$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa File: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (raw, json) Hash identifier: Vtl8KL5Go1ow8PZTf8Hy33WmoVT99sVBAqdfhxvXdk0= Subject key identifier: 25:E0:DA:0D:63:D5:6E:4F:36:22:72:46:B7:38:30:D7:0C:98:76:08 Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 015E Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:32:11 +0000 ROA not before: Tue 09 Sep 2025 05:11:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153177 IP address blocks: 203.4.136.0/24 maxlen: 24 203.4.137.0/24 maxlen: 24 203.4.138.0/24 maxlen: 24 203.4.139.0/24 maxlen: 24 203.4.140.0/24 maxlen: 24 203.4.141.0/24 maxlen: 24 203.4.142.0/24 maxlen: 24 203.4.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Sep 9 05:11:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5915b-3b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:76:1c:47:b1:02:a4:70:3e:62:c3:39:db:87: 61:93:f1:ae:16:16:96:61:02:52:fe:a6:7d:93:e5: b9:b1:7f:67:38:9b:2c:a7:f8:8e:f2:90:2c:f1:ed: 52:f1:79:2a:8b:34:46:fc:04:94:5e:fd:64:34:e2: ef:00:a3:4b:41:9f:ec:e1:92:38:67:76:6f:85:68: 3c:01:82:17:c1:99:fa:4a:ff:e4:fe:de:b9:3c:c3: 96:a0:1d:1a:3e:9a:e2:f2:23:09:32:ce:48:30:85: 50:0b:10:bf:ed:58:44:81:ad:24:e5:53:86:8c:f2: 56:c2:ea:ea:7d:cc:2b:59:5b:c1:49:e8:39:96:c4: d5:14:1b:de:1b:3a:3a:25:00:45:34:f6:ef:e2:34: 80:20:d1:07:2c:52:61:51:27:19:39:a8:3b:64:70: 95:ee:5a:37:15:0e:7c:fa:0a:bb:a7:ca:60:28:9e: 93:7b:34:15:b0:b9:a9:bd:51:9d:22:5a:d0:4c:8f: 18:81:e3:8d:e2:cf:ba:2e:3a:ef:d2:4a:22:1b:09: 32:80:a2:34:59:3f:d3:96:63:84:28:91:e3:b0:37: 94:71:ae:c4:a2:fb:2b:0d:6c:78:b8:c0:32:c3:3c: f9:02:09:6d:bc:cc:05:05:b6:70:a6:a0:4a:54:e3: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E0:DA:0D:63:D5:6E:4F:36:22:72:46:B7:38:30:D7:0C:98:76:08 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.4.136.0/21 Signature Algorithm: sha256WithRSAEncryption 55:5b:74:9d:ea:13:49:a7:a4:ae:6e:de:ad:32:87:93:c8:2a: ad:0b:15:26:54:d3:f1:18:c2:45:de:74:b7:d6:90:fb:29:31: 52:cd:3e:35:2f:50:5b:31:d5:c9:7e:e3:9e:56:a1:70:bc:ee: 9c:96:ec:57:1e:84:fa:bb:99:05:11:2f:54:52:5d:be:59:cd: dd:e8:a0:17:9a:24:9e:35:37:bf:05:e6:16:d5:89:9e:ed:48: aa:91:4d:53:bf:b5:52:96:f6:6a:1f:6d:03:d0:2b:cc:eb:af: 92:2f:cf:ab:e8:3b:ef:54:fe:7a:72:52:7f:8f:21:d3:77:06: 72:6f:86:14:6a:e8:eb:d5:0c:1a:1f:ea:f8:15:52:01:47:ec: ce:e2:b9:ff:20:d6:e1:9d:fc:99:a1:ce:51:ca:fc:d1:2b:b0: 00:82:26:c4:70:8c:85:7e:e9:08:15:50:1b:ff:ee:15:73:0c: 64:af:a4:c2:3d:df:f4:21:32:ff:b4:15:e2:fb:f7:b1:cb:e6: 78:27:7c:04:5a:0b:c8:93:fb:77:31:10:fc:0a:6b:65:5d:9d: 58:50:1c:be:09:02:85:78:15:83:2c:a4:1d:62:2d:a6:11:40: b9:51:ab:46:a0:af:8e:b5:05:b4:dc:cb:45:83:56:70:9c:62: 45:21:7d:77 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwOTA5MDUxMTQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTE1Yi0zYjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHYcR7ECpHA+YsM524dhk/GuFhaWYQJS/qZ9k+W5sX9nOJssp/iO8pAs8e1S 8XkqizRG/ASUXv1kNOLvAKNLQZ/s4ZI4Z3ZvhWg8AYIXwZn6Sv/k/t65PMOWoB0a Ppri8iMJMs5IMIVQCxC/7VhEga0k5VOGjPJWwurqfcwrWVvBSeg5lsTVFBveGzo6 JQBFNPbv4jSAINEHLFJhUScZOag7ZHCV7lo3FQ58+gq7p8pgKJ6TezQVsLmpvVGd IlrQTI8YgeON4s+6Ljrv0koiGwkygKI0WT/TlmOEKJHjsDeUca7EovsrDWx4uMAy wzz5AgltvMwFBbZwpqBKVONSJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCXg2g1j 1W5PNiJyRrc4MNcMmHYIMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMTkvMTBDN0YwQUExNDBGMTFFRjhBNEE3MDE2QzRGOUFFMDIvODI3NDhEOEE4 RDNBMTFGMDgzM0FCMDFBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDywSIMA0GCSqGSIb3DQEBCwUAA4IBAQBVW3Sd6hNJp6Subt6tMoeT yCqtCxUmVNPxGMJF3nS31pD7KTFSzT41L1BbMdXJfuOeVqFwvO6cluxXHoT6u5kF ES9UUl2+Wc3d6KAXmiSeNTe/BeYW1Yme7UiqkU1Tv7VSlvZqH20D0CvM66+SL8+r 6DvvVP56clJ/jyHTdwZyb4YUaujr1QwaH+r4FVIBR+zO4rn/INbhnfyZoc5RyvzR K7AAgibEcIyFfukIFVAb/+4Vcwxkr6TCPd/0ITL/tBXi+/exy+Z4J3wEWgvIk/t3 MRD8CmtlXZ1YUBy+CQKFeBWDLKQdYi2mEUC5UatGoK+OtQW03MtFg1ZwnGJFIX13 -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:44 2026 by rpki-client