$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa File: A3744A28149A11EDB9CF2F70C4F9AE02.roa (raw, json) Hash identifier: MdKj745wIJAm1a/+fD8XVUD4Xm85NkWf5HLxKsTPL9Q= Subject key identifier: 0D:B0:35:67:82:C3:39:7A:B0:84:F0:D1:14:D3:EA:93:D2:F7:DB:5F Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 080E Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:33:55 +0000 ROA not before: Wed 14 May 2025 16:05:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132819 IP address blocks: 185.251.172.0/24 maxlen: 24 185.251.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2062 (0x80e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: May 14 16:05:39 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a583b2-04ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:7e:8a:ee:05:33:1c:06:5e:98:21:bd:9b: f4:3c:19:71:29:6d:f6:71:fa:62:9f:fd:e4:7e:c0: 55:d2:a2:5a:20:0e:45:28:1e:a9:bc:eb:67:82:68: c7:fd:4a:97:07:02:94:57:5e:04:7c:0e:0b:b3:dc: 9e:f7:f3:c5:1a:08:a5:3b:e9:d0:5e:03:b3:50:3c: fb:15:b5:c8:aa:d7:2b:4f:27:81:dd:da:d0:8f:6a: d7:c1:a9:ab:7c:ba:72:76:9e:04:0e:f7:c1:30:ce: 56:cd:31:9a:33:07:d1:6b:63:a6:bb:02:10:10:d3: e8:e3:eb:c9:26:5a:d0:49:01:ca:c8:f5:4a:b4:fb: 89:5c:6f:f4:a6:0e:fe:bc:aa:30:c4:43:93:74:1f: 0c:7d:24:17:f7:fc:b8:b5:5f:9d:a8:05:d4:6b:f3: 39:c8:29:50:2b:94:fd:18:d1:3c:ec:00:aa:04:9f: 7d:d4:d2:0d:e0:52:ca:b0:4d:2f:99:31:0e:26:ab: 34:58:93:a5:5e:7a:23:73:8a:54:46:37:67:1e:6d: 95:7f:5a:ee:b3:85:83:42:58:2e:c8:f6:50:01:e3: c2:16:af:fd:6a:95:f8:04:96:d3:5a:38:97:bb:30: 74:c2:2c:18:8b:66:d2:37:14:27:cb:ce:74:db:36: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B0:35:67:82:C3:39:7A:B0:84:F0:D1:14:D3:EA:93:D2:F7:DB:5F X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/A3744A28149A11EDB9CF2F70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 185.251.172.0/23 Signature Algorithm: sha256WithRSAEncryption ae:2d:5f:95:1f:50:fd:78:db:f0:ca:9f:cb:f8:4f:17:dd:d0: 1a:b7:fb:36:df:9f:6c:85:b6:0b:d2:68:5f:f6:cc:6d:e7:25: 6d:66:d1:4f:4a:34:43:e7:02:93:13:ea:e8:f6:df:ea:bd:8d: e6:00:69:90:3f:bd:e2:80:56:7f:a7:48:8c:1e:b0:2a:69:99: dc:d2:cd:34:0e:02:c8:e6:c1:cc:23:11:ca:f9:16:36:b9:30: bf:67:7f:a4:41:c8:21:b3:00:42:00:5b:b2:9f:10:16:c8:08: 94:29:42:5a:4f:af:5f:89:e7:50:05:fd:81:16:6a:19:cb:30: ac:5c:f9:f3:1a:66:dd:7c:d4:b9:d1:ef:c1:a4:55:0a:74:86: 0f:cf:d1:22:47:2b:3d:7a:48:8c:82:02:f2:e3:9b:53:83:64: 49:a2:e8:99:70:25:4d:4e:07:d2:a0:c9:5c:80:19:bc:65:48: 1a:16:c5:bf:52:1b:4a:40:75:e2:f6:69:4f:e3:f2:d0:8a:a5: c9:e4:7c:1b:ab:4d:4c:91:ab:f4:bc:65:b4:8d:c5:b6:d2:fd: 3b:e8:2a:cc:34:00:ad:63:cb:ce:18:9e:79:66:40:26:3b:32: 5d:83:34:0f:4d:ad:35:fd:f5:9e:35:92:c1:16:8c:78:5c:f5: fa:00:e0:3a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwNTE0MTYwNTM5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODNiMi0wNGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwd+iu4FMxwGXpghvZv0PBlxKW32cfpin/3kfsBV0qJaIA5FKB6pvOtngmjH /UqXBwKUV14EfA4Ls9ye9/PFGgilO+nQXgOzUDz7FbXIqtcrTyeB3drQj2rXwamr fLpydp4EDvfBMM5WzTGaMwfRa2OmuwIQENPo4+vJJlrQSQHKyPVKtPuJXG/0pg7+ vKowxEOTdB8MfSQX9/y4tV+dqAXUa/M5yClQK5T9GNE87ACqBJ991NIN4FLKsE0v mTEOJqs0WJOlXnojc4pURjdnHm2Vf1rus4WDQlguyPZQAePCFq/9apX4BJbTWjiX uzB0wiwYi2bSNxQny8502zY3UwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA2wNWeC wzl6sITw0RTT6pPS99tfMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNCRkYvMEUyRUY1MzQxQTZBMTFFQjlGRDJEMzYzQzRGOUFFMDIvQTM3NDRBMjgx NDlBMTFFREI5Q0YyRjcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBufusMA0GCSqGSIb3DQEBCwUAA4IBAQCuLV+VH1D9eNvwyp/L+E8X 3dAat/s2359shbYL0mhf9sxt5yVtZtFPSjRD5wKTE+ro9t/qvY3mAGmQP73igFZ/ p0iMHrAqaZnc0s00DgLI5sHMIxHK+RY2uTC/Z3+kQcghswBCAFuynxAWyAiUKUJa T69fiedQBf2BFmoZyzCsXPnzGmbdfNS50e/BpFUKdIYPz9EiRys9ekiMggLy45tT g2RJouiZcCVNTgfSoMlcgBm8ZUgaFsW/UhtKQHXi9mlP4/LQiqXJ5Hwbq01Mkav0 vGW0jcW20v076CrMNACtY8vOGJ55ZkAmOzJdgzQPTa01/fWeNZLBFox4XPX6AOA6 -----END CERTIFICATE-----Generated at Sat Mar 7 16:13:37 2026 by rpki-client