$ rpki-client -vvf rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/9EA96DF25D5D11F08A574048C4F9AE02.roa File: 9EA96DF25D5D11F08A574048C4F9AE02.roa (raw, json) Hash identifier: j5dVLv6OLKywzj6nsoTlfZRGOA0pKSPRrtwDldvzxCc= Subject key identifier: 74:09:AF:43:14:DF:9D:2F:B6:C3:EC:B9:76:04:78:9A:CF:29:DF:D4 Certificate issuer: /CN=A917877E/serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Certificate serial: 7B Authority key identifier: 6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/9EA96DF25D5D11F08A574048C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:11:55 +0000 ROA not before: Thu 10 Jul 2025 07:15:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154038 IP address blocks: 165.101.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917877E, serialNumber=6D8AB6FDE521DC106F948292B502FD5A0734837C Validity Not Before: Jul 10 07:15:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3f4cb-a7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:da:23:0e:6e:04:bb:32:68:24:1f:b8:52:21: bd:e4:b8:98:9c:54:a9:7b:a4:ab:bc:ec:d9:ac:f7: 82:06:aa:14:9f:d3:a6:43:03:b7:d9:0d:80:34:16: 09:3b:82:b6:61:4d:cd:a5:65:9f:e0:71:eb:e5:b1: eb:61:27:a7:0f:73:32:85:d1:4a:07:2e:d8:1f:db: 7b:cf:cb:7e:df:a2:25:20:58:08:90:59:ca:2e:f4: 30:b5:e4:85:a2:44:c2:c1:d4:c9:eb:b0:e3:91:45: dc:2a:f9:da:bc:9c:67:52:d4:24:ec:d0:01:af:b0: 8f:88:ce:7c:ca:d5:94:eb:da:43:e9:7c:e7:24:49: 0b:55:07:ec:43:ba:96:bc:e3:9e:62:2a:9b:51:a3: 47:36:85:b0:47:b1:4e:51:fb:15:0a:53:02:46:00: 54:24:78:1e:69:eb:82:84:b7:16:56:82:66:64:96: 9e:ef:ab:c9:51:19:dd:c6:a7:12:a1:5c:cb:3b:4c: d3:a9:eb:2d:c4:cc:43:df:ec:47:f9:63:9b:89:02: bf:fd:65:29:9d:93:04:d9:44:5a:2b:3f:5b:06:27: 04:1a:bb:61:f3:01:3f:04:12:d9:31:f6:1d:f5:36: cd:94:ce:71:48:2d:e7:15:58:e8:1d:72:8b:64:f7: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:09:AF:43:14:DF:9D:2F:B6:C3:EC:B9:76:04:78:9A:CF:29:DF:D4 X509v3 Authority Key Identifier: keyid:6D:8A:B6:FD:E5:21:DC:10:6F:94:82:92:B5:02:FD:5A:07:34:83:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/bYq2_eUh3BBvlIKStQL9Wgc0g3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bYq2_eUh3BBvlIKStQL9Wgc0g3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917877E/389A62D25D5D11F0B49A7847C4F9AE02/9EA96DF25D5D11F08A574048C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.164.0/23 Signature Algorithm: sha256WithRSAEncryption 25:79:b9:f4:01:de:9c:e8:0b:ea:e5:3d:69:29:b6:54:34:82: 76:30:2b:b3:5e:39:bb:ee:06:8c:88:17:1a:d3:37:e9:d1:70: 52:e6:a6:98:0f:32:79:48:4f:87:33:c2:e9:4b:ef:8c:d0:30: cf:37:35:1d:51:94:3a:e8:26:86:ca:bc:bc:72:75:c4:f9:85: dc:2c:a6:b2:13:16:04:87:60:9e:96:7b:8b:06:71:a7:e5:15: 4b:49:d8:cf:b8:30:66:61:0e:c4:ea:47:6d:30:72:94:1a:21: 0e:46:91:1a:b2:58:f7:b6:5e:d8:7e:eb:25:fe:25:b8:c7:c4: 54:02:fa:05:69:fe:ad:b3:cb:7a:d7:f1:ca:0a:c9:cd:77:e9: 55:4f:8d:21:22:e9:5f:d3:b1:3e:82:d2:38:da:ef:94:9b:d6: d5:56:30:0f:da:e3:53:af:37:2c:c5:79:7b:5f:56:cb:09:38: 9f:25:be:a5:9e:1a:37:30:8f:7e:84:71:d3:77:a4:b1:10:b2: 82:f6:04:58:0c:66:b0:66:5a:ac:74:c5:da:df:d3:b7:31:34: 6c:af:8b:c3:dd:90:75:c8:9e:b9:a3:c4:f6:4d:31:09:42:3b: b1:f5:f4:58:14:a9:85:55:18:9e:36:52:1f:4e:a4:f3:81:f6: 94:96:41:7d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODc3RTExMC8GA1UEBRMoNkQ4QUI2RkRFNTIxREMxMDZGOTQ4MjkyQjUwMkZENUEw NzM0ODM3QzAeFw0yNTA3MTAwNzE1MTNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNmNGNiLWE3Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN2iMObgS7MmgkH7hSIb3kuJicVKl7pKu87Nms94IGqhSf06ZDA7fZDYA0Fgk7 grZhTc2lZZ/gcevlsethJ6cPczKF0UoHLtgf23vPy37foiUgWAiQWcou9DC15IWi RMLB1MnrsOORRdwq+dq8nGdS1CTs0AGvsI+IznzK1ZTr2kPpfOckSQtVB+xDupa8 455iKptRo0c2hbBHsU5R+xUKUwJGAFQkeB5p64KEtxZWgmZklp7vq8lRGd3GpxKh XMs7TNOp6y3EzEPf7Ef5Y5uJAr/9ZSmdkwTZRForP1sGJwQau2HzAT8EEtkx9h31 Ns2UznFILecVWOgdcotk9xDVAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUdAmvQxTf nS+2w+y5dgR4ms8p39QwHwYDVR0jBBgwFoAUbYq2/eUh3BBvlIKStQL9Wgc0g3ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NzdFLzM4OUE2MkQyNUQ1 RDExRjBCNDlBNzg0N0M0RjlBRTAyL2JZcTJfZVVoM0JCdmxJS1N0UUw5V2djMGcz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYllxMl9lVWgzQkJ2bElLU3RRTDlXZ2MwZzN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODc3RS8zODlBNjJEMjVENUQxMUYwQjQ5QTc4NDdDNEY5QUUwMi85RUE5NkRGMjVE NUQxMUYwOEE1NzQwNDhDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGlZaQwDQYJKoZIhvcNAQELBQADggEBACV5ufQB3pzoC+rlPWkptlQ0 gnYwK7NeObvuBoyIFxrTN+nRcFLmppgPMnlIT4czwulL74zQMM83NR1RlDroJobK vLxydcT5hdwsprITFgSHYJ6We4sGcaflFUtJ2M+4MGZhDsTqR20wcpQaIQ5GkRqy WPe2Xth+6yX+JbjHxFQC+gVp/q2zy3rX8coKyc136VVPjSEi6V/TsT6C0jja75Sb 1tVWMA/a41OvNyzFeXtfVssJOJ8lvqWeGjcwj36EcdN3pLEQsoL2BFgMZrBmWqx0 xdrf07cxNGyvi8PdkHXInrmjxPZNMQlCO7H19FgUqYVVGJ42Uh9OpPOB9pSWQX0= -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:28 2026 by rpki-client