$ rpki-client -vvf rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0CB23E10AB4F11EC85BF147CC4F9AE02.roa File: 0CB23E10AB4F11EC85BF147CC4F9AE02.roa (raw, json) Hash identifier: A7d/aeiJtUu4K+fswUeowBZEDmHgn1F1Svvc5b1xWTc= Subject key identifier: DD:8E:9C:36:BB:1E:76:CC:A1:82:AD:10:32:1B:47:32:1F:42:6C:D3 Certificate issuer: /CN=A9182502/serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Certificate serial: 0B4B Authority key identifier: 8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0CB23E10AB4F11EC85BF147CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:07:19 +0000 ROA not before: Tue 12 Aug 2025 20:31:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149628 IP address blocks: 39.109.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182502, serialNumber=8C3CCB4FFB89189C6EF5B34DFDAABE1806A5218A Validity Not Before: Aug 12 20:31:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48057-b6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a6:cf:1f:bc:ff:37:8c:23:63:fe:07:df:d7: 28:73:8d:3c:95:df:49:79:49:19:47:96:46:af:64: 00:7a:c9:c4:90:a5:be:43:e9:20:d7:e0:13:64:32: 60:c2:54:4a:27:6b:c4:61:ce:60:44:11:d1:fd:9d: 1d:a1:3d:ce:ec:67:5b:12:e0:19:db:e9:84:e9:b5: c9:19:f0:46:3b:69:16:c3:01:24:c9:d6:ba:91:8d: bf:22:76:3a:eb:1a:1c:cd:b1:f3:f3:94:3b:37:c9: 76:e7:93:9f:13:dd:f2:a2:fe:36:54:71:89:06:73: c1:f2:7c:bb:1b:b8:07:9e:24:95:20:ff:a0:15:dd: 63:ae:9a:37:ed:29:a4:75:09:c0:98:67:16:42:e6: 3d:99:91:a4:c7:34:91:bd:cc:3b:e7:9e:ee:63:1e: c4:be:0f:33:c2:31:bc:c5:d0:47:1c:2f:05:20:a8: e9:0c:81:e4:06:11:9e:16:5b:1a:99:fc:f2:8b:9e: 8a:20:ce:da:50:10:6d:48:de:e9:86:e2:e0:c7:d6: 19:c8:0f:75:5d:b5:f5:88:08:21:5c:d5:60:d0:3b: e1:2d:a2:9b:7e:56:4c:76:d7:08:e1:57:4a:75:aa: 7d:a1:23:9c:35:62:a2:36:96:c6:97:5f:04:1c:33: 1d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8E:9C:36:BB:1E:76:CC:A1:82:AD:10:32:1B:47:32:1F:42:6C:D3 X509v3 Authority Key Identifier: keyid:8C:3C:CB:4F:FB:89:18:9C:6E:F5:B3:4D:FD:AA:BE:18:06:A5:21:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/jDzLT_uJGJxu9bNN_aq-GAalIYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDzLT_uJGJxu9bNN_aq-GAalIYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182502/DA16C63A73CC11EAA3995326C4F9AE02/0CB23E10AB4F11EC85BF147CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.109.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:6b:9f:4c:a0:8e:f5:e4:71:25:ec:aa:56:1d:5f:cd:d5:f2: 6a:8b:d5:dc:c0:cf:ba:80:3a:f8:06:bd:4a:4d:0c:ee:06:fe: 82:7d:06:7b:17:d4:8f:81:58:33:b2:8f:64:0b:da:d2:44:e5: 1a:db:88:ff:fa:b8:a7:2d:d2:6c:86:bf:4c:2a:e3:02:f1:ea: 7d:b2:a4:8e:b2:da:f0:9a:63:1b:94:28:9d:90:3f:d5:c9:8b: c1:bb:73:9c:d2:95:26:96:f8:bd:1f:f2:25:35:ca:6a:e2:33: f7:c0:0a:3e:ce:92:c4:d4:58:5d:24:30:6b:93:21:c3:0c:a2: dd:a1:22:93:56:cc:67:27:02:f0:4a:08:d6:76:6a:ca:b9:39: 87:05:d2:c8:82:2c:f6:fd:00:51:99:f0:9a:fc:cd:02:78:cd: ce:c2:7a:6b:5b:bc:f6:80:38:3b:eb:8e:68:02:91:06:18:52: 25:45:98:23:2e:35:6f:a1:77:ad:ec:ef:5e:6a:1a:17:70:05: ed:1e:73:2b:c4:1e:f3:73:79:fd:1d:72:36:71:69:f8:db:78: cd:b4:50:b5:40:d2:7d:11:b0:a2:fa:19:18:8a:a0:88:b9:5b: 7d:99:3f:5a:d7:51:63:9c:32:44:3c:44:e6:fb:b5:78:af:ac: 00:05:bc:3f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1MDIxMTAvBgNVBAUTKDhDM0NDQjRGRkI4OTE4OUM2RUY1QjM0REZEQUFCRTE4 MDZBNTIxOEEwHhcNMjUwODEyMjAzMTE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODA1Ny1iNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqbPH7z/N4wjY/4H39coc408ld9JeUkZR5ZGr2QAesnEkKW+Q+kg1+ATZDJg wlRKJ2vEYc5gRBHR/Z0doT3O7GdbEuAZ2+mE6bXJGfBGO2kWwwEkyda6kY2/InY6 6xoczbHz85Q7N8l255OfE93yov42VHGJBnPB8ny7G7gHniSVIP+gFd1jrpo37Smk dQnAmGcWQuY9mZGkxzSRvcw7557uYx7Evg8zwjG8xdBHHC8FIKjpDIHkBhGeFlsa mfzyi56KIM7aUBBtSN7phuLgx9YZyA91XbX1iAghXNVg0DvhLaKbflZMdtcI4VdK dap9oSOcNWKiNpbGl18EHDMdEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN2OnDa7 HnbMoYKtEDIbRzIfQmzTMB8GA1UdIwQYMBaAFIw8y0/7iRicbvWzTf2qvhgGpSGK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjUwMi9EQTE2QzYzQTcz Q0MxMUVBQTM5OTUzMjZDNEY5QUUwMi9qRHpMVF91SkdKeHU5Yk5OX2FxLUdBYWxJ WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEekxUX3VKR0p4dTliTk5fYXEtR0FhbElZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI1MDIvREExNkM2M0E3M0NDMTFFQUEzOTk1MzI2QzRGOUFFMDIvMENCMjNFMTBB QjRGMTFFQzg1QkYxNDdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAJ21OMA0GCSqGSIb3DQEBCwUAA4IBAQAda59MoI715HEl7KpWHV/N 1fJqi9XcwM+6gDr4Br1KTQzuBv6CfQZ7F9SPgVgzso9kC9rSROUa24j/+rinLdJs hr9MKuMC8ep9sqSOstrwmmMblCidkD/VyYvBu3Oc0pUmlvi9H/IlNcpq4jP3wAo+ zpLE1FhdJDBrkyHDDKLdoSKTVsxnJwLwSgjWdmrKuTmHBdLIgiz2/QBRmfCa/M0C eM3OwnprW7z2gDg7645oApEGGFIlRZgjLjVvoXet7O9eahoXcAXtHnMrxB7zc3n9 HXI2cWn423jNtFC1QNJ9EbCi+hkYiqCIuVt9mT9a11FjnDJEPETm+7V4r6wABbw/ -----END CERTIFICATE-----Generated at Thu Mar 12 16:43:56 2026 by rpki-client