$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B9CCF294FC4E11F099E0DDDC486F56BC.roa File: B9CCF294FC4E11F099E0DDDC486F56BC.roa (raw, json) Hash identifier: zqyV6GFSKHO64S+T8oxOghXLTtMEaRTNJHQmd3YiEkc= Subject key identifier: 30:84:8C:43:B0:A0:4A:0F:B6:0D:F2:A8:67:CD:E1:71:E9:56:92:5F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2204 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B9CCF294FC4E11F099E0DDDC486F56BC.roa Signing time: Wed 28 Jan 2026 13:39:10 +0000 ROA not before: Wed 28 Jan 2026 13:39:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 138.252.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Feb 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8708 (0x2204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jan 28 13:39:10 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=697a117e-314b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7d:cc:cf:aa:cb:f8:d4:d0:4e:8a:c2:a5:ae: 6b:30:d8:03:b6:13:e0:ab:cc:94:c8:c5:c2:c0:4c: 2f:43:81:a0:2d:18:d3:80:4f:b1:38:44:8b:6b:37: 98:aa:4d:55:3f:1c:f3:73:32:36:47:71:06:9e:f1: 21:1a:d6:e5:83:fc:3b:96:26:51:33:8d:26:42:f6: 37:cc:f6:0b:99:dc:cd:b2:e9:02:7e:39:89:0e:99: 2d:e9:d2:33:0e:9d:25:a5:aa:89:fa:c8:bc:3c:8b: 06:00:ce:9d:82:a7:7e:bf:3b:04:b5:20:9b:4b:ec: e6:19:65:6e:33:08:7f:61:4c:ff:bb:0e:33:3d:8a: c8:0b:25:b4:9e:62:e7:92:d0:bb:f9:ae:da:ca:bb: 09:b3:01:7e:8f:4b:71:d4:fb:30:42:c6:45:86:48: 79:a0:90:f8:72:5b:cd:ba:fc:30:9f:e0:fc:78:a8: eb:79:83:21:87:92:4e:15:9b:da:5f:2c:8f:f7:ca: 6e:26:a3:8c:b7:37:72:a0:6d:bc:34:e4:a2:e9:42: 44:ff:dc:26:18:17:2f:bd:62:ae:d5:b2:a2:ec:c0: 2c:f1:fa:66:9c:fb:e2:4a:c4:3a:4f:dc:f0:ec:65: 81:f3:d6:fb:2c:62:48:93:4a:76:c3:96:96:32:9f: da:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:84:8C:43:B0:A0:4A:0F:B6:0D:F2:A8:67:CD:E1:71:E9:56:92:5F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/B9CCF294FC4E11F099E0DDDC486F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.109.0/24 Signature Algorithm: sha256WithRSAEncryption 69:cf:7c:60:65:24:fa:87:b5:c4:37:26:41:88:0b:db:75:e2: 30:67:87:82:94:64:13:19:54:84:e8:9d:00:06:a1:a1:0a:11: fd:77:9f:d9:e2:e7:a3:72:c3:bc:f1:e8:4a:d7:9a:24:59:5c: 34:32:60:1c:97:b0:af:73:27:06:46:ef:22:ec:1c:ca:2e:1f: df:c0:4e:b3:2a:95:4f:84:d4:93:b0:ab:65:40:69:9d:f6:60: c0:89:09:4d:9e:fb:05:8d:f4:95:1e:85:a7:59:6c:e0:1d:a2: ac:5f:03:d4:2f:5b:47:fd:88:e8:a0:97:69:15:fe:af:73:4e: 46:51:f1:67:2d:f0:b1:59:49:bb:c2:10:22:d1:6b:34:fe:6f: 60:07:b7:2f:17:99:01:6d:02:c8:00:71:f4:8f:06:e2:c9:bf: 57:a1:29:39:fe:47:83:fc:46:96:1a:35:cc:12:88:59:3a:e5: 38:55:14:53:da:68:63:0d:7b:84:43:db:c6:c3:b5:84:1d:1c: 40:e3:c6:d6:da:38:a9:c9:ce:85:2a:f0:ef:82:de:f4:9a:27: 26:d1:9d:98:45:4e:a0:cc:dc:aa:7b:2b:77:ee:7e:e3:82:14: f5:c3:33:56:c8:5c:97:b0:77:4e:d0:a4:28:56:51:fc:a7:8f: 20:21:b4:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwMTI4MTMzOTEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhMTE3ZS0zMTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA333Mz6rL+NTQTorCpa5rMNgDthPgq8yUyMXCwEwvQ4GgLRjTgE+xOESLazeY qk1VPxzzczI2R3EGnvEhGtblg/w7liZRM40mQvY3zPYLmdzNsukCfjmJDpkt6dIz Dp0lpaqJ+si8PIsGAM6dgqd+vzsEtSCbS+zmGWVuMwh/YUz/uw4zPYrICyW0nmLn ktC7+a7ayrsJswF+j0tx1PswQsZFhkh5oJD4clvNuvwwn+D8eKjreYMhh5JOFZva XyyP98puJqOMtzdyoG28NOSi6UJE/9wmGBcvvWKu1bKi7MAs8fpmnPviSsQ6T9zw 7GWB89b7LGJIk0p2w5aWMp/aLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCEjEOw oEoPtg3yqGfN4XHpVpJfMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjlDQ0YyOTRG QzRFMTFGMDk5RTBERERDNDg2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACK/G0wDQYJKoZIhvcNAQELBQADggEBAGnPfGBlJPqHtcQ3 JkGIC9t14jBnh4KUZBMZVITonQAGoaEKEf13n9ni56Nyw7zx6ErXmiRZXDQyYByX sK9zJwZG7yLsHMouH9/ATrMqlU+E1JOwq2VAaZ32YMCJCU2e+wWN9JUehadZbOAd oqxfA9QvW0f9iOigl2kV/q9zTkZR8Wct8LFZSbvCECLRazT+b2AHty8XmQFtAsgA cfSPBuLJv1ehKTn+R4P8RpYaNcwSiFk65ThVFFPaaGMNe4RD28bDtYQdHEDjxtba OKnJzoUq8O+C3vSaJybRnZhFTqDM3Kp7K3fufuOCFPXDM1bIXJewd07QpChWUfyn jyAhtMU= -----END CERTIFICATE-----Generated at Sat Feb 21 04:50:46 2026 by rpki-client