$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa File: B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa (raw, json) Hash identifier: pf1K+6UJXd5dAs7JKyICOO/jFMb69psfiJsvXQNbxBs= Subject key identifier: B1:C1:17:F7:3A:9D:8B:73:22:82:E3:B2:DE:62:0C:C2:45:14:7E:BB Certificate issuer: /CN=A9132B4D/serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Certificate serial: 0704 Authority key identifier: 23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:57:31 +0000 ROA not before: Thu 24 Jul 2025 02:23:29 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137872 IP address blocks: 43.252.52.0/22 maxlen: 24 58.82.192.0/19 maxlen: 24 58.82.224.0/19 maxlen: 24 103.15.84.0/22 maxlen: 24 123.136.0.0/20 maxlen: 24 161.81.0.0/16 maxlen: 24 182.239.64.0/21 maxlen: 24 182.239.96.0/21 maxlen: 24 203.142.96.0/24 maxlen: 24 203.142.100.0/22 maxlen: 24 203.142.104.0/21 maxlen: 24 203.142.112.0/21 maxlen: 24 203.142.120.0/22 maxlen: 24 203.142.124.0/23 maxlen: 24 203.142.126.0/24 maxlen: 24 223.122.0.0/18 maxlen: 24 223.122.64.0/18 maxlen: 24 223.122.128.0/17 maxlen: 24 223.123.128.0/18 maxlen: 24 223.123.192.0/20 maxlen: 24 2401:3000:a000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1796 (0x704) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B4D, serialNumber=23F5D93A82E7D7840679B1C64DA37C37CFFE77EF Validity Not Before: Jul 24 02:23:29 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a453db-bc9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:97:d1:9f:a6:a4:1a:e6:a7:df:92:14:7b:d9: c0:b3:36:80:ff:db:15:f9:b3:9f:ef:54:af:e6:2b: fe:97:89:c2:a1:e2:2d:39:0f:86:4f:3e:26:cc:53: c2:9e:fa:10:cd:b8:4b:5d:32:f3:39:cd:4e:54:bf: 48:98:65:69:6d:72:42:01:f8:e0:e5:00:35:bc:0f: 8e:a9:cc:72:a1:f4:cc:fa:16:2d:3d:ec:7a:1e:a5: c9:58:34:3d:7f:f6:61:cd:07:5a:8d:ef:7a:97:b6: 45:f4:5d:61:47:b2:3d:19:64:ca:69:21:09:10:51: 9c:22:e6:5f:85:f7:37:ab:f0:a3:f2:9d:ad:8e:0a: 58:73:98:82:10:84:e7:fc:f7:be:c9:90:7c:f2:a0: 7b:21:ec:f4:2c:28:54:79:e9:3a:cf:e4:c8:d9:1f: 13:99:1d:1d:14:18:23:2e:5e:d5:69:e4:84:28:56: 2d:04:da:47:98:87:33:4a:d5:69:ed:72:c7:63:e5: c3:ac:b8:e7:b3:3c:ee:b3:70:36:ab:1e:7e:d3:e7: aa:49:eb:d0:58:94:5c:00:13:65:b6:d9:3c:5a:9c: 1d:a8:e2:89:30:60:45:83:31:64:9f:93:27:1f:a5: d3:10:4a:85:b7:59:d0:24:16:da:16:99:3c:dd:34: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C1:17:F7:3A:9D:8B:73:22:82:E3:B2:DE:62:0C:C2:45:14:7E:BB X509v3 Authority Key Identifier: keyid:23:F5:D9:3A:82:E7:D7:84:06:79:B1:C6:4D:A3:7C:37:CF:FE:77:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/I_XZOoLn14QGebHGTaN8N8_-d-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I_XZOoLn14QGebHGTaN8N8_-d-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B4D/C199E006B20511EBAEAE9F10C4F9AE02/B3E4DCF8BE4C11EEB1327A54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.252.52.0/22 