$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/CA44DBE09A9811EBAC99AD22C4F9AE02.roa File: CA44DBE09A9811EBAC99AD22C4F9AE02.roa (raw, json) Hash identifier: Om4qQKnR/ADlcoIytwUPeq9RDFGoVRvj56Lkmeu3bys= Subject key identifier: ED:9C:74:7C:DB:A6:06:87:03:D5:0D:BF:E3:95:15:94:64:B3:4C:82 Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 0782 Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/CA44DBE09A9811EBAC99AD22C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:17 +0000 ROA not before: Tue 22 Jul 2025 23:05:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58693 IP address blocks: 49.249.225.0/24 maxlen: 24 49.249.226.0/24 maxlen: 24 49.249.227.0/24 maxlen: 24 49.249.228.0/24 maxlen: 24 49.249.229.0/24 maxlen: 24 49.249.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D, serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Jul 22 23:05:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48271-1681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:ce:83:1e:85:f5:78:92:fd:92:22:96:91: cd:52:c2:9e:32:5b:a7:7c:06:7d:16:54:54:d7:d8: 15:44:4a:7d:be:31:79:38:b8:4c:94:57:dd:c2:7f: 5b:5f:98:de:da:b0:a4:6a:72:26:95:14:ca:b6:6a: 0b:4e:70:3c:b4:2d:48:0d:6e:60:72:dc:9b:69:7f: 26:8e:a5:3d:8e:f4:d6:50:2e:3c:7c:31:4b:5d:b3: 8a:5f:20:52:25:0c:51:1d:85:8a:80:91:2b:d0:64: 1e:87:c9:ba:c0:7f:8f:7e:6d:fe:46:0b:9f:8c:bf: c5:8c:fb:72:75:ce:a7:38:37:fc:dd:02:a4:be:58: 1e:24:14:f5:f6:e4:ca:fb:cd:79:82:40:4e:ab:a8: a7:ed:25:bd:c1:b7:84:bf:19:e0:e5:a8:22:87:d7: b1:f6:59:8b:a1:82:bb:2f:3e:99:83:20:74:38:29: bf:7e:04:cc:3b:9f:f4:3b:43:2c:9d:af:29:8b:0c: 94:46:3b:b4:ce:6c:00:82:35:c6:f3:9d:93:86:97: c2:4a:c0:71:af:fa:4e:92:87:71:30:e3:ed:bb:75: dc:54:84:69:37:ab:26:4d:33:81:94:75:0e:16:7c: e8:98:57:6c:b5:15:b1:5c:20:71:9e:be:49:f6:ce: 12:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9C:74:7C:DB:A6:06:87:03:D5:0D:BF:E3:95:15:94:64:B3:4C:82 X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/CA44DBE09A9811EBAC99AD22C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.249.225.0-49.249.230.255 Signature Algorithm: sha256WithRSAEncryption 1e:1a:f2:c1:52:2a:b9:94:3d:08:e1:ba:46:1a:fa:f9:79:82: 45:5d:72:52:8a:cc:d1:c1:84:72:1d:f6:22:30:0d:b5:15:72: 51:a0:d7:7f:91:a0:9b:a5:79:95:33:3c:0c:d2:34:0b:d4:ef: b9:2e:09:93:53:88:23:f9:1c:5c:ba:49:d6:49:29:38:9d:eb: 0b:21:0e:b4:42:91:eb:71:5c:db:85:90:83:62:bb:cf:bf:52: 97:e8:57:32:96:58:ac:64:e9:a5:6b:cb:b8:c1:23:ad:32:2c: af:af:90:f7:df:15:79:2c:23:a5:d4:20:f9:c5:a7:18:b0:28: d1:66:00:f1:00:2f:9b:19:49:c9:d4:be:c6:f6:35:7e:b2:56: 05:05:97:7a:9c:c8:6d:5f:04:20:ea:88:7e:e2:a6:2c:29:22: 22:11:bc:d8:4e:9f:0c:18:d8:ac:ba:d5:43:b8:b1:8b:83:d1: b6:09:87:4a:f0:71:03:82:16:e1:2d:cc:92:76:8a:b4:af:79: 36:b5:7f:a5:0d:4e:cf:e3:a5:f5:87:10:5b:42:9f:f7:61:3f: cf:69:7f:32:cb:3f:fe:76:38:40:9c:7a:1f:ef:4d:77:5d:7f: a2:66:89:63:47:2b:9b:8d:e2:04:74:84:31:91:10:e9:6b:0f: f5:fd:dd:0a -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjUwNzIyMjMwNTAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI3MS0xNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdbOgx6F9XiS/ZIilpHNUsKeMlunfAZ9FlRU19gVREp9vjF5OLhMlFfdwn9b X5je2rCkanImlRTKtmoLTnA8tC1IDW5gctybaX8mjqU9jvTWUC48fDFLXbOKXyBS JQxRHYWKgJEr0GQeh8m6wH+Pfm3+RgufjL/FjPtydc6nODf83QKkvlgeJBT19uTK +815gkBOq6in7SW9wbeEvxng5agih9ex9lmLoYK7Lz6ZgyB0OCm/fgTMO5/0O0Ms na8piwyURju0zmwAgjXG852ThpfCSsBxr/pOkodxMOPtu3XcVIRpN6smTTOBlHUO FnzomFdstRWxXCBxnr5J9s4S1wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFO2cdHzb pgaHA9UNv+OVFZRks0yCMB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvQ0E0NERCRTA5 QTk4MTFFQkFDOTlBRDIyQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAAx+eEDBAAx+eYwDQYJKoZIhvcNAQELBQADggEBAB4a8sFSKrmU PQjhukYa+vl5gkVdclKKzNHBhHId9iIwDbUVclGg13+RoJuleZUzPAzSNAvU77ku CZNTiCP5HFy6SdZJKTid6wshDrRCketxXNuFkINiu8+/UpfoVzKWWKxk6aVry7jB I60yLK+vkPffFXksI6XUIPnFpxiwKNFmAPEAL5sZScnUvsb2NX6yVgUFl3qcyG1f BCDqiH7ipiwpIiIRvNhOnwwY2Ky61UO4sYuD0bYJh0rwcQOCFuEtzJJ2irSveTa1 f6UNTs/jpfWHEFtCn/dhP89pfzLLP/52OECceh/vTXddf6JmiWNHK5uN4gR0hDGR EOlrD/X93Qo= -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:56 2026 by rpki-client