$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa File: 54DD69FA839011EAB5B82263C4F9AE02.roa (raw, json) Hash identifier: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk= Subject key identifier: 86:9C:4F:29:CA:1C:A1:DA:36:BF:D9:A1:2A:3B:EF:34:AD:FF:B2:3D Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A5B Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:01:05 +0000 ROA not before: Tue 06 Jan 2026 19:16:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18106 IP address blocks: 96.9.160.0/20 maxlen: 20 132.147.64.0/18 maxlen: 18 132.147.112.0/24 maxlen: 24 132.147.113.0/24 maxlen: 24 132.147.114.0/24 maxlen: 24 132.147.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jan 6 19:16:40 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a462c1-e596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e2:37:43:1b:55:69:25:10:8f:f4:67:a6:a1: 48:e2:5b:34:a6:d5:23:21:ab:28:ba:b3:39:09:bb: d0:f3:3d:2b:e9:8f:f5:9c:6a:18:b4:b1:53:3b:e8: c2:7e:52:3e:33:9a:9c:21:b5:3b:34:45:bd:c1:a4: 65:ae:e2:c7:a8:fc:ff:87:31:d2:3a:e5:d9:b0:ae: 0e:10:50:d2:70:b6:f4:f8:b5:88:d4:f3:84:e6:6a: 5c:82:12:28:15:60:ef:b6:92:3d:ec:4a:7e:b6:4d: fa:b2:56:e9:86:ab:3e:01:cc:ba:2a:04:21:9d:89: 48:db:bc:c5:c3:08:b5:84:ff:88:39:13:77:a0:e5: 2c:7e:6d:2d:06:c8:d1:31:a8:46:8b:c1:75:25:15: bc:58:3c:16:84:82:f5:68:30:ab:ed:7f:52:3c:26: cc:99:f8:0f:6a:9f:44:f6:d6:37:a9:ef:b6:71:69: ff:46:d9:a2:64:e4:7f:a4:f5:82:89:35:b8:67:69: 9c:70:b1:67:ac:0f:2c:2c:4c:0e:8f:67:df:57:0e: 74:01:07:e3:78:9f:6e:7d:dd:41:36:bd:5d:4a:ef: a6:57:5f:18:60:e3:68:98:b7:48:46:b2:d3:8e:18: 70:f5:9b:c2:34:9b:f1:30:fc:b7:bd:d1:d8:65:e8: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9C:4F:29:CA:1C:A1:DA:36:BF:D9:A1:2A:3B:EF:34:AD:FF:B2:3D X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 96.9.160.0/20 132.147.64.0/18 Signature Algorithm: sha256WithRSAEncryption 72:34:a0:14:fa:83:7c:b1:0b:d2:d4:0c:b5:24:57:4d:80:ed: 6f:50:11:fb:b8:83:05:a0:38:9c:d7:50:af:43:8b:2b:6c:dd: 3c:b0:0a:c9:96:62:27:0c:21:16:b5:6d:2c:9d:b1:91:d4:87: 1f:f1:73:d8:f8:49:46:12:6f:18:5e:aa:a9:a8:60:68:97:c0: 20:f5:f1:9b:e5:80:6d:f0:8c:2a:4a:0b:ff:92:fc:38:07:15: d5:23:82:98:d5:32:62:0f:0b:10:65:f9:74:27:1d:35:a1:78: 5d:65:bf:77:3f:58:b3:72:0c:8f:93:b2:b2:1e:7c:7d:ee:87: 3e:7b:09:47:0f:d1:1c:ad:fe:c4:28:4d:c4:21:2b:dd:7b:a6: a1:f5:5e:70:35:ee:fe:c0:d0:5d:d7:f0:08:4a:8e:b4:c9:b7: 43:bc:1b:45:04:bc:aa:4e:10:c0:49:e4:01:f9:a8:f1:30:cd: 3c:a2:2e:8f:da:d9:5a:16:43:47:ce:38:a0:bb:4b:94:a3:53: 4d:c7:a3:3a:e4:84:15:06:2f:3b:12:2d:a6:14:df:71:2c:58: 3e:72:c3:eb:8f:c8:37:56:e7:b0:d9:9f:0d:e3:68:0b:10:2f: fb:54:2b:11:0f:64:cd:e1:55:e7:91:8a:e7:c8:ce:52:04:00: 7f:33:67:38 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwMTA2MTkxNjQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjJjMS1lNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOI3QxtVaSUQj/RnpqFI4ls0ptUjIasourM5CbvQ8z0r6Y/1nGoYtLFTO+jC flI+M5qcIbU7NEW9waRlruLHqPz/hzHSOuXZsK4OEFDScLb0+LWI1POE5mpcghIo FWDvtpI97Ep+tk36slbphqs+Acy6KgQhnYlI27zFwwi1hP+IORN3oOUsfm0tBsjR MahGi8F1JRW8WDwWhIL1aDCr7X9SPCbMmfgPap9E9tY3qe+2cWn/RtmiZOR/pPWC iTW4Z2mccLFnrA8sLEwOj2ffVw50AQfjeJ9ufd1BNr1dSu+mV18YYONomLdIRrLT jhhw9ZvCNJvxMPy3vdHYZeg4xwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIacTynK HKHaNr/ZoSo77zSt/7I9MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVCQTkvRDg5MTQ3OEM4MzhFMTFFQThDRUEwOTYwQzRGOUFFMDIvNTRERDY5RkE4 MzkwMTFFQUI1QjgyMjYzQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQEYAmgAwQGhJNAMA0GCSqGSIb3DQEBCwUAA4IBAQByNKAU+oN8sQvS 1Ay1JFdNgO1vUBH7uIMFoDic11CvQ4srbN08sArJlmInDCEWtW0snbGR1Icf8XPY +ElGEm8YXqqpqGBol8Ag9fGb5YBt8IwqSgv/kvw4BxXVI4KY1TJiDwsQZfl0Jx01 oXhdZb93P1izcgyPk7KyHnx97oc+ewlHD9Ecrf7EKE3EISvde6ah9V5wNe7+wNBd 1/AISo60ybdDvBtFBLyqThDASeQB+ajxMM08oi6P2tlaFkNHzjigu0uUo1NNx6M6 5IQVBi87Ei2mFN9xLFg+csPrj8g3Vuew2Z8N42gLEC/7VCsRD2TN4VXnkYrnyM5S BAB/M2c4 -----END CERTIFICATE-----Generated at Mon Mar 2 08:17:35 2026 by rpki-client