$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa File: C7ADA138F4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: +3XT8yfD6flRBTYrAfbvi+v95RlnF6TRzJM1mtU7hPs= Subject key identifier: 09:DA:CD:24:E6:6C:AE:68:74:46:86:BD:91:8A:87:F8:0F:E9:78:62 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 0877 Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:06:57 +0000 ROA not before: Mon 31 Mar 2025 21:21:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138527 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2167 (0x877) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5, serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 31 21:21:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44801-63a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bd:fb:51:63:0a:36:3b:3e:84:b0:29:2e:21: ef:46:61:9e:6e:f2:8b:89:a9:b9:b2:8c:a4:84:7f: 22:00:2e:b0:59:fa:78:9a:30:d7:9f:6e:22:be:7a: ff:42:04:e7:a5:cf:bb:ac:c4:6e:69:c7:bb:b3:79: 35:1c:c1:be:e5:dc:98:f3:4b:d0:d6:e0:e4:ef:66: 6f:f7:cd:2c:bc:22:3a:75:fe:1d:91:fb:7c:0f:b6: 46:ad:c7:2a:ec:47:98:f9:59:59:82:a3:8e:34:f3: 1f:a0:15:a1:bb:e2:6a:be:aa:93:7c:c5:f9:a8:5c: 78:c1:56:d9:b6:c4:d8:1f:4d:a0:ea:44:ca:3b:bc: e2:f9:c1:6a:be:bb:28:63:f8:d9:17:75:e1:57:38: 49:48:03:ad:71:bc:96:e2:46:83:80:ba:ad:45:62: 28:dd:81:88:77:e1:e1:2a:66:c2:02:09:ba:b8:6b: dd:6d:fb:52:69:3d:ec:eb:87:22:a6:9d:17:e4:ba: 97:8e:bc:0b:a2:06:4f:78:1c:b2:b0:65:c0:ed:d9: cf:4e:54:ba:0c:40:87:ef:27:bb:a5:50:5d:25:f9: 79:c0:3d:6c:02:ee:fd:48:78:fa:e8:c9:63:e4:d6: db:3e:91:bd:b5:46:db:38:25:5e:87:89:36:c2:ec: df:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DA:CD:24:E6:6C:AE:68:74:46:86:BD:91:8A:87:F8:0F:E9:78:62 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C7ADA138F4C011EAA7B25986C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/23 Signature Algorithm: sha256WithRSAEncryption 62:61:a2:10:c5:de:36:ae:f6:8d:2d:06:b7:eb:b0:cb:90:fa: 11:51:d2:e2:27:34:8e:0f:34:06:0f:d8:80:45:38:4d:39:e1: ef:52:6f:cb:ab:de:24:80:44:33:8f:bd:ac:6d:af:b0:8b:17: bb:73:12:a6:40:95:98:e1:48:c3:a7:a3:e5:6b:b2:2d:91:91: c2:54:fa:6d:9c:68:36:50:6b:24:dd:ee:8e:6c:3f:e6:94:4f: 55:ff:e4:49:7e:f3:40:c4:b2:55:19:6c:4b:9c:98:4f:ec:e7: 33:ba:bc:53:9a:a1:b6:6a:da:d9:77:94:67:fd:99:14:48:61: cf:2f:89:62:ad:60:aa:a0:13:04:89:0a:2a:d7:d2:99:e0:cc: 22:b4:dc:68:7a:a5:12:93:88:64:0e:58:73:7d:4c:58:78:fc: 17:62:85:f8:5a:cc:16:8b:c6:9f:ce:83:24:9c:aa:da:89:89: d7:27:38:9a:f9:a2:ff:65:56:15:5e:c7:9b:bf:8a:ef:da:2c: 79:95:29:94:e9:be:32:17:83:d2:1a:c7:a3:2c:02:fd:ff:42: b4:ef:a0:4f:c1:e6:d0:7b:a2:f5:09:a4:11:8e:4a:73:d0:ca: 3e:fd:6f:08:24:9b:be:f4:94:c6:e5:d0:43:24:d1:8f:0e:c8: d8:7a:df:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjUwMzMxMjEyMTMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDgwMS02M2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp737UWMKNjs+hLApLiHvRmGebvKLiam5soykhH8iAC6wWfp4mjDXn24ivnr/ QgTnpc+7rMRuace7s3k1HMG+5dyY80vQ1uDk72Zv980svCI6df4dkft8D7ZGrccq 7EeY+VlZgqOONPMfoBWhu+JqvqqTfMX5qFx4wVbZtsTYH02g6kTKO7zi+cFqvrso Y/jZF3XhVzhJSAOtcbyW4kaDgLqtRWIo3YGId+HhKmbCAgm6uGvdbftSaT3s64ci pp0X5LqXjrwLogZPeByysGXA7dnPTlS6DECH7ye7pVBdJfl5wD1sAu79SHj66Mlj 5NbbPpG9tUbbOCVeh4k2wuzfsQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAnazSTm bK5odEaGvZGKh/gP6XhiMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzdBREExMzhG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdMzQMA0GCSqGSIb3DQEBCwUAA4IBAQBiYaIQxd42rvaNLQa367DL kPoRUdLiJzSODzQGD9iARThNOeHvUm/Lq94kgEQzj72sba+wixe7cxKmQJWY4UjD p6Pla7ItkZHCVPptnGg2UGsk3e6ObD/mlE9V/+RJfvNAxLJVGWxLnJhP7OczurxT mqG2atrZd5Rn/ZkUSGHPL4lirWCqoBMEiQoq19KZ4MwitNxoeqUSk4hkDlhzfUxY ePwXYoX4WswWi8afzoMknKraiYnXJzia+aL/ZVYVXsebv4rv2ix5lSmU6b4yF4PS GsejLAL9/0K076BPwebQe6L1CaQRjkpz0Mo+/W8IJJu+9JTG5dBDJNGPDsjYet8v -----END CERTIFICATE-----Generated at Fri Mar 13 02:23:11 2026 by rpki-client