$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa File: F9C379F2674F11F09FFF0F5BC4F9AE02.roa (raw, json) Hash identifier: gIazy+O4e4GLudLTR9g6zfFePFbNi2AoBjnnobI3YqQ= Subject key identifier: BB:D4:89:F4:B4:AD:63:30:78:D9:DF:EF:36:E5:42:BD:7F:1A:F6:D1 Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 0874 Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:36:26 +0000 ROA not before: Thu 31 Jul 2025 22:02:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136481 IP address blocks: 163.53.236.0/22 maxlen: 22 163.53.236.0/24 maxlen: 24 163.53.237.0/24 maxlen: 24 163.53.238.0/24 maxlen: 24 163.53.239.0/24 maxlen: 24 2400:ab20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52, serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Jul 31 22:02:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40899-3f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d7:9e:60:2c:20:7a:fa:3a:71:81:dc:2b:d2: d8:6d:1b:06:6d:d7:30:ac:cc:44:ff:0c:22:ea:fc: 0b:dc:de:e5:e8:78:d6:52:6f:e1:87:a3:bb:03:25: ca:87:03:3c:90:b0:e4:e5:18:4d:a6:9d:98:d2:15: f6:8c:cf:61:fb:03:4c:d1:80:a1:69:e5:02:9f:68: 3f:60:c5:e4:f1:cb:c9:7a:88:65:2c:d9:4f:b4:54: d8:61:63:57:92:45:37:df:47:47:c2:bd:fe:3b:eb: 85:22:65:21:5d:23:13:f6:99:14:8e:84:37:a6:53: 3f:56:ae:97:80:3e:dc:38:16:2e:34:72:eb:27:32: 73:75:36:00:b5:74:65:b2:dc:f0:3a:df:d8:f7:1e: c1:54:35:d8:6d:37:0a:07:52:26:85:22:c5:40:c7: 52:29:a3:52:8a:b5:9b:43:87:78:bd:7b:5f:46:57: 1c:43:6a:2e:cb:22:f0:b5:14:4c:ac:68:25:4d:10: 77:a6:88:5e:6c:05:c0:fd:5d:7c:9b:73:d8:3a:2d: 12:0f:06:7e:72:51:2f:fe:59:78:2a:31:f2:fb:12: 07:06:c4:98:6c:be:3b:1b:ee:41:cc:d0:5f:55:c1: 8d:84:7a:81:66:26:68:a3:af:2b:37:1f:d3:87:cd: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D4:89:F4:B4:AD:63:30:78:D9:DF:EF:36:E5:42:BD:7F:1A:F6:D1 X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.53.236.0/22 IPv6: 2400:ab20::/32 Signature Algorithm: sha256WithRSAEncryption ae:0a:71:3a:a7:8a:73:53:27:84:b4:7d:70:b3:2c:c9:bb:bc: 03:ac:5a:04:29:72:c8:42:b0:b0:91:e4:77:f1:44:ce:95:5d: a4:d6:fe:d2:a6:9b:42:a7:49:5d:2c:2e:11:ca:68:83:99:2a: d5:5d:b5:62:64:40:d2:bf:23:d1:89:f4:54:e8:2b:b0:ee:1d: 40:cf:fb:a6:6a:d1:b4:17:1f:3d:ad:fa:36:bc:0d:1c:9c:b5: f0:da:26:e4:ff:e5:16:1a:7e:dc:63:26:2d:ed:6d:5c:70:de: 9e:74:d9:0a:ca:8b:d5:d5:8b:52:93:c0:3a:99:c5:98:42:0b: b1:5f:cd:25:83:bf:ff:7b:b2:fd:61:0a:27:62:a9:12:e6:40: fd:3d:c7:b0:27:83:86:9d:7a:a6:f4:90:69:ea:b9:86:1c:7c: 83:fb:70:15:58:85:2c:86:47:d2:08:be:90:c1:ab:34:c5:88: 7d:b4:39:cd:63:8f:a9:b9:b6:a1:f0:b1:35:3d:f3:f7:be:1b: a1:a3:28:b5:f0:a7:86:a9:b7:dc:d1:c2:bd:6a:df:e2:b0:d7: fa:fd:a3:66:0c:6f:c8:86:68:eb:47:ff:22:47:a0:65:ef:a8: 50:18:05:7b:0d:a7:e0:3b:22:eb:2b:34:33:53:27:36:9f:87: 60:98:a1:02 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjUwNzMxMjIwMjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDg5OS0zZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89eeYCwgevo6cYHcK9LYbRsGbdcwrMxE/wwi6vwL3N7l6HjWUm/hh6O7AyXK hwM8kLDk5RhNpp2Y0hX2jM9h+wNM0YChaeUCn2g/YMXk8cvJeohlLNlPtFTYYWNX kkU330dHwr3+O+uFImUhXSMT9pkUjoQ3plM/Vq6XgD7cOBYuNHLrJzJzdTYAtXRl stzwOt/Y9x7BVDXYbTcKB1ImhSLFQMdSKaNSirWbQ4d4vXtfRlccQ2ouyyLwtRRM rGglTRB3pohebAXA/V18m3PYOi0SDwZ+clEv/ll4KjHy+xIHBsSYbL47G+5BzNBf VcGNhHqBZiZoo68rNx/Th82FUwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLvUifS0 rWMweNnf7zblQr1/GvbRMB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCNTIvNDVGNTU2QkVGMjgwMTFFQTg3MUJBRDZBQzRGOUFFMDIvRjlDMzc5RjI2 NzRGMTFGMDlGRkYwRjVCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCozXsMA0EAgACMAcDBQAkAKsgMA0GCSqGSIb3DQEBCwUAA4IBAQCu CnE6p4pzUyeEtH1wsyzJu7wDrFoEKXLIQrCwkeR38UTOlV2k1v7SpptCp0ldLC4R ymiDmSrVXbViZEDSvyPRifRU6Cuw7h1Az/umatG0Fx89rfo2vA0cnLXw2ibk/+UW Gn7cYyYt7W1ccN6edNkKyovV1YtSk8A6mcWYQguxX80lg7//e7L9YQonYqkS5kD9 PcewJ4OGnXqm9JBp6rmGHHyD+3AVWIUshkfSCL6Qwas0xYh9tDnNY4+pubah8LE1 PfP3vhuhoyi18KeGqbfc0cK9at/isNf6/aNmDG/IhmjrR/8iR6Bl76hQGAV7Dafg OyLrKzQzUyc2n4dgmKEC -----END CERTIFICATE-----Generated at Mon Mar 2 12:36:42 2026 by rpki-client