$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa File: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (raw, json) Hash identifier: jt/Em4DLUT3Wo1hryGzSXiSThIZtCbpBQGAGGsyRT4Y= Subject key identifier: 08:CA:78:A7:0B:96:1A:48:B0:B3:83:39:89:AA:32:61:68:63:8C:49 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 01E2 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:15:42 +0000 ROA not before: Wed 12 Nov 2025 10:56:40 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134090 IP address blocks: 66.203.240.0/21 maxlen: 24 131.149.248.0/22 maxlen: 24 148.222.0.0/21 maxlen: 21 148.222.0.0/22 maxlen: 24 148.222.4.0/22 maxlen: 24 216.235.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Nov 12 10:56:40 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4743e-4aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5b:a8:b7:5d:0d:20:1a:ad:1b:7f:87:de:92: e2:8c:c8:6d:e4:64:e5:18:cf:12:04:b8:ad:03:26: e9:9c:46:1d:03:e8:16:e4:ee:39:b4:bb:7d:9e:cb: 05:77:70:95:c1:50:b6:5f:9e:ea:33:32:be:75:77: 68:a7:56:fc:26:0d:94:df:85:be:d4:e3:f2:49:4f: 59:48:31:26:4f:88:20:79:51:5a:2b:2b:de:8d:ce: de:1a:89:16:d4:a5:7d:96:b6:1f:b4:69:10:58:3c: ae:01:bb:c8:ef:55:d6:b0:a4:e1:79:62:56:67:18: 55:c6:bf:6e:54:22:a3:2a:bf:e6:58:f0:54:2e:f7: f9:aa:76:75:28:29:7b:93:4a:7a:1d:89:0d:57:81: dd:e7:1a:3a:18:dd:ef:05:28:40:5e:f4:4c:0c:44: bb:e6:ae:0c:9f:01:4c:8f:cc:a4:22:48:4b:e8:29: 97:7b:26:85:24:de:40:76:7a:34:27:2a:a1:50:57: a9:7e:63:af:aa:21:ec:1f:e6:f3:ba:a0:f2:cd:b3: 8d:40:a5:8b:f6:ed:e6:7c:a4:6d:b3:58:d0:b8:fc: 31:41:70:07:1a:2a:ef:98:d8:36:0e:52:b1:ad:0f: f0:a2:6e:10:5f:12:4c:c7:8b:0d:64:b6:d6:67:b9: db:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CA:78:A7:0B:96:1A:48:B0:B3:83:39:89:AA:32:61:68:63:8C:49 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 66.203.240.0/21 131.149.248.0/22 148.222.0.0/21 216.235.244.0/22 Signature Algorithm: sha256WithRSAEncryption 22:90:4d:c4:52:c1:71:05:cd:0e:c9:46:8b:f4:f6:21:b1:71: b3:0f:32:62:8b:9b:62:b2:a0:f4:e0:9a:61:6b:25:43:da:bb: b8:78:16:30:de:67:85:b8:70:1f:31:fb:68:6b:80:b2:19:cc: c2:2d:ad:16:4f:5b:da:66:79:9f:4a:54:a4:3a:85:32:01:a9: af:89:62:d4:95:98:b7:1f:b3:54:95:1d:53:00:24:87:56:d5: 15:b7:bc:9d:20:5b:ef:37:a3:79:9a:7f:67:8c:35:68:16:49: bd:46:17:2b:37:23:a3:25:6e:80:8a:f6:94:0d:f8:a6:36:e8: 15:10:41:84:8c:5c:86:b2:af:f7:8e:bf:19:2b:50:8e:8a:64: e6:7f:0c:61:5d:98:e9:91:de:6e:7a:39:71:d6:b9:8f:d8:fd: b2:19:04:00:8d:37:b0:32:a9:8a:ff:88:81:12:94:a8:1b:b2: 9f:27:d6:3c:c8:18:7d:eb:f9:91:f0:f0:35:7a:90:e8:02:c1: 99:c1:15:a5:56:50:84:cf:c4:0d:a8:56:48:3f:46:24:12:cc: f3:f0:91:f2:cf:f1:54:9f:e8:39:f2:ec:8d:ff:d9:1c:c5:38: db:06:2c:da:6a:8d:f8:d3:cc:8b:80:38:18:bf:5c:9c:10:28: 0a:e8:7c:89 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMTEyMTA1NjQwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzQzZS00YWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Vuot10NIBqtG3+H3pLijMht5GTlGM8SBLitAybpnEYdA+gW5O45tLt9nssF d3CVwVC2X57qMzK+dXdop1b8Jg2U34W+1OPySU9ZSDEmT4ggeVFaKyvejc7eGokW 1KV9lrYftGkQWDyuAbvI71XWsKTheWJWZxhVxr9uVCKjKr/mWPBULvf5qnZ1KCl7 k0p6HYkNV4Hd5xo6GN3vBShAXvRMDES75q4MnwFMj8ykIkhL6CmXeyaFJN5Adno0 JyqhUFepfmOvqiHsH+bzuqDyzbONQKWL9u3mfKRts1jQuPwxQXAHGirvmNg2DlKx rQ/wom4QXxJMx4sNZLbWZ7nb+QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFAjKeKcL lhpIsLODOYmqMmFoY4xJMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRDMEQvQTQ3MDc4NUU1NzU0MTFFRTk0MENEOTU0QzRGOUFFMDIvOUQ1RTZBRjg2 MDBGMTFFRTk4QUZGQjExQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQDQsvwAwQCg5X4AwQDlN4AAwQC2Ov0MA0GCSqGSIb3DQEBCwUAA4IB AQAikE3EUsFxBc0OyUaL9PYhsXGzDzJii5tisqD04JphayVD2ru4eBYw3meFuHAf Mftoa4CyGczCLa0WT1vaZnmfSlSkOoUyAamviWLUlZi3H7NUlR1TACSHVtUVt7yd IFvvN6N5mn9njDVoFkm9RhcrNyOjJW6AivaUDfimNugVEEGEjFyGsq/3jr8ZK1CO imTmfwxhXZjpkd5uejlx1rmP2P2yGQQAjTewMqmK/4iBEpSoG7KfJ9Y8yBh96/mR 8PA1epDoAsGZwRWlVlCEz8QNqFZIP0YkEszz8JHyz/FUn+g58uyN/9kcxTjbBiza ao3408yLgDgYv1ycECgK6HyJ -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:01 2026 by rpki-client