRVgNRz0DREjEi 967FbfXkOX1db0v7LQ6UoReLGdQqdVG3l/BSHJfCvP5E4x0UkxLfB22f9BKSjdAX NrCypFf5vqFmIPf+0Ik5F3hEZfkV8+05GoS/WyYPEYeQlHs0dZ2QJKRiWhBNljXC DD7z5Lcsnbt4GUis7k3rV9X4UwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHQkPRSL mHI3kwg3C87fIEcBlIOgMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvNzFENjBCQzJG NkJBMTFFQjg2NUM0MjQ2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAfRZ4MA0GCSqGSIb3DQEBCwUAA4IBAQCLxtg6Y9HVMBRXQAvmTi0c nSn4sXRvUPq2QzZWCpOZweJzBg/XfzxaLGXLA8jHNWucqBGlyPSiwoHZ2H6wxqPE ihmtYMwNr8BIzUmSQRhfY+3qYgMdqLqRNxb8MGjlJpJJ3WTBj59KxddBvHk8ti/O Ap4WZl+0NpRKmJIf/IxyUbR79c4qYzWNibb1eRh3bv9jDlz89dgHUeF+4hDf+Lam QZZNtiZ0nlONTnnpSYGLYdrb+/uKVaNwsKcfPnxlge75dSp5bg7xP+/xCHr2GVHZ 9LUXqpuSxu91xrH7xRm8E+6/UeQyzi4I8lKSYF68reUV5wvXzQm4ZjcNaG5trmNH -----END CERTIFICATE-----Generated at Sat Mar 14 23:16:47 2026 by rpki-client