$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/195EB36402A311F188F4114D3A3D8C67.roa File: 195EB36402A311F188F4114D3A3D8C67.roa (raw, json) Hash identifier: nBT9rJ8pB8nDaT/FvOnEJTYDaU2OgDMCeAoOqaeEUWA= Subject key identifier: 95:0E:E6:9E:C8:60:EB:64:74:97:FE:A8:68:3A:30:D3:60:A5:74:3A Certificate issuer: /CN=A9147CA8/serialNumber=3188D41D0C06EFA2C96A87073569E8E10344E2CD Certificate serial: 2A Authority key identifier: 31:88:D4:1D:0C:06:EF:A2:C9:6A:87:07:35:69:E8:E1:03:44:E2:CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/195EB36402A311F188F4114D3A3D8C67.roa Signing time: Thu 05 Feb 2026 14:58:16 +0000 ROA not before: Thu 05 Feb 2026 14:58:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154049 IP address blocks: 138.252.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 06:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=3188D41D0C06EFA2C96A87073569E8E10344E2CD Validity Not Before: Feb 5 14:58:16 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6984b008-0b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:79:db:df:5d:9e:ee:9d:2f:e7:a9:b0:b4: 2d:c6:e0:3b:74:1e:c6:63:8a:15:25:5d:2d:ba:6d: 17:3c:9f:34:a8:67:82:b7:88:0b:25:b1:4f:05:f1: 90:5a:14:c4:4e:02:43:f6:e0:a9:0a:0a:13:16:fe: 12:5e:1a:34:d8:20:34:5e:bf:5c:da:d5:65:41:93: db:bc:a1:c2:2d:e5:b5:4b:74:c1:6d:10:e5:0c:df: 9d:27:05:28:5f:f1:42:e0:21:74:5b:13:f4:57:c6: 11:d2:c5:c8:86:59:81:55:8d:97:b3:30:26:92:71: f1:5a:de:eb:16:d7:04:4c:d1:35:eb:07:19:cf:65: 7d:4a:92:04:68:ff:e6:0b:07:b6:20:75:f3:ec:57: 03:88:3e:be:80:56:dc:23:db:c8:00:c4:f7:dd:3e: 31:27:13:94:98:0a:15:36:02:cf:a9:a1:dc:ef:15: 81:59:d3:e4:6f:2d:22:94:15:fc:cd:a6:12:60:56: ac:0e:ce:e4:e2:00:ea:b8:36:f2:1c:0f:a6:49:52: c1:6b:68:e9:27:14:8e:88:d0:87:40:71:88:24:f1: f2:d7:a1:a0:5c:17:a9:53:d0:fb:5e:36:24:ed:4e: 47:b2:be:07:7a:1c:88:2f:d2:33:10:e4:d2:56:0f: 30:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0E:E6:9E:C8:60:EB:64:74:97:FE:A8:68:3A:30:D3:60:A5:74:3A X509v3 Authority Key Identifier: keyid:31:88:D4:1D:0C:06:EF:A2:C9:6A:87:07:35:69:E8:E1:03:44:E2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/195EB36402A311F188F4114D3A3D8C67.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.240.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:4c:94:3b:45:31:01:0f:01:66:bb:d9:92:7a:3d:53:bf:c0: 60:54:71:c7:6d:0a:a1:aa:40:1e:9e:33:5b:71:52:57:1b:88: 40:0d:1b:39:9b:f3:bc:b7:b0:d9:f1:bb:7c:19:3e:4d:03:b5: 36:fb:a6:44:1b:6d:02:0a:94:10:c1:39:61:9c:5b:0e:fd:22: e8:d4:1c:b4:39:ad:b4:b4:0a:50:cf:28:fa:ba:b6:1e:11:58: 83:36:cd:dc:92:6c:11:c8:76:1e:a2:6a:c8:10:99:08:4f:83: 24:8a:8b:8d:b4:42:7f:dd:1c:df:aa:ee:7c:58:ce:c1:d8:56: f5:dc:be:be:07:c6:27:5a:cf:cc:35:42:9a:97:5b:26:cf:23: 64:47:1d:02:dd:94:84:b4:d5:66:35:7a:e3:ca:4d:b0:f1:fd: 5d:a7:f0:b7:45:49:e5:86:dd:f9:c4:12:9f:b7:4a:80:dd:6d: 80:b9:95:20:b5:5f:e8:6c:6d:fc:30:f6:e3:cf:60:b3:da:8a: c1:db:03:a5:b2:fe:e9:2e:a8:29:d1:30:0d:aa:8f:ed:0f:a4: e5:53:5b:e7:2d:79:af:10:2b:27:f1:2e:1d:20:a6:7a:92:41: 2a:09:af:08:0b:86:32:35:14:e8:c6:d9:dd:74:d4:5e:68:40: ed:1c:28:04 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoMzE4OEQ0MUQwQzA2RUZBMkM5NkE4NzA3MzU2OUU4RTEw MzQ0RTJDRDAeFw0yNjAyMDUxNDU4MTZaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5ODRiMDA4LTBiNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuYHnb312e7p0v56mwtC3G4Dt0HsZjihUlXS26bRc8nzSoZ4K3iAslsU8F8ZBa FMROAkP24KkKChMW/hJeGjTYIDRev1za1WVBk9u8ocIt5bVLdMFtEOUM350nBShf 8ULgIXRbE/RXxhHSxciGWYFVjZezMCaScfFa3usW1wRM0TXrBxnPZX1KkgRo/+YL B7YgdfPsVwOIPr6AVtwj28gAxPfdPjEnE5SYChU2As+podzvFYFZ0+RvLSKUFfzN phJgVqwOzuTiAOq4NvIcD6ZJUsFraOknFI6I0IdAcYgk8fLXoaBcF6lT0PteNiTt Tkeyvgd6HIgv0jMQ5NJWDzARAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlQ7mnshg 62R0l/6oaDow02CldDowHwYDVR0jBBgwFoAUMYjUHQwG76LJaocHNWno4QNE4s0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzJEOThDQzVBQzUw NjExRjA4QzZCQTMyQkM0RjlBRTAyL01ZalVIUXdHNzZMSmFvY0hOV25vNFFORTRz MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVlqVUhRd0c3NkxKYW9jSE5Xbm80UU5FNHMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC8yRDk4Q0M1QUM1MDYxMUYwOEM2QkEzMkJDNEY5QUUwMi8xOTVFQjM2NDAy QTMxMUYxODhGNDExNEQzQTNEOEM2Ny5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr88DANBgkqhkiG9w0BAQsFAAOCAQEAWkyUO0UxAQ8BZrvZ kno9U7/AYFRxx20KoapAHp4zW3FSVxuIQA0bOZvzvLew2fG7fBk+TQO1NvumRBtt AgqUEME5YZxbDv0i6NQctDmttLQKUM8o+rq2HhFYgzbN3JJsEch2HqJqyBCZCE+D JIqLjbRCf90c36rufFjOwdhW9dy+vgfGJ1rPzDVCmpdbJs8jZEcdAt2UhLTVZjV6 48pNsPH9Xafwt0VJ5Ybd+cQSn7dKgN1tgLmVILVf6Gxt/DD2489gs9qKwdsDpbL+ 6S6oKdEwDaqP7Q+k5VNb5y15rxArJ/EuHSCmepJBKgmvCAuGMjUU6MbZ3XTUXmhA 7RwoBA== -----END CERTIFICATE-----Generated at Tue Feb 24 00:20:54 2026 by rpki-client