$ rpki-client -vvf rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/B59CFE982CC911F1B7420D8891833773.roa File: B59CFE982CC911F1B7420D8891833773.roa (raw, json) Hash identifier: ChML6/BXm28G8I4gfbaCWvlG/hRxjVNn890GnCbb/s0= Subject key identifier: F6:40:71:F7:24:96:6A:68:BE:FA:BC:F6:A3:61:1E:B6:6B:92:71:94 Certificate issuer: /CN=A9137140/serialNumber=291799FBA519D024024F30D92317E089445214AD Certificate serial: 03 Authority key identifier: 29:17:99:FB:A5:19:D0:24:02:4F:30:D9:23:17:E0:89:44:52:14:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KReZ-6UZ0CQCTzDZIxfgiURSFK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/B59CFE982CC911F1B7420D8891833773.roa Signing time: Tue 31 Mar 2026 06:20:27 +0000 ROA not before: Tue 31 Mar 2026 06:20:27 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 7474 IP address blocks: 203.16.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/KReZ-6UZ0CQCTzDZIxfgiURSFK0.crl rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/KReZ-6UZ0CQCTzDZIxfgiURSFK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KReZ-6UZ0CQCTzDZIxfgiURSFK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 08:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137140, serialNumber=291799FBA519D024024F30D92317E089445214AD Validity Not Before: Mar 31 06:20:27 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69cb67ab-3277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d2:e0:98:c8:fe:50:7a:0e:98:76:71:6e:93: 82:5c:0d:86:7b:0c:1b:b2:b6:74:28:6d:93:39:15: d5:7f:2e:f4:22:00:93:28:40:18:ed:ee:2f:ed:d4: 77:d6:e5:80:ff:25:ca:ae:1b:1a:20:c5:69:86:84: 43:47:80:c9:13:81:f6:62:e9:7b:7f:84:24:5c:7e: 51:89:62:d0:37:97:a4:b2:dc:81:f7:96:59:78:20: 4c:55:f2:90:91:a5:28:54:0f:73:d1:60:13:9d:77: 49:65:cf:2e:a0:91:13:05:77:a0:03:00:62:b8:f8: 8e:ca:dd:43:e4:f2:15:a3:f6:75:d8:5e:cb:cc:e7: bb:19:49:18:63:6b:5e:60:02:13:e7:c7:4b:af:ec: 28:35:7d:ef:e8:59:4a:73:e4:a8:26:7f:93:f5:fc: 43:29:c7:dc:a0:4b:db:74:e9:fd:17:13:0f:64:5a: 6c:e0:6c:00:e8:41:0b:40:fb:d2:eb:d2:2d:73:05: 6b:91:80:3c:fb:17:b4:dc:d1:c1:df:3e:79:20:bc: 16:42:92:c5:9c:e3:4d:ed:6d:e5:85:aa:91:33:77: ca:d1:c4:6d:0c:27:fe:75:a3:90:e6:ed:57:61:be: 04:a5:df:fa:3d:29:81:3b:69:93:af:aa:7c:fa:80: af:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:40:71:F7:24:96:6A:68:BE:FA:BC:F6:A3:61:1E:B6:6B:92:71:94 X509v3 Authority Key Identifier: keyid:29:17:99:FB:A5:19:D0:24:02:4F:30:D9:23:17:E0:89:44:52:14:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/KReZ-6UZ0CQCTzDZIxfgiURSFK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KReZ-6UZ0CQCTzDZIxfgiURSFK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/B59CFE982CC911F1B7420D8891833773.roa