$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa File: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (raw, json) Hash identifier: KN/qO3b9F5dp3gvVSi/2Av1F8gy5I+kWuZVNLBkzY6g= Subject key identifier: 1E:55:04:ED:21:F1:D8:B5:E5:36:14:C2:54:43:C8:36:82:6A:EE:F9 Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D77 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:32:07 +0000 ROA not before: Tue 30 Sep 2025 15:42:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7642 IP address blocks: 83.137.200.0/21 maxlen: 21 83.137.200.0/23 maxlen: 24 83.137.202.0/23 maxlen: 24 83.137.204.0/23 maxlen: 24 83.137.206.0/23 maxlen: 24 185.215.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3447 (0xd77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Sep 30 15:42:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44de7-9ef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:93:e6:a1:d2:f4:0a:60:5c:e0:f0:3e:f6:ed: d4:2d:26:ce:ff:3c:8b:a5:83:e4:d9:ea:c0:fd:ec: 56:b2:e4:23:00:61:05:00:e3:3c:83:88:b3:39:11: f9:b7:bb:f8:28:d3:9d:08:1a:58:d1:31:b4:07:28: d5:b1:f5:15:50:1a:1a:99:46:01:9d:83:cd:69:8c: 4f:d9:39:06:4e:7c:93:e2:13:c9:29:d6:46:a7:70: 97:a9:da:b0:0d:bf:7a:aa:d2:91:f3:f3:b0:78:fd: 7e:1d:db:97:a0:cd:6f:92:60:62:d9:92:1f:ba:4c: 45:88:e0:14:fc:8d:22:8a:29:5c:22:7e:31:1e:49: ac:73:8e:0b:89:75:e3:74:c9:8f:d5:d4:f0:95:75: 6b:67:2f:d2:e4:19:61:7a:15:60:e2:2e:56:f0:2a: d6:8a:7a:7b:92:2c:f2:ef:b6:c1:3d:ce:ad:84:04: 90:7b:21:c1:81:db:f4:36:3f:cd:e6:fe:42:b9:74: c3:2b:29:bf:0b:10:81:5d:4f:85:e8:f4:5d:83:78: 06:15:28:58:a1:90:a4:25:16:b0:78:b5:b0:bf:49: af:d3:5c:b1:85:f4:ae:93:52:97:bf:35:7d:dc:ce: e9:47:03:3c:10:a9:e1:08:6b:53:e2:b4:e0:58:9d: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:55:04:ED:21:F1:D8:B5:E5:36:14:C2:54:43:C8:36:82:6A:EE:F9 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 83.137.200.0/21 185.215.32.0/22 Signature Algorithm: sha256WithRSAEncryption 29:09:bf:34:dc:54:be:c0:8d:3a:e1:e5:48:da:39:e6:b4:5a: ee:50:31:f8:f4:d7:15:29:70:4a:d1:b6:97:40:be:d2:19:5e: c9:d5:b9:c3:f7:bf:4b:c1:02:9a:bc:fc:3e:91:62:36:e5:49: 32:ac:0c:e1:46:3d:c9:a0:0e:fa:3e:94:37:20:71:bf:0f:99: f0:f6:ff:05:6b:1a:17:25:e8:fc:6d:f0:ab:11:9a:8e:f5:9a: 15:1d:02:d5:2a:31:85:56:c4:c1:16:1e:76:41:58:66:3a:99: 1e:66:bc:3c:fb:b6:45:72:f2:2f:03:2f:52:dd:d0:3a:dc:78: 6b:f9:12:4f:f2:79:67:1c:bb:73:0d:dc:e3:8d:3c:2d:34:87: cc:5c:63:b9:3d:11:fc:08:5f:4b:b5:77:2c:fd:78:70:41:ee: db:da:79:47:cb:f3:44:5d:9f:1f:18:e5:9d:8f:ef:9e:9c:ed: 47:00:ef:46:49:69:39:c0:8f:14:62:93:43:f7:64:ea:20:cd: c6:9c:87:ab:43:f0:5c:87:56:f4:8d:fa:48:0e:67:54:a4:c3: 3a:0a:5d:8c:00:6c:54:65:11:68:d4:f7:c0:3d:73:81:27:c3: e6:34:70:00:87:be:49:d6:ca:2a:c0:ae:18:5e:f7:49:1e:9e: fc:46:51:57 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUwOTMwMTU0MjMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRlNy05ZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pPmodL0CmBc4PA+9u3ULSbO/zyLpYPk2erA/exWsuQjAGEFAOM8g4izORH5 t7v4KNOdCBpY0TG0ByjVsfUVUBoamUYBnYPNaYxP2TkGTnyT4hPJKdZGp3CXqdqw Db96qtKR8/OweP1+HduXoM1vkmBi2ZIfukxFiOAU/I0iiilcIn4xHkmsc44LiXXj dMmP1dTwlXVrZy/S5BlhehVg4i5W8CrWinp7kizy77bBPc6thASQeyHBgdv0Nj/N 5v5CuXTDKym/CxCBXU+F6PRdg3gGFShYoZCkJRaweLWwv0mv01yxhfSuk1KXvzV9 3M7pRwM8EKnhCGtT4rTgWJ0bTwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFB5VBO0h 8di15TYUwlRDyDaCau75MB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMzM0EvOEY0N0E5RkFFOTdEMTFFOUE5REI1RTUyQzRGOUFFMDIvMERGMzMxQzI4 Rjk0MTFFQUE1RTdCNTczQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDU4nIAwQCudcgMA0GCSqGSIb3DQEBCwUAA4IBAQApCb803FS+wI06 4eVI2jnmtFruUDH49NcVKXBK0baXQL7SGV7J1bnD979LwQKavPw+kWI25UkyrAzh Rj3JoA76PpQ3IHG/D5nw9v8FaxoXJej8bfCrEZqO9ZoVHQLVKjGFVsTBFh52QVhm OpkeZrw8+7ZFcvIvAy9S3dA63Hhr+RJP8nlnHLtzDdzjjTwtNIfMXGO5PRH8CF9L tXcs/XhwQe7b2nlHy/NEXZ8fGOWdj++enO1HAO9GSWk5wI8UYpND92TqIM3GnIer Q/Bch1b0jfpIDmdUpMM6Cl2MAGxUZRFo1PfAPXOBJ8PmNHAAh75J1soqwK4YXvdJ Hp78RlFX -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:53 2026 by rpki-client