$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa File: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (raw, json) Hash identifier: zt8ovKN7+n8nwUz7dlHlvLBjh4KwXCc4mYOMPsqbe38= Subject key identifier: 29:EF:CE:83:19:A5:23:13:B8:16:C6:C0:B5:7A:0F:0A:44:17:E3:06 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B63 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:47:30 +0000 ROA not before: Wed 02 Jul 2025 20:29:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 32787 IP address blocks: 14.136.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jul 2 20:29:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47bb2-dde6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:2e:d9:c1:ce:41:75:69:65:88:1f:30:17: eb:9b:74:cd:5d:56:64:5c:2d:ff:60:0d:29:ad:f1: 5e:fb:6c:ed:a7:1b:d4:fb:2b:a3:0a:b4:d1:6c:a8: b0:50:74:da:9c:27:19:dc:29:bb:4a:8d:16:44:69: c3:54:92:80:90:83:b8:c8:6f:6c:6f:59:a3:81:03: 6f:ab:e4:f4:d7:96:cb:2f:33:31:2f:6d:81:6f:e0: c2:b9:44:f6:9e:75:9d:ad:71:8c:9a:5e:03:d3:78: 2d:b6:32:c9:3b:bd:6f:f2:d0:18:75:e1:67:13:cb: c3:57:8d:54:93:c7:9a:0f:45:ee:4d:22:7f:04:13: 37:36:16:70:fb:ea:8e:87:91:78:a0:58:b3:1f:a1: 84:c9:90:5b:a2:b3:50:27:77:5e:33:5a:85:a3:1b: a0:8d:d1:bc:ed:9d:f5:a9:57:9c:52:ae:10:01:98: b2:2a:61:ff:70:a1:0a:53:70:6d:5b:a8:50:3e:b9: 5e:b0:a5:e0:c0:1d:53:94:61:fa:9a:f3:e1:02:71: ed:8c:04:d2:ad:29:d1:7d:27:d4:b5:15:bb:53:63: 1d:73:76:a9:99:55:68:90:4b:49:8d:30:3d:4d:9a: 8d:7d:78:1c:c9:53:0a:9d:3e:32:ec:3c:eb:d8:a4: ed:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:EF:CE:83:19:A5:23:13:B8:16:C6:C0:B5:7A:0F:0A:44:17:E3:06 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.136.149.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9b:5c:7e:c4:89:4b:04:3c:4d:af:64:a5:ab:41:3a:bf:a8: 38:04:d2:84:1a:fb:03:1c:e3:4f:01:e1:b9:9a:b8:be:33:de: 35:10:23:7f:18:64:9c:0c:7c:41:55:51:3c:f3:d8:e5:08:e0: 75:63:98:ac:7a:70:d1:73:18:bc:e1:87:1f:39:0f:51:58:59: ae:16:3b:69:c6:de:ca:b6:d1:6c:05:68:b1:f2:7e:6d:44:49: f7:b0:02:ad:6a:2c:53:1f:01:9a:dd:d0:38:11:7c:c0:49:fd: dc:57:f5:c4:7c:75:1e:6c:93:0d:68:20:00:22:82:ae:9a:22: 5b:7d:07:d2:b5:42:a3:32:a4:0c:55:33:33:af:68:01:49:82: 78:7b:43:16:06:4e:54:f5:5b:88:f3:30:8b:84:ec:f9:fc:99: 07:02:8e:e5:bc:3e:0a:08:1a:80:3c:af:d6:af:74:18:7f:63: d2:50:43:29:41:c2:a7:ba:1e:5b:73:29:f7:ee:33:00:7a:29: a2:30:92:b6:1b:35:e4:bf:4e:d3:20:61:49:64:59:3e:7d:e5: 86:10:b7:99:59:03:f7:cd:80:fb:63:f4:1d:05:bc:3b:a4:a2: 37:e5:04:fd:05:3c:c0:57:35:45:9d:cb:5c:0e:dd:9c:c0:78: 95:34:d1:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNzAyMjAyOTQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JiMi1kZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQQu2cHOQXVpZYgfMBfrm3TNXVZkXC3/YA0prfFe+2ztpxvU+yujCrTRbKiw UHTanCcZ3Cm7So0WRGnDVJKAkIO4yG9sb1mjgQNvq+T015bLLzMxL22Bb+DCuUT2 nnWdrXGMml4D03gttjLJO71v8tAYdeFnE8vDV41Uk8eaD0XuTSJ/BBM3NhZw++qO h5F4oFizH6GEyZBborNQJ3deM1qFoxugjdG87Z31qVecUq4QAZiyKmH/cKEKU3Bt W6hQPrlesKXgwB1TlGH6mvPhAnHtjATSrSnRfSfUtRW7U2Mdc3apmVVokEtJjTA9 TZqNfXgcyVMKnT4y7Dzr2KTtvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCnvzoMZ pSMTuBbGwLV6DwpEF+MGMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvMERFMzJEOUMy QjFFMTFGMEFGRUI4NTJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQADoiVMA0GCSqGSIb3DQEBCwUAA4IBAQCNm1x+xIlLBDxNr2Slq0E6 v6g4BNKEGvsDHONPAeG5mri+M941ECN/GGScDHxBVVE889jlCOB1Y5isenDRcxi8 4YcfOQ9RWFmuFjtpxt7KttFsBWix8n5tREn3sAKtaixTHwGa3dA4EXzASf3cV/XE fHUebJMNaCAAIoKumiJbfQfStUKjMqQMVTMzr2gBSYJ4e0MWBk5U9VuI8zCLhOz5 /JkHAo7lvD4KCBqAPK/Wr3QYf2PSUEMpQcKnuh5bcyn37jMAeimiMJK2GzXkv07T IGFJZFk+feWGELeZWQP3zYD7Y/QdBbw7pKI35QT9BTzAVzVFnctcDt2cwHiVNNFE -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:23 2026 by rpki-client