$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa File: A3C1A64E020811EF900CC60CC4F9AE02.roa (raw, json) Hash identifier: HpPZhZVSwGrzf4zGYjjyQ7ueOCim2ZvtK0gkwPhEOmI= Subject key identifier: A5:39:86:A8:39:24:06:A3:BA:45:73:7A:C0:EF:74:81:58:5F:E6:EA Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 0387 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa Signing time: Thu 21 May 2026 01:31:48 +0000 ROA not before: Thu 21 May 2026 01:31:48 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 198949 IP address blocks: 147.136.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 06:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: May 21 01:31:48 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a0e6083-a1c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fa:8e:05:45:54:36:ae:f8:e4:6c:b4:9c:14: 63:da:57:8b:74:1f:27:9b:c9:bc:2b:4e:fc:3e:06: e8:7a:b6:02:2e:36:c8:9d:8b:38:61:47:d6:40:f6: ed:2d:3a:e9:ae:a7:02:f0:19:b7:fa:e3:29:ae:01: 98:2c:fb:87:98:a0:65:85:d3:72:25:de:30:ed:c5: 9d:5f:75:53:44:c3:49:25:15:2c:3b:55:5f:05:33: c2:1b:00:f8:b0:11:89:de:a4:be:d2:8a:79:e4:5b: 7e:71:19:a2:3a:49:74:93:f0:5e:6f:e3:8d:2c:04: b9:98:3d:07:07:16:56:a9:26:65:08:cd:c2:01:e6: ee:7d:e3:95:26:8d:c5:17:ae:62:ff:49:8f:ab:7d: 22:cf:3f:23:cb:fe:00:3b:3f:dd:49:1b:74:44:d4: 43:79:0a:9c:9d:b1:68:98:e4:79:cb:fb:c1:6a:e2: b0:cd:2b:3c:41:a9:2f:c6:8a:f4:b5:7c:da:03:95: df:bf:d3:e8:d2:e5:60:26:c0:91:d3:f8:41:37:85: ae:f8:e7:b2:b6:dd:0f:ca:b5:3f:55:8a:fc:2d:57: 77:76:48:4d:7a:dd:72:00:3d:a8:23:ee:ef:e6:83: dc:22:0d:95:96:c4:51:0f:b4:9e:05:c2:dd:19:86: b2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:39:86:A8:39:24:06:A3:BA:45:73:7A:C0:EF:74:81:58:5F:E6:EA X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.136.133.0/24 Signature Algorithm: sha256WithRSAEncryption 79:72:df:0d:ec:63:7b:8f:e5:a4:e5:10:07:54:bc:58:93:2c: ff:80:a8:64:69:53:b2:93:57:1b:3f:88:f3:b8:4f:f7:d2:d8: 4d:30:a1:a9:bd:15:78:bc:36:75:0b:5f:2e:aa:95:e2:49:a1: 09:e7:4c:6f:48:a8:fc:ee:a5:47:65:e9:f0:db:85:b9:36:47: 01:52:44:aa:a7:8a:23:7e:91:0b:d1:7a:bb:8e:51:c2:f7:e8: 07:9d:55:c7:95:37:90:df:5b:a9:70:19:93:35:d1:aa:46:fd: 27:cd:1d:d7:de:00:70:21:94:22:d0:14:6a:5f:e7:ad:4b:a8: 2c:81:c9:ef:7e:46:a0:d1:5c:5e:34:b3:f8:e4:28:bb:b9:ec: 01:33:ea:8f:43:c8:04:b7:63:c5:c4:2b:5f:41:1a:84:bd:d2: c6:b0:e9:f1:12:39:3d:cd:33:42:a7:1f:3e:b8:22:7e:58:f0: ae:ff:57:87:8b:b4:4d:ba:b0:b6:76:eb:f2:1e:99:a8:df:e3: 4a:28:70:4f:f3:47:c4:c1:f1:c5:6a:af:61:c4:43:4b:47:04: 81:7d:12:16:a6:c9:08:79:e3:42:58:c8:c1:aa:68:2d:d9:65: 30:5b:34:d4:b3:c5:3a:72:cf:3c:38:91:52:2e:b4:ba:38:41: 17:3e:40:68 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjYwNTIxMDEzMTQ4WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBlNjA4My1hMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/qOBUVUNq745Gy0nBRj2leLdB8nm8m8K078PgboerYCLjbInYs4YUfWQPbt LTrprqcC8Bm3+uMprgGYLPuHmKBlhdNyJd4w7cWdX3VTRMNJJRUsO1VfBTPCGwD4 sBGJ3qS+0op55Ft+cRmiOkl0k/Beb+ONLAS5mD0HBxZWqSZlCM3CAebufeOVJo3F F65i/0mPq30izz8jy/4AOz/dSRt0RNRDeQqcnbFomOR5y/vBauKwzSs8Qakvxor0 tXzaA5Xfv9Po0uVgJsCR0/hBN4Wu+Oeytt0PyrU/VYr8LVd3dkhNet1yAD2oI+7v 5oPcIg2VlsRRD7SeBcLdGYayEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKU5hqg5 JAajukVzesDvdIFYX+bqMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM5OTgvMzBDQzA4NEEwOERDMTFFREJFREU2MTJCQzRGOUFFMDIvQTNDMUE2NEUw MjA4MTFFRjkwMENDNjBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAk4iFMA0GCSqGSIb3DQEBCwUAA4IBAQB5ct8N7GN7j+Wk5RAHVLxY kyz/gKhkaVOyk1cbP4jzuE/30thNMKGpvRV4vDZ1C18uqpXiSaEJ50xvSKj87qVH Zenw24W5NkcBUkSqp4ojfpEL0Xq7jlHC9+gHnVXHlTeQ31upcBmTNdGqRv0nzR3X 3gBwIZQi0BRqX+etS6gsgcnvfkag0VxeNLP45Ci7uewBM+qPQ8gEt2PFxCtfQRqE vdLGsOnxEjk9zTNCpx8+uCJ+WPCu/1eHi7RNurC2duvyHpmo3+NKKHBP80fEwfHF aq9hxENLRwSBfRIWpskIeeNCWMjBqmgt2WUwWzTUs8U6cs88OJFSLrS6OEEXPkBo -----END CERTIFICATE-----Generated at Fri Jun 5 23:13:29 2026 by rpki-client