sbgp-ipAddrBlock: critical IPv4: 203.16.185.0/24 Signature Algorithm: sha256WithRSAEncryption 02:33:d6:33:ae:cf:c7:b0:a5:13:ed:17:d2:c0:4a:bc:00:97: 57:2b:81:74:cb:b4:bf:03:d3:c8:b6:71:37:54:13:61:91:d4: ab:e3:90:fb:45:24:0d:96:e3:84:77:e8:c7:33:7d:04:8a:45: 9b:e5:06:22:91:6a:07:df:8f:18:ba:c4:ba:1f:81:93:60:13: b7:19:67:7c:1f:99:ca:27:6c:e8:28:8f:c9:dc:b8:9a:e6:80: 3f:25:57:14:db:b3:66:e8:4f:eb:8a:c2:c9:4f:26:9a:c8:22: 09:30:a6:f4:7a:03:4f:82:22:93:26:cf:5c:43:7d:c4:ef:60: 8a:3d:eb:7a:f0:8b:54:95:47:3f:fd:9e:ef:bf:67:d5:0d:f2: dd:f4:10:48:7f:5e:8f:8f:36:3f:55:e6:f6:17:7f:78:52:3e: 31:ea:32:d0:2f:12:d9:68:9d:4f:99:2a:f8:b8:75:d8:cc:86: 2d:32:85:45:e2:1a:7d:78:06:7d:00:0c:ee:bc:4c:d4:0d:a2: 58:97:72:a0:d4:bc:f6:17:6a:99:1e:4e:e7:08:a3:17:72:c9: f9:22:95:df:25:30:52:95:0a:b3:c2:4b:16:1e:f4:2b:4c:2b: ba:66:c6:45:16:2d:47:e5:22:c7:5b:9d:54:fa:d0:98:da:f4: 0a:81:e5:df -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzE0MDExMC8GA1UEBRMoMjkxNzk5RkJBNTE5RDAyNDAyNEYzMEQ5MjMxN0UwODk0 NDUyMTRBRDAeFw0yNjAzMzEwNjIwMjdaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2I2N2FiLTMyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm0uCYyP5Qeg6YdnFuk4JcDYZ7DBuytnQobZM5FdV/LvQiAJMoQBjt7i/t1HfW 5YD/JcquGxogxWmGhENHgMkTgfZi6Xt/hCRcflGJYtA3l6Sy3IH3lll4IExV8pCR pShUD3PRYBOdd0llzy6gkRMFd6ADAGK4+I7K3UPk8hWj9nXYXsvM57sZSRhja15g AhPnx0uv7Cg1fe/oWUpz5Kgmf5P1/EMpx9ygS9t06f0XEw9kWmzgbADoQQtA+9Lr 0i1zBWuRgDz7F7Tc0cHfPnkgvBZCksWc403tbeWFqpEzd8rRxG0MJ/51o5Dm7Vdh vgSl3/o9KYE7aZOvqnz6gK8TAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU9kBx9ySW ami++rz2o2EetmuScZQwHwYDVR0jBBgwFoAUKReZ+6UZ0CQCTzDZIxfgiURSFK0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3MTQwL0Y0QTc4RTYwMkND ODExRjFBMTc2N0ZDRjkwODMzNzczL0tSZVotNlVaMENRQ1R6RFpJeGZnaVVSU0ZL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS1JlWi02VVowQ1FDVHpEWkl4ZmdpVVJTRkswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzE0MC9GNEE3OEU2MDJDQzgxMUYxQTE3NjdGQ0Y5MDgzMzc3My9CNTlDRkU5ODJD QzkxMUYxQjc0MjBEODg5MTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLELkwDQYJKoZIhvcNAQELBQADggEBAAIz1jOuz8ewpRPtF9LASrwA l1crgXTLtL8D08i2cTdUE2GR1KvjkPtFJA2W44R36MczfQSKRZvlBiKRagffjxi6 xLofgZNgE7cZZ3wfmconbOgoj8ncuJrmgD8lVxTbs2boT+uKwslPJprIIgkwpvR6 A0+CIpMmz1xDfcTvYIo963rwi1SVRz/9nu+/Z9UN8t30EEh/Xo+PNj9V5vYXf3hS PjHqMtAvEtlonU+ZKvi4ddjMhi0yhUXiGn14Bn0ADO68TNQNoliXcqDUvPYXapke TucIoxdyyfkild8lMFKVCrPCSxYe9CtMK7pmxkUWLUflIsdbnVT60Jja9AqB5d8= -----END CERTIFICATE-----Generated at Sun Apr 5 22:22:06 2026 by rpki-client