$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/BE76C8186C6811F0B3FF7E69C4F9AE02.roa File: BE76C8186C6811F0B3FF7E69C4F9AE02.roa (raw, json) Hash identifier: tUTZjjkoFev8GauKEY0WhhyVriNA3TnviyNz039cIqM= Subject key identifier: CA:D4:94:51:07:8D:E3:A1:6A:41:94:B2:FD:1A:02:37:0F:FD:46:2A Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 07D2 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/BE76C8186C6811F0B3FF7E69C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:09:41 +0000 ROA not before: Sat 30 Aug 2025 23:15:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137076 IP address blocks: 14.96.24.0/21 maxlen: 24 14.96.32.0/21 maxlen: 24 14.96.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4, serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Aug 30 23:15:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a480e5-fe8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:68:6a:1a:5b:66:9a:10:c3:2e:14:eb:0a: cf:de:c1:3e:0e:0a:3a:17:bb:59:4c:71:98:d9:2f: 57:b5:de:5e:14:fc:16:98:ba:cd:4e:b9:bf:7f:37: ba:29:8d:e6:0c:f0:ab:23:9e:78:2b:15:63:6c:40: f8:8a:ef:42:9b:ec:db:a9:f7:f0:7f:8a:7c:99:86: 04:d0:64:89:d1:64:77:69:0f:f1:38:89:82:89:68: db:eb:b8:5a:97:71:a5:a4:a9:c6:5b:f7:b4:50:fb: fc:90:2d:c1:6c:2a:77:bb:0c:53:cb:bb:58:a9:c0: bf:35:12:f5:11:44:1e:8f:8d:14:40:18:cd:a6:bc: c8:c4:27:e4:3a:01:68:6d:a7:c9:c0:21:e8:75:7a: 24:26:75:1d:5c:84:6c:dd:7b:23:1d:39:3b:e9:57: ad:99:31:eb:f9:5b:9a:a3:ad:76:ec:7f:aa:59:30: 32:12:58:9e:dd:58:4a:be:b5:fc:1a:2c:9f:fe:69: 29:fd:0f:8a:4d:a2:8d:35:20:d1:16:60:c3:d4:11: c5:53:69:09:9a:cb:af:8a:db:d3:a5:ac:a8:fa:a9: 11:eb:33:94:57:fc:81:67:44:20:a8:ab:9a:5b:d5: 7f:22:c8:2b:17:92:23:94:78:36:5e:42:e4:25:c6: 98:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D4:94:51:07:8D:E3:A1:6A:41:94:B2:FD:1A:02:37:0F:FD:46:2A X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/BE76C8186C6811F0B3FF7E69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.96.24.0-14.96.47.255 Signature Algorithm: sha256WithRSAEncryption 16:36:9f:21:1c:a2:5b:33:71:0c:12:83:1d:d6:d9:14:01:7a: cc:73:60:f0:a0:59:c5:ec:ec:ef:fe:d4:a3:c7:ec:3f:61:d5: 9a:06:ec:c8:57:c6:2e:c9:2e:8f:9c:ed:aa:ad:b1:78:17:fb: c9:6e:1d:aa:3f:db:ef:e4:4f:a3:5c:bf:f6:73:d4:30:12:ca: 1e:b3:50:19:e4:a4:44:9c:79:73:02:dc:0c:16:c0:4f:6e:b4: 44:cb:ca:a7:65:88:93:33:ec:28:e9:ea:7d:fb:77:7a:20:55: 26:1f:e5:0a:ac:d1:85:c3:a4:df:5c:74:17:09:89:4e:c8:e5: 2c:7b:e7:e9:1d:81:e6:a0:94:71:7f:fd:b9:14:49:e6:f8:a3: 16:a4:43:f4:24:0b:0a:52:55:b5:07:f9:a9:0b:ff:67:e5:aa: 0f:37:88:17:fa:b4:b9:b0:64:5e:3f:f0:51:ef:32:99:92:72: 95:05:4c:99:12:36:29:08:0b:f6:12:47:b0:00:72:a7:33:58: 9c:68:2c:3a:48:57:1e:f2:10:36:a8:7f:d4:00:c7:05:0c:7f: ca:f3:46:e7:fc:59:18:a4:47:20:e4:a9:74:9e:a4:bd:2d:6b: c4:11:0e:52:a3:10:6f:a4:88:7f:97:36:95:72:d6:3d:da:f8: a8:74:fa:52 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjUwODMwMjMxNTI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBlNS1mZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wBoahpbZpoQwy4U6wrP3sE+Dgo6F7tZTHGY2S9Xtd5eFPwWmLrNTrm/fze6 KY3mDPCrI554KxVjbED4iu9Cm+zbqffwf4p8mYYE0GSJ0WR3aQ/xOImCiWjb67ha l3GlpKnGW/e0UPv8kC3BbCp3uwxTy7tYqcC/NRL1EUQej40UQBjNprzIxCfkOgFo bafJwCHodXokJnUdXIRs3XsjHTk76VetmTHr+Vuao6127H+qWTAyElie3VhKvrX8 Giyf/mkp/Q+KTaKNNSDRFmDD1BHFU2kJmsuvitvTpayo+qkR6zOUV/yBZ0QgqKua W9V/IsgrF5IjlHg2XkLkJcaYyQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFMrUlFEH jeOhakGUsv0aAjcP/UYqMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvQkU3NkM4MTg2 QzY4MTFGMEIzRkY3RTY5QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAMOYBgDBAQOYCAwDQYJKoZIhvcNAQELBQADggEBABY2nyEcolsz cQwSgx3W2RQBesxzYPCgWcXs7O/+1KPH7D9h1ZoG7MhXxi7JLo+c7aqtsXgX+8lu Hao/2+/kT6Ncv/Zz1DASyh6zUBnkpESceXMC3AwWwE9utETLyqdliJMz7Cjp6n37 d3ogVSYf5Qqs0YXDpN9cdBcJiU7I5Sx75+kdgeaglHF//bkUSeb4oxakQ/QkCwpS VbUH+akL/2flqg83iBf6tLmwZF4/8FHvMpmScpUFTJkSNikIC/YSR7AAcqczWJxo LDpIVx7yEDaof9QAxwUMf8rzRuf8WRikRyDkqXSepL0ta8QRDlKjEG+kiH+XNpVy 1j3a+Kh0+lI= -----END CERTIFICATE-----Generated at Mon Mar 2 23:10:10 2026 by rpki-client