$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa File: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (raw, json) Hash identifier: 9w8S4OWRKiHn00WgTxK8sW6EL9lR2MtKh2D9FC7SrtA= Subject key identifier: 89:24:C0:00:41:99:47:E8:D1:29:34:0F:9C:41:84:FF:A8:CC:3E:AA Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 032A Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:27:26 +0000 ROA not before: Sun 05 Oct 2025 01:56:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4826 IP address blocks: 146.144.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Oct 5 01:56:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44cce-120a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b4:c5:2e:18:2e:96:b7:04:92:2b:c7:16:1f: bd:06:e5:2c:bf:b9:08:e2:be:d9:dc:d6:5b:9d:0c: b6:da:2b:9b:14:b9:b6:a3:fb:24:d5:c7:58:0a:24: 5b:7b:03:95:e1:70:67:4c:a8:09:09:a0:2f:41:e6: 9b:48:0e:be:f1:a4:01:7e:77:63:2e:32:15:c5:9c: 09:17:16:09:ee:d7:2f:0c:c9:db:66:15:24:2c:6e: df:44:f1:46:5b:e6:31:78:42:c6:33:98:1e:09:90: 09:5a:3d:6a:bd:21:ba:c0:fd:7e:8e:91:36:38:6b: bc:b8:51:7a:28:fd:e0:51:54:b0:a0:56:44:2a:70: cd:a7:17:eb:36:a1:e5:eb:0a:47:28:4d:0c:1a:1a: cc:39:13:99:61:e7:6d:bc:fa:11:d7:0f:bd:d5:e2: d3:d2:e4:f9:bf:85:09:e4:f7:ad:e5:cf:2a:f8:a2: 84:d0:be:42:fe:53:1e:a9:05:12:63:9d:bb:65:71: 1a:2e:66:74:9d:4b:31:01:db:30:fa:fa:66:ad:ee: 35:10:47:ef:e7:6f:eb:e4:cc:7e:39:d7:56:15:8d: 68:07:23:96:b3:25:fa:a8:59:cd:3a:f9:12:2b:89: f4:88:8b:ca:20:e6:af:70:e0:43:d9:94:a7:48:c8: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:24:C0:00:41:99:47:E8:D1:29:34:0F:9C:41:84:FF:A8:CC:3E:AA X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/B0FA33FE6F9611ED8A672F69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 146.144.8.0/24 Signature Algorithm: sha256WithRSAEncryption aa:d0:7a:37:af:45:09:bd:69:cc:1d:95:b5:9e:e1:89:2d:2f: c8:71:91:34:4c:7b:36:83:15:3a:48:04:b7:63:c7:93:71:fd: b9:74:ed:09:06:0a:cc:76:24:1e:0f:ab:97:5b:13:9c:8b:f3: 85:49:89:99:f3:8d:84:16:7c:ed:d0:67:73:47:16:ee:b0:8b: 43:90:92:34:49:63:07:f9:76:2b:df:0d:01:e3:e3:52:21:83: 17:1f:83:c3:64:eb:e2:b3:4e:c1:0f:b4:b2:0c:28:32:2c:e6: 03:cd:7a:50:9a:a1:e5:e7:f4:b4:a2:5a:ab:84:7d:a9:03:d8: ed:b7:7f:2a:7e:92:c8:23:e9:69:79:30:43:a1:2b:54:6d:37: 25:76:30:f6:47:39:47:31:6a:b2:e6:85:0b:6b:3a:bc:ea:52: 16:95:e9:10:65:90:4e:13:93:7d:55:97:75:59:c5:54:6e:87: 4d:95:9e:e2:13:5d:2a:1c:f5:89:91:a0:13:55:5d:46:fa:aa: a1:39:32:c4:13:5c:46:f4:6c:66:5e:f3:fb:85:5f:f9:01:47: 71:f7:d6:6e:f1:98:83:8b:30:28:3b:5b:70:83:6a:e5:99:94: ff:1e:64:6d:83:d5:04:e3:c3:90:f3:a7:d7:f2:8b:dc:32:55: b0:b4:77:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUxMDA1MDE1NjQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGNjZS0xMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrTFLhgulrcEkivHFh+9BuUsv7kI4r7Z3NZbnQy22iubFLm2o/sk1cdYCiRb ewOV4XBnTKgJCaAvQeabSA6+8aQBfndjLjIVxZwJFxYJ7tcvDMnbZhUkLG7fRPFG W+YxeELGM5geCZAJWj1qvSG6wP1+jpE2OGu8uFF6KP3gUVSwoFZEKnDNpxfrNqHl 6wpHKE0MGhrMOROZYedtvPoR1w+91eLT0uT5v4UJ5Pet5c8q+KKE0L5C/lMeqQUS Y527ZXEaLmZ0nUsxAdsw+vpmre41EEfv52/r5Mx+OddWFY1oByOWsyX6qFnNOvkS K4n0iIvKIOavcOBD2ZSnSMjaowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIkkwABB mUfo0Sk0D5xBhP+ozD6qMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0QjgvOUYwM0JCNjAwOTQ0MTFFRDhERDEwOTcxQzRGOUFFMDIvQjBGQTMzRkU2 Rjk2MTFFRDhBNjcyRjY5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAkpAIMA0GCSqGSIb3DQEBCwUAA4IBAQCq0Ho3r0UJvWnMHZW1nuGJ LS/IcZE0THs2gxU6SAS3Y8eTcf25dO0JBgrMdiQeD6uXWxOci/OFSYmZ842EFnzt 0GdzRxbusItDkJI0SWMH+XYr3w0B4+NSIYMXH4PDZOvis07BD7SyDCgyLOYDzXpQ mqHl5/S0olqrhH2pA9jtt38qfpLII+lpeTBDoStUbTcldjD2RzlHMWqy5oULazq8 6lIWlekQZZBOE5N9VZd1WcVUbodNlZ7iE10qHPWJkaATVV1G+qqhOTLEE1xG9Gxm XvP7hV/5AUdx99Zu8ZiDizAoO1twg2rlmZT/HmRtg9UE48OQ86fX8ovcMlWwtHfy -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:46 2026 by rpki-client