$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa File: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (raw, json) Hash identifier: 7N+kBhMTPa/IDmaHS5j88uMau/dBXAyZziXt2IYR/Jg= Subject key identifier: 97:0E:A3:AC:5F:9A:F5:70:30:BC:8B:E3:34:FC:34:6C:E0:6E:1B:4A Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0624 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:33 +0000 ROA not before: Thu 02 Oct 2025 23:24:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 394808 IP address blocks: 104.161.234.0/23 maxlen: 24 104.161.252.0/24 maxlen: 24 104.161.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Oct 2 23:24:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46e1d-bc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:91:c1:d3:64:4d:f8:57:aa:c3:ab:5e:d2:64: 6c:98:1a:6a:8e:f8:39:da:f8:16:af:e2:db:68:79: ce:d6:d4:23:fd:8b:74:f8:3b:f3:1a:0a:6d:3b:1b: 7e:0f:29:2a:60:b8:d5:c8:95:ec:58:e2:fb:b4:a9: aa:53:7e:3c:38:8d:23:67:3d:a0:bb:86:02:aa:b1: f9:81:92:55:f6:88:07:46:8b:35:2d:76:24:c2:73: 50:4f:72:d6:62:c8:78:84:36:68:c4:bf:bd:92:09: cf:55:c9:15:38:80:77:6e:44:ea:9d:53:fe:00:66: 99:52:57:f9:44:74:bf:ab:e6:34:57:2e:f1:ef:fd: dc:25:25:ee:d0:be:c5:25:cb:ef:08:c0:a5:e8:0b: 88:71:ee:49:5a:4e:4f:2c:81:3e:56:31:e7:28:41: 0e:d0:b8:27:03:f3:78:c7:f2:e1:e1:33:d4:35:80: ce:f6:90:ab:cf:41:5e:a9:95:ce:24:53:81:3d:19: 1e:59:04:d8:52:7b:16:b3:8d:bd:63:24:fb:c4:93: 62:4f:da:8d:66:c0:1f:ef:cc:b6:85:95:0d:f3:f9: 14:d5:9c:27:b9:b7:e8:b3:69:ac:db:3f:f8:16:5e: 2c:bc:7c:10:a3:96:18:5c:cb:19:89:50:04:84:e0: a3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0E:A3:AC:5F:9A:F5:70:30:BC:8B:E3:34:FC:34:6C:E0:6E:1B:4A X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 104.161.234.0/23 104.161.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:c3:b8:10:0f:e3:a2:f3:84:c1:1d:1d:2b:cc:fb:28:43:1e: 1e:c0:66:90:ed:62:ae:fb:14:c8:0a:f1:ae:51:0e:cd:11:1e: a2:2f:1b:8e:29:eb:20:d6:8b:b4:f4:eb:5d:d9:a7:62:6b:d7: e3:5f:db:d8:f7:99:11:8e:24:81:42:bf:35:84:9c:56:80:36: c4:5c:a9:e3:79:09:77:b6:3d:84:f7:7f:9d:37:2f:6c:f6:c7: 16:5f:b5:b9:0a:b0:ee:73:c0:24:63:00:d0:24:ce:ce:fa:86: 96:7c:3d:a8:b2:89:92:c7:46:0f:d8:88:9d:67:d1:a4:8d:77: 23:98:3e:f3:ca:9f:ee:52:30:88:2f:b7:43:1c:34:9c:ea:d4: 58:1e:c3:2f:10:63:d1:41:df:92:1e:5a:48:29:f4:51:c9:97: 91:71:3b:e1:55:1f:9f:85:33:26:71:4e:b2:89:b3:00:c1:04: 24:59:f9:b4:68:01:ca:7b:f3:ec:9c:5f:f2:ca:d0:02:b0:91: 13:0c:1d:c5:77:33:59:85:45:10:2a:97:73:ac:55:b2:56:ad: e2:22:4a:f4:e5:37:b0:d4:1a:b2:bf:64:ac:3a:1f:5e:61:97: bd:c9:67:dd:60:04:f3:99:25:f9:3f:eb:94:4d:61:e8:aa:19: 6a:10:57:50 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMDAyMjMyNDM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUxZC1iYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15HB02RN+Feqw6te0mRsmBpqjvg52vgWr+LbaHnO1tQj/Yt0+DvzGgptOxt+ DykqYLjVyJXsWOL7tKmqU348OI0jZz2gu4YCqrH5gZJV9ogHRos1LXYkwnNQT3LW Ysh4hDZoxL+9kgnPVckVOIB3bkTqnVP+AGaZUlf5RHS/q+Y0Vy7x7/3cJSXu0L7F JcvvCMCl6AuIce5JWk5PLIE+VjHnKEEO0LgnA/N4x/Lh4TPUNYDO9pCrz0FeqZXO JFOBPRkeWQTYUnsWs429YyT7xJNiT9qNZsAf78y2hZUN8/kU1Zwnubfos2ms2z/4 Fl4svHwQo5YYXMsZiVAEhOCjKwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJcOo6xf mvVwMLyL4zT8NGzgbhtKMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvNENCRkY0QUVERkYxMTFFQjg5NEYzMDY3QzRGOUFFMDIvMjI5Q0QyNEFG OUZCMTFFQjhDRkY1RTdEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBaKHqAwQBaKH8MA0GCSqGSIb3DQEBCwUAA4IBAQBaw7gQD+Oi84TB HR0rzPsoQx4ewGaQ7WKu+xTICvGuUQ7NER6iLxuOKesg1ou09Otd2adia9fjX9vY 95kRjiSBQr81hJxWgDbEXKnjeQl3tj2E93+dNy9s9scWX7W5CrDuc8AkYwDQJM7O +oaWfD2osomSx0YP2IidZ9GkjXcjmD7zyp/uUjCIL7dDHDSc6tRYHsMvEGPRQd+S HlpIKfRRyZeRcTvhVR+fhTMmcU6yibMAwQQkWfm0aAHKe/PsnF/yytACsJETDB3F dzNZhUUQKpdzrFWyVq3iIkr05Tew1Bqyv2SsOh9eYZe9yWfdYATzmSX5P+uUTWHo qhlqEFdQ -----END CERTIFICATE-----Generated at Fri Mar 13 22:21:26 2026 by rpki-client