$ rpki-client -vvf rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa File: 125C30DAAE6811F09E31E129C4F9AE02.roa (raw, json) Hash identifier: ZQnPx0Gfa+D/DsNGzSZbn0CDbcNNkPZZEr8XRi55tUI= Subject key identifier: B8:3E:BC:7A:7A:FC:F0:FD:E9:D8:31:D6:3E:93:59:91:D5:B9:47:09 Certificate issuer: /CN=A9171996/serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Certificate serial: 46 Authority key identifier: 70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:10:57 +0000 ROA not before: Tue 21 Oct 2025 10:24:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151330 IP address blocks: 138.252.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171996, serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Validity Not Before: Oct 21 10:24:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d871-b467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:00:72:6e:93:1b:fb:dc:b8:95:ef:08:21:67: 03:d7:9b:b0:44:9c:fd:2c:a6:bf:b5:f7:9a:33:50: 00:aa:f6:83:d0:f4:92:96:d3:0e:45:a6:2e:05:47: 39:2d:27:00:cd:1f:2a:01:ef:44:52:d9:27:85:b2: 2f:91:cd:28:8f:94:08:bf:97:9a:a0:63:59:f3:90: 90:25:01:b6:39:05:e5:3c:48:be:01:6c:16:9a:77: 22:65:0e:fd:c5:dc:ae:a9:46:3d:eb:8b:fe:09:16: 65:0c:27:da:77:24:7e:91:8b:0c:d1:7f:93:cd:3a: 83:dc:3d:71:da:37:83:2a:83:4d:81:0a:a8:f8:76: 20:91:0f:a9:f8:90:1a:53:fd:79:25:5d:de:aa:36: d0:ba:7a:17:8f:ea:f6:5e:ed:17:40:ee:e3:af:07: 0d:7d:a8:77:af:63:32:a7:35:10:69:27:43:5d:57: 97:17:d7:f3:5b:cd:ce:fe:d4:8f:db:2e:f9:97:3b: c7:06:13:8c:1c:78:65:bf:29:d0:48:95:71:66:92: 7c:61:48:de:43:05:fb:fe:ab:d2:83:27:34:ec:9a: 0f:6b:a7:b0:64:c1:e1:d1:f2:a9:d8:33:4a:80:2f: 28:d5:8a:2c:21:71:c9:09:18:00:a6:ac:eb:b6:53: 1b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3E:BC:7A:7A:FC:F0:FD:E9:D8:31:D6:3E:93:59:91:D5:B9:47:09 X509v3 Authority Key Identifier: keyid:70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.74.0/23 Signature Algorithm: sha256WithRSAEncryption 73:ca:4d:88:a0:23:8a:44:d4:03:d3:07:45:89:30:88:98:c0: 8c:83:d9:51:71:87:0d:40:e8:2e:41:4a:42:fb:30:08:b2:88: 25:58:25:fb:44:cc:08:67:05:13:5d:51:d6:aa:51:c2:1f:ea: 88:2a:a6:c5:84:a0:c3:fd:1b:7c:b5:8e:17:58:4a:87:71:09: 72:13:21:08:50:4e:fa:65:5b:29:80:38:3e:0a:b3:ac:9a:d2: 2e:81:63:a2:66:db:30:99:58:4b:84:a6:78:be:c6:ef:39:d5: 84:c7:ca:a7:0a:3f:91:83:0c:8e:e9:c3:ff:8f:5e:f0:ca:56: 9e:c1:6c:ad:04:67:7f:2e:90:6c:29:27:ed:c8:db:34:a3:85: d8:fd:e9:20:49:72:56:15:c5:cc:20:41:50:49:d6:a4:90:2d: 41:88:91:31:7c:d6:6c:76:cd:40:6b:58:6d:05:3b:15:09:90: 8e:aa:b2:d9:b2:32:a9:65:62:66:07:8d:a5:1b:4f:e2:2c:a4: 4c:7a:7c:6d:31:dc:05:29:42:91:de:1a:bf:f0:e6:5e:29:21: 82:58:5c:b2:42:f5:0f:cc:71:d8:33:60:03:9f:b8:07:24:fa: c2:3e:38:e0:f6:5b:ed:89:21:57:4e:0e:9b:09:6d:c1:5e:07: 95:54:c3:cc -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTk5NjExMC8GA1UEBRMoNzA0QzM5RTlCMjMwMkVDOTdBOUNBRTk5RUNFNzk0NUI4 MUYyQ0JFRDAeFw0yNTEwMjExMDI0MDZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODcxLWI0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmAHJukxv73LiV7wghZwPXm7BEnP0spr+195ozUACq9oPQ9JKW0w5Fpi4FRzkt JwDNHyoB70RS2SeFsi+RzSiPlAi/l5qgY1nzkJAlAbY5BeU8SL4BbBaadyJlDv3F 3K6pRj3ri/4JFmUMJ9p3JH6RiwzRf5PNOoPcPXHaN4Mqg02BCqj4diCRD6n4kBpT /XklXd6qNtC6eheP6vZe7RdA7uOvBw19qHevYzKnNRBpJ0NdV5cX1/Nbzc7+1I/b LvmXO8cGE4wceGW/KdBIlXFmknxhSN5DBfv+q9KDJzTsmg9rp7BkweHR8qnYM0qA LyjViiwhcckJGACmrOu2UxtbAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUuD68enr8 8P3p2DHWPpNZkdW5RwkwHwYDVR0jBBgwFoAUcEw56bIwLsl6nK6Z7OeUW4Hyy+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxOTk2L0FGN0Y0RDZDQUU2 NzExRjBCNTM0RjYyNkM0RjlBRTAyL2NFdzU2Ykl3THNsNm5LNlo3T2VVVzRIeXkt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0V3NTZiSXdMc2w2bks2WjdPZVVXNEh5eS0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTk5Ni9BRjdGNEQ2Q0FFNjcxMUYwQjUzNEY2MjZDNEY5QUUwMi8xMjVDMzBEQUFF NjgxMUYwOUUzMUUxMjlDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/EowDQYJKoZIhvcNAQELBQADggEBAHPKTYigI4pE1APTB0WJMIiY wIyD2VFxhw1A6C5BSkL7MAiyiCVYJftEzAhnBRNdUdaqUcIf6ogqpsWEoMP9G3y1 jhdYSodxCXITIQhQTvplWymAOD4Ks6ya0i6BY6Jm2zCZWEuEpni+xu851YTHyqcK P5GDDI7pw/+PXvDKVp7BbK0EZ38ukGwpJ+3I2zSjhdj96SBJclYVxcwgQVBJ1qSQ LUGIkTF81mx2zUBrWG0FOxUJkI6qstmyMqllYmYHjaUbT+IspEx6fG0x3AUpQpHe Gr/w5l4pIYJYXLJC9Q/McdgzYAOfuAck+sI+OOD2W+2JIVdODpsJbcFeB5VUw8w= -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:35 2026 by rpki-client