$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa File: 432BA1EC4D9011EC868F7186C4F9AE02.roa (raw, json) Hash identifier: 4+4ljEbhz0CRY+1XdXVK4Ar2dKPnWuVcAl9/GcxO9hM= Subject key identifier: 0D:A3:7A:79:4B:01:57:0D:94:CD:1D:AF:85:84:7D:63:E1:99:FB:C2 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0BF1 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa Signing time: Thu 02 Apr 2026 20:22:52 +0000 ROA not before: Thu 02 Apr 2026 20:22:52 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 142267 IP address blocks: 203.168.224.0/23 maxlen: 24 203.168.226.0/23 maxlen: 24 203.168.228.0/22 maxlen: 24 203.168.232.0/23 maxlen: 24 203.168.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3057 (0xbf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Apr 2 20:22:52 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69ced01c-d1ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:c7:d6:26:38:6a:89:12:14:ee:c1:e8:c0: ec:03:a3:f2:0e:82:67:2a:a8:94:18:47:1c:74:3f: 04:65:93:5e:68:23:5a:85:1a:0e:d8:cb:48:d0:9f: c5:fb:62:4c:95:a5:3d:8f:3d:80:82:51:7f:0c:6d: be:19:6c:5e:cb:79:10:ca:e4:c8:a9:ec:3d:03:60: 73:c0:51:8e:4a:d5:92:1b:bd:33:2c:7f:0a:f1:88: 79:55:a8:4e:75:95:5c:df:60:4f:71:8e:e0:2e:1e: ed:54:cd:10:8a:34:c9:ae:74:c3:f9:c1:dd:1b:b6: 03:5a:73:65:9c:39:d1:18:c3:e3:3c:2c:5e:58:f4: 75:e5:d1:79:22:e2:6f:82:51:5c:db:dc:c7:05:a2: 17:6e:28:07:23:ec:eb:d9:a9:c0:4a:d3:f1:46:44: 49:c1:db:28:ce:5a:af:34:e1:f8:f1:56:b7:fe:fe: 55:bf:da:54:36:90:0e:cd:19:1b:b5:b0:14:49:d6: 5c:57:18:0f:51:3a:2a:11:e3:a4:c4:0f:26:23:ac: a0:f6:f6:93:0c:1f:94:86:2b:2c:d2:0b:00:f8:2d: 0a:9c:7f:d7:80:60:d5:d6:04:78:30:a7:1d:e7:c4: 5d:29:d7:2c:a1:7f:21:91:8d:a4:a5:a7:21:5a:42: ae:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A3:7A:79:4B:01:57:0D:94:CD:1D:AF:85:84:7D:63:E1:99:FB:C2 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.168.224.0-203.168.235.255 Signature Algorithm: sha256WithRSAEncryption 8f:36:a1:a5:aa:7a:71:8c:c4:b7:3e:3c:bf:b0:81:88:f3:21: 79:7b:5f:f6:2e:91:01:7b:b7:16:a4:af:b5:6f:d9:a4:d6:90: 39:c6:de:64:7f:96:b4:9b:b0:77:54:4d:9f:2b:e5:f3:ee:03: 9d:3c:94:02:23:e8:99:43:28:ea:96:06:fc:5c:34:fb:59:4c: 43:6d:bc:78:b7:97:50:c9:2e:f6:46:85:69:20:43:c4:e7:76: 84:f1:bc:02:05:81:75:67:cc:4f:4e:87:ef:c6:98:9c:ce:e0: f9:17:9f:6f:56:bd:f4:2f:cb:87:e7:e1:89:37:b4:34:22:63: 53:c0:80:b1:bd:65:39:d4:ca:c1:c8:23:42:01:70:65:31:5d: ac:6d:8d:1d:68:45:04:9e:8d:a3:66:31:fe:26:cb:a4:f8:57: 1c:5e:52:be:3d:9c:b1:bf:ba:bc:8c:1b:43:aa:a5:94:90:0b: 5e:c7:3e:74:30:47:93:27:e9:ba:3f:7f:b6:80:f4:1e:b1:da: c5:86:58:45:68:5a:ae:4e:ef:80:5f:7b:d1:0f:25:53:6f:ce: 29:08:9c:fb:5d:af:66:85:93:b2:2a:0e:63:3d:66:7b:d3:6f: 55:2e:8a:93:92:7b:f5:e4:f8:f7:3f:79:d3:3c:46:c3:38:f3: 4b:88:06:08 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICC/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjYwNDAyMjAyMjUyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZDAxYy1kMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIbH1iY4aokSFO7B6MDsA6PyDoJnKqiUGEccdD8EZZNeaCNahRoO2MtI0J/F +2JMlaU9jz2AglF/DG2+GWxey3kQyuTIqew9A2BzwFGOStWSG70zLH8K8Yh5VahO dZVc32BPcY7gLh7tVM0QijTJrnTD+cHdG7YDWnNlnDnRGMPjPCxeWPR15dF5IuJv glFc29zHBaIXbigHI+zr2anAStPxRkRJwdsozlqvNOH48Va3/v5Vv9pUNpAOzRkb tbAUSdZcVxgPUToqEeOkxA8mI6yg9vaTDB+Uhiss0gsA+C0KnH/XgGDV1gR4MKcd 58RdKdcsoX8hkY2kpachWkKufQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFA2jenlL AVcNlM0dr4WEfWPhmfvCMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNDMyQkExRUM0 RDkwMTFFQzg2OEY3MTg2QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAXLqOADBALLqOgwDQYJKoZIhvcNAQELBQADggEBAI82oaWqenGM xLc+PL+wgYjzIXl7X/YukQF7txakr7Vv2aTWkDnG3mR/lrSbsHdUTZ8r5fPuA508 lAIj6JlDKOqWBvxcNPtZTENtvHi3l1DJLvZGhWkgQ8TndoTxvAIFgXVnzE9Oh+/G mJzO4PkXn29WvfQvy4fn4Yk3tDQiY1PAgLG9ZTnUysHII0IBcGUxXaxtjR1oRQSe jaNmMf4my6T4VxxeUr49nLG/uryMG0OqpZSQC17HPnQwR5Mn6bo/f7aA9B6x2sWG WEVoWq5O74Bfe9EPJVNvzikInPtdr2aFk7IqDmM9ZnvTb1UuipOSe/Xk+Pc/edM8 RsM480uIBgg= -----END CERTIFICATE-----Generated at Fri Apr 17 16:55:20 2026 by rpki-client