$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa File: 70017B5CF74111EF98C99938C4F9AE02.roa (raw, json) Hash identifier: jxl3GtZdPk/wIlS8xEDXVQsh03gFjRHfreaaVHkcJzI= Subject key identifier: 52:10:34:DB:09:1F:BE:51:C9:C9:2F:9D:F5:7C:10:D3:8E:45:8C:18 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 088D Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa Signing time: Mon 30 Mar 2026 21:27:00 +0000 ROA not before: Mon 30 Mar 2026 21:27:00 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 13444 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 116.204.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5, serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 30 21:27:00 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69caeaa4-c2b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:95:bb:4f:03:ce:9c:91:d2:b3:69:e0:b9:a0: 1e:b5:47:f8:a2:fb:3d:96:c5:15:ab:41:56:e3:c6: f4:f0:b5:a1:4e:45:f5:7d:96:80:fb:14:8d:59:19: a7:5d:da:42:43:0c:e0:6e:cc:d4:ca:a5:86:06:80: c4:be:14:b4:99:5d:cc:a4:53:2b:6a:08:5b:58:cb: ac:f9:cf:bf:d8:35:6e:c5:7d:eb:64:20:df:55:b1: b4:51:48:71:b2:c8:f4:b3:1f:e4:e9:b4:c5:a4:fb: 78:9f:f1:d5:52:5b:65:c7:a3:65:c1:33:7e:14:4c: 62:5e:bb:c0:df:7b:7e:48:28:ab:6d:b8:be:06:ad: 7c:a1:c1:36:14:23:13:d9:27:97:28:96:fb:b8:c8: 05:dc:99:55:24:3f:fd:74:7a:48:2e:0a:07:87:19: 65:57:35:f9:e8:89:da:65:93:e8:e6:f2:2d:c8:fb: e5:4a:61:9e:8c:39:ed:73:42:c7:8a:ab:fc:79:6d: 06:c0:3e:ba:b8:9d:95:b8:6a:2a:7c:9a:81:de:1e: 93:d9:df:10:a2:4e:0e:03:13:3a:3b:0c:ff:c0:c7: 67:01:21:0b:08:a3:de:1c:e3:b4:78:6f:9a:a7:67: 98:41:d6:cf:4b:97:6c:54:3d:a6:6c:88:06:72:7b: 88:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:10:34:DB:09:1F:BE:51:C9:C9:2F:9D:F5:7C:10:D3:8E:45:8C:18 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/70017B5CF74111EF98C99938C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/22 Signature Algorithm: sha256WithRSAEncryption b9:ce:3c:e3:7b:20:09:7f:88:53:c6:2b:77:ff:3c:1e:1c:ce: 22:6b:a9:ae:1c:12:f1:4e:a0:16:98:bc:04:88:f6:25:57:8b: e5:91:e7:a1:e0:ee:29:68:6f:71:f7:44:20:be:73:4f:e4:04: 0f:ff:01:da:0a:7d:98:88:1b:e4:03:6d:6e:f9:81:1d:81:c1: 71:26:b0:6c:a1:6f:7b:0d:74:df:96:18:c3:8e:30:f6:a8:d6: 4a:a3:17:e8:be:62:d3:3a:19:ce:fe:1f:2d:11:49:79:23:9e: a7:38:dd:bc:b5:f7:9d:d1:b9:2d:34:7e:42:cd:76:52:b9:91: 0a:80:bc:95:9a:b1:83:e5:7d:6d:38:a5:60:b1:8e:88:e3:fc: 50:85:02:98:6f:06:20:1c:64:8c:ff:b0:df:a5:6e:0d:0f:bc: 66:c9:d9:c9:e1:9f:7c:9a:ed:ee:08:ff:ed:81:cc:fe:02:40: b9:ad:ce:01:1e:42:62:f0:32:ef:a8:07:38:cf:ea:47:49:5f: 21:26:f7:b5:20:34:74:fb:e5:0a:84:45:81:06:b6:a2:49:76: 9f:b3:b7:29:8b:be:dd:73:30:44:ee:61:86:13:d9:36:93:08: 25:a6:11:9b:30:a8:ba:d0:2e:3d:1e:30:44:53:74:5d:2f:e9: dc:22:de:46 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjYwMzMwMjEyNzAwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhZWFhNC1jMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpW7TwPOnJHSs2nguaAetUf4ovs9lsUVq0FW48b08LWhTkX1fZaA+xSNWRmn XdpCQwzgbszUyqWGBoDEvhS0mV3MpFMraghbWMus+c+/2DVuxX3rZCDfVbG0UUhx ssj0sx/k6bTFpPt4n/HVUltlx6NlwTN+FExiXrvA33t+SCirbbi+Bq18ocE2FCMT 2SeXKJb7uMgF3JlVJD/9dHpILgoHhxllVzX56InaZZPo5vItyPvlSmGejDntc0LH iqv8eW0GwD66uJ2VuGoqfJqB3h6T2d8Qok4OAxM6Owz/wMdnASELCKPeHOO0eG+a p2eYQdbPS5dsVD2mbIgGcnuI7QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFIQNNsJ H75RyckvnfV8ENOORYwYMB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvNzAwMTdCNUNG NzQxMTFFRjk4Qzk5OTM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMzQMA0GCSqGSIb3DQEBCwUAA4IBAQC5zjzjeyAJf4hTxit3/zwe HM4ia6muHBLxTqAWmLwEiPYlV4vlkeeh4O4paG9x90QgvnNP5AQP/wHaCn2YiBvk A21u+YEdgcFxJrBsoW97DXTflhjDjjD2qNZKoxfovmLTOhnO/h8tEUl5I56nON28 tfed0bktNH5CzXZSuZEKgLyVmrGD5X1tOKVgsY6I4/xQhQKYbwYgHGSM/7DfpW4N D7xmydnJ4Z98mu3uCP/tgcz+AkC5rc4BHkJi8DLvqAc4z+pHSV8hJve1IDR0++UK hEWBBraiSXafs7cpi77dczBE7mGGE9k2kwglphGbMKi60C49HjBEU3RdL+ncIt5G -----END CERTIFICATE-----Generated at Fri Apr 17 15:52:56 2026 by rpki-client