$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/4971496EAE1B11EF8FFE0422C4F9AE02.roa File: 4971496EAE1B11EF8FFE0422C4F9AE02.roa (raw, json) Hash identifier: OCIUxyS/b5tLlrfDuZU5t1QbT6abuQsHqTZkHSU5t1M= Subject key identifier: CA:25:D9:16:80:E6:F4:D0:C0:72:38:3E:18:08:77:9A:79:93:1D:3F Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 29A5 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/4971496EAE1B11EF8FFE0422C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:36:31 +0000 ROA not before: Sat 24 May 2025 15:43:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 15347 IP address blocks: 124.29.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10661 (0x29a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 24 15:43:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4872f-0eaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6b:c1:c1:fc:32:06:89:75:ea:72:a4:6d:80: 6c:9b:25:42:f9:02:2b:2e:2e:6e:ea:8a:4f:a6:36: 36:34:79:2f:9e:77:36:d8:7d:e8:cb:09:4c:af:c0: 13:3d:5a:d3:41:80:df:19:d1:4d:de:d0:57:44:1c: 41:a8:55:c6:84:5a:ac:bb:e2:fe:ef:72:91:83:d2: 40:bc:01:99:ce:27:11:cc:77:b0:5d:71:7a:95:c9: f4:80:bc:de:9c:cd:6a:ef:67:17:42:6a:51:b6:33: 16:9a:74:75:ae:46:73:b9:b3:fe:a9:91:e7:e6:97: 6e:7a:eb:6e:d6:4c:15:5d:97:dd:54:92:3d:7a:df: 16:61:c5:28:4d:25:78:a8:02:51:26:6c:01:de:1a: b8:41:91:c9:f4:28:ef:04:0e:74:e8:87:e0:54:84: 2d:f5:ed:04:90:01:61:bf:69:56:05:f1:91:de:9a: b6:85:e7:de:ba:6a:6a:9b:b5:a7:a1:45:d8:c0:04: 61:19:d0:18:39:7d:99:e0:d9:cd:d5:75:ff:51:6d: 02:85:06:45:79:51:2d:ea:76:f2:64:7a:92:b7:3d: 08:48:42:8b:2d:d6:0a:bb:1a:ac:81:0a:5f:03:1d: 81:59:a5:3e:17:a7:43:ec:6e:a7:19:e1:2e:c3:78: dd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:25:D9:16:80:E6:F4:D0:C0:72:38:3E:18:08:77:9A:79:93:1D:3F X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/4971496EAE1B11EF8FFE0422C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 124.29.241.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:fa:78:a1:a5:0d:64:de:20:13:d3:45:b5:b1:63:d8:25:43: ba:62:06:e6:01:b4:66:a4:ce:40:af:57:56:a3:44:fe:a5:ae: 96:45:18:66:df:48:32:11:f8:81:9e:38:69:80:5b:bc:e2:33: 3e:3d:d8:34:24:80:83:ce:91:21:b7:35:fa:16:26:03:81:91: a7:bd:bc:8d:2c:cb:ef:d4:38:b1:45:b8:db:e2:cb:37:09:b3: 46:ba:a8:fa:58:b7:02:17:b9:33:7e:0d:c4:ab:2a:c2:e6:f5: b8:77:ae:64:30:24:da:52:85:a4:46:03:bc:b0:b3:a7:99:17: 35:cf:02:f0:af:04:b4:89:a1:29:8f:0a:24:9d:a8:2a:51:1b: 48:87:04:1d:fc:5e:07:6c:20:d3:83:b3:7c:20:e8:6c:82:6a: a2:ea:e3:c5:7f:2a:a1:02:45:97:03:3b:d8:e1:1e:3c:48:84: ff:fb:29:0d:fd:b4:cf:d0:4c:42:32:9c:b8:9c:75:d4:6f:b2: 1f:95:51:5a:10:96:55:a5:6e:e5:12:d5:91:52:19:4c:d3:32: 95:32:ff:85:18:69:c9:cc:52:3b:ef:30:37:48:c5:a4:04:11: d0:01:fa:a5:27:e5:51:33:a4:0c:f6:9c:11:00:50:c8:84:70: 99:6d:77:e9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjUwNTI0MTU0MzMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODcyZi0wZWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGvBwfwyBol16nKkbYBsmyVC+QIrLi5u6opPpjY2NHkvnnc22H3oywlMr8AT PVrTQYDfGdFN3tBXRBxBqFXGhFqsu+L+73KRg9JAvAGZzicRzHewXXF6lcn0gLze nM1q72cXQmpRtjMWmnR1rkZzubP+qZHn5pdueutu1kwVXZfdVJI9et8WYcUoTSV4 qAJRJmwB3hq4QZHJ9CjvBA506IfgVIQt9e0EkAFhv2lWBfGR3pq2hefeumpqm7Wn oUXYwARhGdAYOX2Z4NnN1XX/UW0ChQZFeVEt6nbyZHqStz0ISEKLLdYKuxqsgQpf Ax2BWaU+F6dD7G6nGeEuw3jd9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMol2RaA 5vTQwHI4PhgId5p5kx0/MB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvNDk3MTQ5NkVB RTFCMTFFRjhGRkUwNDIyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAfB3xMA0GCSqGSIb3DQEBCwUAA4IBAQBv+nihpQ1k3iAT00W1sWPY JUO6YgbmAbRmpM5Ar1dWo0T+pa6WRRhm30gyEfiBnjhpgFu84jM+Pdg0JICDzpEh tzX6FiYDgZGnvbyNLMvv1DixRbjb4ss3CbNGuqj6WLcCF7kzfg3EqyrC5vW4d65k MCTaUoWkRgO8sLOnmRc1zwLwrwS0iaEpjwoknagqURtIhwQd/F4HbCDTg7N8IOhs gmqi6uPFfyqhAkWXAzvY4R48SIT/+ykN/bTP0ExCMpy4nHXUb7IflVFaEJZVpW7l EtWRUhlM0zKVMv+FGGnJzFI77zA3SMWkBBHQAfqlJ+VRM6QM9pwRAFDIhHCZbXfp -----END CERTIFICATE-----Generated at Mon Mar 2 06:32:08 2026 by rpki-client