$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/9D1F5AC82F1211F1B693ACC09B833773.roa File: 9D1F5AC82F1211F1B693ACC09B833773.roa (raw, json) Hash identifier: p36Ed7xsZwcv9rGoTKmCe4vZ8WUDfq/0PpZBbk95ipk= Subject key identifier: A0:12:63:B5:69:AC:05:3B:30:41:81:F6:0D:A4:38:30:CD:8B:B0:58 Certificate issuer: /CN=A9147CA8/serialNumber=3188D41D0C06EFA2C96A87073569E8E10344E2CD Certificate serial: 71 Authority key identifier: 31:88:D4:1D:0C:06:EF:A2:C9:6A:87:07:35:69:E8:E1:03:44:E2:CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/9D1F5AC82F1211F1B693ACC09B833773.roa Signing time: Fri 03 Apr 2026 04:07:22 +0000 ROA not before: Fri 03 Apr 2026 04:07:22 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154049 IP address blocks: 138.252.240.0/23 maxlen: 28 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Apr 2026 07:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=3188D41D0C06EFA2C96A87073569E8E10344E2CD Validity Not Before: Apr 3 04:07:22 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69cf3cfa-d21c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:de:5f:63:da:de:27:67:92:e6:b4:58:89: 47:ad:40:a9:df:9c:53:5a:1a:45:0c:34:d3:08:1e: 94:0a:f4:76:39:01:8c:41:0c:0f:bb:56:93:1d:31: 6d:49:14:0c:df:15:e1:04:36:53:98:1d:b9:85:db: 46:55:a9:af:d3:f7:19:b4:0e:e8:ae:74:ab:9d:24: 62:f8:54:05:09:c8:52:9a:df:16:84:77:b1:57:61: 60:3c:de:42:57:b8:e5:61:c5:77:2e:da:d4:8a:c1: 6f:32:fe:94:30:ff:ee:ea:34:87:c3:61:8c:dd:0d: 24:8c:38:71:c5:a4:fd:90:2b:f1:f5:c2:42:84:c6: 18:4a:e6:0d:06:24:2f:ed:c9:16:34:a9:b7:94:eb: 06:d9:10:81:b6:29:46:f5:6d:36:f9:15:32:e8:4c: 40:17:1a:3f:ca:12:1c:fe:f4:19:3e:b8:4b:cd:99: 62:9b:46:f3:5c:7b:fe:ab:dd:cb:32:b8:2d:3e:88: c2:ca:5a:83:3e:ba:b5:f5:11:7a:35:96:48:a4:9d: d0:55:06:64:ff:da:5c:73:38:07:dd:0f:16:d6:37: 98:38:56:d4:80:44:1b:de:0c:23:76:05:19:37:ee: 21:45:e7:b2:4f:a4:57:ee:43:83:68:ab:e7:d2:26: 29:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:12:63:B5:69:AC:05:3B:30:41:81:F6:0D:A4:38:30:CD:8B:B0:58 X509v3 Authority Key Identifier: keyid:31:88:D4:1D:0C:06:EF:A2:C9:6A:87:07:35:69:E8:E1:03:44:E2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/MYjUHQwG76LJaocHNWno4QNE4s0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MYjUHQwG76LJaocHNWno4QNE4s0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/2D98CC5AC50611F08C6BA32BC4F9AE02/9D1F5AC82F1211F1B693ACC09B833773.roa sbgp-ipAddrBlock: critical IPv4: 138.252.240.