$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/9F25E6340ECA11F0BAAE344AC4F9AE02.roa File: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (raw, json) Hash identifier: 09psz8wD6VQRY3lNubXSJ0qySYqq1I9NwqwomYkBSy8= Subject key identifier: 39:3C:FF:A8:2D:13:F3:96:A0:F0:B2:1D:50:2C:1E:02:85:79:A8:47 Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: B2 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/9F25E6340ECA11F0BAAE344AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:35:12 +0000 ROA not before: Tue 24 Jun 2025 03:59:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10099 IP address blocks: 162.219.32.0/21 maxlen: 24 162.219.84.0/24 maxlen: 24 162.245.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Jun 24 03:59:04 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59210-15d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:48:dc:50:43:e8:88:0a:08:a8:7b:6a:3b:be: 42:91:06:bb:c7:95:a0:85:d4:7e:fe:6b:2c:bc:78: 1a:e7:69:e8:76:a1:9a:eb:77:37:82:1a:70:ae:5e: d6:ff:79:14:80:9c:2f:a1:39:62:01:73:45:f2:44: 0e:96:db:62:18:5d:4a:0a:b0:ed:3d:91:3c:dc:fb: 65:a3:8a:c7:ec:17:a3:89:4f:ce:04:1a:9f:5e:6b: c7:4e:05:f4:bf:b3:6f:82:fa:f0:b5:a6:40:64:a9: 5e:fd:74:d0:36:a9:b2:57:e3:1f:6c:84:be:87:53: 03:cf:1d:86:04:72:19:90:aa:81:3a:e7:8f:88:9c: a8:a7:24:40:77:ab:c4:ce:d0:0f:2c:95:50:a3:e7: b8:26:29:ee:e2:a6:4b:4c:da:e5:48:e9:fd:64:3b: 4d:da:56:b9:30:29:42:f5:00:92:33:4b:e7:78:bc: 45:61:fd:49:2c:b2:ab:f3:fb:20:9c:96:0e:5b:ea: 76:7a:24:11:b2:b7:fe:23:32:65:9f:8e:4c:6e:f4: 02:c8:e1:8f:85:52:0e:96:40:42:f4:a2:50:f5:23: 27:e1:3e:13:8f:32:74:53:40:99:2a:b4:a1:f7:e4: ef:f6:73:a0:b0:62:49:82:92:f5:c4:08:52:7f:10: 00:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3C:FF:A8:2D:13:F3:96:A0:F0:B2:1D:50:2C:1E:02:85:79:A8:47 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/9F25E6340ECA11F0BAAE344AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 162.219.32.0/21 162.219.84.0/24 162.245.127.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:dd:78:1a:4f:cf:ee:b4:b8:d0:9b:c4:42:8d:ef:2b:c1:ee: 7a:7d:4a:21:6b:10:4f:86:f0:54:43:fa:56:5b:5b:02:c8:41: 97:2e:56:7d:5f:88:d0:4b:a3:75:da:13:08:90:db:cd:1f:82: 09:1a:74:14:46:03:08:04:58:23:ec:a2:1b:8f:ef:34:5e:8d: 49:74:ee:8a:be:48:70:dd:75:72:5e:30:3a:c8:ad:78:03:7c: 42:b0:f6:b9:99:71:0b:ad:09:e2:96:17:8d:83:ee:18:b9:bb: 81:e3:b3:8c:fa:c1:ba:01:aa:d6:e1:50:ee:b9:b9:3a:fb:35: 51:51:3a:b3:9d:e5:92:c7:9e:5b:c3:3f:30:ae:b0:28:b3:1a: af:7c:76:2e:c0:be:c1:9b:f6:f5:37:79:60:db:e6:ef:22:07: 26:67:b1:0b:80:de:68:53:07:ea:dc:59:29:d2:d5:33:e5:4e: fb:37:b6:f9:1d:23:ca:71:46:e4:c9:e8:7d:d5:89:52:81:2f: 37:cf:05:ca:7f:96:0c:38:4e:b2:aa:5b:89:2e:ed:b6:b5:7d: 6c:c0:91:3b:f4:9d:58:98:4d:e8:cf:06:13:25:12:81:80:ef: d4:53:d1:a3:14:3b:a6:c0:5d:ef:d0:8b:a2:b8:15:44:92:2f: 7c:94:e3:55 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKEIwRDUyNUVBOTlENEM4RUM3NTYwNzEyNkE0OUVGNjcw N0JENkY0QUQwHhcNMjUwNjI0MDM1OTA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTIxMC0xNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUjcUEPoiAoIqHtqO75CkQa7x5WghdR+/mssvHga52nodqGa63c3ghpwrl7W /3kUgJwvoTliAXNF8kQOlttiGF1KCrDtPZE83Ptlo4rH7BejiU/OBBqfXmvHTgX0 v7NvgvrwtaZAZKle/XTQNqmyV+MfbIS+h1MDzx2GBHIZkKqBOuePiJyopyRAd6vE ztAPLJVQo+e4Jinu4qZLTNrlSOn9ZDtN2la5MClC9QCSM0vneLxFYf1JLLKr8/sg nJYOW+p2eiQRsrf+IzJln45MbvQCyOGPhVIOlkBC9KJQ9SMn4T4TjzJ0U0CZKrSh 9+Tv9nOgsGJJgpL1xAhSfxAA7QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFDk8/6gt E/OWoPCyHVAsHgKFeahHMB8GA1UdIwQYMBaAFLDVJeqZ1MjsdWBxJqSe9nB71vSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS83QkEzRTcwQzBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlPeDFZSEVtcEo3MmNIdlc5 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ0QzkvN0JBM0U3MEMwRUM5MTFGMEEyNkZGMTQ0QzRGOUFFMDIvOUYyNUU2MzQw RUNBMTFGMEJBQUUzNDRBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQDotsgAwQAottUAwQAovV/MA0GCSqGSIb3DQEBCwUAA4IBAQBa3Xga T8/utLjQm8RCje8rwe56fUohaxBPhvBUQ/pWW1sCyEGXLlZ9X4jQS6N12hMIkNvN H4IJGnQURgMIBFgj7KIbj+80Xo1JdO6Kvkhw3XVyXjA6yK14A3xCsPa5mXELrQni lheNg+4YubuB47OM+sG6AarW4VDuubk6+zVRUTqzneWSx55bwz8wrrAosxqvfHYu wL7Bm/b1N3lg2+bvIgcmZ7ELgN5oUwfq3Fkp0tUz5U77N7b5HSPKcUbkyeh91YlS gS83zwXKf5YMOE6yqluJLu22tX1swJE79J1YmE3ozwYTJRKBgO/UU9GjFDumwF3v 0IuiuBVEki98lONV -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:10 2026 by rpki-client