$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa File: 147B50A8D70411EFA945F56EC4F9AE02.roa (raw, json) Hash identifier: UaskHDBnC645tRgYfkVV1YZwEVpnsPdItGDgYalaOV0= Subject key identifier: 09:74:70:FA:4C:D7:08:1C:57:D8:7D:1B:6E:F3:3F:8F:9E:8E:D9:9F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3B7F Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:29:10 +0000 ROA not before: Fri 22 Aug 2025 05:16:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17556 IP address blocks: 58.97.124.0/24 maxlen: 24 58.97.125.0/24 maxlen: 24 114.109.249.0/24 maxlen: 24 115.87.70.0/24 maxlen: 24 115.87.71.0/24 maxlen: 24 115.87.72.0/24 maxlen: 24 115.87.73.0/24 maxlen: 24 119.46.99.0/24 maxlen: 24 119.46.255.0/24 maxlen: 24 124.120.219.0/24 maxlen: 24 210.86.191.0/24 maxlen: 24 2001:fb0:101::/48 maxlen: 48 2001:fb0:102::/48 maxlen: 48 2001:fb0:10b2::/48 maxlen: 48 2001:fb1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15231 (0x3b7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Aug 22 05:16:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a49386-2085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1e:4b:72:1c:b1:6c:d0:51:5d:91:ec:79:6c: ad:6c:57:77:8f:a7:3d:3a:b3:ef:ea:2b:de:39:ff: 76:c0:b0:1c:98:6d:43:8e:6f:97:a4:f8:ef:6b:10: a7:b8:51:56:6c:ae:11:c0:e6:0f:b2:ef:2c:da:95: 1f:7c:40:45:88:d0:a7:0d:43:29:0c:95:96:f1:6b: 9e:1c:7c:d0:e1:3c:19:ee:98:3f:42:2c:13:dd:df: 83:a7:49:23:28:91:c6:b4:25:59:35:ae:8e:96:47: 23:19:dd:dd:05:69:d1:81:8f:d8:c9:5e:86:52:f1: b2:c2:de:72:3f:37:c5:58:f7:04:61:d0:1a:53:d3: 9c:05:b3:9b:9f:27:a3:92:54:ff:39:73:70:9d:c3: 20:e8:92:30:6e:82:a7:6a:06:12:23:7b:69:40:63: eb:89:6e:f9:90:f1:db:cd:f2:e9:30:ac:62:4d:bd: 59:41:34:65:db:0b:8d:79:aa:ad:ea:07:24:13:8e: 86:f4:ae:82:6f:cc:99:06:b9:7f:e6:f1:87:5d:0a: b7:8a:de:ca:21:24:99:b3:3d:68:49:6a:e7:94:19: b5:0b:b9:6e:73:0a:a7:13:57:56:b5:1c:9a:23:94: 40:87:6f:cf:d3:1c:11:e1:12:dc:0b:4e:2b:5a:53: f6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:74:70:FA:4C:D7:08:1C:57:D8:7D:1B:6E:F3:3F:8F:9E:8E:D9:9F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.97.124.0/23 114.109.249.0/24 115.87.70.0-115.87.73.255 119.46.99.0/24 119.46.255.0/24 124.120.219.0/24 210.86.191.0/24 IPv6: 2001:fb0:101::-2001:fb0:102:ffff:ffff:ffff:ffff:ffff 2001:fb0:10b2::/48 2001:fb1::/32 Signature Algorithm: sha256WithRSAEncryption 6a:fc:f8:6e:32:1b:85:10:79:d1:6f:24:95:b6:63:24:a2:68: c5:d9:47:d1:f7:b6:54:6a:58:bb:9f:55:08:f3:a1:69:db:b0: 09:66:d6:47:e2:93:48:4d:1c:4a:3d:1a:7a:d3:9e:4e:46:7c: 6a:42:49:27:71:e1:c9:16:c7:dd:09:00:2f:6a:60:3f:cd:50: 5d:8e:1d:a5:69:4b:1f:ec:b7:6a:3f:c5:fc:e0:55:5a:79:96: de:30:ea:4e:70:0c:aa:3e:8c:90:42:2c:e8:a5:ea:10:ff:c8: 3f:52:d5:3c:15:26:69:49:d9:5a:a5:1f:00:b9:c3:97:8b:0a: 2d:00:62:95:77:1b:60:be:5b:8f:2e:f5:a1:ab:4a:f1:ff:69: fb:a9:bf:9a:5f:2b:d2:c8:2c:81:e9:66:a9:2a:70:7e:b5:53: 86:39:c3:b1:12:38:9b:82:4b:1a:ad:c8:a4:29:9a:60:0f:9e: d5:fc:6b:77:f4:a8:eb:35:e9:67:e2:74:06:22:14:8b:ef:47: ef:84:c8:a5:73:f6:d4:20:de:6b:5f:f9:45:e9:1d:e4:7b:b4: 20:ae:42:df:96:e7:2b:7f:8f:01:dc:a2:0d:c5:9d:2b:71:79: 59:9a:7e:6c:5b:67:39:54:b2:ff:be:b4:b8:76:ce:ab:41:7c: 1b:fa:fc:be -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICO38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwODIyMDUxNjUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTM4Ni0yMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1h5LchyxbNBRXZHseWytbFd3j6c9OrPv6iveOf92wLAcmG1Djm+XpPjvaxCn uFFWbK4RwOYPsu8s2pUffEBFiNCnDUMpDJWW8WueHHzQ4TwZ7pg/QiwT3d+Dp0kj KJHGtCVZNa6OlkcjGd3dBWnRgY/YyV6GUvGywt5yPzfFWPcEYdAaU9OcBbObnyej klT/OXNwncMg6JIwboKnagYSI3tpQGPriW75kPHbzfLpMKxiTb1ZQTRl2wuNeaqt 6gckE46G9K6Cb8yZBrl/5vGHXQq3it7KISSZsz1oSWrnlBm1C7lucwqnE1dWtRya I5RAh2/P0xwR4RLcC04rWlP2KQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFAl0cPpM 1wgcV9h9G27zP4+ejtmfMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMTQ3QjUwQThE NzA0MTFFRkE5NDVGNTZFQzRGOUFFMDIucm9hMHcGCCsGAQUFBwEHAQH/BGgwZjA4 BAIAATAyAwQBOmF8AwQAcm35MAwDBAFzV0YDBAFzV0gDBAB3LmMDBAB3Lv8DBAB8 eNsDBADSVr8wKgQCAAIwJDASAwcAIAEPsAEBAwcAIAEPsAECAwcAIAEPsBCyAwUA IAEPsTANBgkqhkiG9w0BAQsFAAOCAQEAavz4bjIbhRB50W8klbZjJKJoxdlH0fe2 VGpYu59VCPOhaduwCWbWR+KTSE0cSj0aetOeTkZ8akJJJ3HhyRbH3QkAL2pgP81Q XY4dpWlLH+y3aj/F/OBVWnmW3jDqTnAMqj6MkEIs6KXqEP/IP1LVPBUmaUnZWqUf ALnDl4sKLQBilXcbYL5bjy71oatK8f9p+6m/ml8r0sgsgelmqSpwfrVThjnDsRI4 m4JLGq3IpCmaYA+e1fxrd/So6zXpZ+J0BiIUi+9H74TIpXP21CDea1/5Rekd5Hu0 IK5C35bnK3+PAdyiDcWdK3F5WZp+bFtnOVSy/760uHbOq0F8G/r8vg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:45 2026 by rpki-client