$ rpki-client -vvf rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa File: B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa (raw, json) Hash identifier: 6cK1WB9mwOOoOwp+cGbSDlz8j71ro5RXPTbIMXDPpjQ= Subject key identifier: 8B:B6:7B:11:6D:00:70:F1:AE:3C:B5:0C:EF:67:C3:AC:68:D5:57:97 Certificate issuer: /CN=A912C738/serialNumber=7FB23916037E9332966376F2E075541224162AF4 Certificate serial: 065F Authority key identifier: 7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:59:44 +0000 ROA not before: Wed 04 Feb 2026 22:19:14 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 16509 IP address blocks: 199.166.34.0/23 maxlen: 23 199.166.36.0/23 maxlen: 23 207.189.184.0/24 maxlen: 24 207.189.185.0/24 maxlen: 24 207.189.186.0/24 maxlen: 24 207.189.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C738, serialNumber=7FB23916037E9332966376F2E075541224162AF4 Validity Not Before: Feb 4 22:19:14 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5a5e0-d350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:88:11:32:9f:bc:9b:62:13:0a:cd:3c:84:77: d2:9a:e3:a4:0c:3d:13:14:11:af:e2:3e:de:09:dc: c0:bb:20:cf:e7:51:02:f2:40:8b:61:f2:19:58:a3: 34:31:15:74:a4:1f:54:84:6b:11:94:c2:13:0c:68: da:ce:06:e2:34:e8:9d:9d:a0:14:b2:6e:9c:aa:ae: 59:e1:79:08:04:f8:26:38:70:a4:aa:53:99:23:47: 80:5a:31:d9:4c:62:bb:40:83:b3:24:e3:d2:0b:16: 5b:0e:f0:ac:ae:b9:b3:44:2f:6d:78:ec:3a:2a:11: 41:72:a2:2f:65:b3:6b:6b:c2:92:cc:bf:12:bd:ed: 75:2a:e0:0d:98:e3:a3:f0:b4:9d:f4:61:2e:7b:97: fc:26:a9:96:a8:36:f1:4e:3b:ff:dd:a1:f2:74:98: c0:e7:83:17:b8:6b:ec:c0:bb:ce:23:ab:d5:9e:53: 52:83:bf:64:e8:bc:3e:58:b2:47:97:01:ce:61:47: ee:6f:b3:92:b1:71:1c:62:5d:d2:ab:e9:dd:c9:ba: 38:70:2b:5f:43:b4:71:79:17:69:e9:5b:1a:8d:46: d6:93:57:d5:6f:bc:97:28:1d:da:8f:56:1a:7c:7e: ef:09:62:67:ae:5d:ab:af:54:72:24:1e:b7:4a:fd: a7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B6:7B:11:6D:00:70:F1:AE:3C:B5:0C:EF:67:C3:AC:68:D5:57:97 X509v3 Authority Key Identifier: keyid:7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 199.166.34.0-199.166.37.255 207.189.184.0/22 Signature Algorithm: sha256WithRSAEncryption 60:f6:fe:52:7d:67:4d:b1:89:d1:e8:da:f0:e3:44:72:b1:02: c5:eb:96:f7:14:45:0a:b3:65:8f:6a:73:e2:a2:57:c4:0d:7a: 9e:f5:44:cc:af:e1:ed:99:4a:ea:ae:86:fd:bc:05:79:4d:38: 76:9c:33:92:b1:44:d8:84:c6:77:87:7e:02:c4:59:99:8e:f9: 83:fc:c8:96:92:8f:41:56:e4:3f:01:c9:f5:c8:19:5d:f1:e8: 91:40:12:41:dd:56:93:6e:3b:c6:40:04:24:b7:50:d3:c4:71: f2:cf:b0:47:87:52:3a:57:49:94:a6:5e:24:8a:ae:bd:24:d1: 00:eb:67:89:27:89:4a:05:95:96:ec:7b:f4:5d:e3:68:ec:86: 90:9c:5e:43:57:7c:a1:8b:15:be:bb:4f:e1:e5:36:2a:b9:51: d1:f0:05:f2:99:29:84:35:04:80:c3:0c:f9:e7:4e:89:8b:45: aa:5e:f0:6e:b6:3d:97:eb:da:33:f1:fa:a3:8d:19:fe:f3:3d: 66:bc:d5:c2:d0:cb:35:54:ee:e6:f8:4e:a1:1c:71:64:65:f9: ee:4a:f1:7d:c5:a9:c5:b3:2e:b8:17:30:df:a0:68:06:dc:93: 68:b1:47:3c:22:29:54:40:d8:cf:36:47:ec:c8:47:0a:91:56: 67:08:f1:05 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MzgxMTAvBgNVBAUTKDdGQjIzOTE2MDM3RTkzMzI5NjYzNzZGMkUwNzU1NDEy MjQxNjJBRjQwHhcNMjYwMjA0MjIxOTE0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTVlMC1kMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YgRMp+8m2ITCs08hHfSmuOkDD0TFBGv4j7eCdzAuyDP51EC8kCLYfIZWKM0 MRV0pB9UhGsRlMITDGjazgbiNOidnaAUsm6cqq5Z4XkIBPgmOHCkqlOZI0eAWjHZ TGK7QIOzJOPSCxZbDvCsrrmzRC9teOw6KhFBcqIvZbNra8KSzL8Sve11KuANmOOj 8LSd9GEue5f8JqmWqDbxTjv/3aHydJjA54MXuGvswLvOI6vVnlNSg79k6Lw+WLJH lwHOYUfub7OSsXEcYl3Sq+ndybo4cCtfQ7RxeRdp6VsajUbWk1fVb7yXKB3aj1Ya fH7vCWJnrl2rr1RyJB63Sv2nFQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFIu2exFt AHDxrjy1DO9nw6xo1VeXMB8GA1UdIwQYMBaAFH+yORYDfpMylmN28uB1VBIkFir0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzczOC8zMjBDM0E5QUM5 RDExMUVCOERDNUQyMTBDNEY5QUUwMi9mN0k1RmdOLWt6S1dZM2J5NEhWVUVpUVdL dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2Y3STVGZ04ta3pLV1kzYnk0SFZVRWlRV0t2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MzgvMzIwQzNBOUFDOUQxMTFFQjhEQzVEMjEwQzRGOUFFMDIvQjJGQ0Q5NUM1 NUFBMTFGMDlCOEE3RTRBQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAHHpiIDBAHHpiQDBALPvbgwDQYJKoZIhvcNAQELBQADggEBAGD2 /lJ9Z02xidHo2vDjRHKxAsXrlvcURQqzZY9qc+KiV8QNep71RMyv4e2ZSuquhv28 BXlNOHacM5KxRNiExneHfgLEWZmO+YP8yJaSj0FW5D8ByfXIGV3x6JFAEkHdVpNu O8ZABCS3UNPEcfLPsEeHUjpXSZSmXiSKrr0k0QDrZ4kniUoFlZbse/Rd42jshpCc XkNXfKGLFb67T+HlNiq5UdHwBfKZKYQ1BIDDDPnnTomLRape8G62PZfr2jPx+qON Gf7zPWa81cLQyzVU7ub4TqEccWRl+e5K8X3FqcWzLrgXMN+gaAbck2ixRzwiKVRA 2M82R+zIRwqRVmcI8QU= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:20 2026 by rpki-client