$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa File: C8633DEAF4C011EAA7B25986C4F9AE02.roa (raw, json) Hash identifier: TiNQGIZwDjw+eMqHiObRh3mI1G62/9Y/Tiuw7bvZi4A= Subject key identifier: CD:9D:39:97:0E:8A:C2:63:76:F6:0C:F6:5B:61:E3:E4:09:0E:49:31 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 0878 Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:06:58 +0000 ROA not before: Mon 31 Mar 2025 21:21:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24373 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 116.204.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5, serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 31 21:21:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44802-4ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:68:dc:29:2c:a5:5b:78:5d:b7:9f:d2:73:2a: fa:f4:4c:a3:29:ba:08:83:44:84:79:71:aa:3b:e5: ba:24:57:42:33:94:f4:e9:47:52:a7:e9:32:7b:2b: 71:08:86:2b:16:df:10:ab:d9:aa:7a:98:71:9d:92: 0c:ce:43:8b:ca:dc:b0:75:56:37:42:d9:66:43:b2: 97:ce:4e:48:56:5a:46:09:46:f0:20:11:82:ec:6c: 6a:26:18:9b:5c:f1:11:d7:23:8e:31:88:f6:cb:79: b2:5a:f4:99:c2:67:81:c2:41:68:28:e9:6b:5b:fa: 76:12:0f:44:15:76:b5:c2:23:66:ac:c7:b0:82:5b: 60:f6:72:47:aa:10:64:94:54:79:c5:5d:45:dc:f3: 44:e2:69:53:b1:57:26:8b:68:59:c2:97:f0:52:af: 18:f1:ba:a2:08:f9:36:2d:50:33:97:19:f4:9f:90: f5:ee:c8:14:9d:c5:7d:20:be:53:8b:27:cb:9a:a0: 1e:bb:b7:21:00:9d:de:85:39:8d:75:d9:e1:ed:47: 3b:24:0f:7c:dd:87:92:08:78:1e:4e:c7:88:84:9f: ab:81:c6:06:77:21:39:b7:85:63:a8:63:ec:49:38: 60:80:58:5b:72:2f:65:84:ec:2b:97:18:92:65:f3: 31:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9D:39:97:0E:8A:C2:63:76:F6:0C:F6:5B:61:E3:E4:09:0E:49:31 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/C8633DEAF4C011EAA7B25986C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/22 Signature Algorithm: sha256WithRSAEncryption bd:e4:f8:4e:cc:e8:f3:2f:d0:cd:a0:c9:8b:74:84:aa:c4:cb: 86:f2:30:3e:4f:bf:e1:71:21:c4:42:a2:e7:ee:72:ff:7f:cd: b1:c8:2e:c5:7d:9b:57:2d:08:a0:ef:9e:5f:60:e6:e1:cb:44: 18:24:46:8c:a0:0c:1e:e7:bd:26:da:9c:98:31:a8:ab:d1:59: cc:ad:90:b7:32:61:fc:af:aa:6e:68:7c:c7:79:47:8f:af:06: 09:70:6c:6c:8f:82:80:b8:ca:97:19:69:5a:9d:8a:3e:3d:99: fe:52:02:df:05:7c:50:a9:04:59:c0:f0:0b:3f:bb:ed:93:ad: d2:c4:52:c4:d7:d4:2b:e0:cf:5d:0e:74:e6:06:9d:9b:50:c4: 40:d6:70:89:80:08:8a:cd:f7:93:20:57:77:3b:06:08:88:6f: 72:35:2c:a8:50:ff:4a:f2:ed:a8:0d:bc:e7:6e:cc:40:7c:a1: 36:c1:44:e6:94:fd:13:eb:04:8b:7a:11:65:38:4a:63:54:c0: ff:d7:bd:d0:62:61:42:64:94:0e:83:92:8b:e6:44:55:e6:b9: 21:a2:bb:30:72:b0:3a:b5:df:6d:b6:0f:95:d3:91:f1:aa:5a: aa:e0:36:7a:c2:8f:d1:3e:04:e0:4c:1e:4b:35:f5:77:74:24: 87:13:dd:28 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjUwMzMxMjEyMTMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDgwMi00ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomjcKSylW3hdt5/Scyr69EyjKboIg0SEeXGqO+W6JFdCM5T06UdSp+kyeytx CIYrFt8Qq9mqephxnZIMzkOLytywdVY3QtlmQ7KXzk5IVlpGCUbwIBGC7GxqJhib XPER1yOOMYj2y3myWvSZwmeBwkFoKOlrW/p2Eg9EFXa1wiNmrMewgltg9nJHqhBk lFR5xV1F3PNE4mlTsVcmi2hZwpfwUq8Y8bqiCPk2LVAzlxn0n5D17sgUncV9IL5T iyfLmqAeu7chAJ3ehTmNddnh7Uc7JA983YeSCHgeTseIhJ+rgcYGdyE5t4VjqGPs SThggFhbci9lhOwrlxiSZfMxSQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM2dOZcO isJjdvYM9lth4+QJDkkxMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvQzg2MzNERUFG NEMwMTFFQUE3QjI1OTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMzQMA0GCSqGSIb3DQEBCwUAA4IBAQC95PhOzOjzL9DNoMmLdISq xMuG8jA+T7/hcSHEQqLn7nL/f82xyC7FfZtXLQig755fYObhy0QYJEaMoAwe570m 2pyYMair0VnMrZC3MmH8r6puaHzHeUePrwYJcGxsj4KAuMqXGWlanYo+PZn+UgLf BXxQqQRZwPALP7vtk63SxFLE19Qr4M9dDnTmBp2bUMRA1nCJgAiKzfeTIFd3OwYI iG9yNSyoUP9K8u2oDbznbsxAfKE2wUTmlP0T6wSLehFlOEpjVMD/173QYmFCZJQO g5KL5kRV5rkhorswcrA6td9ttg+V05Hxqlqq4DZ6wo/RPgTgTB5LNfV3dCSHE90o -----END CERTIFICATE-----Generated at Fri Mar 13 02:20:40 2026 by rpki-client