$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa File: CC9D872A468D11F0A82C5E5EC4F9AE02.roa (raw, json) Hash identifier: 53IvHKTdXwEXSRnOFpf3vxlzT+INgjItjJHDBhfEtMI= Subject key identifier: CE:7A:A7:0B:3B:E7:21:A7:B2:9A:A4:62:88:FB:CE:D1:A2:B2:F9:64 Certificate issuer: /CN=A911750B/serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Certificate serial: 89 Authority key identifier: 68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:10:22 +0000 ROA not before: Wed 11 Jun 2025 06:32:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151660 IP address blocks: 165.99.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Validity Not Before: Jun 11 06:32:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3f46e-9aed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:b6:9d:2e:1c:e8:64:18:fc:93:2a:3e:85: 90:68:e7:7c:17:11:c4:52:aa:91:4f:9c:95:ea:3a: 58:b8:1b:be:a9:4f:b7:38:79:a6:cb:f7:bd:2a:75: 0f:38:36:26:5a:20:32:f2:ac:8d:dd:89:85:0a:b7: bd:24:6f:4e:44:73:16:8c:e4:5c:03:76:b8:7b:c6: c3:1f:06:c3:d8:69:f2:23:43:62:5f:8c:29:db:60: e2:f8:1d:26:1e:f9:1d:22:aa:84:1f:7f:c0:66:ca: 7b:25:dc:f1:4e:7e:45:a1:53:5e:f1:14:16:39:33: cd:e6:0c:53:86:1a:4d:24:ff:fc:6c:97:76:4d:99: 7b:b2:53:51:6f:ad:03:57:79:1f:69:09:38:09:3c: 01:64:a5:34:f8:89:07:24:c3:09:fe:a4:bc:3c:cc: 42:6a:0d:65:60:84:34:ea:a2:2d:0f:c8:93:41:d4: 54:c0:47:64:5e:3a:d4:cc:8a:7d:5e:26:97:0f:8b: 6b:8a:15:39:a1:74:be:19:6e:18:7b:35:ee:03:e2: 2f:af:96:5d:74:16:c4:dc:c6:3f:ea:bb:fe:61:1d: c8:c1:98:f3:ff:3b:69:69:8e:59:90:fc:5a:50:d5: fe:cf:34:43:bb:3e:83:91:d3:ab:61:2e:1d:11:13: 85:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7A:A7:0B:3B:E7:21:A7:B2:9A:A4:62:88:FB:CE:D1:A2:B2:F9:64 X509v3 Authority Key Identifier: keyid:68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.240.0/23 Signature Algorithm: sha256WithRSAEncryption 81:19:83:50:fd:81:1f:71:25:47:c2:ba:7f:a5:86:0e:9d:9a: 26:4f:33:8b:15:3c:83:79:dd:75:38:e6:fc:f2:c8:b6:b0:56: c0:97:90:41:e1:fa:81:09:c4:2a:2d:26:69:4f:01:0d:b9:1f: 6d:11:4c:63:1e:df:0a:43:c8:01:c3:14:b3:a5:79:f7:99:75: fa:e9:1f:1c:80:29:6d:50:12:ed:99:f6:86:5f:9b:11:f1:e4: 48:cd:01:0f:74:e7:d3:c8:e7:07:0b:cf:c0:44:b5:26:eb:c2: 92:6c:09:bb:66:d2:7b:c4:69:8c:7e:96:9e:cd:af:43:8f:91: 20:29:36:ab:78:cf:a4:ed:9a:ee:89:fb:4e:bc:82:e7:91:d2: 53:1d:fe:a1:3f:b5:ce:d3:78:08:0f:82:5c:07:cb:8d:d3:21: ee:90:ee:1d:c6:86:42:20:18:5e:19:e0:fb:93:34:03:1a:8c: d1:fc:8c:05:60:ad:a6:ca:98:23:cf:f5:4b:1b:71:71:34:0f: 74:f8:7e:29:5b:5c:f6:cc:0c:18:bb:e7:18:57:5c:d8:4a:b1: d2:68:fd:e7:af:79:a9:58:50:0f:d4:5a:ec:3a:24:44:90:1a: 30:65:c7:2b:bc:0e:25:1b:d2:0c:b8:47:18:46:a1:45:90:44: 45:80:28:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1MEIxMTAvBgNVBAUTKDY4QzIxODhDMDRDMjBFNDkyM0FCQjYyREI0ODcyNDk4 MzU0QjRBRkQwHhcNMjUwNjExMDYzMjA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQ2ZS05YWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZe2nS4c6GQY/JMqPoWQaOd8FxHEUqqRT5yV6jpYuBu+qU+3OHmmy/e9KnUP ODYmWiAy8qyN3YmFCre9JG9ORHMWjORcA3a4e8bDHwbD2GnyI0NiX4wp22Di+B0m HvkdIqqEH3/AZsp7JdzxTn5FoVNe8RQWOTPN5gxThhpNJP/8bJd2TZl7slNRb60D V3kfaQk4CTwBZKU0+IkHJMMJ/qS8PMxCag1lYIQ06qItD8iTQdRUwEdkXjrUzIp9 XiaXD4trihU5oXS+GW4YezXuA+Ivr5ZddBbE3MY/6rv+YR3IwZjz/ztpaY5ZkPxa UNX+zzRDuz6DkdOrYS4dEROFIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM56pws7 5yGnspqkYoj7ztGisvlkMB8GA1UdIwQYMBaAFGjCGIwEwg5JI6u2LbSHJJg1S0r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzUwQi81QjFDMUZBRTQ2 OEMxMUYwODRCNkE1MzlDNEY5QUUwMi9hTUlZakFUQ0Rra2pxN1l0dElja21EVkxT djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FNSVlqQVRDRGtranE3WXR0SWNrbURWTFN2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc1MEIvNUIxQzFGQUU0NjhDMTFGMDg0QjZBNTM5QzRGOUFFMDIvQ0M5RDg3MkE0 NjhEMTFGMEE4MkM1RTVFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWPwMA0GCSqGSIb3DQEBCwUAA4IBAQCBGYNQ/YEfcSVHwrp/pYYO nZomTzOLFTyDed11OOb88si2sFbAl5BB4fqBCcQqLSZpTwENuR9tEUxjHt8KQ8gB wxSzpXn3mXX66R8cgCltUBLtmfaGX5sR8eRIzQEPdOfTyOcHC8/ARLUm68KSbAm7 ZtJ7xGmMfpaeza9Dj5EgKTareM+k7ZruiftOvILnkdJTHf6hP7XO03gID4JcB8uN 0yHukO4dxoZCIBheGeD7kzQDGozR/IwFYK2mypgjz/VLG3FxNA90+H4pW1z2zAwY u+cYV1zYSrHSaP3nr3mpWFAP1FrsOiREkBowZccrvA4lG9IMuEcYRqFFkERFgCgv -----END CERTIFICATE-----Generated at Mon Mar 2 18:27:14 2026 by rpki-client