$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/A7C3D2B2316811F19417970E9A833773.roa File: A7C3D2B2316811F19417970E9A833773.roa (raw, json) Hash identifier: AV0jegaonQnfecWhF4qjPIga5TAipRMyKt3mCTrZPnA= Subject key identifier: 50:46:74:64:A1:E9:B2:8D:9E:5B:06:53:40:5F:A4:49:9C:FC:F2:06 Certificate issuer: /CN=A9196DC9/serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Certificate serial: 71 Authority key identifier: B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/A7C3D2B2316811F19417970E9A833773.roa Signing time: Mon 06 Apr 2026 03:28:19 +0000 ROA not before: Mon 06 Apr 2026 03:28:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154080 IP address blocks: 165.101.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DC9, serialNumber=B109DA950576E66267795A34EBA91BC37A9923B4 Validity Not Before: Apr 6 03:28:19 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69d32852-35c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:93:ec:27:30:d6:94:de:ea:2d:92:08:9d: f8:a4:52:53:a0:81:34:f6:e7:97:5a:77:00:83:f5: 93:55:36:91:0d:90:14:b8:30:6d:85:01:bb:bc:3c: 51:ed:c3:c1:91:56:12:11:a1:ca:b2:da:1a:72:7b: 8c:fd:a0:1a:99:09:19:14:cc:4f:d6:f7:69:50:ba: cf:0a:89:88:08:8c:b0:01:2e:e8:33:be:ed:97:15: 1a:26:3f:1c:07:3c:a4:11:fd:50:f9:7e:a5:a6:00: 0d:89:d1:b8:9a:2b:20:2a:25:96:ed:f0:4e:6d:c1: 25:35:53:29:27:d4:f7:69:2c:92:05:9a:dc:6b:e1: 07:46:c2:83:5e:d8:ab:5c:8c:71:f4:b1:15:ec:a4: 44:c6:a0:f2:e5:e6:5b:2f:f7:e0:2b:84:71:be:be: 5b:b6:d3:3a:5e:07:0c:50:8f:53:7b:d7:3d:2c:a9: fb:3c:ed:47:7d:79:44:9e:26:cb:05:53:55:7e:26: 97:e7:b4:6f:6e:91:76:5a:d3:10:cb:e2:41:4d:01: b2:91:0c:90:83:52:e2:bb:c9:53:70:7d:1e:dc:a4: 57:2a:44:ec:2e:20:97:b3:ac:de:3c:49:42:44:1c: d7:36:e2:44:1a:7b:46:ca:78:49:ec:e6:a3:0c:06: 0a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:46:74:64:A1:E9:B2:8D:9E:5B:06:53:40:5F:A4:49:9C:FC:F2:06 X509v3 Authority Key Identifier: keyid:B1:09:DA:95:05:76:E6:62:67:79:5A:34:EB:A9:1B:C3:7A:99:23:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/sQnalQV25mJneVo066kbw3qZI7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sQnalQV25mJneVo066kbw3qZI7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DC9/0E6FF54AAE5B11F08C7CAC53C4F9AE02/A7C3D2B2316811F19417970E9A833773.roa sbgp-ipAddrBlock: critical IPv4: 165.101.243.0/24 Signature Algorithm: sha256WithRSAEncryption 37:7c:72:b0:77:21:39:58:1e:93:98:a5:40:02:c9:40:62:e4: 83:db:e0:b5:51:c1:48:65:2f:50:ea:57:0b:09:4e:78:0a:26: 7e:3e:f7:bf:82:5e:c1:ec:df:cb:30:3c:1e:40:99:fe:72:f4: 45:db:10:60:af:ee:df:d6:5c:5c:70:20:27:4b:d9:43:ad:7e: 51:d0:0e:3f:6c:6e:ff:d4:c6:42:ee:4c:66:38:c2:76:b7:23: b4:9c:64:00:0c:95:d3:25:46:6f:b8:6a:b8:b7:26:0d:3f:08: 72:03:72:36:47:c5:29:73:36:73:ed:97:a4:b4:31:cb:d3:40: 49:b2:47:77:f9:18:2c:f2:80:e8:82:36:30:da:5d:24:94:06: f3:76:02:62:8e:11:2f:b9:c9:e4:aa:0e:6a:b8:be:5f:98:f5: 27:33:87:a7:bb:51:36:37:56:fa:2f:55:d5:20:c0:94:4b:d4: 7e:ac:ba:27:47:d7:35:45:43:02:0e:c4:0c:8b:ed:fb:c2:c1: 5c:ca:14:c4:e4:42:cc:44:83:dc:b5:0f:7b:04:3c:03:30:7a: 76:cf:a0:1a:cf:db:37:7a:ac:c9:a6:8a:53:5e:3d:11:3d:3c: 02:0e:c1:2a:9c:a6:92:56:06:37:e8:76:3e:ac:4c:88:f8:8c: f6:5b:d2:f8 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDOTExMC8GA1UEBRMoQjEwOURBOTUwNTc2RTY2MjY3Nzk1QTM0RUJBOTFCQzM3 QTk5MjNCNDAeFw0yNjA0MDYwMzI4MTlaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZDMyODUyLTM1YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC93ZPsJzDWlN7qLZIInfikUlOggTT255dadwCD9ZNVNpENkBS4MG2FAbu8PFHt w8GRVhIRocqy2hpye4z9oBqZCRkUzE/W92lQus8KiYgIjLABLugzvu2XFRomPxwH PKQR/VD5fqWmAA2J0biaKyAqJZbt8E5twSU1Uykn1PdpLJIFmtxr4QdGwoNe2Ktc jHH0sRXspETGoPLl5lsv9+ArhHG+vlu20zpeBwxQj1N71z0sqfs87Ud9eUSeJssF U1V+JpfntG9ukXZa0xDL4kFNAbKRDJCDUuK7yVNwfR7cpFcqROwuIJezrN48SUJE HNc24kQae0bKeEns5qMMBgqjAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUUEZ0ZKHp so2eWwZTQF+kSZz88gYwHwYDVR0jBBgwFoAUsQnalQV25mJneVo066kbw3qZI7Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2REM5LzBFNkZGNTRBQUU1 QjExRjA4QzdDQUM1M0M0RjlBRTAyL3NRbmFsUVYyNW1KbmVWbzA2NmtidzNxWkk3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc1FuYWxRVjI1bUpuZVZvMDY2a2J3M3FaSTdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRDOS8wRTZGRjU0QUFFNUIxMUYwOEM3Q0FDNTNDNEY5QUUwMi9BN0MzRDJCMjMx NjgxMUYxOTQxNzk3MEU5QTgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAClZfMwDQYJKoZIhvcNAQELBQADggEBADd8crB3ITlYHpOYpUACyUBi 5IPb4LVRwUhlL1DqVwsJTngKJn4+97+CXsHs38swPB5Amf5y9EXbEGCv7t/WXFxw ICdL2UOtflHQDj9sbv/UxkLuTGY4wna3I7ScZAAMldMlRm+4ari3Jg0/CHIDcjZH xSlzNnPtl6S0McvTQEmyR3f5GCzygOiCNjDaXSSUBvN2AmKOES+5yeSqDmq4vl+Y 9Sczh6e7UTY3VvovVdUgwJRL1H6suidH1zVFQwIOxAyL7fvCwVzKFMTkQsxEg9y1 D3sEPAMwenbPoBrP2zd6rMmmilNePRE9PAIOwSqcppJWBjfodj6sTIj4jPZb0vg= -----END CERTIFICATE-----Generated at Fri Apr 17 21:20:17 2026 by rpki-client