$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa File: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (raw, json) Hash identifier: r4Ca6TL7G33YNpkOkNbOrzu02s5Gj49drdeKjyxRr/8= Subject key identifier: 79:BF:D7:99:FB:4E:3D:D4:77:38:1B:59:F9:B5:5C:CA:D0:2F:29:73 Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0197 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa Signing time: Wed 17 Jun 2026 05:34:30 +0000 ROA not before: Wed 17 Jun 2026 05:34:30 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 153177 IP address blocks: 203.4.136.0/24 maxlen: 24 203.4.137.0/24 maxlen: 24 203.4.138.0/24 maxlen: 24 203.4.139.0/24 maxlen: 24 203.4.140.0/24 maxlen: 24 203.4.141.0/24 maxlen: 24 203.4.142.0/24 maxlen: 24 203.4.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Jun 17 05:34:30 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a3231e6-55e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:ff:a7:b2:68:fd:d0:c3:a0:08:6e:05:6d: c4:a7:ab:45:22:b9:e2:e3:d5:20:7c:aa:6f:c4:40: 1b:6c:94:d3:3e:fd:64:ba:42:e4:50:27:a7:e5:bd: 0c:6c:83:85:a7:26:14:60:6b:ec:65:bf:31:d3:f6: e8:27:06:d7:93:5b:7c:d8:0a:ab:07:85:9c:5a:85: 57:55:69:36:45:49:e3:10:42:f6:dc:8e:e0:f5:f2: 00:c0:8f:c3:13:35:cd:ef:ec:fd:74:96:a1:09:1b: 68:ef:e9:a3:68:69:84:f4:51:5f:38:f6:92:d1:e3: 03:fc:b9:9e:fc:f0:16:51:35:0c:9f:43:1f:46:90: 7f:aa:40:dd:dd:d4:fe:fb:98:fb:fa:5e:e1:e5:4e: e0:0d:4f:3c:00:9c:e4:cb:fd:52:61:92:61:e5:7d: ba:92:fd:dd:e2:62:29:4c:a6:94:63:b6:a6:5b:72: e7:d4:4a:70:16:2a:39:d6:15:bf:7c:d9:d2:dd:da: e1:40:ac:0c:7d:a2:9d:d8:38:ae:bf:85:4b:86:d7: 7b:41:56:13:c4:1e:fb:5e:1a:e7:f8:1b:aa:b8:de: fa:07:48:65:ed:b9:5b:b0:4f:c5:ae:f0:f5:c4:d4: 51:65:b0:ca:a5:71:36:28:fb:e4:42:cb:05:32:2e: f1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BF:D7:99:FB:4E:3D:D4:77:38:1B:59:F9:B5:5C:CA:D0:2F:29:73 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.4.136.0/21 Signature Algorithm: sha256WithRSAEncryption 72:34:a1:e7:b0:fc:fd:d4:fc:45:39:0b:e6:2a:dd:35:97:c8: e2:1b:4d:ba:3c:c7:0b:7a:b8:d2:96:2c:48:4c:b0:97:4c:c8: da:0c:2a:03:a5:93:d1:38:2c:09:69:08:3b:a6:a6:1e:a3:29: 34:e1:e3:2a:e9:3d:48:a9:54:74:0f:a1:30:c4:95:78:5e:2d: 0f:e5:e7:0a:2f:be:af:6a:6a:14:c2:4c:26:bd:2b:0b:de:a6: 07:99:62:6f:e6:13:c9:d9:d3:b9:de:aa:99:39:75:dd:99:4f: 76:80:d2:3d:3d:c8:72:f2:55:51:ac:76:08:57:e2:57:8b:aa: 46:f1:ea:f9:ab:65:84:0c:bb:01:21:18:db:72:59:e2:2b:f6: 3b:97:61:d7:87:1a:b3:29:d3:81:7e:b0:c5:cd:3a:e7:19:11: 5d:25:d3:d5:84:3f:df:61:ce:a7:00:6a:b6:25:09:5f:56:34: 5d:49:53:dc:4e:51:63:e4:55:2b:8c:bd:4a:9e:5a:53:70:fe: 73:49:eb:a2:e3:33:08:84:7c:b1:94:f5:c5:d8:9c:e9:cc:40: 73:cf:f7:57:fc:55:07:45:e1:ae:97:28:66:ec:0d:9b:11:97: 04:82:c0:49:eb:78:71:99:b3:e3:06:7d:49:6b:2a:10:5b:df: 73:92:34:17 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjYwNjE3MDUzNDMwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTMyMzFlNi01NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRH/p7Jo/dDDoAhuBW3Ep6tFIrni49UgfKpvxEAbbJTTPv1kukLkUCen5b0M bIOFpyYUYGvsZb8x0/boJwbXk1t82AqrB4WcWoVXVWk2RUnjEEL23I7g9fIAwI/D EzXN7+z9dJahCRto7+mjaGmE9FFfOPaS0eMD/Lme/PAWUTUMn0MfRpB/qkDd3dT+ +5j7+l7h5U7gDU88AJzky/1SYZJh5X26kv3d4mIpTKaUY7amW3Ln1EpwFio51hW/ fNnS3drhQKwMfaKd2Diuv4VLhtd7QVYTxB77Xhrn+BuquN76B0hl7blbsE/FrvD1 xNRRZbDKpXE2KPvkQssFMi7x2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHm/15n7 Tj3UdzgbWfm1XMrQLylzMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMTkvMTBDN0YwQUExNDBGMTFFRjhBNEE3MDE2QzRGOUFFMDIvODI3NDhEOEE4 RDNBMTFGMDgzM0FCMDFBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDywSIMA0GCSqGSIb3DQEBCwUAA4IBAQByNKHnsPz91PxFOQvmKt01 l8jiG026PMcLerjSlixITLCXTMjaDCoDpZPROCwJaQg7pqYeoyk04eMq6T1IqVR0 D6EwxJV4Xi0P5ecKL76vamoUwkwmvSsL3qYHmWJv5hPJ2dO53qqZOXXdmU92gNI9 Pchy8lVRrHYIV+JXi6pG8er5q2WEDLsBIRjbclniK/Y7l2HXhxqzKdOBfrDFzTrn GRFdJdPVhD/fYc6nAGq2JQlfVjRdSVPcTlFj5FUrjL1KnlpTcP5zSeui4zMIhHyx lPXF2JzpzEBzz/dX/FUHReGulyhm7A2bEZcEgsBJ63hxmbPjBn1JayoQW99zkjQX -----END CERTIFICATE-----Generated at Wed Jun 17 11:54:25 2026 by rpki-client