$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa File: 432BA1EC4D9011EC868F7186C4F9AE02.roa (raw, json) Hash identifier: COoBB02MxjsVzMJ4S0NyDpkOD0uHJhw8SJh40dOTE+s= Subject key identifier: 54:E8:2A:47:1D:EB:A3:11:B7:29:83:0C:03:6B:61:EF:CD:9B:11:9E Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0BC2 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:00:55 +0000 ROA not before: Wed 26 Mar 2025 20:30:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 142267 IP address blocks: 203.168.224.0/23 maxlen: 24 203.168.226.0/23 maxlen: 24 203.168.228.0/22 maxlen: 24 203.168.232.0/23 maxlen: 24 203.168.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3010 (0xbc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Mar 26 20:30:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48ce7-466d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:01:36:9d:ea:00:72:6a:0a:76:1c:da:a4: 1e:9d:c8:f6:e1:dd:59:81:13:45:53:b5:b2:2e:11: 0e:07:15:d2:78:88:aa:12:2f:69:71:b4:19:50:cb: e3:65:37:e7:88:65:a3:c9:08:0a:3b:54:91:2b:2a: 9a:a7:cc:6d:a3:a5:cc:2e:18:0f:5f:75:06:20:0b: 0d:e3:ea:cb:23:b8:3b:96:12:ab:c3:53:0c:e3:a7: 9e:3b:be:a4:dc:ab:e1:9f:a7:36:b2:c4:16:8d:bf: 18:29:f9:3d:4c:ad:f3:56:ec:65:70:5c:1b:67:ae: 21:a7:fa:6b:da:a9:d4:4f:61:a7:51:ea:23:69:d6: 3a:bb:a6:c1:8e:36:f3:48:20:c0:b4:6a:93:6e:07: aa:f5:c6:8b:e0:88:bf:8b:4d:64:0a:bb:03:7a:4b: 07:6d:c0:64:31:74:24:57:b7:de:e9:4b:95:42:fb: 19:4d:59:e2:48:95:01:3f:19:16:d0:2c:2e:e8:18: 63:47:95:a0:a1:f5:b1:12:82:b3:d3:f2:57:8f:fb: 21:77:99:75:14:72:75:29:6a:02:2b:76:c6:eb:a1: 13:65:9c:60:ea:c2:dd:a9:5e:4a:d0:ea:b0:1a:7c: 99:45:f3:6d:29:5e:d3:88:97:dc:ad:a0:0a:34:e1: d2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E8:2A:47:1D:EB:A3:11:B7:29:83:0C:03:6B:61:EF:CD:9B:11:9E X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/432BA1EC4D9011EC868F7186C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.168.224.0-203.168.235.255 Signature Algorithm: sha256WithRSAEncryption 18:8a:ef:ce:86:f6:9d:1d:62:1a:af:5c:91:dd:2b:7c:73:bb: 22:23:2d:0b:0f:a4:27:42:e1:62:5f:5b:ae:09:ed:c0:71:91: 1e:b6:c9:f8:c2:39:72:94:99:41:24:6f:fe:0a:a0:14:44:19: 0b:f0:3e:b4:07:e1:d4:ef:aa:6b:98:6b:1a:9f:72:ab:39:73: 9f:66:65:60:7d:14:e1:58:7e:71:cb:5b:ae:89:d3:21:3f:f4: b2:46:1a:f2:7c:d6:4e:c7:05:66:1a:6a:9c:23:20:d5:84:4b: 48:3d:f2:9b:be:53:7e:08:a2:37:58:6c:ce:f3:66:08:a2:0a: 75:11:cb:1b:f4:bd:93:98:40:9d:03:e9:64:de:c1:93:e8:a4: f5:c5:2b:42:8b:41:96:4e:c3:db:69:54:69:89:e0:a8:0b:23: f8:36:79:6f:32:2c:a0:f9:5d:53:ed:ff:38:0f:50:bd:ec:b1: 37:83:76:0a:7d:a4:e8:d8:28:c1:37:90:22:59:48:bf:b1:a6: 34:27:63:6b:60:4f:0b:5b:8c:c7:b9:d9:78:8d:f0:68:b3:49: a6:c3:e3:05:9b:e1:20:b6:d3:a8:17:ec:5f:59:93:ad:7e:c8: 35:c5:53:89:f8:48:c0:1a:e8:bd:f8:35:23:1f:21:0b:fb:a9: 07:fd:0f:7f -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICC8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwMzI2MjAzMDM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGNlNy00NjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq4BNp3qAHJqCnYc2qQencj24d1ZgRNFU7WyLhEOBxXSeIiqEi9pcbQZUMvj ZTfniGWjyQgKO1SRKyqap8xto6XMLhgPX3UGIAsN4+rLI7g7lhKrw1MM46eeO76k 3Kvhn6c2ssQWjb8YKfk9TK3zVuxlcFwbZ64hp/pr2qnUT2GnUeojadY6u6bBjjbz SCDAtGqTbgeq9caL4Ii/i01kCrsDeksHbcBkMXQkV7fe6UuVQvsZTVniSJUBPxkW 0Cwu6BhjR5WgofWxEoKz0/JXj/shd5l1FHJ1KWoCK3bG66ETZZxg6sLdqV5K0Oqw GnyZRfNtKV7TiJfcraAKNOHSywIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFFToKkcd 66MRtymDDANrYe/NmxGeMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNDMyQkExRUM0 RDkwMTFFQzg2OEY3MTg2QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAXLqOADBALLqOgwDQYJKoZIhvcNAQELBQADggEBABiK786G9p0d YhqvXJHdK3xzuyIjLQsPpCdC4WJfW64J7cBxkR62yfjCOXKUmUEkb/4KoBREGQvw PrQH4dTvqmuYaxqfcqs5c59mZWB9FOFYfnHLW66J0yE/9LJGGvJ81k7HBWYaapwj INWES0g98pu+U34IojdYbM7zZgiiCnURyxv0vZOYQJ0D6WTewZPopPXFK0KLQZZO w9tpVGmJ4KgLI/g2eW8yLKD5XVPt/zgPUL3ssTeDdgp9pOjYKME3kCJZSL+xpjQn Y2tgTwtbjMe52XiN8GizSabD4wWb4SC206gX7F9Zk61+yDXFU4n4SMAa6L34NSMf IQv7qQf9D38= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:08 2026 by rpki-client