$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa File: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: 72/bCWar4kI1SS9FjdRKOsQjDQzMinFfK2s3pr0xemY= Subject key identifier: 91:41:EC:09:BD:EC:E9:FB:2A:DE:17:E8:D5:BC:DD:A4:09:EC:1B:A4 Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 021F Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:29:48 +0000 ROA not before: Fri 29 Aug 2025 03:51:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24437 IP address blocks: 130.95.0.0/16 maxlen: 16 130.95.38.0/24 maxlen: 24 130.95.241.0/24 maxlen: 24 130.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Aug 29 03:51:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3eaec-c54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b9:57:81:72:ea:e9:92:08:f9:7a:63:32:89: 6f:48:98:b2:d9:62:a5:ec:5e:b1:e8:68:67:c6:07: 49:7f:cb:4d:52:a2:ff:61:94:cf:b5:38:15:b2:af: 1a:6e:45:12:a2:d8:d0:7a:28:d4:08:dc:80:0e:aa: 72:35:93:a0:ae:c5:3f:3b:b7:86:04:e3:b0:52:6c: 44:03:9f:05:5b:66:b5:d9:4d:35:f0:33:ec:ab:93: 1e:cb:6b:7d:9a:62:6b:54:3d:36:37:4a:fa:fd:f8: e7:e3:40:fc:f2:66:a1:74:19:d6:05:f3:65:14:00: ea:ac:9b:f5:06:47:eb:8c:99:03:7d:c7:e1:a6:69: 7f:2c:85:52:ff:2d:83:b2:6d:39:8c:07:b5:e1:1d: 27:36:39:b5:99:31:0c:32:06:ce:db:59:a8:9e:61: 31:be:ff:72:18:06:f0:0f:79:f3:2d:41:4d:2f:63: 93:cb:3e:b8:06:64:a0:73:1f:f2:86:fe:dc:db:d5: 25:e8:35:37:8d:3e:e1:ae:7f:df:19:bd:2d:13:42: 5f:80:78:1a:c6:51:56:02:4e:1e:57:4e:64:61:fe: 83:98:a3:b7:a4:fd:66:8f:2b:1f:30:f9:75:ed:7a: ea:50:18:23:b8:41:84:58:cd:ff:a6:54:f6:0d:9e: b6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:41:EC:09:BD:EC:E9:FB:2A:DE:17:E8:D5:BC:DD:A4:09:EC:1B:A4 X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 130.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:c5:2c:87:29:84:20:bc:cf:ab:71:ea:f1:44:3b:2e:ab:79: cf:ba:78:03:9c:7f:be:08:01:c2:98:c7:19:a9:3b:be:e4:f3: 54:d9:e7:3a:5a:fe:22:0e:74:c9:18:b0:2e:a8:c9:a0:9c:5c: 49:22:0b:62:4b:72:6d:0e:ac:70:c8:9c:90:d7:df:c9:c6:3a: 54:94:89:fc:15:4e:a4:9e:5e:6f:02:b4:fa:a4:11:06:fa:d7: 2e:72:ed:dc:79:50:b8:2f:23:ec:05:34:81:fe:74:aa:1d:cb: 6b:38:0d:74:6c:a3:b9:a9:35:f1:b5:3b:28:69:1e:ec:fd:3d: 86:8e:66:3b:e7:b3:08:9a:ee:cc:e2:f0:cd:8b:bb:9e:d1:10: 60:ce:9e:8f:09:a9:85:3e:25:e5:35:7f:ca:cf:6c:36:ef:e0: fe:f6:ee:ef:b3:61:31:d8:b1:12:2f:62:2b:9a:eb:5d:51:59: 47:ff:72:10:40:7a:29:eb:59:ac:79:8f:6c:4a:d6:a8:ae:79: 80:06:a7:00:92:2d:82:60:16:c5:c7:cb:3e:64:a8:b1:51:54: 25:29:3c:0d:00:19:b5:f3:8e:d9:03:47:9d:ce:f1:3c:d8:be: c7:bd:81:3d:57:5d:ff:dc:e5:41:0b:8e:28:af:c0:b2:d6:bb: 72:a7:be:f7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjUwODI5MDM1MTUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWFlYy1jNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLlXgXLq6ZII+XpjMolvSJiy2WKl7F6x6GhnxgdJf8tNUqL/YZTPtTgVsq8a bkUSotjQeijUCNyADqpyNZOgrsU/O7eGBOOwUmxEA58FW2a12U018DPsq5Mey2t9 mmJrVD02N0r6/fjn40D88mahdBnWBfNlFADqrJv1BkfrjJkDfcfhpml/LIVS/y2D sm05jAe14R0nNjm1mTEMMgbO21monmExvv9yGAbwD3nzLUFNL2OTyz64BmSgcx/y hv7c29Ul6DU3jT7hrn/fGb0tE0JfgHgaxlFWAk4eV05kYf6DmKO3pP1mjysfMPl1 7XrqUBgjuEGEWM3/plT2DZ62VQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFJFB7Am9 7On7Kt4X6NW83aQJ7BukMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNCRjgvQTIyQkQxNThFMDE1MTFFREIxNjY2OTYxQzRGOUFFMDIvQjhGM0M1QjRF MDE4MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAgl8wDQYJKoZIhvcNAQELBQADggEBAFnFLIcphCC8z6tx6vFEOy6r ec+6eAOcf74IAcKYxxmpO77k81TZ5zpa/iIOdMkYsC6oyaCcXEkiC2JLcm0OrHDI nJDX38nGOlSUifwVTqSeXm8CtPqkEQb61y5y7dx5ULgvI+wFNIH+dKody2s4DXRs o7mpNfG1OyhpHuz9PYaOZjvnswia7szi8M2Lu57REGDOno8JqYU+JeU1f8rPbDbv 4P727u+zYTHYsRIvYiua611RWUf/chBAeinrWax5j2xK1qiueYAGpwCSLYJgFsXH yz5kqLFRVCUpPA0AGbXzjtkDR53O8TzYvse9gT1XXf/c5UELjiivwLLWu3Knvvc= -----END CERTIFICATE-----Generated at Mon Mar 2 19:08:40 2026 by rpki-client