$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/03B7FB8CCF5A11F09B61EF16C4F9AE02.roa File: 03B7FB8CCF5A11F09B61EF16C4F9AE02.roa (raw, json) Hash identifier: zPwsBxrk2TWYKMwX9feT4glmgUpbLrsFWyQ2jB0oPio= Subject key identifier: 0B:81:4F:B3:93:87:5E:3C:C2:0A:E1:51:71:A9:48:5C:B2:82:0D:F3 Certificate issuer: /CN=A9145E01/serialNumber=348B54CFF79965E21B2DBAB99F2101E31A560E9B Certificate serial: 31 Authority key identifier: 34:8B:54:CF:F7:99:65:E2:1B:2D:BA:B9:9F:21:01:E3:1A:56:0E:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NItUz_eZZeIbLbq5nyEB4xpWDps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/03B7FB8CCF5A11F09B61EF16C4F9AE02.roa Signing time: Sun 01 Mar 2026 05:56:27 +0000 ROA not before: Tue 02 Dec 2025 08:36:36 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133922 IP address blocks: 138.252.226.0/23 maxlen: 23 138.252.226.0/24 maxlen: 24 138.252.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/NItUz_eZZeIbLbq5nyEB4xpWDps.crl rsync://rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/NItUz_eZZeIbLbq5nyEB4xpWDps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NItUz_eZZeIbLbq5nyEB4xpWDps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E01, serialNumber=348B54CFF79965E21B2DBAB99F2101E31A560E9B Validity Not Before: Dec 2 08:36:36 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d50b-fc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:30:ad:5d:2f:25:06:42:e6:9b:9e:43:55:b7: 7a:fb:38:65:44:c6:6a:20:c8:2b:81:42:cd:d6:75: 1d:b8:d8:e7:b0:db:f6:70:92:cd:3f:4a:c3:5b:80: 3b:ee:54:c7:d0:cf:42:06:9e:bb:54:33:60:10:99: cc:03:64:f0:d2:c7:d1:9f:8e:10:03:c8:e0:d9:a5: 29:d3:72:20:3b:d2:c5:fa:6a:a9:30:12:a1:f8:3f: 85:f1:a0:bd:e7:b1:c7:56:68:2d:11:d2:86:90:39: 1c:0e:be:25:e1:1a:0d:41:bb:a9:78:7c:4e:3b:2b: 2a:59:d5:20:48:45:f4:ec:25:67:92:c9:a5:cc:6c: d9:34:bc:84:22:a5:24:75:a7:cf:55:ee:71:b6:18: fc:f7:37:85:ba:63:7d:8a:13:f1:3f:74:36:33:d1: c0:0f:e2:6c:7e:65:b7:b1:23:d6:9f:7a:85:1c:c0: f2:5b:32:75:fc:15:a3:29:58:45:4b:46:68:9e:da: ae:0e:1c:8b:dc:df:b4:be:87:84:4d:98:c4:1c:d6: 37:87:8b:cf:db:e5:ed:c1:f3:d2:20:d1:26:26:00: c7:48:f7:29:0a:9b:e7:d4:65:b6:85:d5:42:63:fa: 39:9f:e7:51:1a:78:84:5a:61:58:f0:52:f3:64:9b: 25:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:81:4F:B3:93:87:5E:3C:C2:0A:E1:51:71:A9:48:5C:B2:82:0D:F3 X509v3 Authority Key Identifier: keyid:34:8B:54:CF:F7:99:65:E2:1B:2D:BA:B9:9F:21:01:E3:1A:56:0E:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/NItUz_eZZeIbLbq5nyEB4xpWDps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NItUz_eZZeIbLbq5nyEB4xpWDps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E01/46927F14CF5911F085BBDD11C4F9AE02/03B7FB8CCF5A11F09B61EF16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.226.0/23 