$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa File: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (raw, json) Hash identifier: TH0pbEZTfFk/7QKlIYRFfHi6YWc6EnwN0PyoqfHcpyU= Subject key identifier: 92:1B:80:5A:47:6E:26:39:8A:C5:E7:60:4E:3D:D7:15:5A:58:49:28 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A9A Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:22:38 +0000 ROA not before: Thu 20 Nov 2025 19:10:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 4809 IP address blocks: 63.140.3.0/24 maxlen: 24 63.140.4.0/24 maxlen: 24 63.140.5.0/24 maxlen: 24 63.140.6.0/24 maxlen: 24 63.140.7.0/24 maxlen: 24 63.140.8.0/24 maxlen: 24 63.140.9.0/24 maxlen: 24 63.140.10.0/24 maxlen: 24 63.140.11.0/24 maxlen: 24 63.140.13.0/24 maxlen: 24 63.140.14.0/24 maxlen: 24 63.140.15.0/24 maxlen: 24 69.194.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 20 19:10:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a475de-4bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:83:0b:04:32:44:dd:07:92:40:dc:f7:98:3b: 8a:66:e0:3a:1b:4b:0c:50:8c:ef:35:79:e2:41:20: 1e:bb:61:11:0e:d5:8d:7c:09:3d:35:95:e0:fd:c3: ad:87:16:e5:33:70:40:35:22:db:c6:72:4f:b6:17: d5:91:14:e2:de:0b:05:70:92:ef:fc:31:76:ae:67: 5d:b2:d0:ce:ac:7f:e1:e8:a7:d1:af:e8:3a:69:94: 1c:b6:50:57:82:83:f6:65:8a:46:d9:29:c2:69:ff: 38:14:8b:aa:c0:4d:9d:79:70:b7:ed:7f:c0:c3:63: c0:31:e7:6c:4a:80:e6:e6:89:e9:54:9b:00:49:11: 0d:55:07:19:ea:02:9c:fb:59:d3:7b:7f:4c:0b:28: 84:35:96:34:ff:45:f5:6e:40:d3:b6:c5:cd:c8:bf: 8f:c7:46:c7:9d:fd:b8:c9:a1:cc:a5:e5:7b:88:8f: 85:15:4c:b3:28:e6:0f:db:da:17:33:4f:e5:73:a6: bf:38:08:a5:c2:e3:d2:44:e9:c1:ba:0e:4f:17:d7: 7e:ef:cd:66:14:65:eb:91:48:b0:1a:a4:97:a3:01: fb:2f:cb:35:16:cd:da:a7:3f:3b:c7:8d:9f:05:1e: c9:c5:51:69:f2:d9:b9:f3:9f:7a:f7:4a:67:1f:27: ad:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1B:80:5A:47:6E:26:39:8A:C5:E7:60:4E:3D:D7:15:5A:58:49:28 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/4D3CA5D082D211EAB2F4F66AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 63.140.3.0-63.140.11.255 63.140.13.0-63.140.15.255 69.194.171.0/24 Signature Algorithm: sha256WithRSAEncryption 56:27:f4:5b:27:fd:21:ac:9d:7d:96:fc:1c:96:e1:57:dd:0e: ba:a0:35:0c:75:26:a4:74:60:72:5c:9b:26:ea:80:17:03:2c: 32:b7:e8:24:62:a5:0c:10:28:da:34:e9:f5:7b:a7:22:13:22: 4a:75:6b:e0:75:94:80:4f:ee:ed:14:b3:e2:d7:f1:7b:d3:79: 48:0c:07:a0:f9:ca:ab:0f:fc:af:f2:7f:1a:b4:cb:78:9f:cf: 2d:ca:08:6c:df:a3:80:e6:bd:54:a0:a0:89:24:69:e9:82:b2: 5e:b4:9a:0b:dd:de:62:f5:cb:f2:60:80:91:65:2b:71:f0:83: 94:72:72:a7:b3:1d:6e:b8:36:2e:4a:29:13:bf:b1:21:19:40: c5:04:92:36:0c:cc:2f:30:3d:17:88:80:86:85:a3:b6:0c:45: a1:a3:a3:6d:d4:72:aa:e9:f9:bc:12:ef:75:23:87:12:f3:29: 1b:6f:c5:69:78:05:60:1b:54:16:3f:6e:66:57:d6:00:fb:33: 96:ee:96:87:57:c6:06:af:ee:f0:1d:72:4b:f8:26:09:9a:e3: 67:41:99:45:e6:18:ce:d4:e6:c1:9e:c7:a5:0d:ed:a0:be:5e: 16:b3:ea:86:70:ed:a7:cc:3b:07:10:89:46:69:ef:6f:f0:7c: 14:14:32:ea -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMTIwMTkxMDEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVkZS00YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoMLBDJE3QeSQNz3mDuKZuA6G0sMUIzvNXniQSAeu2ERDtWNfAk9NZXg/cOt hxblM3BANSLbxnJPthfVkRTi3gsFcJLv/DF2rmddstDOrH/h6KfRr+g6aZQctlBX goP2ZYpG2SnCaf84FIuqwE2deXC37X/Aw2PAMedsSoDm5onpVJsASRENVQcZ6gKc +1nTe39MCyiENZY0/0X1bkDTtsXNyL+Px0bHnf24yaHMpeV7iI+FFUyzKOYP29oX M0/lc6a/OAilwuPSROnBug5PF9d+781mFGXrkUiwGqSXowH7L8s1Fs3apz87x42f BR7JxVFp8tm5859690pnHyetZQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFJIbgFpH biY5isXnYE491xVaWEkoMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU3NkQvMkU3NjdFMzI4MkNEMTFFQTg5NUM3QjVDQzRGOUFFMDIvNEQzQ0E1RDA4 MkQyMTFFQUIyRjRGNjZBQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAo BAIAATAiMAwDBAA/jAMDBAI/jAgwDAMEAD+MDQMEBD+MAAMEAEXCqzANBgkqhkiG 9w0BAQsFAAOCAQEAVif0Wyf9IaydfZb8HJbhV90OuqA1DHUmpHRgclybJuqAFwMs MrfoJGKlDBAo2jTp9XunIhMiSnVr4HWUgE/u7RSz4tfxe9N5SAwHoPnKqw/8r/J/ GrTLeJ/PLcoIbN+jgOa9VKCgiSRp6YKyXrSaC93eYvXL8mCAkWUrcfCDlHJyp7Md brg2LkopE7+xIRlAxQSSNgzMLzA9F4iAhoWjtgxFoaOjbdRyqun5vBLvdSOHEvMp G2/FaXgFYBtUFj9uZlfWAPszlu6Wh1fGBq/u8B1yS/gmCZrjZ0GZReYYztTmwZ7H pQ3toL5eFrPqhnDtp8w7BxCJRmnvb/B8FBQy6g== -----END CERTIFICATE-----Generated at Fri Mar 13 02:22:27 2026 by rpki-client