$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa File: 653B503C5C3C11ED9B4FAB0BC4F9AE02.roa (raw, json) Hash identifier: yeP+OeclgdSGvFc2ZxlwyrgU2wtWwqBL6DT7rETpKF8= Subject key identifier: 73:B2:7E:14:02:39:C0:ED:1F:00:FA:42:97:0C:4B:63:D6:64:4D:71 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 08DB Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:45 +0000 ROA not before: Fri 02 May 2025 21:32:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 149.234.185.0/24 maxlen: 24 149.234.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2267 (0x8db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46a69-60be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:2a:1b:c9:fa:4a:67:fa:78:9b:7d:a2:56: 1d:13:2c:4a:e6:ce:4d:4c:ba:d8:26:8b:fd:cf:da: 93:15:1c:c6:16:4a:6b:61:82:bd:16:1b:97:c0:29: e1:08:9e:80:78:d2:2e:97:e9:cd:68:64:7d:fc:48: 13:df:55:e4:1d:e0:22:19:d3:d0:bb:52:4a:b6:2f: 74:28:a2:3e:68:87:00:03:00:f6:4c:d6:cc:83:03: 29:97:32:af:90:b2:9c:05:ef:19:a4:84:16:68:9a: 78:fa:10:e5:23:ca:40:b8:bd:ab:3e:49:b5:90:57: d5:43:38:a9:ca:9e:8c:8b:4d:57:b6:f7:8a:d1:de: ea:88:c8:ba:9e:42:d1:63:61:39:a0:cd:19:42:95: 1b:a4:e4:00:f7:67:c4:72:58:a5:75:30:69:82:79: 65:4a:c6:98:5e:97:52:07:ea:f0:fa:a3:cc:d5:fc: 48:62:84:e8:11:87:f1:57:b9:1e:cc:99:2e:42:9d: ff:ca:42:89:c4:75:d9:3a:de:ea:28:c3:5f:33:55: 23:28:80:83:6d:04:2e:2a:e1:62:58:cf:bf:ca:ea: 66:79:06:1d:3c:ee:ea:b2:6c:ad:63:bf:93:24:fe: c6:e6:bd:ee:fa:3e:35:af:87:95:c1:1d:3d:3f:57: ee:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B2:7E:14:02:39:C0:ED:1F:00:FA:42:97:0C:4B:63:D6:64:4D:71 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/653B503C5C3C11ED9B4FAB0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 149.234.185.0/24 149.234.187.0/24 Signature Algorithm: sha256WithRSAEncryption 97:d6:dc:41:df:c1:f2:df:d1:a5:9d:0e:62:82:19:29:dd:ea: bf:03:03:06:2f:7d:5a:f0:ba:4e:dd:75:3b:04:bf:9f:62:83: 38:9a:58:52:28:1d:41:b9:0a:09:82:d4:6e:91:64:85:32:cd: e6:69:e3:ed:06:ae:b0:81:c4:32:eb:77:d9:4f:96:6c:d5:a7: 6a:77:45:2d:ba:25:29:90:0e:59:1a:20:32:d1:52:7b:2f:bf: 60:7b:36:e9:b3:45:62:99:9e:ee:65:09:a4:a2:e9:87:20:1c: 05:ed:43:f2:a1:4c:0a:5f:b9:06:e0:cc:54:33:f6:ea:c0:40: 14:91:5d:78:33:09:6d:10:4e:88:f0:43:6e:ef:9c:a2:c7:7f: ba:26:ac:d8:b9:98:21:61:08:6f:35:d0:f0:2e:97:5c:5c:fa: 82:0b:fd:99:b4:44:25:b8:47:46:ab:ed:f2:2a:32:48:f0:9b: 07:d6:75:3c:d8:ed:f4:dd:de:a5:e4:c4:70:b2:ed:ac:cc:68: 93:fa:77:e5:d9:18:cd:93:b8:8e:11:60:6e:7e:f1:8b:33:4a: bd:40:a1:4a:b8:da:96:1a:00:f7:e6:b4:f4:40:98:cf:9e:42: 50:92:dc:cc:fb:e5:14:a4:88:84:b0:ac:70:2a:1b:d8:b9:e5: 94:4a:61:21 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE2OS02MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk0qG8n6Smf6eJt9olYdEyxK5s5NTLrYJov9z9qTFRzGFkprYYK9FhuXwCnh CJ6AeNIul+nNaGR9/EgT31XkHeAiGdPQu1JKti90KKI+aIcAAwD2TNbMgwMplzKv kLKcBe8ZpIQWaJp4+hDlI8pAuL2rPkm1kFfVQzipyp6Mi01XtveK0d7qiMi6nkLR Y2E5oM0ZQpUbpOQA92fEclildTBpgnllSsaYXpdSB+rw+qPM1fxIYoToEYfxV7ke zJkuQp3/ykKJxHXZOt7qKMNfM1UjKICDbQQuKuFiWM+/yupmeQYdPO7qsmytY7+T JP7G5r3u+j41r4eVwR09P1futQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHOyfhQC OcDtHwD6QpcMS2PWZE1xMB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvNjUzQjUwM0M1 QzNDMTFFRDlCNEZBQjBCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAleq5AwQAleq7MA0GCSqGSIb3DQEBCwUAA4IBAQCX1txB38Hy39Gl nQ5ighkp3eq/AwMGL31a8LpO3XU7BL+fYoM4mlhSKB1BuQoJgtRukWSFMs3maePt Bq6wgcQy63fZT5Zs1adqd0UtuiUpkA5ZGiAy0VJ7L79gezbps0VimZ7uZQmkoumH IBwF7UPyoUwKX7kG4MxUM/bqwEAUkV14MwltEE6I8ENu75yix3+6JqzYuZghYQhv NdDwLpdcXPqCC/2ZtEQluEdGq+3yKjJI8JsH1nU82O303d6l5MRwsu2szGiT+nfl 2RjNk7iOEWBufvGLM0q9QKFKuNqWGgD35rT0QJjPnkJQktzM++UUpIiEsKxwKhvY ueWUSmEh -----END CERTIFICATE-----Generated at Mon Mar 2 11:58:16 2026 by rpki-client