$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa File: AA14FB00C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: j6K9wAlZIY57HmzXFBxZNJ2lkkyDnd6QcdO1rOsgZWM= Subject key identifier: EB:9C:DF:5F:65:09:F6:3D:04:7A:AA:84:DB:78:74:0F:31:82:08:45 Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 04BA Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa Signing time: Mon 08 Jun 2026 11:38:22 +0000 ROA not before: Mon 08 Jun 2026 11:38:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 31.69.0.0/17 maxlen: 24 31.69.224.0/19 maxlen: 24 31.99.144.0/21 maxlen: 24 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 141.163.224.0/20 maxlen: 24 141.163.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Jun 8 11:38:22 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6a26a9ae-e968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3a:6d:ed:f6:bd:d2:03:48:36:6f:09:d5:20: 5f:e0:a3:50:fb:fc:6c:7b:5e:b8:63:e2:67:f3:5f: b0:f9:5b:4c:6d:60:69:3a:60:02:9c:50:8b:0d:5b: 92:b1:6b:a7:88:86:8e:ff:89:cd:75:37:c8:e0:6d: a1:38:9f:11:e1:33:a0:1c:0a:d9:bb:ad:57:ae:16: 5e:7d:fa:6c:a0:10:e9:8a:de:00:75:22:20:a7:37: 67:47:cd:3d:17:7e:a3:37:68:33:cb:38:e7:d4:b5: 90:73:f9:3f:e7:71:6c:46:61:e1:61:1c:31:ae:1f: bb:13:2d:68:91:16:3c:fc:c5:95:a8:45:2e:73:e7: 2b:ca:5a:40:b6:c7:d1:3d:f3:a4:2b:29:4e:48:a1: f8:ed:12:da:bf:16:1d:75:99:a2:9d:0d:de:86:22: 04:2d:74:96:69:bc:80:86:28:aa:92:d6:18:86:e8: c8:57:47:1c:f5:8a:9a:6c:cf:bb:56:b0:51:5e:cd: d2:cd:bb:7a:07:b7:79:c2:e1:fb:43:0d:b0:63:5b: b9:4a:b4:01:78:9d:6a:1b:c5:76:6e:c7:99:5f:c5: 02:b1:89:1a:99:3e:06:97:8e:69:69:92:38:1f:20: 7d:4a:71:31:76:fc:08:43:ba:31:8b:d0:c8:97:54: 3c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9C:DF:5F:65:09:F6:3D:04:7A:AA:84:DB:78:74:0F:31:82:08:45 X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 31.69.0.0/17 31.69.224.0/19 31.99.144.0/21 141.163.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0d:3c:fb:fb:f6:18:bf:36:2c:b9:23:f2:67:a5:8d:7b:e0:cc: 84:8a:30:a2:35:b1:04:94:7d:14:66:0e:bf:7d:9f:2b:b2:c5: 7e:64:92:07:5f:a0:cb:86:63:fa:9b:c7:e7:a4:66:7b:77:69: ec:cf:07:44:b0:20:cb:d7:40:01:22:0e:0c:2f:8c:b6:50:15: e5:23:cf:8a:56:82:e4:42:9b:e1:eb:c5:52:1c:2d:86:f2:80: b6:70:66:42:e5:1f:2b:5e:c5:51:9d:0c:0d:b8:dd:df:9e:7a: f8:0d:cd:0f:a7:1a:ce:ea:99:5a:56:73:85:19:6b:29:1e:43: 36:08:49:a0:3f:61:5a:96:e9:f8:8c:81:c5:2f:5c:a1:bc:40: e5:5f:e8:7f:96:31:53:35:ae:8a:15:2b:84:e2:f2:ea:5b:25: 43:ab:e2:f4:bd:0d:75:42:6b:46:ef:2c:86:62:80:a2:11:cc: e7:bc:eb:d5:2b:05:79:8b:1c:e6:d2:49:dc:e8:d9:7b:f2:23: bc:93:85:86:57:71:e2:0f:e1:61:b1:f7:09:c3:5d:09:c8:e2: e2:15:16:24:1d:f7:ff:10:28:6e:36:a6:03:f4:bf:9c:da:62: 2e:40:65:b2:2f:c3:dd:8c:98:21:c4:43:5d:9d:8e:3a:86:4b: 39:79:1b:bf -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjYwNjA4MTEzODIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI2YTlhZS1lOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Tpt7fa90gNINm8J1SBf4KNQ+/xse164Y+Jn81+w+VtMbWBpOmACnFCLDVuS sWuniIaO/4nNdTfI4G2hOJ8R4TOgHArZu61XrhZeffpsoBDpit4AdSIgpzdnR809 F36jN2gzyzjn1LWQc/k/53FsRmHhYRwxrh+7Ey1okRY8/MWVqEUuc+crylpAtsfR PfOkKylOSKH47RLavxYddZminQ3ehiIELXSWabyAhiiqktYYhujIV0cc9YqabM+7 VrBRXs3Szbt6B7d5wuH7Qw2wY1u5SrQBeJ1qG8V2bseZX8UCsYkamT4Gl45paZI4 HyB9SnExdvwIQ7oxi9DIl1Q8OwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFOuc319l CfY9BHqqhNt4dA8xgghFMB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQUExNEZCMDBD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQHH0UAAwQFH0XgAwQDH2OQAwQHjaOAMA0GCSqGSIb3DQEBCwUAA4IB AQANPPv79hi/Niy5I/JnpY174MyEijCiNbEElH0UZg6/fZ8rssV+ZJIHX6DLhmP6 m8fnpGZ7d2nszwdEsCDL10ABIg4ML4y2UBXlI8+KVoLkQpvh68VSHC2G8oC2cGZC 5R8rXsVRnQwNuN3fnnr4Dc0PpxrO6plaVnOFGWspHkM2CEmgP2Falun4jIHFL1yh vEDlX+h/ljFTNa6KFSuE4vLqWyVDq+L0vQ11QmtG7yyGYoCiEcznvOvVKwV5ixzm 0knc6Nl78iO8k4WGV3HiD+FhsfcJw10JyOLiFRYkHff/EChuNqYD9L+c2mIuQGWy L8PdjJghxENdnY46hks5eRu/ -----END CERTIFICATE-----Generated at Sat Jun 13 13:21:22 2026 by rpki-client