$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa File: B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa (raw, json) Hash identifier: sM6Ff5Btr2H1Za3+xr7nTyk868AOvBu9Fccxr6yah7k= Subject key identifier: 61:75:FF:13:22:C3:1E:7A:E4:CA:5B:F6:B4:52:33:14:44:AC:88:E8 Certificate issuer: /CN=A9132B4D/serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Certificate serial: 073F Authority key identifier: 23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa Signing time: Thu 04 Jun 2026 22:28:33 +0000 ROA not before: Thu 04 Jun 2026 22:28:33 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 137872 IP address blocks: 43.252.52.0/22 maxlen: 24 58.82.192.0/19 maxlen: 24 58.82.224.0/19 maxlen: 24 103.15.84.0/22 maxlen: 24 123.136.0.0/20 maxlen: 24 161.81.0.0/16 maxlen: 24 182.239.64.0/21 maxlen: 24 182.239.96.0/21 maxlen: 24 203.142.96.0/24 maxlen: 24 203.142.100.0/22 maxlen: 24 203.142.104.0/21 maxlen: 24 203.142.112.0/21 maxlen: 24 203.142.120.0/22 maxlen: 24 203.142.124.0/23 maxlen: 24 203.142.126.0/24 maxlen: 24 223.122.0.0/18 maxlen: 24 223.122.64.0/18 maxlen: 24 223.122.128.0/17 maxlen: 24 223.123.128.0/18 maxlen: 24 223.123.192.0/20 maxlen: 24 2401:3000:a000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B4D, serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Validity Not Before: Jun 4 22:28:33 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21fc10-5975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:8c:a8:0c:a1:24:2d:5e:63:0b:45:9b:b8: f6:fb:17:52:84:a9:45:67:c8:79:fd:1c:26:9a:b0: be:49:48:5b:da:4b:45:22:8b:03:a3:bf:56:22:44: 88:86:66:fc:fc:1b:f1:49:2b:c6:5e:4e:a2:2f:61: 4c:00:59:81:30:b3:8b:5d:e0:ca:10:a3:bf:29:29: f8:58:f4:cf:51:88:30:3e:59:2d:eb:40:18:08:90: 54:e9:3d:82:02:c6:d8:e3:4f:a3:d7:f5:b4:a1:34: 57:12:c3:53:73:2b:4f:25:15:4f:ff:bd:26:a8:37: b1:54:9c:8c:a1:95:00:9a:67:f5:82:8e:42:db:54: 22:5d:47:5d:00:bf:04:19:38:72:be:0a:18:74:da: 33:db:5a:04:cf:16:8b:db:12:05:6d:41:15:ff:20: 7e:a4:88:f2:64:63:eb:9b:54:82:a2:97:5d:6b:c1: b4:71:df:b9:ae:9a:e7:3b:54:c2:a6:58:1a:2f:92: 5e:e8:ad:4e:11:85:b1:a0:fe:05:ce:01:a1:a8:4b: da:cf:82:3c:66:39:31:98:47:8f:c0:c1:af:a3:bd: 80:ad:da:3a:d3:c9:a8:c5:92:59:c9:f6:57:88:62: 44:46:35:7b:eb:6b:53:e3:85:65:26:fa:60:a6:f8: 91:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:75:FF:13:22:C3:1E:7A:E4:CA:5B:F6:B4:52:33:14:44:AC:88:E8 X509v3 Authority Key Identifier: keyid:23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.252.52.0/22 58.82.192.0/18 103.15.84.0/22 123.136.0.0/20 161.81.0.0/16 182.239.64.0/21 182.239.96.0/21 203.142.96.0/24 203.142.100.0-203.142.126.255 