$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CB4E186A30E111F09B76D311C4F9AE02.roa File: CB4E186A30E111F09B76D311C4F9AE02.roa (raw, json) Hash identifier: XTFl/MyUGXYDLMXaMRa7HDON+jfgJcrSfnOokKAkziU= Subject key identifier: 4E:E8:82:4D:A4:3C:3E:64:6A:E8:32:40:B0:97:EE:96:B8:48:3D:7A Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: B6 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CB4E186A30E111F09B76D311C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:20:43 +0000 ROA not before: Wed 14 May 2025 16:37:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 35876 IP address blocks: 165.99.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: May 14 16:37:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a59cbb-aed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a7:b6:28:6a:26:a8:8b:07:48:04:ff:48:5d: a7:7e:ae:5d:d8:18:7f:e3:27:d6:7b:82:ee:c9:49: 08:74:0b:09:30:ee:b1:be:33:37:32:aa:bb:03:41: 2e:5e:16:db:f6:4f:fc:96:da:d4:0f:4f:de:7d:4a: 3a:9d:c2:7f:36:43:d6:a9:62:5b:2a:d1:42:16:69: cf:06:0a:2a:08:65:0b:72:82:54:e7:5f:1f:a9:91: d3:a7:8c:c8:72:c5:b5:82:8e:b0:25:80:17:0c:9a: 5a:fd:ea:88:7d:5f:aa:48:95:ae:4c:41:37:c7:81: f3:0d:81:9f:6c:4a:b1:97:de:6e:21:13:ad:b8:20: 2d:b1:f8:92:6d:07:58:97:9c:40:9b:d9:f4:57:b5: 9a:24:9a:b2:3c:56:ee:60:48:52:7b:f6:b9:e9:20: 90:22:f3:7f:68:db:98:bc:25:f2:61:0e:be:3c:2e: 64:db:ab:03:40:fc:3e:d6:00:b4:19:c8:bf:8a:09: 34:c0:37:7f:ce:fd:17:51:15:e7:a9:e5:d0:81:1e: cb:85:4e:6b:34:58:76:19:36:4a:5f:f7:9f:dd:ad: 8e:4e:21:b6:ae:96:b2:30:4a:c7:05:31:30:17:12: 70:fc:7f:52:f0:6a:9d:3c:1f:ed:2b:15:eb:c3:50: 80:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E8:82:4D:A4:3C:3E:64:6A:E8:32:40:B0:97:EE:96:B8:48:3D:7A X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CB4E186A30E111F09B76D311C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.42.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:3d:db:20:a2:2b:1c:8d:f9:e1:8d:45:5a:e4:e9:e5:19:e0: 99:7e:ba:fe:a2:54:c2:95:27:70:6d:4e:b9:f8:c6:a3:96:ef: 52:3b:43:96:90:d2:3b:03:a5:e0:31:59:a0:6f:ce:fd:c7:4d: 67:05:0d:05:1e:ba:5b:b5:d3:80:7a:22:b3:8c:bd:0f:5c:c3: 5d:bb:21:7b:37:e5:a1:3c:93:50:c7:21:21:ef:ac:fc:ec:68: c3:bb:bd:94:1d:ee:00:fc:00:12:39:d3:16:02:d1:cf:13:5c: 00:95:2d:9e:03:ef:9e:b4:a7:b3:ef:fd:a2:1b:6a:29:75:b5: f8:f1:d2:58:b9:cc:db:25:cf:b2:bd:e8:dd:21:ee:0d:c6:ad: 07:bc:9a:c8:6d:ec:52:91:65:b2:cb:cf:eb:d1:3f:0b:6b:d7: d6:02:d4:d1:60:5f:c0:74:48:23:50:10:00:3a:2d:ca:75:ac: 4a:41:04:ba:09:6d:c6:ba:67:12:2a:df:cf:a1:91:79:b0:0a: 85:5f:11:f3:b6:3b:3c:de:c9:51:75:98:99:3f:9f:d1:bb:42: d2:c1:ba:fe:ee:a1:26:1b:e2:9c:4b:51:ea:c8:dd:6f:ec:31: 1b:8c:3e:08:99:ef:17:6a:b8:2c:6b:78:1b:35:43:ab:2f:d1: ed:9c:c0:ea -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjUwNTE0MTYzNzU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWNiYi1hZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuae2KGomqIsHSAT/SF2nfq5d2Bh/4yfWe4LuyUkIdAsJMO6xvjM3Mqq7A0Eu Xhbb9k/8ltrUD0/efUo6ncJ/NkPWqWJbKtFCFmnPBgoqCGULcoJU518fqZHTp4zI csW1go6wJYAXDJpa/eqIfV+qSJWuTEE3x4HzDYGfbEqxl95uIROtuCAtsfiSbQdY l5xAm9n0V7WaJJqyPFbuYEhSe/a56SCQIvN/aNuYvCXyYQ6+PC5k26sDQPw+1gC0 Gci/igk0wDd/zv0XURXnqeXQgR7LhU5rNFh2GTZKX/ef3a2OTiG2rpayMErHBTEw FxJw/H9S8GqdPB/tKxXrw1CA/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE7ogk2k PD5kaugyQLCX7pa4SD16MB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGQzkvOEQzNUU4MkUzMDJDMTFGMDg3NzY0QTJCQzRGOUFFMDIvQ0I0RTE4NkEz MEUxMTFGMDlCNzZEMzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWMqMA0GCSqGSIb3DQEBCwUAA4IBAQA9PdsgoiscjfnhjUVa5Onl GeCZfrr+olTClSdwbU65+Majlu9SO0OWkNI7A6XgMVmgb879x01nBQ0FHrpbtdOA eiKzjL0PXMNduyF7N+WhPJNQxyEh76z87GjDu72UHe4A/AASOdMWAtHPE1wAlS2e A++etKez7/2iG2opdbX48dJYuczbJc+yvejdIe4Nxq0HvJrIbexSkWWyy8/r0T8L a9fWAtTRYF/AdEgjUBAAOi3KdaxKQQS6CW3GumcSKt/PoZF5sAqFXxHztjs83slR dZiZP5/Ru0LSwbr+7qEmG+KcS1HqyN1v7DEbjD4Ime8Xargsa3gbNUOrL9HtnMDq -----END CERTIFICATE-----Generated at Sat Mar 21 14:32:54 2026 by rpki-client