Signature Algorithm: sha256WithRSAEncryption 51:0f:b0:9f:74:eb:85:65:f7:1d:d1:53:3a:ac:7a:14:36:d6: b1:f6:f0:f3:40:8c:a6:2f:f4:5a:8e:ee:ac:02:8a:a6:37:89: 85:3c:4c:9e:02:b7:b2:d6:19:3a:c4:6c:e0:a5:7c:72:e7:84: f3:88:8a:ca:10:fd:3f:59:7a:24:31:68:90:ac:de:9f:35:f6: ab:25:07:a8:86:2c:2b:eb:16:f9:4e:f4:7c:f9:e0:1d:68:96: f8:30:01:95:91:50:96:e4:56:7a:f6:52:4b:c7:d6:e5:6e:2a: d5:f2:4a:d5:a7:63:49:d2:4b:99:14:e0:bf:7e:a7:7e:11:c7: d2:63:ba:45:d0:a0:70:ce:71:47:f8:a5:09:0d:94:dd:dd:4a: 56:79:0f:28:3c:fd:2e:1b:81:1e:26:23:8f:b4:ac:06:3a:76: 62:ce:9b:64:30:53:d9:37:3b:c2:ba:e6:5c:a8:7a:7e:83:77: 19:22:90:08:9b:c0:4a:16:d3:2a:46:0e:82:82:90:8f:f7:63: 3c:76:9c:0b:3a:e4:2a:83:d0:2f:3e:c4:4f:27:1c:96:31:d9: df:2b:42:89:69:05:ac:35:79:f0:5e:d3:f4:3f:58:1a:6a:b6: f7:6b:e8:3a:be:2d:30:3f:b0:d6:8f:1c:ec:bf:f2:db:51:2c: 38:8e:4d:78 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwMTExMC8GA1UEBRMoMzQ4QjU0Q0ZGNzk5NjVFMjFCMkRCQUI5OUYyMTAxRTMx QTU2MEU5QjAeFw0yNTEyMDIwODM2MzZaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNTBiLWZjOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+MK1dLyUGQuabnkNVt3r7OGVExmogyCuBQs3WdR242Oew2/Zwks0/SsNbgDvu VMfQz0IGnrtUM2AQmcwDZPDSx9GfjhADyODZpSnTciA70sX6aqkwEqH4P4XxoL3n scdWaC0R0oaQORwOviXhGg1Bu6l4fE47KypZ1SBIRfTsJWeSyaXMbNk0vIQipSR1 p89V7nG2GPz3N4W6Y32KE/E/dDYz0cAP4mx+ZbexI9afeoUcwPJbMnX8FaMpWEVL Rmie2q4OHIvc37S+h4RNmMQc1jeHi8/b5e3B89Ig0SYmAMdI9ykKm+fUZbaF1UJj +jmf51EaeIRaYVjwUvNkmyWNAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUC4FPs5OH XjzCCuFRcalIXLKCDfMwHwYDVR0jBBgwFoAUNItUz/eZZeIbLbq5nyEB4xpWDpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTAxLzQ2OTI3RjE0Q0Y1 OTExRjA4NUJCREQxMUM0RjlBRTAyL05JdFV6X2VaWmVJYkxicTVueUVCNHhwV0Rw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTkl0VXpfZVpaZUliTGJxNW55RUI0eHBXRHBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwMS80NjkyN0YxNENGNTkxMUYwODVCQkREMTFDNEY5QUUwMi8wM0I3RkI4Q0NG NUExMUYwOUI2MUVGMTZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/OIwDQYJKoZIhvcNAQELBQADggEBAFEPsJ9064Vl9x3RUzqsehQ2 1rH28PNAjKYv9FqO7qwCiqY3iYU8TJ4Ct7LWGTrEbOClfHLnhPOIisoQ/T9ZeiQx aJCs3p819qslB6iGLCvrFvlO9Hz54B1olvgwAZWRUJbkVnr2UkvH1uVuKtXyStWn Y0nSS5kU4L9+p34Rx9JjukXQoHDOcUf4pQkNlN3dSlZ5Dyg8/S4bgR4mI4+0rAY6 dmLOm2QwU9k3O8K65lyoen6DdxkikAibwEoW0ypGDoKCkI/3Yzx2nAs65CqD0C8+ xE8nHJYx2d8rQolpBaw1efBe0/Q/WBpqtvdr6Dq+LTA/sNaPHOy/8ttRLDiOTXg= -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:16 2026 by rpki-client