58.82.192.0/18 103.15.84.0/22 123.136.0.0/20 161.81.0.0/16 182.239.64.0/21 182.239.96.0/21 203.142.96.0/24 203.142.100.0-203.142.126.255 223.122.0.0/16 223.123.128.0-223.123.207.255 IPv6: 2401:3000:a000::/36 Signature Algorithm: sha256WithRSAEncryption ab:86:ff:dd:03:9b:18:d5:87:7a:84:45:95:c4:07:16:9c:64: 29:64:37:b1:15:cc:99:21:6b:be:a5:98:66:7f:19:2e:b1:78: 4a:a3:7d:a2:4b:ca:11:00:48:7d:3a:94:df:f3:f7:7c:aa:13: 27:95:a8:72:b4:36:1d:ad:94:54:c2:a3:09:aa:1f:58:53:81: f5:02:65:66:d3:30:25:25:3d:4b:87:8d:f3:fa:d8:f7:64:b6: 59:53:2b:ff:c4:86:dd:22:c0:68:a6:f8:9c:e5:55:d5:9e:20: 3c:67:77:26:b9:36:6c:a8:e8:80:85:1a:6c:cf:cb:69:9a:26: 94:94:93:83:a9:1c:84:91:17:1b:4a:81:f9:95:ae:07:de:6f: 71:ad:61:42:3b:0e:b9:d8:77:0c:14:a2:21:c1:9d:e3:92:ac: 55:44:7e:6f:1f:50:bc:39:51:2b:1b:05:e3:81:5c:3e:6d:26: 4a:17:ce:ab:73:1f:83:f0:4c:36:75:65:03:58:98:cc:c2:d5: e0:c2:34:96:37:5f:db:bf:fa:a2:0f:0c:84:dc:86:7a:95:9c: 5a:43:fd:63:ed:fc:25:7d:00:05:74:29:c7:98:4a:d3:94:aa: a1:6d:54:ee:23:05:02:45:28:5f:69:36:bc:e6:07:72:e7:7b: 08:68:86:4b -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICBwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCNEQxMTAvBgNVBAUTKDIzRjVEOTNBODJFN0Q3ODQwNjc5QjFDNjREQTM3QzM3 Q0ZGRTc3RUYwHhcNMjUwNzI0MDIyMzI5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTNkYi1iYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypfRn6akGuan35IUe9nAszaA/9sV+bOf71Sv5iv+l4nCoeItOQ+GTz4mzFPC nvoQzbhLXTLzOc1OVL9ImGVpbXJCAfjg5QA1vA+OqcxyofTM+hYtPex6HqXJWDQ9 f/ZhzQdaje96l7ZF9F1hR7I9GWTKaSEJEFGcIuZfhfc3q/Cj8p2tjgpYc5iCEITn /Pe+yZB88qB7Iez0LChUeek6z+TI2R8TmR0dFBgjLl7VaeSEKFYtBNpHmIczStVp 7XLHY+XDrLjnszzus3A2qx5+0+eqSevQWJRcABNlttk8WpwdqOKJMGBFgzFkn5Mn H6XTEEqFt1nQJBbaFpk83TSCpwIDAQABo4ICujCCArYwHQYDVR0OBBYEFLHBF/c6 nYtzIoLjst5iDMJFFH67MB8GA1UdIwQYMBaAFCP12TqC59eEBnmxxk2jfDfP/nfv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkI0RC9DMTk5RTAwNkIy MDUxMUVCQUVBRTlGMTBDNEY5QUUwMi9JX1haT29MbjE0UUdlYkhHVGFOOE44Xy1k LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lfWFpPb0xuMTRRR2ViSEdUYU44TjhfLWQtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCNEQvQzE5OUUwMDZCMjA1MTFFQkFFQUU5RjEwQzRGOUFFMDIvQjNFNERDRjhC RTRDMTFFRUIxMzI3QTU0QzRGOUFFMDIucm9hMHkGCCsGAQUFBwEHAQH/BGowaDBW BAIAATBQAwQCK/w0AwQGOlLAAwQCZw9UAwQEe4gAAwMAoVEDBAO270ADBAO272AD BADLjmAwDAMEAsuOZAMEAMuOfgMDAN96MAwDBAffe4ADBATfe8AwDgQCAAIwCAMG BCQBMACgMA0GCSqGSIb3DQEBCwUAA4IBAQCrhv/dA5sY1Yd6hEWVxAcWnGQpZDex FcyZIWu+pZhmfxkusXhKo32iS8oRAEh9OpTf8/d8qhMnlahytDYdrZRUwqMJqh9Y U4H1AmVm0zAlJT1Lh43z+tj3ZLZZUyv/xIbdIsBopvic5VXVniA8Z3cmuTZsqOiA hRpsz8tpmiaUlJODqRyEkRcbSoH5la4H3m9xrWFCOw652HcMFKIhwZ3jkqxVRH5v H1C8OVErGwXjgVw+bSZKF86rcx+D8Ew2dWUDWJjMwtXgwjSWN1/bv/qiDwyE3IZ6 lZxaQ/1j7fwlfQAFdCnHmErTlKqhbVTuIwUCRShfaTa85gdy53sIaIZL -----END CERTIFICATE-----Generated at Tue Mar 3 04:22:11 2026 by rpki-client