$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa File: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (raw, json) Hash identifier: VkwFL/OI8A+B6vWC8BoIWVksESaaV5yZy0BJNLEHdwI= Subject key identifier: 03:45:97:98:38:AC:9A:B3:B4:FF:B9:E7:34:9E:11:90:77:19:2E:BE Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: 0147 Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:01:34 +0000 ROA not before: Tue 29 Jul 2025 06:11:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55422 IP address blocks: 182.23.212.0/24 maxlen: 24 182.23.213.0/24 maxlen: 24 182.23.214.0/24 maxlen: 24 182.23.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6, serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Jul 29 06:11:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5983e-8502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:cd:6c:29:4b:22:17:b4:53:4f:b5:f9:53: ca:ba:d4:13:f9:42:e6:53:09:25:da:14:03:87:b9: 72:73:19:16:a8:38:a1:8c:3d:eb:44:8c:0a:2f:c6: 09:e3:66:dc:88:96:5b:85:ee:e8:7c:27:fd:16:c3: c6:08:74:34:94:fd:7b:c8:07:60:15:87:64:8e:79: 23:5b:30:12:e0:6e:b7:3b:7e:ff:ab:6d:6c:d2:51: 90:73:d7:86:1d:46:da:aa:f1:f2:a4:99:2f:1b:d8: 33:b4:ab:71:0c:7b:99:ad:f7:4c:8f:d5:8f:b7:e3: db:75:b6:1c:05:62:39:de:7c:e6:7f:6d:d9:58:8d: ec:d7:99:92:c2:79:ec:8b:d3:6a:a4:58:25:ac:ac: 89:37:8d:ec:32:79:02:50:ed:c9:66:0e:66:4a:fe: 97:60:53:72:08:c2:b0:22:e1:a4:17:e6:34:1a:f1: b2:ca:e9:51:f1:8d:e7:9f:be:2e:20:86:53:ff:a2: c6:a7:cf:ed:97:63:19:90:b7:45:23:62:b4:d7:8c: f9:1f:1d:89:b0:62:22:e1:62:fa:75:c9:80:2b:ab: e5:b4:40:07:15:9b:69:44:75:ff:29:44:4d:20:5f: 1d:7b:3f:2e:b5:27:cf:2e:a5:4b:47:c2:45:15:aa: 55:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:45:97:98:38:AC:9A:B3:B4:FF:B9:E7:34:9E:11:90:77:19:2E:BE X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 182.23.212.0/22 Signature Algorithm: sha256WithRSAEncryption 07:96:84:f4:5f:18:08:64:1e:05:fc:62:9d:f9:7c:fb:de:eb: 29:f8:ff:a2:32:8b:b3:a8:12:54:f8:85:e1:d3:e5:1c:ee:d4: a4:86:b6:02:ef:e7:a6:38:97:2d:d3:67:29:32:3a:06:e5:3c: 58:93:a7:df:75:0d:c5:30:67:3e:b0:3e:11:39:46:f1:16:08: dc:8e:fd:52:1c:84:4b:5f:61:12:b3:1d:ec:e8:64:27:47:bb: 3a:6d:66:13:13:73:8b:d4:92:20:e5:c1:54:f2:65:97:9b:ed: 1e:4a:41:58:0c:b6:74:55:13:26:2d:2b:7a:10:58:e1:1a:bb: 24:1a:af:e2:b2:37:8e:98:cc:eb:d1:e7:a6:34:8a:0a:3d:f2: 3e:fe:59:9f:96:3c:b8:29:35:d9:46:54:2f:83:2f:23:04:3e: f9:60:c8:24:1b:5b:31:b5:c5:34:26:4f:dc:c1:52:82:c8:86: 94:b0:39:82:3c:62:98:9d:c0:14:5f:60:bc:ec:5c:13:90:fb: a4:5e:03:45:e2:b6:08:d5:cc:bb:75:69:c4:b6:ff:32:d6:b5: ed:3a:43:ea:f2:86:e4:87:2c:e9:8f:99:bb:6f:e8:4f:b8:7b: 22:57:d6:6b:6f:ad:45:98:00:00:6c:f1:45:60:c6:a2:e3:3d: 75:b2:21:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2RTYxMTAvBgNVBAUTKDMyNENDODdCQ0M4NEM2ODE1MUNDMzczM0E1MDhDNzhB NUM1QjQ5OEEwHhcNMjUwNzI5MDYxMTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTgzZS04NTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4XNbClLIhe0U0+1+VPKutQT+ULmUwkl2hQDh7lycxkWqDihjD3rRIwKL8YJ 42bciJZbhe7ofCf9FsPGCHQ0lP17yAdgFYdkjnkjWzAS4G63O37/q21s0lGQc9eG HUbaqvHypJkvG9gztKtxDHuZrfdMj9WPt+PbdbYcBWI53nzmf23ZWI3s15mSwnns i9NqpFglrKyJN43sMnkCUO3JZg5mSv6XYFNyCMKwIuGkF+Y0GvGyyulR8Y3nn74u IIZT/6LGp8/tl2MZkLdFI2K014z5Hx2JsGIi4WL6dcmAK6vltEAHFZtpRHX/KURN IF8dez8utSfPLqVLR8JFFapVEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFANFl5g4 rJqztP+55zSeEZB3GS6+MB8GA1UdIwQYMBaAFDJMyHvMhMaBUcw3M6UIx4pcW0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZFNi9EN0QzNjIzODMx RjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhvRlJ6RGN6cFFqSGlseGJT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE2RTYvRDdEMzYyMzgzMUY2MTFFRjkyQUQ4RDEwQzRGOUFFMDIvOUNFMEFFRkEz MUY3MTFFRkE5QTlBNTRBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCthfUMA0GCSqGSIb3DQEBCwUAA4IBAQAHloT0XxgIZB4F/GKd+Xz7 3usp+P+iMouzqBJU+IXh0+Uc7tSkhrYC7+emOJct02cpMjoG5TxYk6ffdQ3FMGc+ sD4ROUbxFgjcjv1SHIRLX2ESsx3s6GQnR7s6bWYTE3OL1JIg5cFU8mWXm+0eSkFY DLZ0VRMmLSt6EFjhGrskGq/isjeOmMzr0eemNIoKPfI+/lmfljy4KTXZRlQvgy8j BD75YMgkG1sxtcU0Jk/cwVKCyIaUsDmCPGKYncAUX2C87FwTkPukXgNF4rYI1cy7 dWnEtv8y1rXtOkPq8obkhyzpj5m7b+hPuHsiV9Zrb61FmAAAbPFFYMai4z11siHy -----END CERTIFICATE-----Generated at Mon Mar 2 21:14:04 2026 by rpki-client