$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa File: B9CCF2D4BD2711EE9958E946C4F9AE02.roa (raw, json) Hash identifier: Gf9FvRP87k5tJxq7afHhKtaiWDluE6doG6ZwlKn8lJM= Subject key identifier: 9E:9A:D8:88:D5:E0:36:B2:72:AE:B4:65:F6:0D:FE:E3:40:81:CE:BE Certificate issuer: /CN=A915D0AC/serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Certificate serial: 0205 Authority key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:16:49 +0000 ROA not before: Wed 09 Apr 2025 03:09:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.130.0/24 maxlen: 24 203.4.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Validity Not Before: Apr 9 03:09:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3f5f1-916c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:da:2b:15:22:f7:af:d6:9b:9f:92:18:c5: f8:f0:33:ab:00:08:af:40:d0:e1:79:26:19:4f:8d: 6c:40:ef:63:58:ae:f8:65:67:c2:6c:4f:d6:8f:da: 08:7a:3e:9d:9b:e7:25:36:20:21:4a:66:82:70:bb: 99:99:70:b7:2b:f9:19:5d:9e:78:a7:02:8e:44:14: 91:08:64:9c:c7:d1:af:ec:f7:00:d4:3c:85:93:e4: ab:76:8d:48:29:69:64:a6:3a:ba:23:54:2e:95:5b: cf:d8:74:c0:97:1b:5e:ca:d5:1c:85:b6:ca:ed:4f: 91:e3:94:78:67:6e:5b:3a:f0:67:4d:9f:33:5e:8d: 95:a9:41:ac:30:e4:47:f3:d1:2d:0a:24:37:da:7a: 63:19:da:1e:34:99:1f:95:41:b4:29:93:6b:0c:3d: 46:3d:96:96:da:da:1e:2a:7c:ca:14:f4:6a:ad:39: ae:24:5f:41:66:4f:01:e8:65:ba:d3:ec:e8:86:36: e8:52:ad:65:a6:72:dc:2b:43:3f:f1:d6:f2:09:91: 84:08:13:4c:27:d4:f0:0f:89:2b:69:ed:9f:89:84: 56:ff:39:87:ae:66:43:25:82:7a:f0:d3:9d:1b:8f: ef:6f:f5:02:fb:29:26:cb:c3:66:63:c2:01:c1:50: 20:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9A:D8:88:D5:E0:36:B2:72:AE:B4:65:F6:0D:FE:E3:40:81:CE:BE X509v3 Authority Key Identifier: keyid:F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.4.130.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:4e:55:bd:3d:78:48:70:61:eb:62:78:4b:cb:49:50:e1:ef: 8f:9d:eb:cf:be:fa:b4:28:43:26:19:47:9c:07:a3:4e:9f:91: 19:76:04:eb:e8:4d:c3:4e:67:86:7d:32:1c:03:63:62:0a:63: 7e:04:1d:5e:6d:0b:5d:fe:63:9b:cb:12:a3:80:d2:72:fe:0f: ef:a8:a3:ed:e9:17:21:79:07:18:68:76:49:15:da:8e:aa:4e: bc:d0:91:5c:52:61:6c:cf:28:90:bc:49:cd:cb:b1:aa:66:e3: 44:e1:4a:74:5d:50:64:a2:01:9b:64:b0:73:9e:47:e2:b3:66: 7c:e3:3c:40:47:c2:29:53:ba:9f:01:f0:da:dd:8c:81:ba:2b: b5:c2:0e:d5:2c:13:95:17:17:ea:98:80:60:af:83:23:68:38: 04:e5:f0:5d:b7:4d:d1:cf:b2:86:19:d6:3c:7d:e3:f7:9a:51: 07:b6:68:a7:07:ba:72:03:ee:40:43:7b:45:73:5b:c4:40:57: 22:b4:36:29:56:db:d3:07:a2:05:24:a6:cb:fe:92:fa:ea:d0: 62:27:63:19:67:ec:de:1e:67:09:aa:67:d7:ea:5b:ca:6b:1a: fc:0c:eb:f5:50:9d:f4:74:ad:59:cb:2d:f5:43:d3:27:8a:34: 6d:c1:f2:d1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKEY3QUVENTg3NTExMkNDRkIyMDhFNzE4MjQ3QjFFNDlC QUFGRkI4NjUwHhcNMjUwNDA5MDMwOTMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjVmMS05MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu47aKxUi96/Wm5+SGMX48DOrAAivQNDheSYZT41sQO9jWK74ZWfCbE/Wj9oI ej6dm+clNiAhSmaCcLuZmXC3K/kZXZ54pwKORBSRCGScx9Gv7PcA1DyFk+Srdo1I KWlkpjq6I1QulVvP2HTAlxteytUchbbK7U+R45R4Z25bOvBnTZ8zXo2VqUGsMORH 89EtCiQ32npjGdoeNJkflUG0KZNrDD1GPZaW2toeKnzKFPRqrTmuJF9BZk8B6GW6 0+zohjboUq1lpnLcK0M/8dbyCZGECBNMJ9TwD4krae2fiYRW/zmHrmZDJYJ68NOd G4/vb/UC+ykmy8NmY8IBwVAgnQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ6a2IjV 4Daycq60ZfYN/uNAgc6+MB8GA1UdIwQYMBaAFPeu1YdREsz7II5xgkex5Juq/7hl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy9BMjlBQTJEODE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi85NjdWaDFFU3pQc2dqbkdDUjdIa202cl91 R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk2N1ZoMUVTelBzZ2puR0NSN0hrbTZyX3VHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvQTI5QUEyRDgxNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvQjlDQ0YyRDRC RDI3MTFFRTk5NThFOTQ2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBywSCMA0GCSqGSIb3DQEBCwUAA4IBAQAPTlW9PXhIcGHrYnhLy0lQ 4e+PnevPvvq0KEMmGUecB6NOn5EZdgTr6E3DTmeGfTIcA2NiCmN+BB1ebQtd/mOb yxKjgNJy/g/vqKPt6RcheQcYaHZJFdqOqk680JFcUmFszyiQvEnNy7GqZuNE4Up0 XVBkogGbZLBznkfis2Z84zxAR8IpU7qfAfDa3YyBuiu1wg7VLBOVFxfqmIBgr4Mj aDgE5fBdt03Rz7KGGdY8feP3mlEHtminB7pyA+5AQ3tFc1vEQFcitDYpVtvTB6IF JKbL/pL66tBiJ2MZZ+zeHmcJqmfX6lvKaxr8DOv1UJ30dK1Zyy31Q9MnijRtwfLR -----END CERTIFICATE-----Generated at Mon Mar 2 06:01:40 2026 by rpki-client