$ rpki-client -vvf rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/709F917AF74111EF98C99938C4F9AE02.roa File: 709F917AF74111EF98C99938C4F9AE02.roa (raw, json) Hash identifier: SdaSZIICtoadZZUlNbQF4k9+B1LcCensNc35V5tHWSo= Subject key identifier: 06:C6:96:C0:F8:CD:3E:7C:04:11:E3:CF:FC:8F:F9:D3:CA:0B:01:F5 Certificate issuer: /CN=A9195DE5/serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Certificate serial: 0879 Authority key identifier: B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/709F917AF74111EF98C99938C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:06:59 +0000 ROA not before: Mon 31 Mar 2025 21:21:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 25743 IP address blocks: 116.204.208.0/24 maxlen: 24 116.204.209.0/24 maxlen: 24 116.204.210.0/24 maxlen: 24 116.204.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195DE5, serialNumber=B85BED99BF740ABAD5A399C9DF5FE9962A6DE8F1 Validity Not Before: Mar 31 21:21:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a44803-4f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ad:09:5a:3b:b5:f3:0f:02:c4:43:31:5a:b2: 73:54:f8:cb:fe:4f:67:c0:87:c2:76:0f:41:27:d0: 6d:a6:48:cd:ed:5f:be:fa:2e:0b:b2:48:8f:1c:e0: 8a:26:66:94:8c:f2:7b:41:b8:c0:83:95:d3:e4:b3: 2a:61:24:21:e1:7e:4c:a0:3f:e9:7c:6a:17:14:42: 7a:c5:df:64:6d:26:1b:d9:d5:87:e1:19:9e:9b:a7: 0a:17:81:13:d1:cc:27:34:b9:3d:5a:7a:07:84:0d: ad:95:11:af:bd:62:89:a2:2d:3a:c3:73:db:a6:f9: 9a:75:00:3e:20:69:05:ef:f9:86:34:4a:28:fb:9c: 97:76:90:02:43:88:70:88:55:89:ea:79:10:26:18: f4:c2:6c:e7:b2:d9:24:92:8a:2d:96:7b:9d:74:cf: 49:35:8f:72:89:07:9f:4a:6f:7e:e5:72:c5:e1:c2: 01:4e:e6:54:31:90:cf:07:88:ab:cc:a1:0a:48:cd: 5a:ac:2a:e5:48:d2:88:31:ed:b4:02:02:a2:ff:69: e7:da:08:71:1d:43:35:1c:cc:9d:4e:6b:08:4c:5b: 04:d6:6b:00:d3:dd:24:d1:7c:68:27:ab:67:c9:d7: d4:fb:1f:13:42:a5:f2:01:84:90:84:a2:24:f2:60: a1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C6:96:C0:F8:CD:3E:7C:04:11:E3:CF:FC:8F:F9:D3:CA:0B:01:F5 X509v3 Authority Key Identifier: keyid:B8:5B:ED:99:BF:74:0A:BA:D5:A3:99:C9:DF:5F:E9:96:2A:6D:E8:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/uFvtmb90CrrVo5nJ31_plipt6PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uFvtmb90CrrVo5nJ31_plipt6PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195DE5/E3ED65D8F4BE11EA9C35FE6AC4F9AE02/709F917AF74111EF98C99938C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.208.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:29:15:3e:c5:1a:65:88:61:5f:a0:11:5a:1f:60:a3:0b:44: 2c:97:00:39:f2:e8:54:18:f0:40:0c:7d:9d:c1:e2:54:36:67: 35:98:bc:f9:5e:98:63:6d:72:49:89:1f:57:07:02:e9:8a:a8: 24:66:46:59:64:0c:d4:ab:1a:ef:e0:74:3b:0d:bb:69:73:13: d3:84:c5:90:4d:8b:2e:78:0c:d6:70:11:e6:c0:bb:3f:1e:88: 33:a9:03:c1:fe:ef:f0:21:9c:83:88:7a:03:fa:da:1a:8e:cc: ab:01:47:04:eb:0a:f2:97:ef:49:53:62:d1:7b:40:10:b7:02: 28:55:f3:31:db:56:cb:df:bc:44:4f:4e:b6:60:e9:67:50:b7: e4:d5:48:a7:18:40:b2:a2:15:30:79:5a:9d:39:d5:c0:0b:fa: 39:f9:05:6b:e2:2f:51:47:28:a2:75:35:3f:f8:f4:38:91:0f: 90:76:c1:ab:20:e1:e0:b5:48:16:48:e0:bc:3c:3c:e7:34:85: 77:bc:18:a6:cd:6f:cb:03:1f:b9:60:28:96:6d:31:3b:07:8c: 4c:5e:c6:70:7a:9d:0d:77:50:ef:6f:06:1f:3f:1d:e3:2a:06: 08:68:32:81:d2:5b:c0:de:0e:66:45:2c:fc:5a:4c:86:40:d1: 93:10:4f:1e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVERTUxMTAvBgNVBAUTKEI4NUJFRDk5QkY3NDBBQkFENUEzOTlDOURGNUZFOTk2 MkE2REU4RjEwHhcNMjUwMzMxMjEyMTMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDgwMy00ZjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6a0JWju18w8CxEMxWrJzVPjL/k9nwIfCdg9BJ9BtpkjN7V+++i4LskiPHOCK JmaUjPJ7QbjAg5XT5LMqYSQh4X5MoD/pfGoXFEJ6xd9kbSYb2dWH4Rmem6cKF4ET 0cwnNLk9WnoHhA2tlRGvvWKJoi06w3PbpvmadQA+IGkF7/mGNEoo+5yXdpACQ4hw iFWJ6nkQJhj0wmznstkkkootlnuddM9JNY9yiQefSm9+5XLF4cIBTuZUMZDPB4ir zKEKSM1arCrlSNKIMe20AgKi/2nn2ghxHUM1HMydTmsITFsE1msA090k0XxoJ6tn ydfU+x8TQqXyAYSQhKIk8mChpwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAbGlsD4 zT58BBHjz/yP+dPKCwH1MB8GA1UdIwQYMBaAFLhb7Zm/dAq61aOZyd9f6ZYqbejx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NURFNS9FM0VENjVEOEY0 QkUxMUVBOUMzNUZFNkFDNEY5QUUwMi91RnZ0bWI5MENyclZvNW5KMzFfcGxpcHQ2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VGdnRtYjkwQ3JyVm81bkozMV9wbGlwdDZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVERTUvRTNFRDY1RDhGNEJFMTFFQTlDMzVGRTZBQzRGOUFFMDIvNzA5RjkxN0FG NzQxMTFFRjk4Qzk5OTM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdMzQMA0GCSqGSIb3DQEBCwUAA4IBAQCbKRU+xRpliGFfoBFaH2Cj C0QslwA58uhUGPBADH2dweJUNmc1mLz5XphjbXJJiR9XBwLpiqgkZkZZZAzUqxrv 4HQ7DbtpcxPThMWQTYsueAzWcBHmwLs/HogzqQPB/u/wIZyDiHoD+toajsyrAUcE 6wryl+9JU2LRe0AQtwIoVfMx21bL37xET062YOlnULfk1UinGECyohUweVqdOdXA C/o5+QVr4i9RRyiidTU/+PQ4kQ+QdsGrIOHgtUgWSOC8PDznNIV3vBimzW/LAx+5 YCiWbTE7B4xMXsZwep0Nd1DvbwYfPx3jKgYIaDKB0lvA3g5mRSz8WkyGQNGTEE8e -----END CERTIFICATE-----Generated at Mon Mar 2 06:23:36 2026 by rpki-client