$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa File: 887BE0D0405D11ECA642D813C4F9AE02.roa (raw, json) Hash identifier: qNa/ixDv36e5kqpERNnc4v0Oo6RCIea2nOfSeRqLfMY= Subject key identifier: B8:80:27:65:16:61:C4:E0:C0:E5:CE:29:CD:B9:29:97:BA:7A:08:6D Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 051F Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:49:57 +0000 ROA not before: Sun 23 Mar 2025 00:15:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55433 IP address blocks: 196.1.1.0/24 maxlen: 24 196.1.109.0/24 maxlen: 24 196.1.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1311 (0x51f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Mar 23 00:15:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a46024-9556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5b:a1:3a:41:23:e1:00:9c:fa:02:08:47:d1: 4d:0e:d4:98:24:c7:f9:dc:ac:bb:c4:2c:1c:b4:e0: 3a:00:ea:b8:eb:e5:fc:3b:f9:e5:b0:6b:4b:b8:a2: a1:09:7f:be:5d:72:86:d3:ef:32:6d:9e:2e:70:66: e7:ca:7c:49:2e:b5:15:2d:0f:66:d3:c3:75:64:7f: 59:7e:20:36:01:19:51:a0:e8:64:b0:7a:6f:83:8d: 49:c1:7e:66:f1:99:6e:99:a3:d5:2c:3a:c9:d3:4b: 9f:23:ed:10:a8:af:79:b2:39:53:16:a8:fa:9f:d1: 73:a7:35:57:b1:9c:0c:41:a0:b8:89:49:4a:3f:d2: b7:78:f1:1f:fa:e8:d3:46:d6:7f:f1:d0:81:4c:c2: 61:c8:e6:55:eb:fd:42:e7:5a:38:a6:e1:af:5d:65: 53:ec:16:b8:07:37:0c:fb:04:c3:74:44:26:0f:a2: 2f:1b:8d:96:1c:86:fa:c2:6d:66:c1:f8:af:b4:54: 62:c1:8b:20:5b:44:41:61:e2:f2:35:a7:a0:54:f0: df:28:ad:b3:8f:8f:2c:84:19:40:0b:b0:0e:63:4a: ac:d4:99:7e:ce:7d:aa:60:30:50:dc:62:0c:18:13: db:3c:2b:66:df:e5:76:88:3e:93:2a:36:57:48:df: db:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:80:27:65:16:61:C4:E0:C0:E5:CE:29:CD:B9:29:97:BA:7A:08:6D X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 196.1.1.0/24 196.1.109.0/24 196.1.113.0/24 Signature Algorithm: sha256WithRSAEncryption 45:6b:48:d1:0f:a8:d9:c8:81:ad:49:25:d2:11:d7:d4:63:17: 59:d3:58:65:01:14:7b:4f:c9:7e:c7:31:82:91:17:91:2d:82: c2:2a:2f:be:97:c6:ea:8f:eb:f0:37:f2:60:ac:5e:ff:19:21: c9:f1:3e:bb:3c:7f:ae:01:d0:06:25:6d:5e:42:60:54:2a:9c: 9e:a3:83:84:7e:65:77:87:b5:f0:db:a2:e4:30:e0:53:5f:3d: 78:53:8e:cc:60:2f:d2:59:a3:8e:44:9a:ef:85:44:d3:13:7d: 1c:51:fe:b3:d6:5b:e4:3e:ce:0a:90:68:c6:58:99:61:20:ae: e2:b7:61:77:37:c9:ce:76:f7:45:f0:bf:d6:09:cc:88:53:df: 3e:a6:53:b7:5c:29:a5:84:f4:86:5a:69:db:c6:a6:fa:f2:20: ec:cf:82:f1:8b:0c:c9:c9:09:a6:eb:21:2b:aa:08:0d:2c:63: df:26:22:2a:20:6b:42:ea:de:2c:74:23:2d:d7:fd:ae:0a:42: 03:46:4c:53:49:77:aa:95:93:94:28:40:3b:0c:22:fd:1a:dd: 70:82:2b:f5:fa:36:37:48:73:94:76:08:e0:a2:f0:51:7e:9e: b0:15:1b:a9:83:15:ae:54:97:a5:15:5e:f1:de:3a:52:db:ce: 27:84:f9:65 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwMzIzMDAxNTUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjAyNC05NTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1uhOkEj4QCc+gIIR9FNDtSYJMf53Ky7xCwctOA6AOq46+X8O/nlsGtLuKKh CX++XXKG0+8ybZ4ucGbnynxJLrUVLQ9m08N1ZH9ZfiA2ARlRoOhksHpvg41JwX5m 8ZlumaPVLDrJ00ufI+0QqK95sjlTFqj6n9FzpzVXsZwMQaC4iUlKP9K3ePEf+ujT RtZ/8dCBTMJhyOZV6/1C51o4puGvXWVT7Ba4BzcM+wTDdEQmD6IvG42WHIb6wm1m wfivtFRiwYsgW0RBYeLyNaegVPDfKK2zj48shBlAC7AOY0qs1Jl+zn2qYDBQ3GIM GBPbPCtm3+V2iD6TKjZXSN/b0wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLiAJ2UW YcTgwOXOKc25KZe6eghtMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDRTMvNUQ3ODk5RjQ0MDU5MTFFQ0EwQUZBQTREQzRGOUFFMDIvODg3QkUwRDA0 MDVEMTFFQ0E2NDJEODEzQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAxAEBAwQAxAFtAwQAxAFxMA0GCSqGSIb3DQEBCwUAA4IBAQBFa0jR D6jZyIGtSSXSEdfUYxdZ01hlARR7T8l+xzGCkReRLYLCKi++l8bqj+vwN/JgrF7/ GSHJ8T67PH+uAdAGJW1eQmBUKpyeo4OEfmV3h7Xw26LkMOBTXz14U47MYC/SWaOO RJrvhUTTE30cUf6z1lvkPs4KkGjGWJlhIK7it2F3N8nOdvdF8L/WCcyIU98+plO3 XCmlhPSGWmnbxqb68iDsz4LxiwzJyQmm6yErqggNLGPfJiIqIGtC6t4sdCMt1/2u CkIDRkxTSXeqlZOUKEA7DCL9Gt1wgiv1+jY3SHOUdgjgovBRfp6wFRupgxWuVJel FV7x3jpS284nhPll -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:48 2026 by rpki-client