$ rpki-client -vvf rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa File: B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa (raw, json) Hash identifier: Xg/84K+E+1SJywGHoAlAWWAEs3oljM4UYB5pH/KZ0ek= Subject key identifier: C3:5A:36:32:C2:00:8D:17:E6:EF:F2:23:69:3A:A1:A7:27:28:CA:B9 Certificate issuer: /CN=A912C738/serialNumber=7FB23916037E9332966376F2E075541224162AF4 Certificate serial: 064C Authority key identifier: 7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa Signing time: Wed 04 Feb 2026 22:19:14 +0000 ROA not before: Wed 04 Feb 2026 22:19:14 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 16509 IP address blocks: 199.166.34.0/23 maxlen: 23 199.166.36.0/23 maxlen: 23 207.189.184.0/24 maxlen: 24 207.189.185.0/24 maxlen: 24 207.189.186.0/24 maxlen: 24 207.189.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1612 (0x64c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C738, serialNumber=7FB23916037E9332966376F2E075541224162AF4 Validity Not Before: Feb 4 22:19:14 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6983c5e2-e931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a3:0c:44:6a:b3:60:23:a6:3e:a6:72:96:fc: a1:61:fe:bb:34:c0:9a:62:40:ea:b1:e9:8d:ef:ab: cb:43:da:a8:4a:18:bb:10:6b:97:10:53:5e:9f:fe: 17:0f:62:ab:00:71:d0:9c:f0:1a:1b:60:31:c0:60: 62:47:4d:29:19:2b:0c:8f:38:1c:6a:ea:c5:dc:be: f4:e7:77:7f:6c:13:5b:46:32:db:b2:c6:83:a0:00: 18:1e:33:4b:eb:b9:82:61:f3:61:24:bc:0c:9e:e2: 3c:97:c8:d7:b4:f6:aa:6c:3b:3d:32:0c:c8:16:7a: b8:86:80:9a:e7:eb:db:50:7f:ec:1d:d4:41:aa:e7: 45:4a:98:02:49:71:6d:6b:32:af:a6:9c:14:a0:aa: 74:e9:b2:a4:f6:17:5c:dc:d5:62:09:23:26:ed:68: b8:87:19:6f:4e:e3:d8:89:26:b1:9d:f6:19:7a:2e: 00:11:ac:ec:f8:99:43:24:85:5d:61:54:1c:c3:aa: 14:11:b2:79:3d:0a:65:e2:7c:16:b4:77:b9:6a:a0: c3:d9:c9:5e:12:17:82:2f:c3:49:b7:43:6a:bb:a2: e6:61:24:4f:47:dd:61:e5:b2:8e:d4:43:85:de:80: 29:76:95:45:18:9c:99:7a:51:ea:b1:a4:a5:a5:19: 21:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5A:36:32:C2:00:8D:17:E6:EF:F2:23:69:3A:A1:A7:27:28:CA:B9 X509v3 Authority Key Identifier: keyid:7F:B2:39:16:03:7E:93:32:96:63:76:F2:E0:75:54:12:24:16:2A:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/f7I5FgN-kzKWY3by4HVUEiQWKvQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f7I5FgN-kzKWY3by4HVUEiQWKvQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C738/320C3A9AC9D111EB8DC5D210C4F9AE02/B2FCD95C55AA11F09B8A7E4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 199.166.34.0-199.166.37.255 207.189.184.