$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa File: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (raw, json) Hash identifier: E/3+zHRb9cigB2So9gcmcEr9UWMt8OA7wew5j990xKY= Subject key identifier: 4F:98:E9:FE:A7:4D:F8:58:7F:CB:57:54:06:6C:9A:D0:8B:70:91:D0 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 0245 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa Signing time: Tue 26 May 2026 07:26:48 +0000 ROA not before: Tue 26 May 2026 07:26:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136964 IP address blocks: 167.179.2.0/24 maxlen: 24 167.179.208.0/24 maxlen: 24 167.179.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: May 26 07:26:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a154b37-aa0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a5:ce:87:08:dd:0e:02:43:bc:89:61:64:43: 74:09:43:ac:00:10:ee:65:8a:e6:15:68:ee:3f:6e: 51:e0:32:0e:da:83:ff:58:39:7d:19:0b:9e:73:1b: df:38:5c:4b:b1:43:5d:38:50:d1:2a:b2:63:14:d5: 06:ab:5d:a7:69:a1:56:ed:77:a1:b1:b6:70:73:ee: 77:ab:0c:78:7d:8d:63:dd:b3:87:8c:f2:4e:85:31: 79:32:f5:d8:bd:ec:da:ae:9d:be:d4:f9:ee:0c:bd: 61:f9:fe:5a:06:8a:4a:58:6e:0a:41:16:77:dd:a7: ad:07:f0:e3:83:2c:b0:f7:7b:cc:2a:7a:5e:52:bd: dc:60:d8:ef:33:a0:ad:05:63:35:05:fb:59:a2:7c: 18:f0:35:a3:91:3a:04:c8:c8:80:35:be:bf:c9:be: 4c:8d:57:d5:3b:1f:4c:72:0b:f1:4a:8c:44:21:bf: 2b:fc:46:bd:57:a8:b7:27:4e:21:1b:73:68:84:29: bb:62:da:24:9a:25:aa:68:44:31:5c:0a:a7:61:16: db:4a:de:8e:ce:c6:04:88:00:cd:8d:48:69:32:54: 6c:af:e8:01:e0:80:fe:65:b7:28:6f:4c:da:78:42: 66:55:11:24:d1:78:77:23:9c:b6:9b:e0:8c:8a:09: 30:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:98:E9:FE:A7:4D:F8:58:7F:CB:57:54:06:6C:9A:D0:8B:70:91:D0 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/234074FA00DD11EE95AF6F7CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.179.2.0/24 167.179.208.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:f0:20:45:60:08:db:6f:eb:d2:aa:b4:c6:4a:2a:1c:ea:ec: 06:5d:60:e0:53:95:cb:47:4a:e7:fd:f6:fb:d4:2b:e6:6b:c4: a2:7d:4a:c5:35:27:e5:a2:49:16:5a:d0:1d:89:bf:26:4c:87: c1:b0:42:e0:07:4c:e8:9a:50:9a:a7:e2:15:64:5c:f7:89:74: ff:1f:d7:f4:28:f3:38:5f:39:9d:60:2e:79:c1:31:77:44:4a: 8e:db:bc:68:f6:c7:38:5c:5c:6e:0c:f7:d7:6b:38:ce:e0:2d: 8d:c1:1a:2d:1d:a6:7d:84:c3:18:5f:7e:26:44:5d:b5:26:2a: 2a:96:0d:34:a3:aa:69:aa:00:2c:38:b2:84:c4:1d:f1:90:ee: 20:a5:d6:23:4c:26:ba:20:88:0f:9a:3b:cd:c3:0b:33:ff:12: 17:90:d6:f7:74:cc:5f:9b:bf:27:a3:6e:c1:3c:95:2d:e1:5a: fc:ea:0c:13:1d:40:b5:2a:d4:ee:43:9f:ec:98:68:5d:e7:86: c5:bf:54:37:5e:53:83:6e:9f:b4:a3:ae:67:06:c0:f9:d0:ac: 53:f2:21:74:4c:58:79:5c:31:a4:8c:e9:d0:c7:41:00:5f:b4: 94:05:1a:49:f1:14:1e:da:23:62:09:4c:b9:d1:54:38:ee:78: 00:c9:17:a3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwNTI2MDcyNjQ3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE1NGIzNy1hYTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qXOhwjdDgJDvIlhZEN0CUOsABDuZYrmFWjuP25R4DIO2oP/WDl9GQuecxvf OFxLsUNdOFDRKrJjFNUGq12naaFW7XehsbZwc+53qwx4fY1j3bOHjPJOhTF5MvXY vezarp2+1PnuDL1h+f5aBopKWG4KQRZ33aetB/Djgyyw93vMKnpeUr3cYNjvM6Ct BWM1BftZonwY8DWjkToEyMiANb6/yb5MjVfVOx9McgvxSoxEIb8r/Ea9V6i3J04h G3NohCm7YtokmiWqaEQxXAqnYRbbSt6OzsYEiADNjUhpMlRsr+gB4ID+Zbcob0za eEJmVREk0Xh3I5y2m+CMigkwTQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFE+Y6f6n TfhYf8tXVAZsmtCLcJHQMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVDM0QvMjMyM0ZEODAwMEQ3MTFFRTkzQ0IwRjdFQzRGOUFFMDIvMjM0MDc0RkEw MEREMTFFRTk1QUY2RjdDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAp7MCAwQBp7PQMA0GCSqGSIb3DQEBCwUAA4IBAQCd8CBFYAjbb+vS qrTGSioc6uwGXWDgU5XLR0rn/fb71Cvma8SifUrFNSflokkWWtAdib8mTIfBsELg B0zomlCap+IVZFz3iXT/H9f0KPM4XzmdYC55wTF3REqO27xo9sc4XFxuDPfXazjO 4C2NwRotHaZ9hMMYX34mRF21Jioqlg00o6ppqgAsOLKExB3xkO4gpdYjTCa6IIgP mjvNwwsz/xIXkNb3dMxfm78no27BPJUt4Vr86gwTHUC1KtTuQ5/smGhd54bFv1Q3 XlODbp+0o65nBsD50KxT8iF0TFh5XDGkjOnQx0EAX7SUBRpJ8RQe2iNiCUy50VQ4 7ngAyRej -----END CERTIFICATE-----Generated at Sat Jun 13 19:57:33 2026 by rpki-client