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:66:c5:0c:d0:e4:20:6f:8d:5e:6a:84:c3:78:be:c7:d2:59: 07:55:fb:89:28:31:74:6d:b5:41:9b:53:cb:b9:89:93:73:09: 96:42:c1:b2:bd:92:6e:20:55:b5:93:67:31:b5:97:82:c6:37: db:d0:ca:9c:13:61:f6:51:47:a6:98:5f:62:ff:21:f8:a9:ad: ff:77:30:7b:80:c1:96:e7:c9:4f:82:bd:58:4d:fc:7b:4c:82: d9:cf:bd:1b:aa:02:9e:47:b0:67:cb:23:a3:f4:e7:18:a9:0d: 02:32:77:98:5b:35:d0:25:55:b2:e7:7d:06:83:1e:e4:bb:d1: 37:02:c1:d7:87:49:d0:eb:6c:ef:ac:bf:e5:81:ba:7c:be:9a: cb:66:10:2c:1d:ac:b0:14:bc:95:fc:2a:84:ee:12:4a:14:ea: a9:67:de:53:ce:3e:d7:2b:80:b5:a6:45:fa:f3:e3:3d:f0:c8: 74:3a:ff:c1:96:b1:cf:9e:4c:67:02:af:f1:4c:ff:4e:9d:85: 2b:b6:35:5e:93:b2:fe:75:22:96:7c:9f:db:01:8d:70:be:90: 47:ee:e9:34:2d:25:06:4e:1d:0f:a6:91:f4:75:51:13:5d:6e: 33:6b:8a:b6:90:d5:de:39:1f:7b:05:6c:66:cd:76:2e:74:bb: d9:81:6d:1a -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoMzE4OEQ0MUQwQzA2RUZBMkM5NkE4NzA3MzU2OUU4RTEw MzQ0RTJDRDAeFw0yNjA0MDMwNDA3MjJaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5Y2YzY2ZhLWQyMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh1N5fY9reJ2eS5rRYiUetQKnfnFNaGkUMNNMIHpQK9HY5AYxBDA+7VpMdMW1J FAzfFeEENlOYHbmF20ZVqa/T9xm0DuiudKudJGL4VAUJyFKa3xaEd7FXYWA83kJX uOVhxXcu2tSKwW8y/pQw/+7qNIfDYYzdDSSMOHHFpP2QK/H1wkKExhhK5g0GJC/t yRY0qbeU6wbZEIG2KUb1bTb5FTLoTEAXGj/KEhz+9Bk+uEvNmWKbRvNce/6r3csy uC0+iMLKWoM+urX1EXo1lkikndBVBmT/2lxzOAfdDxbWN5g4VtSARBveDCN2BRk3 7iFF57JPpFfuQ4Noq+fSJilbAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUoBJjtWms BTswQYH2DaQ4MM2LsFgwHwYDVR0jBBgwFoAUMYjUHQwG76LJaocHNWno4QNE4s0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzJEOThDQzVBQzUw NjExRjA4QzZCQTMyQkM0RjlBRTAyL01ZalVIUXdHNzZMSmFvY0hOV25vNFFORTRz MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVlqVUhRd0c3NkxKYW9jSE5Xbm80UU5FNHMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC8yRDk4Q0M1QUM1MDYxMUYwOEM2QkEzMkJDNEY5QUUwMi85RDFGNUFDODJG MTIxMUYxQjY5M0FDQzA5QjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/PAwDQYJKoZIhvcNAQELBQADggEBAJ1mxQzQ5CBvjV5qhMN4vsfS WQdV+4koMXRttUGbU8u5iZNzCZZCwbK9km4gVbWTZzG1l4LGN9vQypwTYfZRR6aY X2L/Ifiprf93MHuAwZbnyU+CvVhN/HtMgtnPvRuqAp5HsGfLI6P05xipDQIyd5hb NdAlVbLnfQaDHuS70TcCwdeHSdDrbO+sv+WBuny+mstmECwdrLAUvJX8KoTuEkoU 6qln3lPOPtcrgLWmRfrz4z3wyHQ6/8GWsc+eTGcCr/FM/06dhSu2NV6Tsv51IpZ8 n9sBjXC+kEfu6TQtJQZOHQ+mkfR1URNdbjNriraQ1d45H3sFbGbNdi50u9mBbRo= -----END CERTIFICATE-----Generated at Sat Apr 11 01:35:10 2026 by rpki-client