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:4f:19:fd:98:83:d1:45:94:9c:69:94:42:a4:88:41:6e:6f: 05:42:f0:6a:6a:95:c3:3e:94:63:9c:8e:41:b5:20:87:55:cf: d3:5b:bf:f4:97:67:c3:65:03:1f:e0:b3:64:e2:d3:e9:07:60: 95:a0:f7:99:00:3b:d6:eb:61:7d:96:de:1e:ef:00:e4:e3:a0: 4e:d6:ba:51:ff:56:01:3f:22:86:af:f9:b1:76:31:d4:1f:6d: 38:d2:2e:87:1b:af:e9:df:a9:85:18:7c:83:72:a4:b5:03:a5: 01:45:d9:0d:d2:6c:2a:4b:b0:c3:8b:8c:59:f5:d0:fe:d9:03: a8:57:61:2e:85:b2:c8:de:cd:b0:f7:70:11:b4:51:3b:5a:1d: 3e:5b:ec:18:81:a8:3e:a8:d4:d8:00:75:df:c0:d7:12:17:b8: e7:69:bc:2f:33:18:18:ca:67:e4:ab:56:a8:fc:98:28:32:30: 9d:da:6a:ad:db:7e:21:5a:87:6e:d6:45:0b:f4:c1:ea:b6:c9: d4:0d:c1:22:b5:4a:18:7e:94:8f:25:2d:73:09:1b:2e:1f:b2: 7d:ad:54:52:68:cd:1d:af:bd:fc:a5:13:a5:22:28:35:69:89: 6c:84:da:4d:7b:41:e2:2f:15:2b:a9:97:18:e1:f1:3a:a5:ee: 7e:9e:9b:f6 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MkM3MzgxMTAvBgNVBAUTKDdGQjIzOTE2MDM3RTkzMzI5NjYzNzZGMkUwNzU1NDEy MjQxNjJBRjQwHhcNMjYwMjA0MjIxOTE0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgzYzVlMi1lOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKMMRGqzYCOmPqZylvyhYf67NMCaYkDqsemN76vLQ9qoShi7EGuXEFNen/4X D2KrAHHQnPAaG2AxwGBiR00pGSsMjzgcaurF3L7053d/bBNbRjLbssaDoAAYHjNL 67mCYfNhJLwMnuI8l8jXtPaqbDs9MgzIFnq4hoCa5+vbUH/sHdRBqudFSpgCSXFt azKvppwUoKp06bKk9hdc3NViCSMm7Wi4hxlvTuPYiSaxnfYZei4AEazs+JlDJIVd YVQcw6oUEbJ5PQpl4nwWtHe5aqDD2cleEheCL8NJt0Nqu6LmYSRPR91h5bKO1EOF 3oApdpVFGJyZelHqsaSlpRkh1wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMNaNjLC AI0X5u/yI2k6oacnKMq5MB8GA1UdIwQYMBaAFH+yORYDfpMylmN28uB1VBIkFir0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzczOC8zMjBDM0E5QUM5 RDExMUVCOERDNUQyMTBDNEY5QUUwMi9mN0k1RmdOLWt6S1dZM2J5NEhWVUVpUVdL dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2Y3STVGZ04ta3pLV1kzYnk0SFZVRWlRV0t2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MzgvMzIwQzNBOUFDOUQxMTFFQjhEQzVEMjEwQzRGOUFFMDIvQjJGQ0Q5NUM1 NUFBMTFGMDlCOEE3RTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAcemIgMEAcemJAMEAs+9uDANBgkqhkiG9w0BAQsFAAOC AQEAnE8Z/ZiD0UWUnGmUQqSIQW5vBULwamqVwz6UY5yOQbUgh1XP01u/9Jdnw2UD H+CzZOLT6QdglaD3mQA71uthfZbeHu8A5OOgTta6Uf9WAT8ihq/5sXYx1B9tONIu hxuv6d+phRh8g3KktQOlAUXZDdJsKkuww4uMWfXQ/tkDqFdhLoWyyN7NsPdwEbRR O1odPlvsGIGoPqjU2AB138DXEhe452m8LzMYGMpn5KtWqPyYKDIwndpqrdt+IVqH btZFC/TB6rbJ1A3BIrVKGH6UjyUtcwkbLh+yfa1UUmjNHa+9/KUTpSIoNWmJbITa TXtB4i8VK6mXGOHxOqXufp6b9g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:55 2026 by rpki-client