$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa File: 375E8232C13411F0A297231CC4F9AE02.roa (raw, json) Hash identifier: Rcvi6yejJNqA4Zq2UKAey1CzzI6dgFF00kMlDMOnfRU= Subject key identifier: AD:11:7D:3C:CC:A5:02:FC:84:D2:A2:79:E4:8C:CE:41:BA:A1:60:A9 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: B6 Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa Signing time: Mon 30 Mar 2026 12:58:36 +0000 ROA not before: Mon 30 Mar 2026 12:58:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153913 IP address blocks: 124.198.240.0/24 maxlen: 24 124.198.241.0/24 maxlen: 24 124.198.242.0/24 maxlen: 24 124.198.243.0/24 maxlen: 24 124.198.244.0/24 maxlen: 24 124.198.245.0/24 maxlen: 24 124.198.246.0/24 maxlen: 24 203.169.6.0/24 maxlen: 24 203.169.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Mar 30 12:58:36 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69ca737c-3286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f8:33:59:a9:e1:5a:56:a3:35:67:b7:19:d7: d7:67:bd:7a:cc:bb:49:28:39:6e:e0:47:0f:99:1c: 7d:76:c9:45:aa:b8:16:17:af:c4:a8:61:1b:67:e3: 76:66:2a:1e:d6:ce:48:0b:c2:35:78:01:28:89:d3: 40:04:e5:71:96:e0:7c:c5:e3:fc:57:74:49:50:0e: 7a:e4:5f:4f:70:1a:49:48:c0:d3:60:e8:fd:8a:6c: 7d:24:b6:bd:11:0d:1e:d4:25:9e:a5:c0:46:07:6d: 3e:a9:2d:3d:ac:77:b5:b0:6a:c8:1c:8d:c4:e3:01: 10:b7:6e:b4:0d:ca:40:fd:fa:78:19:db:53:a0:62: 96:c7:a7:8a:71:90:15:ba:2c:78:a7:ca:fa:4e:21: a8:9d:43:cd:b8:f1:63:fe:b0:cc:d8:2f:a3:4b:f6: a6:f8:64:aa:74:d7:62:13:16:59:d6:e2:da:c8:0b: 3c:bc:14:e5:74:53:71:e0:9e:f0:5d:a9:4d:8b:37: 58:26:27:f2:28:87:d0:ba:74:ef:20:60:d8:d5:74: 50:3f:34:81:18:3e:a0:12:3e:20:57:f0:fc:bb:6e: 8b:ba:6d:33:9f:1c:67:6a:39:2e:da:61:b0:f0:16: 7b:98:cb:11:1e:8a:c5:e5:c7:0f:69:56:60:6b:55: 11:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:11:7D:3C:CC:A5:02:FC:84:D2:A2:79:E4:8C:CE:41:BA:A1:60:A9 X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 124.198.240.0-124.198.246.255 203.169.6.0/23 Signature Algorithm: sha256WithRSAEncryption 64:10:bc:c3:80:1e:e9:0d:97:9e:9a:7b:28:b0:6e:9d:a9:29: 39:01:85:fe:fe:c8:2d:c7:d3:fd:7a:4c:53:b5:47:a9:5c:54: 0f:1d:8d:35:9c:ed:c2:d0:fc:a8:c4:3c:0e:db:a8:e0:29:82: 28:53:2a:56:42:fa:91:aa:8d:b5:d6:7b:ae:cd:ac:03:ca:b4: a7:19:e6:14:5c:c4:48:07:17:5b:a2:16:09:8a:be:78:ee:df: f6:69:10:a3:b2:6e:31:f7:89:6a:34:0e:30:74:21:8b:ca:8f: d0:d9:bb:47:59:a8:14:05:5e:cf:e0:c6:41:a6:e7:0d:46:4e: 6c:37:05:fe:ea:98:0d:a4:f3:45:95:e6:04:d8:53:5a:90:7f: ff:1f:5a:64:09:1c:4d:57:91:a1:26:f2:13:43:e9:21:bc:2d: d5:bb:a9:43:ec:2b:07:db:a7:c9:aa:0d:17:cd:d7:a1:6c:21: 99:39:66:bf:e8:1f:63:8c:71:a8:8f:cf:80:77:63:23:aa:38: 9e:37:d2:af:71:1d:a0:0e:f5:74:dd:7c:25:59:0b:ed:85:88: 37:f1:83:6c:47:c8:d3:11:b7:7d:16:27:d9:d9:5e:a8:64:5f: 55:2d:e0:4a:66:e0:10:2f:7e:a8:0b:63:b2:8f:60:8e:04:cd: 50:e7:27:b5 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4NTcxMTAvBgNVBAUTKERFQTYzRTMxMDFCRjE1OTkwMjBBNDA4M0ZBMUMzRDk2 NEIyMTMwQzAwHhcNMjYwMzMwMTI1ODM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhNzM3Yy0zMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/gzWanhWlajNWe3GdfXZ716zLtJKDlu4EcPmRx9dslFqrgWF6/EqGEbZ+N2 Zioe1s5IC8I1eAEoidNABOVxluB8xeP8V3RJUA565F9PcBpJSMDTYOj9imx9JLa9 EQ0e1CWepcBGB20+qS09rHe1sGrIHI3E4wEQt260DcpA/fp4GdtToGKWx6eKcZAV uix4p8r6TiGonUPNuPFj/rDM2C+jS/am+GSqdNdiExZZ1uLayAs8vBTldFNx4J7w XalNizdYJifyKIfQunTvIGDY1XRQPzSBGD6gEj4gV/D8u26Lum0znxxnajku2mGw 8BZ7mMsRHorF5ccPaVZga1URDQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFK0RfTzM pQL8hNKieeSMzkG6oWCpMB8GA1UdIwQYMBaAFN6mPjEBvxWZAgpAg/ocPZZLITDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTg1Ny9DQjE0QkYyNjND OTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Zaa0NDa0NELWh3OWxrc2hN TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4NTcvQ0IxNEJGMjYzQzk4MTFGMEFGMTI0QjM4QzRGOUFFMDIvMzc1RTgyMzJD MTM0MTFGMEEyOTcyMzFDQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAR8xvADBAB8xvYDBAHLqQYwDQYJKoZIhvcNAQELBQADggEBAGQQ vMOAHukNl56aeyiwbp2pKTkBhf7+yC3H0/16TFO1R6lcVA8djTWc7cLQ/KjEPA7b qOApgihTKlZC+pGqjbXWe67NrAPKtKcZ5hRcxEgHF1uiFgmKvnju3/ZpEKOybjH3 iWo0DjB0IYvKj9DZu0dZqBQFXs/gxkGm5w1GTmw3Bf7qmA2k80WV5gTYU1qQf/8f WmQJHE1XkaEm8hND6SG8LdW7qUPsKwfbp8mqDRfN16FsIZk5Zr/oH2OMcaiPz4B3 YyOqOJ430q9xHaAO9XTdfCVZC+2FiDfxg2xHyNMRt30WJ9nZXqhkX1Ut4Epm4BAv fqgLY7KPYI4EzVDnJ7U= -----END CERTIFICATE-----Generated at Fri Apr 17 10:52:16 2026 by rpki-client