223.122.0.0/16 223.123.128.0-223.123.207.255 IPv6: 2401:3000:a000::/36 Signature Algorithm: sha256WithRSAEncryption b3:26:d8:7e:f2:81:30:2f:a3:08:c8:68:8d:fa:3a:23:d2:37: fa:02:ff:2f:91:44:75:2d:d8:dc:55:9f:09:66:02:5a:07:27: 0e:9f:9d:e8:a2:8b:a4:77:77:cf:fd:c7:84:03:2b:b6:e0:d8: c8:d6:52:f4:c2:3e:ea:af:47:54:70:f4:bf:10:86:05:d8:21: 97:28:fb:a0:0b:d5:64:08:c9:d9:28:f5:b3:f2:67:b5:36:5f: f7:76:a0:4c:dc:a0:56:70:20:5a:95:77:1e:fb:70:a6:9e:0a: 8c:3e:0c:1a:61:78:2d:d0:ec:03:b1:2d:18:f6:3d:3f:70:14: 62:93:bd:41:07:c2:b4:43:4c:2d:fd:62:34:6c:b6:ff:dd:c5: 64:28:9a:7e:ba:ba:5e:04:2f:ca:a8:6f:74:94:3f:dd:be:80: 0b:49:fb:4e:33:33:ed:81:bd:b8:d8:ec:9b:65:7b:be:c8:c3: ba:a4:5f:e7:a7:9d:09:46:df:27:d2:5f:40:1e:a1:62:e1:ea: 52:00:f7:bc:77:4c:6f:e7:9d:96:72:1e:23:f3:1c:7c:b7:cc: 24:fb:00:b0:dc:3e:94:1c:f1:91:6e:8a:d1:55:07:05:b3:a0: ad:0b:fc:a6:d5:22:31:8b:0d:48:34:fc:eb:6c:28:81:0b:aa: 98:62:ae:b4 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCNEQxMTAvBgNVBAUTKDIzRjVEOTNBODJFN0Q3ODQwNjc5QjFDNjREQTM3QzM3 Q0ZGRTc3RUYwHhcNMjYwNjA0MjIyODMzWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZmMxMC01OTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUeMqAyhJC1eYwtFm7j2+xdShKlFZ8h5/RwmmrC+SUhb2ktFIosDo79WIkSI hmb8/BvxSSvGXk6iL2FMAFmBMLOLXeDKEKO/KSn4WPTPUYgwPlkt60AYCJBU6T2C AsbY40+j1/W0oTRXEsNTcytPJRVP/70mqDexVJyMoZUAmmf1go5C21QiXUddAL8E GThyvgoYdNoz21oEzxaL2xIFbUEV/yB+pIjyZGPrm1SCopdda8G0cd+5rprnO1TC plgaL5Je6K1OEYWxoP4FzgGhqEvaz4I8ZjkxmEePwMGvo72Ardo608moxZJZyfZX iGJERjV762tT44VlJvpgpviRsQIDAQABo4ICujCCArYwHQYDVR0OBBYEFGF1/xMi wx565Mpb9rRSMxRErIjoMB8GA1UdIwQYMBaAFCP12TqC59eEBnmxxk2jfDfP/nfv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI0RC9DMTk5RTAwNkIy MDUxMUVCQUVBRTlGMTBDNEY5QUUwMi9JX1haT29MbjE0UUdlYkhHVGFOOE44Xy1k LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lfWFpPb0xuMTRRR2ViSEdUYU44TjhfLWQtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCNEQvQzE5OUUwMDZCMjA1MTFFQkFFQUU5RjEwQzRGOUFFMDIvQjNFNERDRjhC RTRDMTFFRUIxMzI3QTU0QzRGOUFFMDIucm9hMHkGCCsGAQUFBwEHAQH/BGowaDBW BAIAATBQAwQCK/w0AwQGOlLAAwQCZw9UAwQEe4gAAwMAoVEDBAO270ADBAO272AD BADLjmAwDAMEAsuOZAMEAMuOfgMDAN96MAwDBAffe4ADBATfe8AwDgQCAAIwCAMG BCQBMACgMA0GCSqGSIb3DQEBCwUAA4IBAQCzJth+8oEwL6MIyGiN+joj0jf6Av8v kUR1LdjcVZ8JZgJaBycOn53oooukd3fP/ceEAyu24NjI1lL0wj7qr0dUcPS/EIYF 2CGXKPugC9VkCMnZKPWz8me1Nl/3dqBM3KBWcCBalXce+3CmngqMPgwaYXgt0OwD sS0Y9j0/cBRik71BB8K0Q0wt/WI0bLb/3cVkKJp+urpeBC/KqG90lD/dvoALSftO MzPtgb242OybZXu+yMO6pF/np50JRt8n0l9AHqFi4epSAPe8d0xv552Wch4j8xx8 t8wk+wCw3D6UHPGRborRVQcFs6CtC/ym1SIxiw1INPzrbCiBC6qYYq60 -----END CERTIFICATE-----Generated at Sun Jun 14 05:22:13 2026 by rpki-client