$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa File: 2D973430340E11EDB5E9BC42C4F9AE02.roa (raw, json) Hash identifier: tbv3mJpYtopeQGTyPvYuiDpi3ylLpd97qu4zEKbjLRo= Subject key identifier: 7D:58:03:24:3D:75:15:9E:C8:47:1B:AC:1E:39:B5:4B:97:F7:17:33 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0BC4 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:00:57 +0000 ROA not before: Wed 26 Mar 2025 20:30:38 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 54994 IP address blocks: 203.168.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Mar 26 20:30:38 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48ce9-84d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:cc:c0:aa:e7:bb:c9:ca:dd:52:99:3b:33: b4:62:4e:b1:18:b9:75:e1:5e:ee:a9:2e:26:08:5b: 6a:6d:37:42:0c:8e:01:37:41:6e:d5:37:de:c8:04: b0:06:0f:38:e6:7f:e2:c1:6c:d3:75:91:b0:0c:31: 03:98:51:69:92:83:f9:7d:0c:72:7f:79:6c:d1:b1: 69:c5:70:4e:4f:48:ec:b8:5b:d6:8e:32:85:6d:45: d1:4b:4f:83:f3:a3:5f:01:25:67:2e:38:3f:96:b1: 4d:4f:f2:ee:2e:d0:42:8c:af:df:c4:4a:80:a3:ae: 53:77:31:05:31:96:10:46:0c:1c:6f:cf:4f:96:e0: 74:07:5d:92:95:97:58:6a:07:ca:c2:4c:0a:3f:55: fc:9f:09:f3:b4:de:d1:f3:67:9c:61:5e:b7:04:9e: df:23:16:4f:16:0e:fa:ec:c7:09:89:33:a0:48:d6: 41:73:38:9d:98:40:52:1b:6c:c2:53:98:e6:13:9e: f4:fe:1e:15:1e:93:04:5e:a8:e8:eb:c7:82:dd:c3: be:fb:07:d5:4f:e4:12:ff:1d:0e:9d:41:c0:ad:19: 27:cf:4f:c6:24:46:3f:36:2f:98:0e:bb:06:d9:41: e2:83:76:47:77:dd:de:cb:0e:bd:7a:37:b0:75:38: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:58:03:24:3D:75:15:9E:C8:47:1B:AC:1E:39:B5:4B:97:F7:17:33 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/2D973430340E11EDB5E9BC42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.168.252.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:f9:96:40:d8:ff:ec:2f:17:ca:97:b4:7a:61:59:6f:d7:92: f7:f2:43:c0:b4:96:26:33:3e:e6:30:4d:9c:2f:fd:1b:2c:97: ac:80:87:f4:7f:d4:16:96:d2:63:3a:ac:74:0f:49:43:72:d0: 5a:02:83:b5:ee:cb:b7:94:36:0b:b6:2f:13:99:3b:80:f3:ed: a7:06:e2:4d:7a:f6:e1:a4:21:72:34:a6:16:c7:38:36:9f:09: 49:ac:96:0c:f0:06:7f:93:ee:8d:1d:74:8b:60:5e:8d:bb:f9: 34:02:b9:5c:b7:1d:8f:a1:a0:4c:0f:9d:31:0e:2d:67:92:a2: 4d:17:e2:f0:e2:0c:ce:c0:9a:80:11:51:51:fe:18:5d:9a:d4: 50:2a:50:6f:84:db:de:8d:03:d6:ce:d1:ca:b0:13:cd:d8:d6: d7:0c:4f:a5:7e:b5:de:82:2d:1f:4e:29:b1:ed:ad:54:56:51: b5:b0:b8:35:b6:24:c5:a6:c1:4a:96:c8:b5:f6:7d:68:bd:e6: 7e:c8:a4:68:5a:8a:7f:00:b8:01:8f:72:d6:e0:42:45:11:19: 57:d1:4d:18:77:3f:ad:9f:0a:a1:ff:32:11:16:ba:26:98:53: 9c:fa:54:60:7d:d7:c6:38:b8:6d:b2:61:28:82:ad:a4:f6:8f: 69:4c:b6:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwMzI2MjAzMDM4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGNlOS04NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e7MwKrnu8nK3VKZOzO0Yk6xGLl14V7uqS4mCFtqbTdCDI4BN0Fu1TfeyASw Bg845n/iwWzTdZGwDDEDmFFpkoP5fQxyf3ls0bFpxXBOT0jsuFvWjjKFbUXRS0+D 86NfASVnLjg/lrFNT/LuLtBCjK/fxEqAo65TdzEFMZYQRgwcb89PluB0B12SlZdY agfKwkwKP1X8nwnztN7R82ecYV63BJ7fIxZPFg767McJiTOgSNZBczidmEBSG2zC U5jmE570/h4VHpMEXqjo68eC3cO++wfVT+QS/x0OnUHArRknz0/GJEY/Ni+YDrsG 2UHig3ZHd93eyw69ejewdTiz9QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH1YAyQ9 dRWeyEcbrB45tUuX9xczMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvMkQ5NzM0MzAz NDBFMTFFREI1RTlCQzQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy6j8MA0GCSqGSIb3DQEBCwUAA4IBAQCa+ZZA2P/sLxfKl7R6YVlv 15L38kPAtJYmMz7mME2cL/0bLJesgIf0f9QWltJjOqx0D0lDctBaAoO17su3lDYL ti8TmTuA8+2nBuJNevbhpCFyNKYWxzg2nwlJrJYM8AZ/k+6NHXSLYF6Nu/k0Arlc tx2PoaBMD50xDi1nkqJNF+Lw4gzOwJqAEVFR/hhdmtRQKlBvhNvejQPWztHKsBPN 2NbXDE+lfrXegi0fTimx7a1UVlG1sLg1tiTFpsFKlsi19n1oveZ+yKRoWop/ALgB j3LW4EJFERlX0U0Ydz+tnwqh/zIRFrommFOc+lRgfdfGOLhtsmEogq2k9o9pTLZM -----END CERTIFICATE-----Generated at Thu Mar 12 11:01:15 2026 by rpki-client